|
Boner Slam posted:Yeah that's fine, it's always been like that. Set up a server, set up sql, do poo poo. I don't think PHP was ever cool  It's popular, and has improved considerably over the past 10 years, especially if you employ a framework that uses it properly. I guess it's down to preference. The main point is that you should work with something that does all the boring stuff for you (handling users, security, routing etc) so you can focus on delivering your functionality and front-end. Set up a Linux stack, install various options, and get a feel for something. It's mostly preference.
|
#
?
Aug 16, 2013 13:19
|
|
|
|
| # ? May 8, 2024 18:21 |
|
|
Ok though if I wanted to interface with a thing that would have more power to do statistical/numerical computation or optimization or something like that, which would be the most interface-friendly?
|
|
#
?
Aug 16, 2013 13:23
|
|
|
Have you seen SageMath Notebook, or its replacement, SageMath Cloud? It sounds to be somewhat similar to what you want to do, and the code for it is open-source.
|
|
#
?
Aug 16, 2013 13:53
|
|
|
oiseaux morts 1994 posted:Oh man where to begin. There are a billion solutions to your spec, although the requirement for mathematical computation means you need to get serious. To offer a completely different approach if you don't have a hard requirement on something like R right off the bat: start on something like Google App Engine and actually build your application instead of dicking around with stack issues. Then if, you know, people actually use it and you decide that you actually need R or anything esoteric like that, you can shunt that code off onto a different stack that supports it (like AWS or whatever) and keep your main application code on GAE. Basically, my approach would be to do whatever gets my application up and in front of users as quickly and then worry about things like using R to do complex statistical poo poo. Surely you can live without R at least in the beginning. GAE supports Python and has things like numpy, PIL, matplotlib, django, etc. or if you use Java I think you can pretty much use any library you want.
|
|
#
?
Aug 16, 2013 18:34
|
|
|
Hmmmmmmmm. Maybe for testing and dummy purposes. But of course then I would not learn how to implement all this for myself, right? I am not sure which actual data I am going to use for some things yet. This might sound paranoid but I don't want to upload my stuff to a cloud service, especially if it is based in the USA, since that would be technically illegal for me.
|
|
#
?
Aug 17, 2013 10:45
|
|
|
So I've been messing around with Ruby/Rails, Python/Django, and asp.net MVC for the past few days and I've decided to stick with asp.net MVC for the time being. I may be an idiot but the learning curve with Ruby seems insane, especially having no prior web development experience. I don't want to be messing around with a command line while I'm still just starting to understand POST and GET. MVC makes more sense to me after working with Visual Studio C++ and JCreator IDE's. Are there Ruby IDE's(clearly I don't get it)?
|
|
#
?
Aug 17, 2013 16:55
|
|
|
Boner Slam posted:This might sound paranoid but I don't want to upload my stuff to a cloud service, especially if it is based in the USA, since that would be technically illegal for me. I want to know about this project.
|
|
#
?
Aug 17, 2013 17:15
|
|
|
Lightning Zwei posted:So I've been messing around with Ruby/Rails, Python/Django, and asp.net MVC for the past few days and I've decided to stick with asp.net MVC for the time being. I may be an idiot but the learning curve with Ruby seems insane, especially having no prior web development experience. I don't want to be messing around with a command line while I'm still just starting to understand POST and GET. MVC makes more sense to me after working with Visual Studio C++ and JCreator IDE's. Are there Ruby IDE's(clearly I don't get it)? PyCharm for Python/Django, and while I haven't used it, there's RubyMine from the same developers for Ruby. Honestly, for a lot of stuff the command line is easier than the IDE, but whatever floats your boat. To be honest, with your background and if you're still interested in learning something new and we're choosing between Ruby/Rails and Python/Django, I think you'd get on best with Python/Django/PyCharm. That trio offers the most handholding à la Visual Studio. I also wonder if you're not starting off on too complex of a project. Maybe do Python/Django and a small twitter clone. That should be possible to learn and do in Django in...I dunno...10 or 20 hours? I don't really know on those numbers, but it would be easy for someone who already knows how to program anything. Actually, on second thought, if you're coming from languages like C++, you may have a hard time grasping the true nature of languages like Python without some more fundamental instruction than you'll receive in the tutorials for Rails or Django, and you may want to try something like How To Think Like A Computer Scientist: Think Python, before you step up to doing Django.
|
|
#
?
