By Nena Nguyen - 20 Jun 2016
At our Sandstorm meetup on June 16th, Sandstorm core dev Drew Fisher talked about an object-oriented programming inspired technique for designing secure systems called object-capability security.
Object-capability security is a technique for designing systems that lets us apply object-oriented design principles to security policies, reducing cognitive overhead and risk of errors that lead to vulnerabilities. In this talk, Drew explains capabilities, how they work, and what cool things they make possible for your systems, with real-world examples from Sandstorm.io.
Watch the full talk here:
To see the slides: http://zarvox.org/pycon2016-talk
To read more about capability-based security: https://sandstorm.io/how-it-works#capabilities
To read more on Cap’n Proto: https://capnproto.org/
We also have an upcoming meetup on July 19 where Asheesh is giving a talk entitled, “Web app packaging in Sandstorm: It’s not LAMP.” RethinkDB is kind enough to host our event at their office in Mountain View, and all are invited. Read the details & RSVP here.
By Ovidiu Pacuraru - 13 Jun 2016
Today’s blog post comes from guest writer Ovidiu Pacuraru.
In this tutorial, we will show you how a family on holiday can organize images from dad’s DSLR, mom’s iPhone and the kid’s Android phone inside one album. They can all use the same Lychee grain in Sandstorm from a web browser; this tutorial shows how to set it up.
There are at least a couple of different scenarios where you’d want to create a photo library and share it with others. Another example is when 3 people are writing a blog but only one editor approves images, so images need to be collected at a central point. I have found uploading and sharing via Google to be a bit hit and miss.
In any case where you need to create a shared photo library using Lychee, you can follow these steps:
I hope you enjoy creating photo albums using Lychee from the Sandstorm App Market. Don't forget to leave a review!
By Jade Wang - 06 Jun 2016
Designing secure systems with Object-Capabilities, Python, and Cap’n Proto (San Francisco, CA)
Join us for a talk from Sandstorm core dev Drew Fisher about an object-oriented programming inspired technique for designing secure systems called object-capability security. Drew’s talk will be followed by a Q&A session with opportunities to chat with Sandstorm’s community before and after. A huge shoutout and thanks to ThoughtWorks for hosting the meetup and for dinner!
Thursday, June 16, 2016
6:00 PM to 9:30 PM
ThoughtWorks
814 Mission St, 5th Floor, San Francisco, CA
RSVP here: http://www.meetup.com/Sandstorm-SF-Bay-Area/events/231065150/
Building a decentralized web with Sandstorm
If you’re in Morgantown, West Virginia, join the Linux User Group, and meet Sandstorm core dev David Renshaw! David will give an overview of Sandstorm, and will dive into some of the technical details of what makes Sandstorm tick.
Thursday, June 9, 2016
7:00 PM
Listhub
453 Suncrest Towne Centre, 2nd Floor, Morgantown, WV
RSVP here: http://www.meetup.com/Morgantown-Linux-User-Group/events/228038429/
By Asheesh Laroia - 31 May 2016
This month features a big change: when you delete grains, they are sent to a “Trash” area, where they are held for 30 days before being deleted permanently. I personally have clicked “Delete” on the wrong grain by accident, so I’m very happy with the new feature! This way, I can undo it.
Self-hosters will also appreciate the totally-redesigned admin interface. Visit /admin on your server and you’ll see that it’s easier to navigate and visually cleaner.
Here’s the full changelog. As always, you can visit your Sandstorm server and find the changelog under the “About Sandstorm” section.
Authorization
header is not possible (especially cross-origin WebSocket).By Jade Wang - 23 May 2016
Jason Hernandez is a journalist who often covers sensitive topics like mass surveillance for the North Star Post. And given the nature of his work, he and his colleagues are justifiably concerned about the information security, not just between journalists and sources, but also drafts and storage of source materials. So, when Jason was visiting the SF Bay Area, he dropped by Sandstorm meetup to talk about the Sandstorm server he set up so he and his colleagues so that they can still enjoy the benefits of web applications, like real-time collaboration, while keeping control over their data.
Lightning Talk: Jason Hernandez talks about how North Star Post uses Sandstorm
Are you using Sandstorm for your work? I’d love to hear more about how you’re using Sandstorm and share your story. Drop me a line at community@sandstorm.io and tell me about it!
Are you in the Bay Area? Hope you can make it to the next Sandstorm meetup: RSVP here
Or share your Sandstorm use case at local meetups in: Boston, New York, Berlin, Zurich, or Wellington.