Best posts made by Carnage
-
RE: WTF Bites
Mostly because I spent my youth hacking, among other things, so I had reason to not trust anything computery.
Whereas I was working at a university and knew just what a bunch of rascals we had as undergraduates. I shall neither confirm nor deny whether I had previously been one of those rascals.
The schools I went to usually had the system admins come to our class every once in a while saying "I don't care how you do it, but please don't fuck things up and I won't care about your extended access."
The funniest part was that the school network and the city network was joined, so we generally had access to what the politicians and others in city hall was up to, even confidential stuff. We were all gray hats though, so it was mostly just for fun or the hell of it soBut man, for all the horrible security practices of today, 3 decades ago was just amazingly shit.
-
RE: In other news today...
@cvi said in In other news today...:
@Carnage said in In other news today...:
Companies are now looking at productivity scales as a metric for excellence, with some going as far as moderating employees’ keyboard activity.
This proves a point I learned during an internship with a big company: appearances >> productivity. Outside of the immediate group that you work with, nobody is really going to notice actual productivity. However, HR is noticing if you're not at the desk when they are in. (Nevermind flexible working hours.)
Yup. I've been at exactly one place where the CEO said "I don't care where you work, or how many hours you work as long as you get things done." Decent place, and I've recommended that place for friends considering new jobs.
But other than that? Asses in seats 40 hours a every week, and flexible hours means "Be here between 9 and 14". Productivity? We'll have a meeting about it. -
RE: WTF Bites
The whole container ecosystem is in kind of a mess.
- RedHat has already fully switched to cri-o + podman, but it had a pretty severe bug with piping input into the container until very recently, which would have rendered it useless if I got around to trying it.
- I wanted to try podman because it runs under the user launching it and utilizes subusers instead of posting everything to a system-wide daemon like docker, but the atomic-project ppa is dead while official Debian packages are stuck in the new-and-byhand queue since 14th january and already outdated.
- Docker-compose is an alien when the rest of your world is centred around Kubernetes manifests, but for some use-cases it's all you've got.
- Podman can read Kubernetes pod manifests, but they can do 1% of what docker-compose can (no environment substitutions, no override files; kompose would be great, but I doubt it's anywhere close)
- And then there is more mess in Kubernetes land. There is helm, which has great capabilities like rollbacks, including automatic on failure to start, but the composition is kind of half-baked and using go (~moustache) templates for yaml is … weird at best.
- There is kompose, which was already integrated into kubectl itself, which provides the right kind of flexibility, but then it does not have the history recording and rollbacks and tests and all that other good stuff.
Yeah, everybody rushes ahead with half-baked ideas, nothing ever stabilizes and distributions can't keep up.
It's like web devs started doing backend stuff.
-
RE: Functional programming rah! OOP nah! Or how to know you're a zealot
@HardwareGeek said in Functional programming rah! OOP nah! Or how to know you're a zealot:
@Parody said in Functional programming rah! OOP nah! Or how to know you're a zealot:
use self-modifying datacode (because code is data and vice versa) instead of functions. Or something.
I think you meant to say
-
RE: The Official Status Thread
@dcon said in The Official Status Thread:
@Tsaukpaetra said in The Official Status Thread:
What the shit are they doing?!
Way back when, when I was working at a company putting internet on a phone, we scheduled it to reboot at 3a because actually fixing the memory leak was too difficult. Ah, Windows CE. I don't think that ever made it to market. (Neither did the company)
I've seen a few servers doing the same.
I also had managers abridge tell me I couldn't call a memory leak a memory leak because we were forbidden from releasing with memory leaks. I told them they were welcome to call or whatever they wanted, but it is a memory leak and I would keep calling it a memory leak. -
RE: I, ChatGPT
@topspin said in I, ChatGPT:
@Carnage said in I, ChatGPT:
@DogsB said in I, ChatGPT:
*Delete account.
File GDPR removal request.You don’t believe they actually honor that, besides saying “sure, we deleted everything wink wink”?
Eh, I don't expect them to honor anything. Deleting your account has proven to not mean it's actually deleted.
The GDPR thing is to allow the EU to grab them by the wallet in the future, and take a few billions. -
RE: In other news today...
@HardwareGeek said in In other news today...:
This story isn't, strictly speaking, news today. The story starts a couple of years ago, and there was an update about a week ago.
