• EnderMB@lemmy.world
    link
    fedilink
    arrow-up
    41
    arrow-down
    1
    ·
    6 months ago

    I remember joining the industry and switching our company over to full Continuous Integration and Deployment. Instead of uploading DLL’s directly to prod via FTP, we could verify each build, deploy to each environment, run some service tests to see if pages were loading, all the way up to prod - with rollback. I showed my manager, and he shrugged. He didn’t see the benefit of this happening when, in his eyes, all he needed to do was drag and drop, and load the page to make sure all is fine.

    Unsurprisingly, I found out that this is how he builds websites to this day…

  • stembolts@programming.dev
    link
    fedilink
    arrow-up
    39
    arrow-down
    2
    ·
    6 months ago

    This application looks fine to me.

    Clearly labeled sections.

    Local on one side, remote on the other

    Transfer window on bottom.

    No space for anything besides function, is the joke going over my head?

    • tiramichu@lemm.ee
      link
      fedilink
      arrow-up
      43
      ·
      edit-2
      6 months ago

      I’m sure there’s nothing wrong with the program at all =)

      Modern webapp deployment approach is typically to have an automated continuous build and deployment pipeline triggered from source control, which deploys into a staging environment for testing, and then promotes the same precise tested artifacts to production. Probably all in the cloud too.

      Compared to that, manually FTPing the files up to the server seems ridiculously antiquated, to the extent that newbies in the biz can’t even believe we ever did it that way. But it’s genuinely what we were all doing not so long ago.

      • 30p87@feddit.de
        link
        fedilink
        arrow-up
        18
        ·
        6 months ago

        manually FTPing the files up to the server seems ridiculously antiquated

        But … but I do that, and I’m only 18 :(

        • xtapa@discuss.tchncs.de
          link
          fedilink
          arrow-up
          5
          ·
          6 months ago

          It’s perfectly fine for some private page etc. but when you make business software for customers that require 99,9% uptime with severe contractual penalties it’s probably too wonky.

        • JackbyDev@programming.dev
          link
          fedilink
          English
          arrow-up
          4
          ·
          6 months ago

          Think of this like saying using a scythe to mow your lawn is antiquated. If your lawn is tiny then it doesn’t really matter. But we’re talking about massive “enterprise scale” lawns lol. You’re gonna want something you can drive.

        • tiramichu@lemm.ee
          link
          fedilink
          arrow-up
          3
          ·
          edit-2
          6 months ago

          That’s probably okay! =) There’s some level of pragmatism, depending on the sort of project you’re working on.

          If it’s a big app with lots of users, you should use automation because it helps reliability.

          If there are lots of developers, you should use automation because it helps keep everyone organised and avoids human mistakes.

          But if it’s a small thing with a few devs, or especially a personal project, it might be easier to do without :)

          • 30p87@feddit.de
            link
            fedilink
            arrow-up
            6
            ·
            6 months ago

            Nah, it’s probably more efficient to .tar.xz it and use netcat.

            On a more serious note, I use sftp for everything, and git for actual big (but still personal) projects, but then move files and execute scripts manually.

            And also, I cloned my old Laptops /dev/sda3 to my new Laptops /dev/main/root (on /dev/mapper/cryptlvm) via netcat over a Gigabit connection with netcat. It worked flawlessly. I love Linux and its Philosophy.

            • OpenStars@discuss.online
              link
              fedilink
              English
              arrow-up
              2
              ·
              6 months ago

              Ooh I’ve never heard of it. netcat I mean, cause I’ve heard of Linux 😆.

              The File Transfer Protocol is just very antiquated, while scp is simple. Possibly netcat is too:-).

              • 30p87@feddit.de
                link
                fedilink
                arrow-up
                3
                ·
                6 months ago

                Netcat is basically just a utility to listen on a socket, or connect to one, and send or receive arbitrary data. And as, in Linux, everything is a file, which means you can handle every part of your system (eg. block devices [physical or virtual disks]) like a normal file, i.e. text, you can just transfer a block device (e.g. /dev/sda3) over raw sockets.

