The problem is that would also destroy them economically at the same time as they require US consumers to buy all the crap they produce. China keep their own currency artificially low just to keep their exports going.

Add to that they might like to visit the place for a cheap holiday.

Exactly.

Who gives a shit about storing your data with google or anyone else, at this point we should be storming the Pentagon / White House / Senate en masse to demand and take real freedom. There is no terrorist threat that actually warrants this level of intrusion, our own police seem to be better at killing defenceless citizens than terrorists anyway over the last year.

It is not about a labour shortage, it is about the race to the bottom in terms of working conditions and pay.

It sounds like broadly speaking we agree with who benefits the most from immigration though. My take on it though is that no matter what you do people from Mexico are always going to try and flock from there to the US to work, and keeping them all out is an effort doomed to failure. We have a hard anough time in Europe stopping them crossing a fairly wide sea so the poxy river you have is no barrier at all, even with all the fences around it.

The only real option is making sure that when they get here they are not able to undercut our own labour force at the bottom of the market. The best way to do that is to shift the punishment to the people who employ illegal immigrants with no work permit. Also, minimum wage laws might help too providing the punishment for breaking it as an employer suitable outweighs the benefit of cheap labour (ie: prison time). The main thrust should definitely be though that if you employ someone and do not check their legal status sufficiently you get hefty fines for the first offence then prison for any repeats.

I also have no problem with outright denying things like foodstamps to recent arrivals, I just doubt it will do the slightest thing without the measures I mention above apart from make them more desperate and so willing to work for less.

Other countries do, I doubt the US immigrants are too different to those trying to get to europe. Also, can illegals still get food stamps with no proof of residency? Here in Europe they can't but they come anyway.

It doesn't surprise me that most people believe the same way you do, as that is way it is often presented. The truth is though that is because the current situation of there being tons of people here illegally is actually better for those who want to pay as little as possible as illegal immigrants will work for less than legal immigrants as they are more desperate. That is the main reason that the parties like the republicans that represent the richest are also usually anti-imigration, they know that people will come anyway they will just work for less due to their desperation.

Of course is though that most recipients of footstamps and benefits are americans. Immigrants generally flock to first world countries like the US in order to work hard and lead a better life. They generally do the work that people born in the US feel is beneath them or agree to work for far less than them. They will live in smaller rooms, pay less in rent, work longer hours and generally put up with a ton of shit just because it is still better than the country they were born in.

The net result is that the people who suffer from immigrants, both illegal and legal are the sort of people who are also competing for the same dead end jobs, exactly the sort of people who feel they are entitled to those jobs just because they were born here.

Those of us who feel we are entitled to jobs because we are the best person to do the job generally have nothing to fear from immigrants, but we do have a net gain as we can get someone to work of our house, iron our shirts or do our cleaning for a fraction of what someone born in the US would charge. We also benefit from being about to go to the all night food mart to get beer or whatever at a time when most people would demand double time to go to work.

Even the H1B system is often a net benefit to us as the sort of people brought over here under those schemes often reach a glass ceiling pretty quickly and we ultimately get made their boss when they are passed over for promotion for the 5th time even though they work harder.

In my experience software with years of development has no fewer bugs that a new project if the people working on the project are good and it is not rushed.

Often software needs a rewrite every few years just so the current developers are 100% comfortable with every aspect of the code. If you have a huge legacy application it can often be more prone to bugs as the code becomes so convoluted, and often new developers to the project are scared to refactor crap out as some of the crap is important and it takes a horrible process of trial and error before you know what can be removed.

It might generate crypt style hashes, but it will not ever use MD5. It always uses Bcrypt at present until something better comes along. You should have read the link you posted more closely.

There are probably ways you can screw it over though so it doesn't add any security, but the defaults are pretty secure and the php manual steers you toward not changing them unless you know what you are doing.

Your right, but I have the advantage that all my code is peer reviewed nowadays and we also get free pen tests and advice from a really top notch security team who are world leaders in this stuff. That does mean that if I screw up this sort of stuff it is generally noticed and I then have to fix it, that certainly helps raise your game.

I explicitly mentioned the password_hash function in recent versions of PHP. This does the heavy lifting for you, including generating a random salt as best it can.

