|
Will it have a grammar checker, to tell people when to use a conjunction?
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
Will it be based on LaTeX?
|
|
|
|
|
Service used by 5.5 million websites may have leaked passwords and authentication tokens. "You had one job"
|
|
|
|
|
We fetched a few live samples, and we observed encryption keys, cookies, passwords, chunks of POST data and even HTTPS requests for other major cloudflare-hosted sites from other users. Once we understood what we were seeing and the implications, we immediately stopped and contacted cloudflare security.
See Incident report on memory leak caused by Cloudflare parser bug[^] for a detailed analysis:
Quote: The root cause of the bug was that reaching the end of a buffer was checked using the equality operator and a pointer was able to step past the end of the buffer. This is known as a buffer overrun.
|
|
|
|
|
To underscore just how serious this is, read this comment (and some of its replies by the same author) on HN.
For context, the comment author is the co-counder of Matasano Security, and is one of the most respected members of the HN community. He's not prone to exaggeration or hyperbole, so if he says it's this bad, it likely really is this bad.
|
|
|
|
|
This is known as a buffer overrun.
In this day and age, programming languages that allow for buffer overruns should be banned.
Oh wait...
Marc
|
|
|
|
|
Do you know that its little brother, the arithmetic overflow, is NOT checked for by default in C# projects? You have to navigate thru the properties of your project, to the Build tab, click the Advanced button, then mark "Check for arithmetic overflow/underflow". Otherwise, no run-time exception will be thrown when multiplying a million by a million with 32 bit integers.
Since those bugs are so old, nobody cares anymore, and they will become much more common than they are now. Sure.
|
|
|
|
|
Bernhard Hiller wrote: the arithmetic overflow, is NOT checked for by default in C# projects?
Amusingly, I had tested that last week when I wrote the article on hashcash, because I wanted to verify that it did throw an exception on overflow, and lo-and-behold, it did not.
Didn't know about the option to enable it though. I'll have to look to see what other gems there are under Advanced.
Marc
|
|
|
|
|
I thought companies these days ran code analysis software like Klocwork or similar product to find these errors.
|
|
|
|
|
At Caltech, a group of researchers led by Assistant Professor of Bioengineering Lulu Qian is working to create circuits using not the usual silicon transistors but strands of DNA. I just sneezed a NAND gate
|
|
|
|
|
Hello my name is: "00010110010000011111......"
New version: WinHeist Version 2.2.2 Beta I told my psychiatrist that I was hearing voices in my head. He said you don't have a psychiatrist!
|
|
|
|
|
Bots appear to behave differently in culturally distinct online environments. A new paper says the findings are a warning to those using artificial intelligence for building autonomous vehicles, cyber security systems or for managing social media. Yo mamma was written in VB
|
|
|
|
|
Quote: The average time between successive reverts for humans is 2 minutes, then 24 hours or one year, says the paper. Why wasn't I informed that the meaning of "average" has changed?
Glad I don't have to read the whole paper.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
have an 's'. Clearly the author's describing a multimodal distribution with 3 major peaks.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason?
Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful?
--Zachris Topelius
Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies.
-- Sarah Hoyt
|
|
|
|
|
So I'll need "p", an "e", an "a", and a "k", to go along with that "s".
If he wanted to say "the peaks averaged at~~" then that's what he should have said.
If people don't speak/write clearly, when explaining complex things, then their explanation is worse than no explanation, because you can't trust it.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
Good article on the Wikipedia bots in The Guardian[^] today.
"If you don't fail at least 90 percent of the time, you're not aiming high enough."
Alan Kay.
|
|
|
|
|
I think this could be restated as:
"Humans are violent social primates oriented toward dominance hierarchies, and the acquisition, and defense, of territory.
Computer bots, created by humans, imitate their creators."
cheers, Bill
«There is a spectrum, from "clearly desirable behaviour," to "possibly dodgy behavior that still makes some sense," to "clearly undesirable behavior." We try to make the latter into warnings or, better, errors. But stuff that is in the middle category you don’t want to restrict unless there is a clear way to work around it.» Eric Lippert, May 14, 2008
|
|
|
|
|
Someone knows how to sell "concurrency".
"What, no, the problem is not that the database isn't normalized - it is under attack by the clients!"
I can guess which department this 'science' comes from, this must be marketing
Bastard Programmer from Hell
If you can't read my code, try converting it here[^]
|
|
|
|
|
The world of job interviews for these experienced (or older) developers is a world of subtle discrimination and having to explain why their skill set is still valuable, despite it being labeled as obsolete or outdated. I'm not old, I'm ripened
But not ripe.
I hope. :sniff:
|
|
|
|
|
Just keep your arms by your sides, eh? Canada's not that far away.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
A new study finds that tech reporting is generally more pessimistic now than in the past, and for two very different reasons. You see? It's not just me.
|
|
|
|
|
How in Hell is anyone expected to report optimistically about the antics of ms, google, etc?
And look how long it took for the technophobe card to be played.
When that's the knee-jerk reaction of twats who don't know a tenth of what we know about computing, do they really expect us to be all sunshine and lollipops?
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
You can already use Visual Studio 2017 for Coroutines, Modules, and Ranges through a fork of Range-v3. Now you can also learn Concepts in Visual Studio 2017 by targeting the Windows Subsystem for Linux (WSL). In case you're unclear on Concepts
|
|
|
|
|
If you've got an air-gapped computer, it might be time to cover up the hard drive's leaky flashing LED lights. Of course, if you let drones fly in your server room, you've got bigger security problems
"If an attacker did manage to infect an air-gapped computer, they could steal data semi-remotely..." Kinda big 'if' on that 'security problem'.
|
|
|
|
|
"Yes, but it is in the cloud"
* CALL APOGEE, SAY AARDWOLF
* GCS d--- s-/++ a- C++++ U+++ P- L- E-- W++ N++ o+ K- w+++ O? M-- V? PS+ PE- Y+ PGP t++ 5? X R++ tv-- b+ DI+++ D++ G e++>+++ h--- ++>+++ y+++* Weapons extension: ma- k++ F+2 X
* Never pay more than 20 bucks for a computer game.
* I'm a puny punmaker.
|
|
|
|