        • realbadat@programming.dev
          link
          fedilink
          arrow-up
          0
          ·
          6 months ago

          Like anything else, it’s good to know how to do it in many different ways, it may help you down the line.

          In production in an oddball environment, I have a python script to ftp transfer to a black box with only ftp exposed as an option.

          Another system rebuilds nightly only if code changes, publishing to a QC location. QC gives it a quick review (we are talking website here, QC is “text looks good and nothing looks weird”), clicks a button to approve, and it gets published the following night.

          I’ve had hardware (again, black box system) where I was able to leverage git because it was the only command exposed. Aka, the command they forgot to lock down and are using to update their device. Their intent was to sneakernet a thumb drive over to it for updates, I believe in sneaker longevity and wanted to work around that.

          So you should know how to navigate your way around in FTP, it’s a good thing! But I’d also recommend learning about all the other ways as well, it can help in the future.

          (This comment brought to you by “I now feel older for having written it”, and “I swear I’m only in my fourties,”)

          • jcg@halubilo.social
            link
            fedilink
            arrow-up
            3
            ·
            6 months ago

            Not to rub it in, but in my forties could be read as almost the entirety of the modern web was developed during my adulthood.

            • realbadat@programming.dev
              link
              fedilink
              arrow-up
              1
              ·
              6 months ago

              It could, but I’m in my early 40s.

              I just started early with a TI-99/4A, then a 286, before building my own p133.

              So the “World Wide Web!” posters were there for me in middle school.

              Still old lol

      • jet@hackertalks.com
        link
        fedilink
        English
        arrow-up
        6
        arrow-down
        1
        ·
        6 months ago

        Promotes/deploys are just different ways of saying file transfer, which is what we see here.

        Nothing was stopping people from doing cicd in the old days.

        • tiramichu@lemm.ee
          link
          fedilink
          arrow-up
          5
          ·
          edit-2
          6 months ago

          Sure, but having a hands-off pipeline for it which runs automatically is where the value is at.

          Means that there’s predictability and control in what is being done, and once the pipeline is built it’s as easy as a single button press to release.

          How many times when doing it manually have you been like “Oh shit, I just FTPd the WRONG STUFF up to production!” - I know I have. Or even worse you do that and don’t notice you did it.

          Automation takes a lot of the risk out.

          • Anony Moose@lemmy.ca
            link
            fedilink
            English
            arrow-up
            1
            ·
            6 months ago

            Not to mention the benefits of versioning and being able to rollback! There’s something so satisfying about a well set-up CI/CD pipeline.

      • lightnegative@lemmy.world
        link
        fedilink
        arrow-up
        4
        ·
        6 months ago

        But it’s genuinely what we were all doing not so long ago

        Jokes on you, my first job was editing files directly in production. It was for a webapp written in Classic ASP. To add a new feature, you made a copy of the current version of the page (eg index2_new.asp became index2_new_v2.asp) and developed your feature there by hitting the live page with your web browser.

        When you were ready to deploy, you modified all the other pages to link to your new page

        Good times!

      • aard@kyu.de
        link
        fedilink
        arrow-up
        0
        ·
        6 months ago

        Shitty companies did it like that back then - and shitty companies still don’t properly utilize what easy tools they have available for controlled deployment nowayads. So nothing really changed, just that the amount of people (and with that, amount of morons) skyrocketed.

        I had automated builds out of CVS with deployment to staging, and option to deploy to production after tests over 15 years ago.

    • trustnoone@lemmy.sdf.org
      link
      fedilink
      arrow-up
      5
      arrow-down
      1
      ·
      6 months ago

      This application looks fine to me.

      Clearly labeled sections.

