|
I feel bad for the guy, he was just volunteering his time to help out on an important project and ended up creating Webcryptogeddon. Mistakes happen.
The real problem is the review process, or lack thereof. Critical components like that should be reviewed up, down, and sideways; someone should have caught that before it went live.
"I missed validating a variable containing a length." Let's get real, it could have happened to anyone.
|
|
|
|
|
|
|
Thank you, I'll see if I can fix it.
TTFN - Kent
|
|
|
|
|
Was thinking about this too. Just having many eyes is useless, without any development processes all those eyes are definitely not going to get you 100% coverage of the code base.
Wout
|
|
|
|
|
Many eyes don't get you much if they aren't looking for the right things or trained & dedicated. The link you provided doesn't exactly support the notion of "many eyes" but rather a few well-trained, dedicated, in-depth reviewers.
If your actions inspire others to dream more, learn more, do more and become more, you are a leader.-John Q. Adams You must accept one of two basic premises: Either we are alone in the universe, or we are not alone in the universe. And either way, the implications are staggering.-Wernher von Braun Only two things are infinite, the universe and human stupidity, and I'm not sure about the former.-Albert Einstein
|
|
|
|
|
This just in: Size Matters.
You'll never get very far if all you do is follow instructions.
|
|
|
|
|
I feel sorry for the dev, who wrote that. I guess they wont hire him for writing anything anymore
Microsoft ... the only place where VARIANT_TRUE != true
|
|
|
|
|
He is probably one of the few who knows how to fix it. And he can always write a book
|
|
|
|
|
Google is making a change to its Android security systems today that is meant to ensure that users who install apps from outside of the Google Play store are a bit safer from malicious apps. "I will be your knight in shining armour coming to your emotional rescue"
|
|
|
|
|
Netjs is a .NET to TypeScript and JavaScript compiler. It uses multiple stages to produce JavaScript for your web apps. "If I had a hammer I'd hammer in the morning, I'd hammer in the evening all over this land"
|
|
|
|
|
What the heck is TypeScript?
Otherwise, that's pretty cool. I've been exploring the idea of having a single language (like C# or Ruby) to unify all the disparate formats of HTML, CSS, Javascript, etc. This is a step in the right direction. Now add in a DSL for generating the HTML and CSS, and you can stay in C# the whole time!
Marc
|
|
|
|
|
TypeScript[^] is Microsoft's CoffeeScript.
I really can't see much of a logical difference between the two myself.
TTFN - Kent
|
|
|
|
|
TypeScript's strength, to me, is that JavaScript source code is also valid TypeScript source code, so TypeScript features can be, more easily, iteratively added to existing code bases.
By contrast, CoffeeScript forces you to learn an entirely new syntax, with its own set of foibles. For example: scoping[^].
"If you don't fail at least 90 percent of the time, you're not aiming high enough."
Alan Kay.
|
|
|
|
|
The heads-up display lets a driver see through the engine to the ground beneath. Not 'computer-related', but neat
|
|
|
|
|
It takes programming to achieve, and we're achieving programmers.
So, yeah, it's related!
|
|
|
|
|
Four French trade unions and employers' federations have reached a truce over a much-discussed issue in the modern workplace: the slow creep of email and other online distractions outside traditional work hours. "Tout vient à point à qui sait attendre."
|
|
|
|
|
"Well, the building caught fire at midnight. I guess the morning crew will get it when they come in."
*smh*
|
|
|
|
|
...only if they get the email! Ooops!
- I would love to change the world, but they won’t give me the source code.
|
|
|
|
|
The French are doing it right. Give it another decade and they'll all be making double the money to work 4 hour days.
|
|
|
|
|
|
|
BlackBerry won't continue making smartphones if it can't make any profit on them, CEO John S. Chen said in an interview with Reuters. Secure mobile fans, Canadians, and Chris should not read this one.
|
|
|
|
|
So...what else would they even DO? They don't have another business line.
BBM? No way. A business around an IM service hasn't been viable for 15 years.
|
|
|
|
|
They started selling stickers a while back...
TTFN - Kent
|
|
|
|