Aug 17, 2013 18:35
|
|
|
Thermopyle posted:I also wonder if you're not starting off on too complex of a project. I think you may be right and I need to manage my expectations. After all, developers get paid big bucks to design and implement projects like this, it's silly for me to think I can jump in and grind it out in a few weeks. Thermopyle posted:Actually, on second thought, if you're coming from languages like C++, you may have a hard time grasping the true nature of languages like Python without some more fundamental instruction than you'll receive in the tutorials for Rails or Django, and you may want to try something like How To Think Like A Computer Scientist: Think Python, before you step up to doing Django. Awesome link, I will start reading through that now! Thanks
|
|
#
?
Aug 17, 2013 23:12
|
|
|
I'm converting a personal website from static pages to a barebones blog and client to a text game I wrote in python a few months ago. It's mostly for the learning experience as this will be babby's first web application. I'm going with python + flask for the game, and that is working out well. For the blog, I set up an environment with python + flask + peewee. Since this is a domain I'll be linking my personal poo poo to I'm concerned that my hackjob would leave gaping security holes that I would be unaware of. What are some security best practices to be aware of before putting this together?
|
|
#
?
Aug 18, 2013 20:07
|
|
|
salisbury shake posted:What are some security best practices to be aware of before putting this together? Unf... there is always so much and it's always changing. Don't put anything too sensitive up, you are likely to gently caress something or other up no matter how hard you try not to. Even at the highest echelons, best you can do is try to be careful, and then code-review, code-review, code-review. More money buys you more reviews by more senior security dudes, and that's how money turns into "security" as far as I know. OTOH, you are a very unlikely target for a determined, resourceful attacker... good ol' security through obscurity. Here is my personal checklist of stuff to look out for. A lot of it is 101 level stuff, but that's why it's a checklist, it's easy to forget:
|
|
#
?
Aug 18, 2013 21:16
|
|
when you are a lone web dev without dedicated admins this is one of the easiest and most common mistakes!
|
Newf posted:Potentially stupid question here: Using RGB colors in CSS is relatively new and doesn't work in crappy old browsers, which is why most people still use hex color codes or a hex color code fallback to RGB colors.
|
|
#
?
Aug 19, 2013 02:00
|
|
|
Stuart McSlim posted:Using RGB colors in CSS is relatively new and doesn't work in crappy old browsers, which is why most people still use hex color codes or a hex color code fallback to RGB colors. Plus if you've been doing web development for more than a week, hex is just as "easy to read" as RGB, if not easier. If I was going to replace thinking in hex with anything, it would be HSL.
|
|
#
?
Aug 19, 2013 04:31
|
|
|
Boner Slam posted:As far as the computation is concerned, I know that Python has some numerical packages. I would like to include R at some point probably as well. I read it can input C, so maybe there's a way to interface via that. I'm not sure what you're trying to do, but NumPy and matplotlib are both Python libraries aiming (I think) to duplicate/expand on a lot of Matlab functionality, some of which may help you with your mathematical stuff.
|
|
#
?
Aug 19, 2013 07:30
|
|
|
salisbury shake posted:What are some security best practices to be aware of before putting this together? Mr. Wynand covered a lot of the good ones, but I want to tack another one on: NEVER STORE PASSWORDS IN PLAIN TEXT If someone manages to get into your server and can access your database, you don't want them having access to all of your users' e-mail addresses and passwords because I guarantee you there will be some overlap. Passwords should not be recoverable in anyway way. This leads me to my next point: DO NOT ENCRYPT YOUR PASSWORDS Encryption implies the possibility for decryption, and that's barely better than storing things in plain text when the decryption key is also stored on the machine. What you want is a one-way hash function. A one-way hash "cannot" be reversed (i.e. it is improbable to reverse it in a useful amount of time with today's hardware - barring any errors in the hashing algorithm). When a password is set, store the hash of the password. To authenticate future logins, hash the incoming password and compare it to the one you've stored. For whatever language you're using, find a widely used implementation of bcrypt, scrypt, or PBKDF2 and use one of those to generate your password hashes.
|
|
#
?
Aug 19, 2013 14:35
|
|
|
Is it common to have the client side javascript hash the password and pass the hash rather than the plain text password to the server for verification against the stored hash? With HTTPS you don't have to worry about man in the middle attacks in general, but it seems like that would be most secure.
|
|
#
?