      Local on one side, remote on the other

      Transfer window on bottom

      Thats how you know its old. Its not caked full of ads, insanely locked down, and trying yo sell you a subscription service.

    • Wangus@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      6 months ago

      The large .war (Web ARchive) being uploaded monolithicly is the archaic deployment of a web app. Modern tools can be much better.

      • Carighan Maconar@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        6 months ago

        Of course, it’s going to be difficult to find a modern application where each individually deployed component isn’t at least 7MB of compiled source (and 50-200MB of container), compared to this single 7MB war that contained everything.

  • FQQD@lemmy.ohaa.xyz
    link
    fedilink
    English
    arrow-up
    21
    ·
    6 months ago

    People don’t use FileZilla for server management anymore? I feel like I’ve missed that memo.

    • RonSijm@programming.dev
      link
      fedilink
      arrow-up
      8
      ·
      6 months ago

      I suppose in the days of ‘Cloud Hosting’ a lot of people (hopefully) don’t just randomly upload new files (manually) on a server anymore.

      Even if you still just use normal servers that behave like this, a better practice would be to have a build server that creates builds, like whenever you check code into the Main branch, it’ll create a deploy for the server, and you deploy it from there - instead of compiling locally, opening filezilla and doing an upload.

      If you’re using ‘Cloud Hosting’ - for example AWS - If you use VMs or bare metal - you’d maybe create Elastic Beanstalk images and upload a new Application or Machine Image as a new version, and deploy that in a more managed way. Or if you’re using Docker, you just upload a new Docker image into a Docker registry and deploy those.

      • dan@upvote.au
        link
        fedilink
        arrow-up
        3
        ·
        6 months ago

        For some of my sites, I still build on my PC and rsync the build directory across. I’ve been meaning to set up Gitlab or something similar and configure automated deployments.

        • amazing_stories@lemmy.world
          link
          fedilink
          arrow-up
          1
          ·
          6 months ago

          This is what I do because my sites aren’t complicated enough to warrant a build system. Personally I think most websites out there are over-engineered. Example: a Discord friend made a React site that displays stats from a gaming server. It looks nice, but you literally can’t hyperlink to any of the data, it can only be loaded dynamically and only looks coherent on a phone in portrait mode. There are a lot of people following trends (some good trends) but without really thinking about why.

          • dan@upvote.au
            link
            fedilink
            arrow-up
            4
            ·
            edit-2
            6 months ago

            I’m starting to like the htmx model a lot. Server-rendered app that uses HTML attributes to configure the dynamic bits (e.g. which URL to hit and which DOM element to insert the response into). Don’t have to write much JS (or any in some cases).

            you literally can’t hyperlink to any of the data

            I thought most React-powered frameworks use a URL router out-of-the-box these days? The developer does need to have a rough idea what they’re doing, though.

        • RonSijm@programming.dev
          link
          fedilink
          arrow-up
          1
          ·
          6 months ago

          Yea, I wasn’t saying it’s always bad in every scenario - but we used to have this kinda deployment in a professional company. It’s pretty bad if this is still how you’re doing it like this in an enterprise scenarios.

          But for a personal project, it’s alrightish. But yea, there are easier setups. For example configuring an automated deployed from Github/Gitlab. You can check out other peoples’ deployment config, since all that stuff is part of the repos, in the .github folder. So probably all you have to do is find a project that’s similar to yours, like “static file upload for an sftp” - and copypaste the script to your own repo.

