|
Dietrich posted:That website confuses and scares me. Looks fine to me. He capitalized VMware correctly.
|
# ? Jul 3, 2013 16:46 |
|
|
# ? Jun 8, 2024 07:09 |
|
seiken posted:LoseThos is now TempleOS and has an incredible video on the front page. Incredible is a charitable word to use for this.
|
# ? Jul 3, 2013 16:50 |
|
Dren posted:Incredible is a charitable word to use for this.
|
# ? Jul 3, 2013 17:12 |
|
It's spot on but still charitable. There are much worse words that could have been used. Upon further inspection this has been revealed: code:
|
# ? Jul 3, 2013 17:54 |
|
seiken posted:LoseThos is now TempleOS and has an incredible video on the front page. His HN post history is pretty great too, although you'll need to be logged in and have showdead turned on to see it because he's obviously been hellbanned over there. https://news.ycombinator.com/threads?id=losethos
|
# ? Jul 3, 2013 19:05 |
|
This is absolutely phenomenal. That source code is bananas.
|
# ? Jul 3, 2013 19:15 |
|
seiken posted:LoseThos is now TempleOS and has an incredible video on the front page. Truly a greater gift from an enlightened individual.
|
# ? Jul 3, 2013 19:23 |
Terry Davis seems to pop up everywhere these days. The guy shouldn't be mocked, since it is clear that he has severe mental health issues (I have read schizophrenia), and from the conversations I see him have in between the spam are awkward and disjointed affairs. But he seems to know a lot, and is clear about what TempleOS is supposed to be, which is, in his own words, like a 64-bit C64 OS. It's a remarkable achievement, really, more like a work of outsider art a la Platform Masters than anything that has any real practical application.
|
|
# ? Jul 3, 2013 19:47 |
|
Reformed Pissboy posted:That source code is bananas. quote:cannot be compiled outside TempleOS because it's Holy C
|
# ? Jul 3, 2013 19:47 |
|
Dren posted:It's spot on but still charitable. There are much worse words that could have been used. That sounds pretty clever to me. Am I the horror? Actually, I guess that's how Ticketmaster does it according to the mentally ill guy. I bet he fit right in there. Edit: oh gently caress I think that he thinks that a 'random' word picker he wrote in his OS is god talking to him. Poor guy :\ Munkeymon fucked around with this message at 20:46 on Jul 3, 2013 |
# ? Jul 3, 2013 20:43 |
|
Munkeymon posted:That sounds pretty clever to me. Am I the horror? It's not a terrible idea, except (1) there aren't actually a fixed number of seconds in a calendar day unless he rejects leap-seconds as heretical, even assuming this is intended as a universal coordinate and therefore not subject to things like DST, and (2) this does prioritize computing days over computing hours, minutes, and seconds, which is a valid engineering choice if it's, you know, justified by something.
|
# ? Jul 3, 2013 21:09 |
|
leap seconds are heretical
|
# ? Jul 3, 2013 21:16 |
|
leap smear all day, every day* *only valid on Jun 30 or Dec 31
|
# ? Jul 3, 2013 21:33 |
|
seiken posted:LoseThos is now TempleOS and has an incredible video on the front page. Wasn't it SparrowOS for a while? I've had good ol' Terry A. Davis end up on my blog once or twice, posting crazy comments. I kinda feel sorry for him, but drat. No idea how people should deal with this guy.
|
# ? Jul 4, 2013 01:42 |
|
I used to work at a relatively (9 years) old web startup. They started development (in Python) just as the renaissance of non-CGI applications was starting and therefore invented just about every wheel it's possible for a web stack to invent. I'll have to dredge up some of the better bits from deep storage, but here's a gem from a test that I can remember (names obfuscated to protect the not-so-innocent):code:
|
# ? Jul 4, 2013 04:11 |
|
spitefulcrow posted:I used to work at a relatively (9 years) old web startup. They started development (in Python) just as the renaissance of non-CGI applications was starting and therefore invented just about every wheel it's possible for a web stack to invent. I'll have to dredge up some of the better bits from deep storage, but here's a gem from a test that I can remember (names obfuscated to protect the not-so-innocent): Of course, the horror there is not treating the date as an external dependency and mocking it.
