|
All they have to add is a suwindo command.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
I bet turning the computer off mitigates 100% of Microsoft vulnerabilities.
|
|
|
|
|
Witchcraft!
You must be a security EXPERT!
TTFN - Kent
|
|
|
|
|
Removing my dad from a keyboard mitigates 100% of all vulnerabilities, regardless of OS.
|
|
|
|
|
I have often suggested that every comment represents a failure to make the code self explanatory. /*this comment isn't necessary*/
|
|
|
|
|
What a lovely story.
For those who found it tl;dr grist:
If your code is more than just simple, basic, first-year-student-level statements: it needs commenting.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
Unfortunately there is no comments section on his blog, as this is not a complex code issue, but a complex design issue. With a different design, his code problems vanish, and the code can follow a simple execution path. It's kind of a separation of concerns problem, where one concern is updating the cache and the other is returning the correct value to the client request. The cache should be updated when an order is placed, but the current value in the cache should always be returned to the client. I would cache the info in a table unless it is a very high volume site, then I would still cache it in a table, but would also have an in-memory cache for fast response.
|
|
|
|
|
Notebooks are a great learning resource that go beyond a REPL (an simple interactive console) in that they are effectively textbooks with islands of interactive code. It's even more powerful when you consider graphics, charts, and other interactive models. Is this going to be on the exam?
|
|
|
|
|
To combat Microsoft and Google, Amazon appears to be in the early stages of developing its own office suite, utilizing the power and ubiquity of its AWS platform to support it. Because the world needs another way to edit documents
|
|
|
|
|
Will it have a grammar checker, to tell people when to use a conjunction?
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
Will it be based on LaTeX?
|
|
|
|
|
Service used by 5.5 million websites may have leaked passwords and authentication tokens. "You had one job"
|
|
|
|
|
We fetched a few live samples, and we observed encryption keys, cookies, passwords, chunks of POST data and even HTTPS requests for other major cloudflare-hosted sites from other users. Once we understood what we were seeing and the implications, we immediately stopped and contacted cloudflare security.
See Incident report on memory leak caused by Cloudflare parser bug[^] for a detailed analysis:
Quote: The root cause of the bug was that reaching the end of a buffer was checked using the equality operator and a pointer was able to step past the end of the buffer. This is known as a buffer overrun.
|
|
|
|
|
To underscore just how serious this is, read this comment (and some of its replies by the same author) on HN.
For context, the comment author is the co-counder of Matasano Security, and is one of the most respected members of the HN community. He's not prone to exaggeration or hyperbole, so if he says it's this bad, it likely really is this bad.
|
|
|
|
|
This is known as a buffer overrun.
In this day and age, programming languages that allow for buffer overruns should be banned.
Oh wait...
Marc
|
|
|
|
|
Do you know that its little brother, the arithmetic overflow, is NOT checked for by default in C# projects? You have to navigate thru the properties of your project, to the Build tab, click the Advanced button, then mark "Check for arithmetic overflow/underflow". Otherwise, no run-time exception will be thrown when multiplying a million by a million with 32 bit integers.
Since those bugs are so old, nobody cares anymore, and they will become much more common than they are now. Sure.
|
|
|
|
|
Bernhard Hiller wrote: the arithmetic overflow, is NOT checked for by default in C# projects?
Amusingly, I had tested that last week when I wrote the article on hashcash, because I wanted to verify that it did throw an exception on overflow, and lo-and-behold, it did not.
Didn't know about the option to enable it though. I'll have to look to see what other gems there are under Advanced.
Marc
|
|
|
|
|
I thought companies these days ran code analysis software like Klocwork or similar product to find these errors.
|
|
|
|
|
At Caltech, a group of researchers led by Assistant Professor of Bioengineering Lulu Qian is working to create circuits using not the usual silicon transistors but strands of DNA. I just sneezed a NAND gate
|
|
|
|
|
Hello my name is: "00010110010000011111......"
New version: WinHeist Version 2.2.2 Beta I told my psychiatrist that I was hearing voices in my head. He said you don't have a psychiatrist!
|
|
|
|
|
Bots appear to behave differently in culturally distinct online environments. A new paper says the findings are a warning to those using artificial intelligence for building autonomous vehicles, cyber security systems or for managing social media. Yo mamma was written in VB
|
|
|
|
|
Quote: The average time between successive reverts for humans is 2 minutes, then 24 hours or one year, says the paper. Why wasn't I informed that the meaning of "average" has changed?
Glad I don't have to read the whole paper.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
have an 's'. Clearly the author's describing a multimodal distribution with 3 major peaks.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason?
Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful?
--Zachris Topelius
Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies.
-- Sarah Hoyt
|
|
|
|
|
So I'll need "p", an "e", an "a", and a "k", to go along with that "s".
If he wanted to say "the peaks averaged at~~" then that's what he should have said.
If people don't speak/write clearly, when explaining complex things, then their explanation is worse than no explanation, because you can't trust it.
I wanna be a eunuchs developer! Pass me a bread knife!
|
|
|
|
|
Good article on the Wikipedia bots in The Guardian[^] today.
"If you don't fail at least 90 percent of the time, you're not aiming high enough."
Alan Kay.
|
|
|
|