|
yeah sure dijkstra said lots of awesome stuff but theyre not quotable snarky one-liners the one thing hes known for, "goto considered harmful", wasnt his idea. programmers dont want competent well thought out advice they want to pretend that theyre smart by saying somebody elses bad generalization you remember "considered harmful", "now you have two problems", "reimplements half of lisp", "works on all genders", "one line that doesnt work", "bikeshed is always greener on the other side", etc. why
|
# ? May 4, 2013 04:14 |
|
|
# ? Jun 11, 2024 17:36 |
|
Suspicious Dish posted:yeah sure dijkstra said lots of awesome stuff but theyre not quotable snarky one-liners you seem real mad about dudes quotin a dead guy
|
# ? May 4, 2013 04:25 |
|
your reading comprehension is that bad, eh
|
# ? May 4, 2013 04:26 |
|
i'm mad about dudes not quoting a dead guy
|
# ? May 4, 2013 04:27 |
|
qbasic supremacy sorry
|
# ? May 4, 2013 04:41 |
crazysim posted:Open source? Is it on bitbucket then. I'll give it a go. project for work. they're using merc and we use git so i gotta convert it over. i've seen that method that you can just pull it with git and it converts? might just try that and make the modifications again. bunch of hosed up poo poo due to outdated gems makes it hard to get up and running
|
|
# ? May 4, 2013 04:45 |
|
gucci void main posted:project for work. they're using merc and we use git so i gotta convert it over. i've seen that method that you can just pull it with git and it converts? might just try that and make the modifications again. bunch of hosed up poo poo due to outdated gems makes it hard to get up and running bingo. just pull and it should convert. i use this because the installation is easy (install mercurial pythonically and drop this file into your PATH). I also like this since you can easily upstream/downstream changes without extra repos of non-git nature lying around.
|
# ? May 4, 2013 04:58 |
|
gucci void main posted:project for work. they're using merc and we use git so i gotta convert it over. i've seen that method that you can just pull it with git and it converts? might just try that and make the modifications again. bunch of hosed up poo poo due to outdated gems makes it hard to get up and running ur repo has a .git dir in it and github is bitching about it. if its just something dumb then git filter-branch can remove the .git from all ur commits. but im guessing that the hg repo contains a git repo of a dependency or something...in that case do something like filter-branch to remove the dependency and then add it as a submodule
|
# ? May 4, 2013 05:22 |
|
PleasingFungus posted:hopefully my new game will also destroy much productivity manufactoria is one of my favorite games ever. thank you.
|
# ? May 4, 2013 05:31 |
|
Suspicious Dish posted:what a good game manufactoria is tef posted:empty quote BP posted:manufactoria is one of my favorite games ever. thank you. I never know how to reply to people who like my game(s) but thank you!
|
# ? May 4, 2013 06:04 |
|
whats the worst thing youve gotten related to manufactoria i got my first death threat last month
|
# ? May 4, 2013 06:06 |
|
pointers posted:start with your old careposts i did and i put them on a blog and i got front paged a couple of times from hacker news. then i realized that i had a blog on the front page of hacker news and i was sad.
|
# ? May 4, 2013 11:24 |
|
tef what is one technological thing that you think was really cool and wish you'd been in the right place in the right time to be part of?
|
# ? May 4, 2013 13:47 |
|
1998 and in a 100 million dollar funded startup to sell consumers a personal e-assistant or something equally inane
|
# ? May 4, 2013 14:14 |
|
pretty much i want to make bonzi buddy in an aeron chair all day
|
# ? May 4, 2013 14:14 |
|
i'm pretty sure there were only about 1000 aerons ever made, and they just circulate between failed startups
|
# ? May 4, 2013 14:16 |
|
Jerry SanDisky posted:i'm pretty sure there were only about 1000 aerons ever made, and they just circulate between failed startups tef we just found another pithy and super original quote for your book
|
# ? May 4, 2013 14:20 |
|
Mr Dog posted:tef what is one technological thing that you think was really cool and wish you'd been in the right place in the right time to be part of? i dunno i have the feeling i'd be just as miserable earlier on, and still have faux nostalgia for the time that I would miss.
|
# ? May 4, 2013 14:21 |
|
polpotpi posted:tef we just found another pithy and super original quote for your book sweet keep it up guys i'll have a book in no time.
|
# ? May 4, 2013 14:28 |
|
itll go viral and then you will get a whitewashed tv show s*!t my ~*teffu*~ says
|
# ? May 4, 2013 14:32 |
|
Jerry SanDisky posted:i'm pretty sure there were only about 1000 aerons ever made, and they just circulate between failed startups this is the founders's aeron, elegant chairs for a more frivolous age
|
# ? May 4, 2013 15:05 |
|
Suspicious Dish posted:whats the worst thing youve gotten related to manufactoria mostly I just get a stream of people offering to port the game to iOS/Android/w/e I say 'sure, just give me some of the cash if you make any' and hand them a zip of the source & assets because who gives a gently caress, it's a 3-year-old flash game then they vanish never to be seen again, because the sort of people who email you out of the blue to offer to port your game to a mobile platform are exactly the sort of people who will never do it this surprised me exactly once, when a girl who was going to some kind of music/composition school in England contacted me about composing an original score to Manufactoria we had an actual correspondence, talked for a week or two about cool ways to make a dynamic soundtrack for the game, and then she vanished & was never seen again anyway I'm not sure I've ever gotten actual hate about Manufactoria; there are plenty of people who've complained about bugs (usually justly) or missing features (less so), but never real vituperation, that I recall. maybe the soothing classical score calms people too much to bother sending in their hate? idk.