|
# ? Jul 4, 2013 04:47 |
|
Plorkyeran posted:A large number of people run wordpress on bad shared hosts that don't give ssh access. On one hand, I suppose that would rule out ssh. On the other, that sounds like all the more reason why www-data should not be allowed to write to your WordPress directory.
|
# ? Jul 4, 2013 05:52 |
|
I lolled http://tobtu.com/decryptocat.php
|
# ? Jul 4, 2013 13:25 |
|
This is from a CMS/Webshop I have to maintain, coded entirely by single person with no formal CS education over the past four years. This is supposed to list and report sales data for certain product groups in desired date range and sum up the QTY for each product sold.PHP code:
|
# ? Jul 5, 2013 10:45 |
|
If this guy knows so much about cryptography why doesn't he put his talents towards something positive, like, say, creating his own cyptocat that does cryptography correctly? Why waste so much time doing something so non constructive?
|
# ? Jul 6, 2013 23:23 |
|
DAT NIGGA HOW posted:If this guy knows so much about cryptography why doesn't he put his talents towards something positive, like, say, creating his own cyptocat that does cryptography correctly? Why waste so much time doing something so non constructive? Exposing the flaws of a well-publicized "cryptosystem" so that people know to avoid relying on it seems constructive to me.
|
# ? Jul 6, 2013 23:47 |
|
I wouldn't put it that way. I'd say that identifying dumb people so that we can discriminate against them is constructive.
|
# ? Jul 6, 2013 23:51 |
|
floWenoL posted:Exposing the flaws of a well-publicized "cryptosystem" so that people know to avoid relying on it seems constructive to me. If he had said, "use this other system instead, it is better than cryptocat", then his message would have been constructive. But instead, he's just saying "cryptocat sucks dont use it", thats not constructive.
|
# ? Jul 7, 2013 00:06 |
|
DAT NIGGA HOW posted:If he had said, "use this other system instead, it is better than cryptocat", then his message would have been constructive. But instead, he's just saying "cryptocat sucks dont use it", thats not constructive. It doesn't really matter whether it's "constructive", if you're using/thinking of using it it's pretty bloody useful to know that none of the guarantees the software claims to provide actually hold - possibly lifesaving, in fact. If someone was running through a burning building yelling at people to get out, would you berate them for not being "constructive" because they aren't suggesting a different building?
|
# ? Jul 7, 2013 00:19 |
DAT NIGGA HOW posted:If he had said, "use this other system instead, it is better than cryptocat", then his message would have been constructive. But instead, he's just saying "cryptocat sucks dont use it", thats not constructive. Old versions of cryptocat promise to do this, yet fails in upholding its promise. If you use an old version of cryptocat your messages can feasibly be read by a third party. Letting people know this is important. The way he conveys it is constructive, as he specifically highlights the problematic points he found and explains why they are problematic. It's not like he said "Hey everyone, cryptocat is insecure and it sucks so don't use it!" without further explanation.
|
|
# ? Jul 7, 2013 00:19 |
|
DAT NIGGA HOW posted:If he had said, "use this other system instead, it is better than cryptocat", then his message would have been constructive. But instead, he's just saying "cryptocat sucks dont use it", thats not constructive. It absolutely is constructive. The threat of public embarrassment about your product being broken creates an incentive towards quality, which benefits everyone who uses software.
|
# ? Jul 7, 2013 00:30 |
|
Eruonen posted:People who use cryptocat presumably want to be able to chat in a cryptographically secure way, without the possibility of third parties reading their messages. If this guy is as smart about crypography as he makes himself out to be with his tone in the article, they why is he spending his time writing blog posts? Why should I trust this guy's assessment at all? Maybe if he had an alternative that other experts can either agree is done right, then I'll listen to him. Otherwise its just blogspam. Crypography is the kind of thing where if you understand the concepts, building a cryptocat site is trivial. If you don't understand the concepts, then cryptography is hard. Just writing a blogpost saying "the devs of cryptocat are idiots that don't understand anything about crypography dont use it". OK... gee thanks for the tip random internet stranger. It just kinda reeks of monday morning quarterbacking to me... (USER WAS PUT ON PROBATION FOR THIS POST)
|
# ? Jul 7, 2013 00:56 |
|
Would you accept "Don't use a loving browser based chat client if you want secure comms" for an answer?
