WTF Bites
-
I don’t recall 301 or 302 in the wild ever adhering to that philosophy, that a redirect shouldn’t change the request type - it always struck me as sensible to respond to a POST with a 302 that became a GET because any other outcome tended to lead to users hitting refresh and submitting twice.
Well, yes. Which is why user agents started implementing it that way. But the server can't rely on that, because it's specified the other way, so it would do better to respond with a 303 that explicitly says to do a plain get to the new location.
-
@Bulb and then, in
news, it turned out there were scenarios you actually did want it to do as the spec said…
-
@Arantor … which is why they added the 307. But everybody and their
keep sending 302 and then wonder why it does one thing some times and the other the other times. Or nothing if nodejs libraries are used.
-
@Bulb
web devs be as crap as other devs…
-
@Arantor … which is why they added the 307. But everybody and their
keep sending 302 and then wonder why it does one thing some times and the other the other times. Or nothing if nodejs libraries are used.As though these shitty web clients won't start doing the same thing with 307s once servers start sending those instead
-
@izzion 307s have been in the wild for a while now. Basically anyone that would care about the difference, implements it right, and everyone else is doing it as wrong as usual.
-
So, I'm reading about the big Reddit kerfluffle where apparently they want people developing apps to pay gazillions of dollars for API access. And then I came upon this on Ars Technica:
But this has been the biggest protest in Reddit history, and it's still not over. Another recent Reddit controversy came to a close when the company CEO left.
Recent? The link is to a story about Reditt CEO Ellen Pao quitting.
In 2015.
-
What about a great tourism campaign? The Philippines
have a lot to offer to tourists, don't they? So, let's add a few images from Indonesia, Thailand, Arabia, Switzerland, and others...
Agency behind ‘Love the Philippines’ tourism video sorry for using shots of other countries
Agency DDB Philippines apologises for using ‘highly inappropriate’ images that stock footage providers offer from Brazil and Indonesia
The campaign cost only almost a million US dollars, for a third world country like Philippines that's merely petty cash.
-
@BernieTheBernie I suppose they couldn't have said it was generated by AI and thus be absolved of all responsibility?
-
@Applied-Mediocrity Good idea. But how to justify the million dollars
for a simple call to ChatGPT? No, the company (surely some how related to people in power) must have really earned that money!
-
@BernieTheBernie said in WTF Bites:
But how to justify the million dollars for a simple call to ChatGPT?
Easy. Prompt engineer, senior prompt engineer, lead prompt designer, prompt editor, translator, concept artist, producer, associate producer, key grip, director, administrative assistant, human resources, marketing manager, legal, another manager, Mordac, the preventer of information services, CEO, CFO, president, vice president, unrelated vice president and 10% for the big guy.
-
@Applied-Mediocrity You forgot the principal prompt engineer. They're somewhere between senior and lead.
-
-
@Applied-Mediocrity Is the project manager the other manager or is there another manager as well as the project manager?
-
@Tsaukpaetra said in WTF Bites:
@Applied-Mediocrity said in WTF Bites:
key grip
I'll take me a key grip...
What about the best boy and/or the gaffer?
-
@Tsaukpaetra said in WTF Bites:
@Applied-Mediocrity said in WTF Bites:
key grip
I'll take me a key grip...
What about the best boy and/or the gaffer?
Maybe. I don't have that kind of stamina though.
-
@Applied-Mediocrity said in WTF Bites:
@BernieTheBernie said in WTF Bites:
But how to justify the million dollars for a simple call to ChatGPT?
Easy. Prompt engineer, senior prompt engineer, lead prompt designer, prompt editor, translator, concept artist, producer, associate producer, key grip, director, administrative assistant, human resources, marketing manager, legal, another manager, Mordac, the preventer of information services, CEO, CFO, president, vice president, unrelated vice president and 10% for the big guy.
