About OTC CatchUp

Note OTC CatchUps are weekly informal sessions involving project showcases and technical discussions. They are held every Saturday from 10:30 PM IST. Join in!.
For all summaries, please visit catchup.ourtech.community/summary.

OTC CatchUp #138

Date: 01-07-2023

Duration: 4 hrs 56 mins

Topics Discussed

  • We conducted OTC Talks #4 - Files, DAGs and the Yardstick, with Krishna Gadia as our speaker.

  • General introductions.

  • Harsh Kapadia talked about how he created a basic Git Server that uses SSH.

  • We talked about Self-XSS, where users are persuaded to run malicious code on their browsers by social engineering.

    • A lot of products like Google Meet have warnings written in their console warning users not to run anything in the console they don’t understand.

  • We discussed why someone would save JWT in the database and how it kills the purpose of not reading the database to get user information.

    • A potential use case for saving JWTs in the database is to invalidate tokens before it expires.

  • Wilfred Almeida asked if it is a good idea to store user status (blocked, admin, etc) in the JWT token.

    • Kartik Soneji was against it, as it exposes internal information and if not implemented properly, a user/an attacker can change parameters and can compromise the whole system.

  • Ayush Singh asked for help to deploy his React.js and Express.js web app on a Virtual Private Server (VPS) for a company and we suggested deploying it using a platform like Vercel as it is much easier to deploy and manage.

  • Kartik Soneji explained how company licensing works in India.

  • Wilfred Almeida asked how he can build a system where he can find the number of times a request was made by the user and charge them accordingly.

  • We talked about why companies don’t update their internal tools and why they are incentivized not to update them.

    • It’s extra work and time for something only with a few hundred users.

    • Changing the UI might affect power users and disturb their workflow.

    • "Don’t change it if it’s working" mindset.

Attendees

  1. Ayush Chauhan

  2. Chirag Lulla

  3. Darshan Rander

  4. Darshit Suratwala

  5. Dheeraj Lalwani

  6. Harsh Kapadia

  7. Kartik Soneji

  8. Kaustubh Khavnekar

  9. Krishna Gadia

  10. Nikshita Karkera

  11. Mohit Gangwani

  12. Pranav Dani

  13. Ramyak Mehra

  14. Saket Thota

  15. Saurabh Daware

  16. Siddharth Bhatia

  17. Sreekaran Srinath

  18. Swapnil Borkar

  19. Wilfred Almeida

  20. Aaryamonvikram Singh

  21. Ayush Singh

  22. Krishana Dave

  23. Raghav Rathi

  24. Shubham Kaushik

  25. Suvaditya Mukherjee

  26. Swarnim Walavalkar

Meet Screenshot

Meet #138 screenshot
Note For all summaries, please visit catchup.ourtech.community/summary.

Want to improve the content of this page?

Want to get more involved? Learn how to contribute.

We rise by lifting others.
— Robert Ingersoll
Kindness always wins.
— Selena Gomez
Alone we can do so little; together we can do so much.
— Helen Keller