What in PHP used MD5? The password_hash stuff has only been in PHP since 5.5 and only ever used bcrypt. Previously some PHP developers might have used MD5, but there was nothing built in to PHP that purported to hash passwords, it was left to developers to role that own and they often did it badly. That is not the same as saying that PHP "used" MD5 for hashing passwords though.

As a php developer who works for a security company we generally do what the pen testers advise us to in regard to hashing passwords. Currently that is to use the password hash function in the latest versions of PHP.

Maybe the reason us dumb old web developers do not have your amazing knowledge at our disposal is because NOT hashing passwords is not exactly a recommended practice by any real security company.

Where I used to work we had a pretty crappy legacy product which did not hash the passwords in the DB. This was because the customer liked the fact that the system would mail out passwords if the user forgot them instead of making them reset it. When they got pen testing companies to test this product the pen testers always noticed this process and correctly deduced that the passwords were not hashed. This was then always raised as something that should be fixed, of course the customer always ignored this defect, they would make us fix anything else that was raised though.

We went through several pen tests over the years I worked there, by a few different companies, nobody thought have the passwords stored in plain text was a good idea. The fact that you think it a good idea suggests to me that either:

A) You are either some amazing outlier security guy miles ahead of everyone else on the planet.
B) You know fuck all

I reckon B

Oh what a surprise, the fucking moron mod crew disagree.

I have never seen a set of traffic lights on a 70mph dual carriage way. Usually they have a reduced speed limit to 40 or 50 in the run up to the lights. Actually a hell of a lot of dual carriageways have a limit much lower than 70 even though that is the standard national speed limit for them.

And very few motorways have traffic light on the main bit of road where you can do 70mph. On the exit slip road you should actually be stationary or nearly stationary when you get to where the lights are so you can give way to traffic already on the roundabout.

The reason you are not supposed to run red lights, ever, is because if you could not stop in the UK then you must have been exceeding the speed limit in the approach. The duration of the amber light is tuned with this in mind.

The truth is that very few speed limit signs are hidden in the manner you describe. Lets be honest, the vast majority of the time us drivers exceed the speed limit we do so knowing we are doing it, we just do not think we will get caught. We know what the speed limit is on most roads we drive down, we just sometimes push them as we are in a hurry. We are probably driving in a generally safe manner, we are just doing it too quickly.

The thing is though, speed limits do exist for a reason. They are there to force us to account for the unknown: children running into the road, morons pulling out of side streets and not looking, us getting a blowout due to something to small to see in the road. The chances of these things happening are all pretty minuscule but since we all drive everywhere so much these small odds multiple so it always happens to someone in the end and the fallout can be catastrophic and expensive for the city to clean up afterwards.

Speed limits are also actually a way of us being more flexible with other driving rules, like paying attention to where you are going. Sometimes people do some really stupid crap on the roads. Like trying to find a CD to put on and veering on to the wrong side of the road, answering the phone in our pocket that is awkward to get to, looking at maps, turning round and shouting at the kids in the back, this list could go on for ever. As it is we can do this with a certain degree of impunity as the worst that would happen is we wrote off our car and someone else's the vast majority of the time. If everyone could drive everywhere as fast as they liked the police would have to be far more ruthless at enforcing other aspects of the traffic laws, maybe even down to banning persistant offenders until they got the message.

Sometimes I actually think this might be a better idea, then I catch myself doing some of the stupid crap I describe :)

It depends. If you made the expiration date something like 50 years then people could certainly retire.

It is worth remembering that the vast majority of the top 1% were born into tons of money, they have just got richer during their lifetime.

I was watching the UK version of the apprentice the other day and it occurred to me that at least Alan Sugar made all his own money. Donald Trump from the US show was born rich, then just leveraged his daddys cash to make more cash in the same line of work. He did not even need to set up a business as he was just given one to play around with.

Ok, you can say that these people did well not to lose all their cash but that is not really much of an achievement if you are born with more money than you will ever need in your own lifetime anyway. You can afford to take risks that most people cannot over and over again until one of them pays off.

It is this inherited money that skews the system so massively.

Progressive taxes are ones where they affect the more the richer you are. Regressive taxes are ones that affect you more the poorer you are.

There is a ton of debate about how you figure out which is which though :)