          (for example: a script that publishes a website to github pages)

    • ResoluteCatnap@lemmy.ml
      link
      fedilink
      English
      arrow-up
      3
      ·
      edit-2
      6 months ago

      They have bundled malware from the main downloads on their own site multiple times over the years, and even denied it and tried gaslighting people that AVs were giving false positives because AV companies are paid off by other corporations. And the admin will even try to delete the threads about this stuff but web archive to the rescue…

      https://web.archive.org/web/20180623190412/https://forum.filezilla-project.org/viewtopic.php?t=48441#p161487

      • FQQD@lemmy.ohaa.xyz
        link
        fedilink
        English
        arrow-up
        3
        ·
        edit-2
        6 months ago

        You know what? I didn’t believe you, since I’m using it for a long time on Linux and never had any issues with it. Today, when I helped a friend (on Windows) with some SFTP transfer and recommended FileZilla was the first time I realised the official Downloads page provides Adware. The executable even gets flagged by Microsoft Defender and VirusTotal. That’s actually REALLY bad. Isn’t FileZilla operated by Mozilla? Should I stop using it, even though the Linux versions don’t have sketchy stuff? It definitely leaves a really bad taste.

        • ResoluteCatnap@lemmy.ml
          link
          fedilink
          English
          arrow-up
          3
          ·
          edit-2
          6 months ago

          Yeah, it’s bad. Surprised they’re still serving that crap in their own bundle but i guess some things don’t change.

          Filezilla is no relation to mozilla. But yeah i moved away from it years ago. The general recommendation I’ve seen is “anything but filezilla”. Personally i use winscp for windows, and will have to figure out what to use when i switch my daily driver to Linux.

  • fmstrat@lemmy.nowsci.com
    link
    fedilink
    English
    arrow-up
    16
    arrow-down
    1
    ·
    edit-2
    6 months ago

    I remember this. I also remember using scp instead. And ftp, if I go back far enough. rsync is still my friend though zfs has mostly replaced it now.

    • BoneALisa@lemm.ee
      link
      fedilink
      English
      arrow-up
      16
      arrow-down
      1
      ·
      6 months ago

      How has zfs replaced rsync for you? One is a filesystem, and the other is a filesyncing tool. Does zfs do something im not aware of lol?

      • fmstrat@lemmy.nowsci.com
        link
        fedilink
        English
        arrow-up
        3
        ·
        edit-2
        6 months ago

        I used to use rsync to copy data from my storage array on one machine to an external and an off site backup. Since a lot of it was code, it always took forever to scan all the small files, and I had to script unlocking remote partitions.

        With encrypted ZFS, I can just zfs snap then zfs send, and it does the same thing at the block level, raw, so way faster, less data transfer, and no need to send a key or passphrase unless I need to mount it at the destination (meaning a cloud provider could never know the data, for instance).

        ZFS is also recursive, so if I have s/storage and /storage/stuff defined, I can snap and send either level, which makes it as versatile as rsync.

        • BoneALisa@lemm.ee
          link
          fedilink
          English
          arrow-up
          3
          ·
          6 months ago

          Oh interesting, i am not super familar with zfs’ tools, so thats pretty cool! Ill have to look at that for my storage array.

    • JackbyDev@programming.dev
      link
      fedilink
      English
      arrow-up
      2
      ·
      6 months ago

      Don’t forget ear files. Oh, and don’t forget the abomination that is the executable war file when you’re using Spring Boot but your company hasn’t fully embraced it yet.

  • Krakaval@jlai.lu
    link
    fedilink
    English
    arrow-up
    9
    ·
    6 months ago

    Somehow I miss those days. Now you need weeks of training to understand the black magic behind all the build/deployment stuff in whatever cloud provider your company decided to use…

    • xtapa@discuss.tchncs.de
      link
      fedilink
      arrow-up
      0
      ·
      6 months ago

      We got our own platform based on kubernetes and cncf stuff and we don’t have to care anymore about the metal underneath. AWS? OTC? Azure? Thats just a target parameter, platform does the rest. It’s great.

      • widerporst@feddit.de
        link
        fedilink
        arrow-up
        2
        ·
        6 months ago

        How often do you switch cloud providers that this is even a real rather than a hypothetical benefit? (Compared to the cost of dealing with a much more complicated stack.)