Too many people missing. Like scrum master, junior/senior product owners, project managers, the group of testers, integration engineers, lower ranks of marketing, corporate identity management, CMMI and quality people, assessors and auditors, ...
So we know the reason of the failure: they were too cheap, and thus missed the valuable input of these people.
Pay peanuts, get monkeys!
-
@BernieTheBernie No Coffee Reserve Manager?
-
@Arantor … which is why they added the 307. But everybody and their
keep sending 302 and then wonder why it does one thing some times and the other the other times. Or nothing if nodejs libraries are used.For some reason this all reminds me of useragent strings and how accurate they are to reality
-
For some reason this all reminds me of useragent strings and how accurate they are to reality
User agent strings are a … way bigger pile of
. But as long as Chrome keeps pulling shit like changing signatures of functions without anything at all that could be used to detect which version you're dealing with¹—except for the useragent string—the useragent string will, unfortunately, continue to be needed for compatidebility shims of all sorts.
¹ It's been a year or two, so I don't remember which function it was, but I clearly remember some, not yet stable, API, being changed so that the last argument of some function went from taking one value to taking an options object, and since JS does not expose function signatures and there was no other change to the API, there was no good way to write code that would work with both the older and newer incarnation of the API. (Google: “compatibility is hard, let's go shopping”)
-
-
@Bulb Chrome is actively trying to kill the user agent and replace it with its own proprietary nonsense.
-
Learn how to update your existing functionality that relies on parsing the User-Agent string to make use of User-Agent Client Hints instead.
:nukefromorbit:User-Agent Client Hints enable access to the same information but in a more privacy-preserving way
I'd love to hear how you can preserve more privacy while sharing the same information.
Client Hints enforce a model where the server must ask the browser for a set of data about the client (the hints) and the browser applies its own policies or user configuration to determine what data is returned. This means that rather than exposing all the User-Agent information by default, access is now managed in an explicit and auditable fashion.
Therefore potentially providing more data points for fingerprinting?
By default, the browser returns the browser brand, significant / major version, platform, and an indicator if the client is a mobile device
Much privacy preservation.
In all seriousness, it can't get worse than the UA. The vast majority of people will not customize what their browser sends. Making it HTTPS and same-origin will only make it better.
If they don't start sending more data that's not in the UA and if they get rid of the UA, duh.
-
@Gern_Blaanston they’ve had over 20 years to un-fuck Windows update. They haven’t.
At this point the rationale for not fixing it is probably spacebar heating.Bonus Windows Update retarded Fuckery #27:
I'm using Windows 10 version 1809, which is a LTSB version that is updated and supported till 2028. But, I have to download and install updates manually, because if I use Windows Update it doesn't update me to the latest 1809, it updates me to 22H2 or whatever the latest version is.
In fairness, other programs do this also. I'm looking at you Firefox.
-
@Gern_Blaanston said in WTF Bites:
I'm using Windows 10 version 1809, which is a LTSB version that is updated and supported till 2028. But, I have to download and install updates manually, because if I use Windows Update it doesn't update me to the latest 1809, it updates me to 22H2 or whatever the latest version is.
I believe that if you had active domain, you could control which updates Windows Update should or shouldn't install. But nobody expects individual users to stay on LTS.
And I sort of understand them. The Karens who would at some point configure their systems to stay on LTS, forget about it and then complain they are not getting the latest advertised feature are pain in the rear to deal with.
In fairness, other programs do this also. I'm looking at you Firefox.
Doesn't it? They do have ESR (their name for LTS) release downloads … if you dig deep enough … but I never tested what the built-in update on Windows does with them. In Linux both dpkg and snap honour their configured release channel and firefox itself has no say in the matter.
-
@Arantor The absolute state of "web experiences":
Sec-CH-UA-Full-Versionis deprecated just about a year after it's been introducedPublished on Thursday, June 25, 2020 • Updated on Friday, September 10, 2021
-
If they don't start sending more data that's not in the UA and if they get rid of the UA, duh.