A disabled Oregon woman with a degenerative nerve disease and respiratory disease visited some friends and was riding home on her mobility scooter. She was stopped by police and told that she couldn't ride her scooter on a sidewalk or crosswalk, and she couldn't ride it without a helmet. She was cited for those offenses and ordered not to ride it home; she'd have to walk home, pushing her scooter. (She was about a mile (1.6km) from home at the time. If she could walk that far, she wouldn't need a mobility device in the first place.)
After being cited, she proceeded to ride her scooter home, because how the F else was she going to get there? The police officers followed her the whole way with lights and siren on in a very low speed chase, but she refused to stop. When she got home, she was arrested for felony fleeing/evading in a motor vehicle. (In some jurisdictions, at least, that's a more serious crime than fleeing on foot, which may only be a misdemeanor.)
She was convicted by a jury and sentenced to 5 days in jail. That's definitely only a token punishment for a felony, which is typically defined as any crime subject to one year or more of imprisonment. But even though the punishment was only token, she was now a convicted felon, with all the problems that brings.
She appealed the conviction, and the Court of Appeals not only tossed out the conviction, but questioned the judgement of everyone involved; the police for arresting her, the District Attorney for prosecuting her, the judge, the jury, and the state Attorney General for trying to defend the conviction against the appeal.
(In defense of the jury's judgement, they are told by the judge what the law is: "The law says X. If you find that the defendant did Y, then that is a violation of the law, and you must find the defendant guilty." If the defendant did, in fact, do Y, they're not allowed to question whether Y is really a violation. Yes, jury nullification is a thing, but most jurors don't know that, and the court certainly isn't going to tell them about it.)
Despite the obvious stupidity involved (and the state's refusal to prosecute far more serious crimes, but this isn't the ), the AG is still considering whether to appeal the Court of Appeals's decision to the state Supreme Court.
This should be grounds for having the AG and prosecutor disbarred for complete lack of any kind of sense, and waste of public funds.
-
RE: WTF is happening with Windows 11? And nothing else
@Arantor said in WTF is happening with Windows 11? And nothing else:
@PleegWat the comic that taught everyone their password should just be “correct horse battery staple” only to discover that password forms won’t accept it because it’s too long, has spaces, has no mixed case, no numbers and no special characters (just don’t use quotes, ok?)
I love that spaces are banned in passwords, together with characters like ; < and such. Gives me great trust in the system.
-
RE: In other news today...
There is a bit of a brouhaha going on in the Swedish security police, the top intelligence boss of the National Operative Unit (the people that smack you around when shit gets real)
Linda StaafSeems to have had a several years long secret relationship with the top boss of the National Operative Unit:
Mats LöfvingAnd, when she was hired see apparently entered into the process very late, and did not have the qualifications of the other applicants. There have been several lawsuits filed against Mats for this, but they have all been shut down by the overall boss of all police in Sweden. There is a current ongoing investigation of crimes committed here as well now.
-
RE: NPM 5.7 recursively changing ownership of system directories when using sudo npm -g
Soo, it's about time to put system level restrictions on npm in place? Such as locking it inside it's own little chroot, actively forbidding it admin rights throug any means at all (running it as root, running it with sudo and every other way there is).
Because it's provably a clusterfuck, in every concievable way. The actual package manager is maintained by a bunch of drunk monkeys hammering away at keyboards, and the packages it manages are worse .... -
RE: WTF Bites
scary unsafe characters
You probably don't want to allow non-printable characters in, that's true.
At one gig where we integrated with a mainframe system via fixed width flat files, I amused myself by sending the bell character in the test env. The system actually beeped. Eventually they fixed it.
-
RE: I, ChatGPT
Soo, I asked BingChat to generate an image of a Maclaren P1 next to a Trabant.
It misunderstood me and generated a MacBant instead.This is an immensely cute sportscar and I want one.
-
RE: In other news today...
@loopback0 said in In other news today...:
I just can't grasp the mind of someone that files complaints about silly stuff like that. Just imagine if they knew what silly stuff happens at pretty much every workplace everywhere.
-
RE: WTF Bites
I occasionally question my choices in naming things:
passInfo.renderPass = pass.pass.pass;
That'd be a hard pass...
-
RE: Things that remind you of WDTWTF members
@Mason_Wheeler yeah, it's obviously an even number.