        • bamboo@lemmy.blahaj.zone
          link
          fedilink
          English
          arrow-up
          2
          ·
          6 months ago

          I manage a stack like this, we have dedicated hardware running a steady state of backend processing, but scale into AWS if there’s a surge in realtime processing needed and we don’t have the hardware. We also had an outage in our on prem datacenter once which was expensive for us (I assume an insurance claim was made), but scaling to AWS was almost automatic, and the impact was minimal for a full datacenter outage.

          If we wanted to optimize even more, I’m sure we could scale into Azure depending on server costs when spot pricing is higher in AWS. The moral of the story is to not get too locked into any one provider and utilize some of the abstraction layers so that AWS, Azure, etc are just targets that you can shop around for by default, without having to scramble.

  • umbraroze@lemmy.world
    link
    fedilink
    arrow-up
    8
    ·
    6 months ago

    There’s still a few sites I deploy changes to using ssh+rsync. …which is made considerably easier by the fact that it’s just a static website generated with Jekyll.

      • TechNerdWizard42@lemmy.world
        link
        fedilink
        arrow-up
        3
        arrow-down
        1
        ·
        6 months ago

        Who can afford the performance hit?

        My production server running Win XP Home has to have the firewall off just to make all the super secret company internal networks work. SFTP would cripple us!

        /s, except about the performance hit being stupidly unacceptable in 2024.

      • HAL_9_TRILLION@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        3
        ·
        edit-2
        6 months ago

        Oh god, I know all of these.

        Also fuck Tim Kosse. Bundled Filezilla with malware and fucked up my machine in 2014. Had to reinstall Windows. I’ll never use it again.

        I use WinSCP on Windows and Forklift on MacOS.

      • Shadow@lemmy.ca
        link
        fedilink
        arrow-up
        0
        ·
        6 months ago

        Yeah you’re totally right, I forgot about that.

        There was flashfxp too but I think that was a fair bit later. Revolutionized being a warez courier.

        • brbposting@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          1
          ·
          6 months ago

          I’m not FBI

          being a warez courier.

          Spill. You bring those R5s across the ocean? Send audio from the handicap audio jack at the multiplex? Hustle up some telecines? Sneak Battletoads outta the backroom at GameStop before it hit shelves?

          • Shadow@lemmy.ca
            link
            fedilink
            arrow-up
            2
            ·
            6 months ago

            Back in the day (mid/late 90’s), there were private ftp servers that required a ratio. Some of these were run by release groups and hard to get on, some were more public. Couriers would download from one site and upload to another to build their ratio and get access to the good sites.

            Before people figured out you could connect two ftp servers together directly, you would have to download to your computer and reupload. Most people were on dialup, so that was a non trivial time commitment.

            • brbposting@sh.itjust.works
              link
              fedilink
              English
              arrow-up
              1
              ·
              6 months ago

              Ohhh didn’t know about that sense of the word in that context. Interesting!

              Do you have any idea what the warez scene is like today?

              Also there was a bot on the former Warez-BB dot org that would post scene releases seemingly moments after they pre’d. Imagine those kinds of people are on Telegram or something today…

  • zzx@lemmy.world
    link
    fedilink
    arrow-up
    6
    ·
    6 months ago

    This is how I deployed an app less than 5 years ago (healthcare).

    It’s sad

    • drathvedro@lemm.ee
      link
      fedilink
      arrow-up
      5
      ·
      6 months ago

      I know a place where they still do this. They’ve got an 8-digit user count, 7 digit monthly profits, all running on one server that costs something like $20 a month. They’ve downsized a few years ago to single-digit employee number and just sit there and collect profits. And this is why I’m now working for a company that casually dropped a few grand for a glorified CPU usage meter and a few grand on top of that for deployment tool that does the same thing that the old guy at a former place was doing with his trusty FTP client.

    • Flipper@feddit.de
      link
      fedilink
      arrow-up
      2
      arrow-down
      1
      ·
      6 months ago

      This is how I deploy my personal website today. The holster doesn’t give ash access.