Don't be naive, that's exactly what they are going to do. Then they'll start making other stuff depend on it, to push wide adoption. Then some of it will be made unconfigurable, because it's "essential". Then they'll start nagging you with configuration banners on every page, with 'allow everything forever' option as the only global one.
-
I'm still slowly struggling with my bank to resolve an issue that happened in April (though tbf, I tried other things first so the first contact was end of May -- still about a month and a half by now). I sent an email, then called them, then another email, then called again, and finally just called yet another time, only to be told "we've sent you [by snail mail!] a form to fill" which I can't see how they can ask me for information that I have not yet provided them (at least twice) but we'll see.
But this is not today's
.When I called them, I actually called three times because the first two the call was suddenly cut while I was giving them my "security information" (i.e. date of birth, address...).
But this is not today's
.Their phone number starts by asking me to enter my login/password (both being just numbers), and when I tried some time ago it just failed with no reason and entirely prevented me from bypassing this step and talking to someone.
But this is still not today's
, though it's very close.I had the same issue this morning. But I had a hunch, and changed my password (through their website). And now it works!
Well, I had this password ever since this bank started having some automated service, which IIRC dates back from the 90's (
). I probably still have somewhere the mail they sent me with my initial password and since it was random but not too long, and at the time we weren't used to getting tons of passwords and changing them, I just learnt it like I had learnt my PIN and never bothered to change it.Fast-forward 30 years or so, and they managed to port their whole system to true online banking without any issue for me, which I have to admit is mildly impressive given the state of banking and IT. But I guessed that never having actually set a password was somehow breaking their phone system, and apparently that was the case.
I also noticed when I went to change my password that it said "last time changed: 01/01/1901." Um. At least it didn't say "
NULL" though
that would have been more accurate.So yeah, I'm guessing that this was the cause of the problem.
I'm kind of sad to have broken that perfect record, but at least now I can call them, which I guess is more important since they seem to totally ignore my emails...
-
@remi Yeah, banks.
I once transferred a large-ish amount from my savings to the checking account to then transfer that money to the intended recipient. I had to do it this way because you cannot transfer money to someone else directly from savings.
Transfer went through, I saw the amount deducted from savings and credited to the checking account. I then initiated the actual transfer. Also went through after I increased the transfer limit.
Only to discover the next day that my checking account was now deep in the red. Why? Because the original transfer from savings to checking actually did not go through because it hit the transfer limit. Which I only changed when trying to do the external transfer (i.e. after the internal transfer) because there I got an actual error message about that.
Why this limit exists for internal transfers and why I didn't get an error message? Fuck if I know. My bank, of course, declared that I was
and that their software was perfect. Yeah, right.
-
@Rhywden And you had to pay 9,999% per day interests for that deep red number?
-
@topspin re content farms / ChatGPT:
I'm currently watching this police show on Netflix, The Rookie. (It's mildly interesting, INB4
)
At some point they make a big deal about the rookies wearing long sleeves and I have no clue what that is about. So I try to google it.Now tell me that this nonsense isn't the result of GribnitGPT:
https://venuszine.com/the-benefits-of-wearing-long-sleeves-why-rookie-cops-need-them/
Do rookie cops wear long sleeves? The answer is yes, and there’s good reason for it. Long sleeves are an important part of a rookie cop’s uniform, providing them with added protection both on and off the job.
Okay, this starts out innocent enough. The introductory fluff is easy to create for an LLM but could also be the beginning of a real, not-insane article...
Although I am familiar with officers who wear short sleeves all year and cover their faces when it gets really cold, they do not wear a coat during the winter.
Getting a shot is painful. Live ammo can have a significant impact on the target. A.22LR is capable of killing you.
Although I believe it is best to avoid being shot at, I wish I had never been shot in the head at close range.
Brain damage would indeed be a valid explanation for this article.
In Chicago, it is customary to wear long sleeves only during certain months.