Aug 19, 2013 15:51
|
|
|
Dietrich posted:Is it common to have the client side javascript hash the password and pass the hash rather than the plain text password to the server for verification against the stored hash? With HTTPS you don't have to worry about man in the middle attacks in general, but it seems like that would be most secure. It's uncommon because it's mostly unnecessary and it relies on the different JavaScript implementations of all of your users. Also, things like NoScript and potentially GreaseMonkey can break your client-side hasing. It's best to just rely on standard HTTPS in this case.
|
|
#
?
Aug 19, 2013 16:21
|
|
|
Bognar posted:It's uncommon because it's mostly unnecessary and it relies on the different JavaScript implementations of all of your users. I've been using forge for client-side crypto knick-knacks and it's actually quite good. (I do agree what what you're saying though - for sending pws, just do https).
|
|
#
?
Aug 19, 2013 17:17
|
|
|
I have been toying with Stormpath and unless you really want to roll your own user authorization & authentication solution it will save you time and possibly security headaches.
Oh My Science fucked around with this message at 17:49 on Aug 19, 2013 |
|
#
?
Aug 19, 2013 17:43
|
|
|
So, Web Components. This is more or less a good idea, but wrapped inside several layers of tremendously bad ideas. Components bundling markup, styles and behaviour, sure, yes, good. Typed elements with event hooks, yes, excellent. The "Shadow DOM" idea for having "private visibility" into a widget is also pretty good. Splendid. But this is the W3C, so let's see, how can we make it loving NUTS? I know, let's define a new templating structure which is applied as a css attribute in your stylesheets. And let's come up with a brand new event wiring method based on the last array literal statement in a <script> block (can't make this poo poo up). Also, let's allow new user elements with their own tag names, but no namespaces because that is so Web 1.0.
|
|
#
?
Aug 19, 2013 21:33
|
|
|
Hey, W3C, lets make HTML/CSS even shittier. When I decided to start working on web stuff I spent a few days learning HTML/CSS and DOM stuff and thought "wow, this sure is a lovely system. Well, maybe it's because I'm not as fluent in it yet as I am with the handful of programming languages/frameworks/thingys I think are really nice. I'll give it more time." Couple years later: "No, this is poo poo." Glad to see the W3C is keeping it up.
|
|
#
?
Aug 19, 2013 22:29
|
|
|
Mr. Wynand posted:I know, let's define a new templating structure which is applied as a css attribute in your stylesheets. The Decorators section of that document is pretty hilarious. What's even more hilarious is the two named editors on this draft are Google employees.
|
|
#
?
Aug 19, 2013 22:41
|
|
|
Anyone know if there's a way to detect whether or not a user's browser can handle tel: links? Modernizr can't seem to do it, which is a huge bummer.
|
|
#
?
Aug 19, 2013 22:55
|
|
|
Modernizr doesn't automatically add a class to the body, but it looks like you can check Modernizr.inputtypes (assuming your build has the HTML5 Input Types tests). So something like this:JavaScript code:Depressing Box fucked around with this message at 23:14 on Aug 19, 2013 |
|
#
?
Aug 19, 2013 23:11
|
|
|
Depressing Box posted:Modernizr doesn't automatically add a class to the body, but it looks like you can check Modernizr.inputtypes (assuming your build has the HTML5 Input Types tests). So something like this: Sadly that's for inputs, and I'm talking about these buggers: <a href="tel:1-800-YOUR-MOM">Call your mother</a>  But thanks anyhow!
|
|
#
?
Aug 20, 2013 00:58
|
|
|
kedo posted:Sadly that's for inputs, and I'm talking about these buggers: <a href="tel:1-800-YOUR-MOM">Call your mother</a> I do this: code:
|
|
#
?
Aug 20, 2013 04:01
|
|
|
Thermopyle posted:Glad to see the W3C is keeping it up. W3C: Gradients, drop shadows, and rounded borders, but no vertical centering.
|
|
#
?
Aug 20, 2013 15:14
|
|
|
pipes! posted:but no vertical centering. Thanks W3C!
|
|
#
?
Aug 20, 2013 15:15
|
|
|
Vertical centering is easy!code:code: 
|
|
#
?