-
RE: The Official Funny Stuff Thread™
@Arantor said in The Official Funny Stuff Thread™:
I before E except after C
-
RE: Driving Anti-Patterns - Necro Edition
@acrow they are still not rare enough. In winter, we also get lots of trucks in ditches. My dad had to pull the same truck, with the same driver out of the same ditch three times in a week. The forth time he told the idiot that he could sit in the ditch and stew for a while so he would learn.
-
RE: Re: WTF Bites (My longest running banking :wtf: to date)
My current gig has a VPN that cannot reestablish connections. If you put the computer to sleep, the connection is b0rked, and you have to log back in. But because the client ends up in a b0rked state, just logging in doesn't work oh no. The first try fails, and then the second try works. You can immediately tell when a login will fail because it will show progress bars and a text label says which step of the login process it's on right now.
When the login works it instead will just freeze the login window until it succeeds.And the place actually PAYS for this piece of shit software. If you can't even write a proper login modal, I have my doubts about the rest of the stack.
-
RE: The Official Funny Stuff Thread™
@DogsB said in The Official Funny Stuff Thread™:
@DogsB said in The Official Funny Stuff Thread™:
@boomzilla said in The Official Funny Stuff Thread™:
It’s on unlimited so I’ll give it a look soon.
Also by the same author.
Can’t be as bad kissing corona virus.
Spoiler alert. It was terrible.
-
RE: WTF is happening with Windows 10? And nothing else
@dkf said in WTF is happening with Windows 10? And nothing else:
@HardwareGeek It wouldn't work for the main water cooler pump unit. As I said, that defaults to being Made in Technicolor™ without any intervention, and the lighting is integrated into a unit that I very much want to be powered when the machine is on.
Otherwise a very good cooler, but makes spontaneous Windows Update reboots very obvious.
I solved all of these issues by having a case that is all metal. The blinkenlights can blinken all they want, they have no power here.
I've performed enough blood sacrifices to the computer gods through the decades to not want that rainbow vomit in my computer.Although, the mechanical keyboard I take to work at clients when they have shitty keyboards is specifically configured to be as blinkenlighty annoying as possible. But that is just me being a horrible human being, not actually me liking the blinkenlights.
-
RE: WTF Bites
@scudsucker said in WTF Bites:
@Zecc It appears some dev back in 2013 wrote the DDOS vector. I am apparently just the first to try to load test it.
"Load" test. FFS, I started with 1500 concurrent requests, as that is roughly double what I'd expect at maximum load. Then I tried 1000. Then 500. Then 200.... etc etc until eventually 5, 4, 3... until I could prove that 2 concurrent requests works, but 3 does not.
Who would ever need to send more than 2 simultaneous requests?
-
RE: Driving Anti-Patterns - Necro Edition
@blek said in Driving Anti-Patterns - Necro Edition:
Seems like a perfect business opportunity to start a towing company that charges exhorbitant rates, and is also the only company allowed into the private property. Pay or have your truck taken. Soon enough, the towing company can get into trucking as well.
-
RE: Lime scooters
@topspin I tried searcing for "e-scooter seat riding" and got a hit for "PUBLIC QUAD DILDO FUCK" ...
I mean... I can sortof see how the mangling of my search could pull that up... And I do agree with the search AI that it is a lot more interesting than what I actually searched for.
-
RE: In other news today...
@HardwareGeek said in In other news today...:
As already mentioned, Project Zero has a 90 day disclosure deadline and this was applied to this vulnerability. It was first reported by Ormandy on March 13, then on March 26 Microsoft confirmed it would issue a security bulletin and fix for this in the June 11 Patch Tuesday run. Ormandy noted that, "I count that as 91 days, but within the extension period so it's acceptable." The extension period being one that allows for companies that have fixed patching schedules such as Microsoft.
On June 11, Ormandy stated that the Microsoft Security Response Center (MSRC) had, "reached out and noted that the patch won't ship today and wouldn't be ready until the July release due to issues found in testing." As that meant the 91 days were up, Ormandy made the vulnerability public.
That comes off as a bit of an ass move.
-
RE: The Official Funny Stuff Thread™
@topspin said in The Official Funny Stuff Thread™:
Oh lord. Me being curious and already on every watchlist I decided to test it, but I couldn't be arsed to type out the site/document part and just put "not for public release" into google.