Something something
Kristin
Kristin Simpson is a full-on fashionista. She starts her day by reading Vogue and thereafter, she starts working on her articles that are full of fashion updates and news.
So KristinGPT certainly has brain damage, but is it actually human?
I absolutely do not look forward to a future with an overwhelming, self-feeding amount of this nonsense.
-
@BernieTheBernie said in WTF Bites:
@Rhywden And you had to pay 9,999% per day interests for that deep red number?
Of course. Red costs more.
-
I'm kind of sad to have broken that perfect record
I know you're
, but it's time to switch to streaming music like everyone else.
-
@Zerosquare said in WTF Bites:
I'm kind of sad to have broken that perfect record
I know you're
, but it's time to switch to streaming music like everyone else.No. No, it's not.
-
@Zerosquare said in WTF Bites:
I'm kind of sad to have broken that perfect record
I know you're
, but it's time to switch to streaming music like everyone else.No. No, it's not.
Yeah, fuck streams! I'll keep my massive pool of content I want and choose to license perpetually!
-
@Tsaukpaetra when you say 'fuck streams' do you mean in a figurative 'sticking it to the man' kind of way or something more... biblical?
-
In fairness, other programs do this also. I'm looking at you Firefox.
Doesn't it? They do have ESR (their name for LTS) release downloads … if you dig deep enough … but I never tested what the built-in update on Windows does with them.
I'm using the "ESR" version of Firefox and it's the same old retarded fuckery. Firefox updates you to the latest version, not the latest ESR version. So you have to do updates manually.
-
@Gern_Blaanston Life is good under Debian Stable
-
@Tsaukpaetra when you say 'fuck streams' do you mean in a figurative 'sticking it to the man' kind of way or something more... biblical?
Yes, of course.
-
It seems there's only one DMV camera in Oregon.
Oregon DMV camera outage halts all drivers license transactions
The outage is not related to the recent data breach, DMV staff said.
-
@Benjamin-Hall said in WTF Bites:
DMV camera
Ah, right, because they require the validated 30 year old piece of shit instead of Joe blow's camera phone...
-
@Tsaukpaetra when you say 'fuck streams' do you mean in a figurative 'sticking it to the man' kind of way or something more... biblical?
I wouldn't trust @Tsaukpaetra do not interpret 'sticking it to the man' as biblical either.
-
@Zerosquare said in WTF Bites:
I know you're
, but it's time to switch to streaming music like everyone else.Call me weird if you want, but I don't really listen to music, at all.
I have a large collection and I used to listen to it a lot, but now I only put on music when I want to drown some other noise. Otherwise I'm fine with silence.
-
Otherwise I'm fine with silence
If I'm in silence, automatic gain control goes nuts until I start hearing feedback from my own auditory input event loops.
A fun way to "hear" how "fast" I'm processing stuff, but otherwise a distraction I usually don't need.
-
@TimeBandit said in WTF Bites:
@Gern_Blaanston Life is good under Debian Stable
Windows too. ("your system administrator" = me)
As the old saying goes, "Nuke it from orbit. Just to be sure."
-
@Gern_Blaanston There is a huge difference. @TimeBandit's updates are enabled and possibly even fully automatic, they just respect the release channel.
-
New and exciting ways the Facebook app is broken. Was trying to check the community posts on a Facebook site I follow. I clicked on the site on the latest official post in my flow, opening its feed. No tab for accessing the community discussions. But there is a Community link. Click that and it opens a Facebook search for “Community”. Uh, no, not what I wanted. I also accidentally clicked the Messenger link and it opened the Messenger app, but on my latest conversation instead of a new conversation with the site. I, uh, if I wasn’t so jaded already…
(I know
is using Facebook in the first place, but I occasionally get bored.)
-
-
-
They started caring about code quality:
If only the code also compiled and ran...
Improving user privacy and developer experience with User-Agent Client Hints | Privacy & Security | Chrome for Developers