|
# ? May 4, 2013 15:33 |
|
tef posted:this is the founders's aeron, elegant chairs for a more frivolous age
|
# ? May 4, 2013 15:34 |
|
PleasingFungus posted:mostly I just get a stream of people offering to port the game to iOS/Android/w/e it's nice to make things that people like
|
# ? May 4, 2013 15:52 |
|
i don't find aerons to be any more comfortable than a $75 officemax chair idk If you're gonna drop some cash on a herman miller why would you get one of those nylon garbagebags instead of some ballin poo poo like this:
|
# ? May 4, 2013 15:56 |
|
JSONP like i'm sure there's a good reason for it but I mean seriously? "JavaScript interpreter, pre-cache this image from a different domain" "ok np" "JavaScript interpreter, load some JSON data from that same domain so I know what to do with this image" "BEEP BOOP SECURITY BREACH GET hosed DAVE"
|
# ? May 4, 2013 21:23 |
|
Mr Dog posted:JSONP sure lets allow the client to arbitrarily run and execute any code from anywhere
|
# ? May 4, 2013 22:13 |
|
That's specious, json libraries dont use eval anymore You could encode arbitrary data in an image and extract it via canvas and then evaluate it, the problem is obviously the choice to call eval and not the cross domain request
|
# ? May 4, 2013 22:48 |
|
I think it makes more sense when you remember that the script src attribute is from the folks who brought you "just put your script inline and use stupid comment tricks to keep it from confusing the parser"
|
# ? May 4, 2013 22:56 |
|
Gazpacho posted:
not if it's from a different domain you can't. drawing to a canvas using a font or image from a different domain taints the canvas and you can't read from a tainted canvas Mr Dog posted:JSONP the thing this is trying to stop is this: suppose site X exposes sensitive information via some JSON REST endpoint at http://site.com/foo/my_data. if you could just request that data then any site could read your data b/c the request would get sent with the right cookies. if you want that information to be accessible you can either use JSONP or do the whole access-control-allow-origin thing to make it so any domain can XHR for that data
|
# ? May 4, 2013 23:11 |
|
XMLHTTPRequest has the opposite problem, the theory is that if you stumble into shitheads.com and javascript on that site is allowed to issue arbitrary HTTP calls to burpandfartbanking.com with your cookies then that's bad. Also in theory if the remote site authenticates by IP then shitheads.com's javascript could load stuff off your intranet and then post it back to shitheads.com so yes there's a reason for it, but it's still annoying to deal with. e: yeah what that guy said
|
# ? May 4, 2013 23:13 |
|
yaoi prophet posted:not if it's from a different domain you can't. drawing to a canvas using a font or image from a different domain taints the canvas and you can't read from a tainted canvas
|
# ? May 4, 2013 23:20 |
|
yaoi prophet posted:not if it's from a different domain you can't. drawing to a canvas using a font or image from a different domain taints the canvas and you can't read from a tainted canvas now i have that "bong bong" sound from soft cell's version of "tainted love" stuck in my head thanks, i think
|
# ? May 4, 2013 23:36 |
|
how about this, transmit arbitrary cross-domain data via the dimensions information in a sequence of image requests, checkmate security "experts"
|
# ? May 4, 2013 23:41 |
|
Gazpacho posted:how about this, transmit arbitrary cross-domain data via the dimensions information in a sequence of image requests, checkmate security "experts" the point isn't that you can't do cross-domain data, you can just set Access-Control-Allow-Origin: * and then anybody can cross-domain you the point is that unless you allow it you should only leak minimal data my favorite stupid attack is the one where you set up a captcha that's like 'enter the number you see on this seven-segment lcd' except each individual segment is only green if you've visited a site so the user winds up telling you their browsing history
|
# ? May 4, 2013 23:42 |
|
yaoi prophet posted:my favorite stupid attack is the one where you set up a captcha that's like 'enter the number you see on this seven-segment lcd' except each individual segment is only green if you've visited a site so the user winds up telling you their browsing history lol never heard of this nice
|
# ? May 4, 2013 23:44 |
|
polpotpi posted:lol never heard of this hell at one point all you had to do was load a bunch of links and check the color to see if a user had visited them or not. not sure if that was fixed
|
# ? May 4, 2013 23:49 |
|
yaoi prophet posted:my favorite stupid attack is the one where you set up a captcha that's like 'enter the number you see on this seven-segment lcd' except each individual segment is only green if you've visited a site so the user winds up telling you their browsing history lololol owns.
|
# ? May 4, 2013 23:53 |
|
here it is http://www.ieee-security.org/TC/SP2011/PAPERS/2011/paper010.pdf
|
# ? May 4, 2013 23:57 |
|
|
# ? Jun 11, 2024 17:36 |
|
trust nothing nowhere at no time
|
# ? May 5, 2013 01:45 |