Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

Comment: Re: How is it a "rite of passage"? (Score 1) 43

by gbjbaanb (#49364247) Attached to: Startups Increasingly Targeted With Hacks

like storing passwords in plaintext. That's just fucking stupid

not as stupid as you think. Sure, encrypting your passwords is another layer of security but really, if an attacker gets your password database, then they can (and will) crack them quite easily today. Given that all you're doing is slowing the attacker down, it can be better to store them in plaintext.

Because - if you know your passwords are precious and need to be looked after, you will take many more steps to ensure the attacker doesn't get them in the first place. Too many websites think that if the passwords are encrypted then they're all secure. They don't think the (small) effort to properly put the DB behind a middle tier layer and not allow any web application to directly access the tables is worth doing, and so they get hacked and the passwords get cracked.

I blame the web development frameworks, if your idea if security is running it all inside the webserver that's public internet-connected, then you're going to get hacked.

Comment: Re:It depends (Score 1) 481

by gbjbaanb (#49337915) Attached to: No, It's Not Always Quicker To Do Things In Memory

I think this shows the education of modern programmers.

Take a string, append 1 byte. Repeat a million times. Say "why is it so slow?".

Its probably because every time you write to most strings classes, you're making a copy and re-allocating the whole lot, and then deallocating the original.

If you knew C, you'd know what was happening here. This is why we need to teach C to programming students and not Java. Once they know C they can learn Java or whatever takes their fancy on their own time.

(although even Java and .NET programmers should understand what a stringbuilder is and why you'd use it)

Comment: Re:Totally agree with Bechdel (Score 1) 515

by gbjbaanb (#49329449) Attached to: A Bechdel Test For Programmers?

Not douche, but an insighhtful person who thinks that such positive discrimination and gender bias such as the Bechel test can be so trivially circumvented.

In this case, 2 women talking to each other about.. well, women. Passes the test completely even though its not exactly feminist material (or is, depending).

The rest of us think that if women want to be programmers they will be. Same as if men want to be hairdressers, childcare workers or nurses.

The discrimination and supposedly anti-female culture in IT is really nothing of the sort - its equally pathetic when viewed from a male viewpoint. Me for example, I hate the industry because I am focussed on producing quality deliverables that fit the user's needs, and I can;t stand the so-called 'alpha geek' who thinks he's the best because he's googled the latest cool technology that will be obsolete in a week. That kind of bullshit affects me just as much as female workers.

Comment: Re:Only "Windows Runtime" APIs (Score 1) 131

by gbjbaanb (#49326489) Attached to: Microsoft Releases Windows 10 SDK

But it is a very pertinent question - of all the things released, a huge amount of them are written with a win32 API and then wrapped with the WinRT API (or at least, it used to be that way).

For example, I'm looking at code to search through Word documents in .NET, and it appears Microsoft has catered for my needs - there's an IFilter API that is designed for exactly this, and yet its a native COM interface (and no .NET wrapper!!). I found the same for the transcription APIs and a few others. It seems the Windows team doesn't like .NET and only releases their features in native formats.

So, has this changed and the Windows team been kicked into developing WinRT only APIs, or will I still see native ones coming out with wrappers developed by the developer team?

I'm not convinced universal apps will create excitement - not if this is the 3rd API that devs have have to learn, you get bored with learning stuff that becomes quickly obsolete only so many times, and many users will still be developing for Windows 7, for many years to come. Universal apps are meaningless if Win7 still has to be supported.

Comment: Re:Too Big to Nail (Score 1) 121

by gbjbaanb (#49314087) Attached to: FTC's Internal Memo On Google Teaches Companies a Terrible Lesson

such as restricting advertisers from working with rival search engines

Maybe there is no counter-argument here, and that they are guilty as sin. Just the cost of lawyering up is the only thing stopping them being brought to book. You make it sound like the allegations are just rumour and trivia.

Its pretty reasonable to suggest that justice is not being done at all here - despite what could easily be plain anti-competitive practices. That no-one will take it to court to test it means there is no justice for anyone, an allegation hanging over Google and whatever bad practices they perpetrate continue.

Comment: Re:so, the key to amnesty... (Score 1) 322

by gbjbaanb (#49287789) Attached to: Microsoft Offers Pirates Amnesty and Free Windows 10 Upgrades

Well, it depends - which country, and who you owe to. If you owe the council for local taxes, you can (and people have) been sent to jail for a short time to name one, popularised case.

Similarly you can (in the UK) be sent down for not paying child maintenance payments.

your citation sir
http://www.findlaw.co.uk/law/b...

But still, my point is about the inequity of life - if you''re a big player things are applied differently to you.

Comment: Re:meanwhile (Score 1) 342

by gbjbaanb (#49286015) Attached to: UK Chancellor Confirms Introduction of 'Google Tax'

I think the issue here is you don't know if the company you're buying services or materials from is owned by the same people who own the original company or isa real, 3rd party supplier.

eg. Google UK buys IP from Google Holdings Ltd Ireland, if you could somehow figure out that these 2 companies were related by ownership chains, then you could simply say that the IP licenced doesn't count as a business expense and so instead of making profit of 20p they'd make profit on the full sales (minus legitimate expenses).

I guess we could go with names, but that's not good enough, what we really need is transparency in ownership, so you can see that Google UK, Google Ireland are both owned by Google USA. You'd also be able to see all the holding and shell companies criminals use to hide their activities (eg Prenda Law).

Comment: Re:so, the key to amnesty... (Score 1) 322

by gbjbaanb (#49282913) Attached to: Microsoft Offers Pirates Amnesty and Free Windows 10 Upgrades

Same policy happens in the US too - if you fail to repay $1000 the debt collectors come for you, your credit history is wiped and you could even go to jail. If you fail to repay $1bn the government gives you more money.

Anyway, I wonder if the Chinese can start selling their newly-legitimised copies of Windows 10 on ebay?

Comment: Re:Ergo! (Score 2) 451

by gbjbaanb (#49274533) Attached to: Ask Slashdot: Good Keyboard?

Its an imitation VMS of course - though I think Dave Cutler did learn some lessons about OS design that were improved when NT was made.

That they then gave it to the rest of the Microsoft dev team and said "write all manner of shitty UI and ill-conceived services on top of this new, well designed and thought out kernel" is another matter.

Comment: Re:Night (Score 1) 437

I agree dynamic real time pricing would be 'teh win' if combined with smart plugs to use electricity when its cheap, so you'd put your washing in and the meter will run the washing machine when electricity is at its cheapest during the day, much like how we run storage heaters during the night when the price of electricity drops to the 'economy 7' rate.

Getting people to understand this is important, econony 7 is easy to understand, dynamic pricing needs good monitoring and reporting to make it work for the majority.

A committee is a group that keeps the minutes and loses hours. -- Milton Berle

Working...