Follow Slashdot stories on Twitter


Forgot your password?

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).


Comment: Re:Understanding each other's work is key (Score 2) 226

by ghn (#46763521) Attached to: How 'DevOps' Is Killing the Developer

And regarding the "Totem Pole" argument in TFA: That is utter BS. I've seen many so-called "developers" unable to perform basic DBA or QA jobs. That is why most large company employ specialist in these positions, to cover the fuck-ups of the developers.

I've seen developers who's first reaction when a complex SQL query is taking ages to run is "I will call my old pal in XYZ dept who is a DBA" before even running an "explain" query to debug their index-less octo-way join with 12 sub-queries.

Comment: Understanding each other's work is key (Score 4, Interesting) 226

by ghn (#46763483) Attached to: How 'DevOps' Is Killing the Developer

I am primarily a developer but I also like to understand the big picture, including software design and UX but also system administration, infrastructure, hardware architectures, and everything else that *directly affects the software I develop*.

Deep understanding of the big picture is key to developing quality software, IMO. You need to understand what comes ahead of you (requirements, business needs, etc) and where your work is headed afterwards... The best way to understand it is to wear these hats from time to time or have previous work experience in those fields. When recommending candidate for developer positions, someone who has system administration experience is a bonus.

Yes, many days I need to take on multiple hats and switch gears as shit comes up in prod and I need to fix a config on production servers or assist whoever has the hands but lack the knowledge. That's the start-up culture I guess, even though I work for an established 100+ year old company.

Comment: Re:Basic Math (Score 3, Insightful) 357

by ghn (#46561263) Attached to: Cryptocurrency Exchange Vircurex To Freeze Customer Accounts

This is an Exchange. They are matching buyers and sellers together. The point where they meet determines the exchange value of the two involved currencies at that point in time.

The exchange provides services to facilitate the transaction and charges a transaction fee. If the exchange is properly managed, they rake a profit on every transactions and can't loose, no matter how the market sways.

Comment: Did anybody read TFA? (Score 4, Interesting) 156

by ghn (#45341891) Attached to: Google Bots Doing SQL Injection Attacks

The point is not that you can attack lousy website using GET requests. The idea is that HTTP firewalls shoud not blatlantly white-list google bots and other website crawlers in the sake of SEO optimization, because google bot will follow malicious links from other website..

So lets say you have a filter with rules that prevent common SQL injections in GET requests parameters, this is a weak security practice but can be useful to mitigate some 0-day attacks on vulnerable scripts. This protection can be by-passed IF you white-listed google bot.

Comment: Re:Out-of-band comm + PKE = enough security (Score 1) 95

by ghn (#40786897) Attached to: Researcher Wows Black Hat With NFC-based Smartphone Hacking Demo

Nice write-up. Extremely complex and awkward in every way if you think of it in real life and according to the current state of technoloy.

Here's my version of a secure transaction at Burger bar

Ask for combo #1

Hand of five dollar bill

Get combo #1 and some change

No trace left and no security risk.

Sure, I need to acquire and carry said 5$ bill in a safe and secure manner, but they way I do it RIGHT NOW satisfies my need for privacy and security.

Comment: Re:People Red Hat employes is the reason we pick t (Score 1) 20

by ghn (#40501773) Attached to: How Red Hat Decides Which Open Source Companies To Buy

I think you would have more return on your money by sponsoring so called Tom yourself and using CentOS or Ubuntu or whatever other free distro.

My reasoning is, why pay for support if you don't need it? If you want to support postgres developers, support them directly.

The use of money is all the advantage there is to having money. -- B. Franklin