And... Welp. Seems Amazon is just following the business standard operating procedure. -
RE: The Official Funny Stuff Thread™
@topspin said in The Official Funny Stuff Thread™:
The club of countries that was never invaded by the culinarily challenged isles is a more exclusive club than one might expect, so it's not very surprising.
-
RE: WTF Bites
@Benjamin-Hall said in WTF Bites:
We store users emails and use them for a bunch of purposes, including (gasp) sending transactional emails (we don't do any marketing ones from this product). That's not the WTF.
We store them in the database, in a
VARCHAR(100)
field. Uh...ok...We had the same email length problem, and when I did some research into it, I found that the official email spec accepts up to 250 characters, IIRC. (I'm not sure why it's not 255 or 256, but kicked in at that point.) We brought that up to the dev team, and they fixed it in the next version; but for the older versions, if one of our clients wants to add an email that is >100 characters, we have to update the column type. Thankfully, SQL Server DBs allow extending a varchar column length without losing existing data.
At nu last gig, I wrote a fairly correct email verifier regex. It basically verified that there was an @ in the address, and no illegal characters. Very low effort.
Apparently, some system we sent this data to couldn't handle long emails, nor emails with a tld that was longer than three characters. And only a-z and . before @. And someone decided that the host name couldn't be longer than 12 characters. And the total length was 72 or something like that. Stupid as all hell.
I kept telling them to fix their broken shit. They didn't. -
RE: Lime scooters
@Zerosquare said in Lime scooters:
The average e-scooter currently has a life-span of just three months. (...) Yet despite the modest cost of an e-scooter, it takes almost four months, not counting marketing and overhead expenses, for a rental company to break even on its investment.
I really don't see how they are going to survive when the venture capital dries up, apart from selling everyone's location data.
I bought myself an e-scooter for about 300 murikan doll hairs, it's on the cheapskate side of things, but it hasn't broken down so far, and I use it daily. I don't have to go looking for a ride-sharing scooter that may or may not be anywhere around where I need one, and there is no risk of any leaks of my data from a shitty system developed by the cheapest monkeys the company could find.
My scooter folds, so I can easily take it on trains or shove it under a shelf somewhere when I need to store it.Though I have been thinking about grabbing the ride sharing ones and going home on the train and dumping it near my apartment. If I keep doing that, I'll have made a nice pile of scooters after a while.
-
RE: UI Bites
So someone spent time and effort to make sure that the message would look good by avoiding "1 day(s)", but then they picked for 0 a message that does not look good at all (nobody would ever say "due in 0 days" but rather "due today").
/
Yes, that too. But they also failed to make it work at all.
-
RE: The Official Funny Stuff Thread™
@jinpa said in The Official Funny Stuff Thread™:
@dcon I often think of a similar point when pondering the wastefulness of meetings. Every cut in a cake loses some cake to crumbs. If the cuts are few enough and with a thin enough knife, then the loss of cake is negligible as a percentage of the whole cake. If, on the other hand, the cake is cut into too many pieces, the loss of cake to crumbs can be a sizable percentage.
Similarly, every meeting is like cutting a block of the programmer's time into two pieces. The recovery time for the programmer to remember what he was thinking when he was interrupted for the meeting is like the crumbs. Cutting his time into too many pieces is like cutting the cake into small pieces where the loss to crumbs is substantial and the cake loses its integrity as cake.
There is actually data that says that the time loss is 15-30 minutes, depending on complexity of the work. And that is for even simple things as someone sticking their head in and asking a few questions. So, most programmers will waste 1 hour or so per day on useless crap. Without counting the actual time spent in meetings, which may or may not be useless crap as well.
-
RE: In other news today...
@da-Doctah said in In other news today...:
@PleegWat said in In other news today...:
@topspin Somehow I'm offended at all the vegetarian recipes that are actually wish-it-was-meat recipes. And I'm not even interested in eating vegetarian.
You know you've got a PR problem when the best thing you can say about your vegan product is "you'd swear you were eating meat!"
I have no qualms about eating vegan shit, as long as it's tasty in it's own right.That the companies are trying to just substitute meat with an inferior product is stupid. Make the whole meal from the ground up around a new base. Also, stop with the fucking soy shit already, its horrible in every way.
-
RE: WTF Bites
The other component to consider for a fault (apart from your analysis) is the motherboard/chipset.