Aug 20, 2013 16:25
|
|
|
I can't even figure out what this clusterfuck is talking about half the time. quote:To register an event listener with an event controller, the template includes a <script> element. The script is run once when the decorator element is inserted into the document, or loaded as part of an external document. Decorators can't contain script nodes because they can live ~anywhere on the web~, but their examples show decorators that contain templates which can contain script and the quote above seems to treat them as interchangeable  There needs to be a way to get people fired from the W3C. Or killed. I'm good with either.I think the Shadow DOM could be used as a namespace only I can't figure out how their examples work. This is going to make inspecting code really loving annoying, either way. Edit: code: Munkeymon fucked around with this message at 19:00 on Aug 20, 2013 |
|
#
?
Aug 20, 2013 18:33
|
|
|
Can we just scrap everything web and start over again? Burn HTML, burn CSS, burn Javascript, start over again and maybe it can be done right next time.
|
|
#
?
Aug 20, 2013 18:49
|
|
|
piratepilates posted:Can we just scrap everything web and start over again? Burn HTML, burn CSS, burn Javascript, start over again and maybe it can be done right next time. And... the classic: http://xkcd.com/927/
|
|
#
?
Aug 20, 2013 18:57
|
|
|
Munkeymon posted:
Now if only we could drop support for Internet Explorer.
|
|
#
?
Aug 20, 2013 19:16
|
|
|
Bognar posted:Now if only we could drop support for Internet Explorer. Well obviously you gotta fill in all ~5 prefixes yourself because I was working from memory.
|
|
#
?
Aug 20, 2013 19:31
|
|
|
The vendor-specific prefix will work on IE9 (and without it on IE10), but there's basically jack poo poo you can do to translate on IE8 and below. Most browser stats counters put IE7+IE8 at around 10% market share, so we're not ready to drop support yet  .
|
|
#
?
Aug 20, 2013 19:38
|
|
|
I got to use that the other day in a module that only gets loaded in the presence of HTML5's media features. It was a good-ish day 
|
|
#
?
Aug 20, 2013 21:16
|
|
|
I'm having a slight problem with a pure CSS menu (<ul><li>-based) I'm building. I've got it all working except for two things. First, there's an offset to the right from each parent menu item to each child menu, so they don't line up in a neat stack. That's not so important, though, as the other problem. When I set the submenu <li>s to clear:both, it takes them from being a horizontal layout to a vertical layout (which I want) and makes it so that once I mouse downward off the first item's text— even slightly— the whole submenu disappears. My guess is that once it mouses off the first child element it resets ul li ul to display:none , but it doesn't do that if the menu runs horizontally instead of vertically. I'm sure this is something really simple, but I'm severely rusty on my CSS, as I haven't done any serious web design work in years and I'm using this as something to polish myself back up for an actually-important project. Code link here
|
|
#
?
Aug 20, 2013 22:10
|
|
|
Hi thread, I need some assistance in writing a proposal for a freelance webpage with a university. I'm a student in college, major in hospitality and minor in InfoSci.. last year I put together a tiny Java app for one of my hospitality professors -- basically a working demo of a class exercise that was typically done with pen and paper, where students would have to correctly choose what reservations to take and which not to. It worked fine but it was very crude. This year I said "Well a java thing is pretty clunky, but I've taken some web-design so I can just turn this into an interactive webpage so it'll look nicer and be more accessible." My professor said I should put together a proposal for the university, since it'll just be a flat fee rather than being charged hourly. I thought this would be some "oh I can do some programming just give me like $60, whatever" but when I said this number my professor said "Um, did you mean to say $600? I told my boss (the asst. dean) that it would be between $500 and $1,000, and the university wouldn't really care so long as it was less than like $5,000.  TL;DR: My $60 "whatever" webpage just became a $600 "University Thing," and I need help in drafting an appropriate and professional proposal for it. I google'd and see there is a variety of templates and contracts, but I've literally never done this before, so I don't know what makes sense. Thanks!
|
|
#
?
Aug 20, 2013 22:22
|
|
|
Turkeybone posted:Hi thread, Charge more. The full $1000. Welcome to freelance. And beer money. Basically, you're gonna want:
Make it look nice, no lovely Times New Roman or anything. Other than that, you're set.
|
|
#
?
Aug 20, 2013 23:28
|
|
|
|
| # ? May 8, 2024 18:21 |
|
|
Do you guys set this on your new work?code:
|
|
#
?
Aug 20, 2013 23:35
|
|