Forem: whybe

Firebase & PowerShell Execution Policy

whybe — Mon, 25 Sep 2023 22:47:00 +0000

when you install the Firebase via npm:

npm i -g firebase firebase-tools

and try to run:

firebase login

it throws an error into your terminal that says that the execution policy of Powershell is preventing you from running this script or any unsigned script certificate, which is quite fair making your system secure from malicious scripts. Still, why is Firebase not a signed and white-listed script 🤷‍♂️?

will I get you covered, instead of dropping the security layer of your ExecutionPolicy in Powershell by this command ⛔?

Set-ExecutionPolicy -ExecutionPolicy Unrestricted

which will make your machine vulnerable to malicious scripts,
we will create a signed certificate for the firebase.psl script and we will install it.

Create A Signed Certificate

first, make sure your terminal is in elevated privileges (Run as Administrator)

Then let's make our certificate for our firebase script using this command:

New-SelfSignedCertificate -CertStoreLocation Cert:\CurrentUser\My -Subject "CN=Firebase" -TextExtension @("2.5.29.37={text}1.3.6.1.5.5.7.3.3") -FriendlyName "Firebase Script"

this will generate our certificate in the directory C:\Users\{username}\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates script using New-SelfSignedCertificate, you will see the Thumbprint which is the also the name of the certificate file in the listed directory, you can always verified using this command:

Get-ChildItem -Path Cert:\CurrentUser\My -CodeSigningCert

will now the certificate is been initialized now we need to install it.

Install Certificate

follow these steps to install the certificate:

click: win+R and write control, or open the control panel

the search for certificates in the control panel:

the Click Manage User Certificates Link and you will see a window like this:

then click on Trusted Root Certification Authorities and then click on certificates:

what you have to do is click on actions => all tasks => import, and you will see this window:

then click next and the brows

and head to this path: C:\Users\{username}\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates, replace the {username} with your account username folder. then click All files

what is left is to choose the created certificate earlier,
verified the name of the file using this command:

Get-ChildItem -Path Cert:\CurrentUser\My -CodeSigningCert

you will see the Thumbprint which is also the name of the certificate file in the listed directory, click it and click next then you will see this screen just click next:

then click finish and the created certificate will be installed and ready to use:

then what's left is to sign the firebase.psl certificate with the installed certificate using this command:

first, we store the certificate in a variable called $cert

$cert = Get-ChildItem -Path Cert:\CurrentUser\My -CodeSigningCert

then we proceed in the process:

Set-AuthenticodeSignature -Certificate:$cert -FilePath:"C:\Users\{user}\AppData\Roaming\npm\firebase.ps1"

replace the {user} with your account username and the firebase.psl is now white-listed and ready to use without any errors

firebase login

Why Is It Important To Comment Your Code ?!

whybe — Tue, 11 Apr 2023 10:38:57 +0000

When it comes to programming, writing clean and understandable code is essential. One of the best ways to ensure that your code is easily understood by others (and even by your future self) is by adding comments to your code.

What Are Comments?

Comments are pieces of text that are added to your code to explain what it does. They are not executed by the computer and are simply ignored by the programming language. Comments can be used to describe the purpose of a particular piece of code, provide context, or explain complex algorithms.

In most programming languages, there are two types of comments: single-line comments and multi-line comments.

Single-line comments: are denoted by two forward slashes // or # in python, and are used to add comments to a single line of code.

Multi-line comments: are denoted by a forward slash followed by an asterisk /* and are used to add comments to multiple lines of code.

Why Should You Comment Your Code ?

Improved Readability: Comments help make your code more readable by providing context and explaining what the code is supposed to do. They also make it easier for others (or even your future self) to understand the code, making it easier to modify or debug it later on.
Easier Collaboration: When working on a project with others, commenting your code becomes even more important. It makes it easier for your collaborators to understand your code, and for you to understand theirs. This can lead to a more efficient workflow and can help ensure that the project is completed on time.
Better Maintenance: As code ages, it becomes harder to understand, especially if it hasn't been commented. Adding comments to your code makes it easier to maintain in the long run, saving you time and effort in the future.
Clearer Logic: Comments can help explain the reasoning behind a particular piece of code, making it easier to follow the logic of the code. This can be especially helpful when debugging, as it can help you pinpoint the source of the problem more easily.

Tips for Commenting Your Code

Be Consistent: Use a consistent style for your comments throughout your code. This makes it easier for others to read and understand your code.
Keep It Simple: Use simple and clear language when writing comments. Avoid technical jargon or overly complex explanations.
Avoid Overcommenting: While commenting your code is important, it's also possible to overdo it. Don't comment every single line of code, but instead focus on adding comments to important sections or to explain complex algorithms.
Update Your Comments: As you make changes to your code, make sure to update your comments accordingly. This ensures that your comments remain accurate and helpful.

Conclusion

Commenting your code is an essential part of writing clean and understandable code. By adding comments to your code, you can improve its readability, make it easier to collaborate with others, and ensure that it remains maintainable in the long run. Remember to be consistent, keep it simple, and update your comments as you make changes to your code.

Remember

Better code is self documenting

The difference between Spam and Scam

whybe — Sun, 26 Feb 2023 12:04:20 +0000

Let's take a look at the difference between Spam and Scam:

Spam and Scam are two commonly used terms in the digital world, but they have distinct meanings. Many people tend to confuse them, but understanding the difference between spam and scam is essential for protecting oneself from online threats.

Spam refers to unwanted, unsolicited, and repetitive emails or messages, or advertisements that are sent to a large number of people. Spam messages are sent for various purposes, including marketing, advertising, and phishing. In most cases, spam messages are sent without the user's consent and contain links to malicious websites, fake products, or services. Spam is annoying, and it clutters the user's inbox, but it is not necessarily harmful.

On the other hand, a scam is a fraudulent activity in which an individual or a group of individuals (cells) attempts to deceive people into giving away their money, sensitive information, or personal details. Scammers use various techniques, such as fake websites, fake emails, or phone calls, to lure people into their traps. They usually act as legitimate businesses, organizations, or government agencies to gain the user's trust. Once the user falls into their trap, scammers can steal their money, identity, or personal information.

The primary difference between spam and a scam is that spam is an annoying but harmless nuisance, while a scam can cause significant financial and emotional damage. Spam is usually sent in bulk to a large number of people, and their messages can be easily filtered and blocked. while scammers target specific individuals or groups, and they are more sophisticated and require more caution to detect.

To protect yourself from spam and scams, it is important to take some precautions, such as:

- Never share personal information, passwords, or credit card details with anyone online.
- Do not click on links or download attachments from unknown sources, use link checkers for safety like "https://www.psafe.com/dfndr-lab/".
- Use anti-spam and anti-virus software to protect your devices from online threats.
- Be cautious of unsolicited messages, emails, or phone calls, even if they seem to be from a legitimate source.
- Use strong passwords and two-factor authentication or biometric authentication to secure your online accounts.

In conclusion, spam and scams are two different types of online threats that require different levels of caution and protection. While spam is an annoying nuisance, a scam can cause significant financial and emotional damage. By being cautious and following the above precautions, one can protect himself from these threats and enjoy a safe and secure online experience.