Thanks for reminding me. I really didn't want to think of that, because then I'd have to switch to the backup laptop. And something tells me that MATLAB (everyone here speaks MATLAB, and so must I) would be a pain in the eyes on a 7 inch display.
I don't see any reason it would stop being a pain at any display size.
-
RE: Driving Anti-Patterns - Necro Edition
@cheong said in Driving Anti-Patterns - Necro Edition:
Just a kind reminder that think twice before trying to buy a cheap e-motorbike.
Imagine what would happen if it burns while you're riding it. Are you sure you have time to dodge the flame?
-
RE: Newest tactics in asshole web designs
@PleegWat said in Newest tactics in asshole web designs:
@Carnage said in Newest tactics in asshole web designs:
I would not ever let a web page push notifications, because they really have no fucking business doing that. I hate the feature and would like to drag the people responsible through a cactus field by a barbed wire around their ballsack/tits until it stops being fun.
Same. I'd really love for browsers to add a 'accept notification and blackhole it' option, because the current design is used by too many sites to keep nagging if you haven't accepted notifications.
I don't even want the fucktards to get to open a connection that direction. Hell, I even remove notifications from most apps on my phone, because fucking hell it's annoying.
I'm a rare breed that even has my phone set to do not disturb unless I'm actually expecting an important call. I like my life better when it's not constantly interrupted by stupid shit. Like how life used to be before there were mobiles and everyone started expecting that everyone else instantly respond to every single whim of theirs.
People have gotten fucking retarded in the last couple of decades and can't stand having to wait, you'd think the world is ending when you don't respond instantly. It's like everyone has become
I both need and want social downtime. And a phone going ding every few minutes interrupt and restarts downtime from 0.
-
RE: In other news today...
@TimeBandit said in In other news today...:
Looks like Linus is really improving with hanger management
Comparing that with his angry rants of the past when he cursed at people, and called them all manner of idiots, this is a very measured reply. He calls the idea stupid, and lays out in pretty good detail why it's wrong.
-
RE: TRWTF is the entire JS ecosystem
@_P_ said in TRWTF is the entire JS ecosystem:
As with most things, hackery is unavoidable. However I find C#/Java requiring much more hackery than usual, in the form of needless abstraction as workarounds to the fact that I can't just mock an object directly as is. Writing a small web app in modern C# stack (ASP.NET MVC + OWIN + Entity Framework) is easy, but once you want to unit-test it, suddenly everything breaks down and you're spending all the time abstracting your architecture for no reasons just so you can actually run the site without hosting it instead. It's baffling.
You probably do not mean it, but his bit of text reads to me like "I really hate designing stuff. Churning out code without any though to structure is what I want to do. Languages that wont let me do that is bad!"
-
RE: WTF Bites
@pie_flavor said in WTF Bites:
@carnage Same principle though. You're not getting paid any less for rewriting it as a monolith and as a bonus you've already got the feature set so it's probably easier than doing new things.
Yeah, as a consultant I don't really care how the company deems it best to waste buckets money as long as I get paid. I do however point out the folly of their actions but if they persist, who am I to argue? I'm not on that particular project though, so I care even less.
Doing stupid stuff for stupid reasons kills the joy of programming though. -
RE: Apparently, charging an electric car is measured in Miles per Hour
@boomzilla said in Apparently, charging an electric car is measured in Miles per Hour:
@Captain said in Apparently, charging an electric car is measured in Miles per Hour:
@El_Heffe Um, makes a lot of sense. Charge for 5 minutes and then go (1000 / 12) miles.
It does, in isolation. But the name duplicates an already existing and extremely prevalent unit that means something completely different.
Not to mention, for the charging Mph to mean anything, you need to include speed and temperature as well, since those greatly affect the range.
-
RE: In other news today...
@jaloopa said in In other news today...:
@carnage said in In other news today...:
at least to me are works of art as much as his original work.
You could argue that forgeries don't have the originality and inspiration that the actual pieces do
In this case, they were not copies of his actual work, but entirely new productions that just had his squiggle on them, since they portrayed things that did not exist during his lifetime. They had no less originality and inspiration than his own work, since people actually did not notice it byt the quality of the work, but rather that the buildings in the paintings were built after his death.
The idiocy of paying a thousand times more for a paiting for a doodle in the bottom corner is strange. If it's not the work of art that is important, why not just display a bunch of autograph hunters collections of doodles in a flip book?