|
# ? Jul 7, 2013 01:08 |
|
DAT NIGGA HOW posted:If this guy is as smart about crypography as he makes himself out to be with his tone in the article, they why is he spending his time writing blog posts? Why should I trust this guy's assessment at all? Maybe if he had an alternative that other experts can either agree is done right, then I'll listen to him. Otherwise its just blogspam. It's you. You're the coding horror.
|
# ? Jul 7, 2013 01:13 |
|
Welcome back how!!
|
# ? Jul 7, 2013 01:15 |
|
DAT NIGGA HOW posted:If this guy is as smart about crypography as he makes himself out to be with his tone in the article, they why is he spending his time writing blog posts? Why should I trust this guy's assessment at all? Maybe if he had an alternative that other experts can either agree is done right, then I'll listen to him. Otherwise its just blogspam. Welcome back how!!
|
# ? Jul 7, 2013 01:15 |
|
Yea how dare he disclose security vulnerabilities instead of just replacing it outright. ?????
|
# ? Jul 7, 2013 01:16 |
|
DAT NIGGA HOW posted:If this guy is as smart about crypography as he makes himself out to be with his tone in the article, they why is he spending his time writing blog posts? Why wouldn't he spend some time to write blog posts? DAT NIGGA HOW posted:Why should I trust this guy's assessment at all? It is obvious that this guy's assessment is right to anybody who can understand what he's saying, or (in some parts of the assessment) to anybody with a basic understanding of programming. [1] DAT NIGGA HOW posted:Maybe if he had an alternative that other experts can either agree is done right, then I'll listen to him. Otherwise its just blogspam. No, Blogspam is the reposting and linking, and summarization of other people's blogposts. DAT NIGGA HOW posted:Crypography is the kind of thing where if you understand the concepts, building a cryptocat site is trivial. If you don't understand the concepts, then cryptography is hard. That's not true. It's hard either way. DAT NIGGA HOW posted:Just writing a blogpost saying "the devs of cryptocat are idiots that don't understand anything about crypography dont use it". OK... gee thanks for the tip random internet stranger. It just kinda reeks of monday morning quarterbacking to me... They don't just not understand cryptography. They also don't understand programming. (This is generally what happens when web programmers try to do something outside their domain (or inside).) [1] Or to anybody with basic reading comprehension. If you can't evaluate this person's expertise in this subject by the way he writes about it, that might explain how you're incapable of recognizing how your own writing reveals your lack of expertise.
|
# ? Jul 7, 2013 01:34 |
|
DAT NIGGA HOW posted:Why should I trust this guy's assessment at all? Maybe if he had an alternative that other experts can either agree is done right, then I'll listen to him. The presentation of these not-previously-known facts and the originality of the investigation alone make his post constructive. It's not, not constructive just because it may offend some folks.
|
# ? Jul 7, 2013 03:32 |
|
Zombywuf posted:Would you accept "Don't use a loving browser based chat client if you want secure comms" for an answer? You're telling me its impossible to create a completely cryptographically secure communication application in the browser? Thats an interesting claim. What is it about browser based applications that makes them impossible to achieve security?
|
# ? Jul 7, 2013 04:28 |
|
The developers.
|
# ? Jul 7, 2013 04:35 |
|
DAT NIGGA HOW posted:You're telling me its impossible to create a completely cryptographically secure communication application in the browser? Thats an interesting claim. JavaScript, the language used for the web, does not have native support for "big numbers", making it hard and error-prone to do crypto.
|
# ? Jul 7, 2013 04:48 |
|
Internet Janitor posted:When I show people projects like my VM I often wonder if I come across like the LoseThos guy. Thinking the RNG in your OS is God speaking to you comes across as crazy.
|
# ? Jul 7, 2013 04:49 |
|
DAT NIGGA HOW posted:What is it about browser based applications that makes them impossible to achieve security? http://www.matasano.com/articles/javascript-cryptography/
|
# ? Jul 7, 2013 04:49 |
|
|
# ? Jun 8, 2024 07:09 |
|
Hey, these are the jerks who had an "email us and we'll give you some cool crypto problems to solve", and I did and they never wrote back so I wrote again and they still never wrote back so now I'm sad.
|
# ? Jul 7, 2013 05:04 |