Yeah no shit. I wish I could bid and actually have a chance at winning one of the contracts. Then it would at least get done and not cost 1 billion dollars.
Interesting, so after murdering one person, there should be no additional penalty for murdering additional people? If the law is grounded in morality, then the punishment for morally wrong things should be equivalent.
Why do you assume the law is grounded in morality? The very nature of most of our (USA) laws go against that assumption. Unless of course you consider theft, kidnapping, and murder moral acts.
Collecting sales tax on S&H isn't what he was referring to. He's saying that forcing small businesses / bootstrapped startups to collect sales tax for every region of the country will stifle innovation by raising the barrier to entry so high that most people won't be able to enter the market.
There's a difference between video tapping someone walking down the street and installing hidden cameras on someones property. If the police would have video tapped them in an alley or walking down the street I doubt anyone would care.
Personally I'd rather go after the person doing the most harm to society. If you're not prepared to go after an armed thief or other violent criminals don't become a police officer.
I've had to go after both types (violent and non-violent) of criminal helping my dad bounty hunt. Can is be scary? Yes, but that's part of the job. You either learn to control your emotions or find another line of work.
While those are valid points and should be corrected I still say it's the fault of the developers and not libcurl. Every option is documented well and the documentation is easy to find.
By default libcurl is secure. It's only insecure if you mess with an option. Personally, I'm glad that option is there.
This is the quote from the FAQ
>Q: How do I use cURL securely? >A: CURLOPT_SSL_VERIFYPEER must be set to TRUE, CURLOPT_SSL_VERIFYHOST must be left to its default value or set to 2. Anything >else, such as setting CURLOPT_SSL_VERIFYHOST to TRUE, will result in the SSL connection being insecure against a man-in-the-middle attacker.
The compliant about libcurl is baseless. It's said VERY CLEAR in the documentation how to use the feature. If stupid devs can't figure it out that's hardly the fault of a library developer. I've never had an issue with it and I've used it in C, C++, and PHP.
To repeat what I said on the mailing list. If I break my thumb with a hammer do blame the hammer or do I blame myself?
As Yehezkel Horowitz pointed out on the mailing list.
This is the quote from the FAQ >Q: How do I use cURL securely? >A: CURLOPT_SSL_VERIFYPEER must be set to TRUE, CURLOPT_SSL_VERIFYHOST must be left to its default value or set to 2. Anything >else, such as setting CURLOPT_SSL_VERIFYHOST to TRUE, will result in the SSL connection being insecure against a man-in-the-middle attacker.
The real answer should be - cURL defaults are secure - no need for any code to use it securely. ================== In general I think the very short answer for this publication should be RTFM.
The little bit longer answer would be - 1. cURL is a C code library - you can't set a value to TRUE since this is not in the language syntax. So you has somewhere in your includes something like "#define TRUE 1" - you must be aware to this issue - this is an important part of the relations between computers/compilers/programmers.
2. Before setting any option to cURL - you should read the very clear documentation about this option. ================== As to what we can do to make cURL even better (in order to protect unprofessional users that don't know what they are doing), We could make '1' to act as '2' (verify peer identity), and add a special magic value (i.e. 27934) that will act as todays '1' (check for CN existence but don't verify it).
My grand father has them all over his land. I was staying out there when they were building out a new site and holy shit did I want to kill someone. There was noise 24/7. At least he gets compensated for it.
I once had a girlfriend (shocking I know) that I was romantic enough and a previous boyfriend had bought her a star. She got mad when I went on about how he got scammed. It's a good thing she's gone.
I'm leery of Googles intentions when it comes to my personal data, but I continue to use their services for the reasons you state. They're simply the best I can find. If there was something at least as good I'd move over to them and use a different provider for each of the different services I use from Google.
I was around (like many people on/.) back when Microsoft was force feeding us IE. I chose to use other browsers, but they made it a real pain in the ass. Even web sites would intentionally break when they detected Opera! I still to this day have no clue why so many websites would purposely die when Opera was fully capable of rendering the pages fine. Google is nothing like that.
I guess I'm odd, because if my lead says an idea of mine is stupid chances are it probably is and I don't get personally offended. He's not calling me stupid he's calling the idea I had stupid. For every good idea I have, I have a couple bad ones and I'd imagine most people are that way as well. Even if it's a good idea and he wants to go a different direction that's his prerogative. He's the lead. People shouldn't be so touchy that they're personally offended by every discussion their boss makes.
Slashdot Mirror
There's nothing solid about it. The emulation is garbage compared to the native clients.
Yeah no shit. I wish I could bid and actually have a chance at winning one of the contracts. Then it would at least get done and not cost 1 billion dollars.
Mod Security is a good example of a web application firewall.
Will they offer a license for Software Engineer? What state are you in?
Interesting, so after murdering one person, there should be no additional penalty for murdering additional people? If the law is grounded in morality, then the punishment for morally wrong things should be equivalent.
Why do you assume the law is grounded in morality? The very nature of most of our (USA) laws go against that assumption. Unless of course you consider theft, kidnapping, and murder moral acts.
When did Congress pass bills allowing the IRS to rob Peter to pay Paul's bill?
If I remember right it was around 1935.
Yes. Killing one innocent person is as morally wrong as killing a million innocent people.
Collecting sales tax on S&H isn't what he was referring to. He's saying that forcing small businesses / bootstrapped startups to collect sales tax for every region of the country will stifle innovation by raising the barrier to entry so high that most people won't be able to enter the market.
There's a difference between video tapping someone walking down the street and installing hidden cameras on someones property. If the police would have video tapped them in an alley or walking down the street I doubt anyone would care.
Personally I'd rather go after the person doing the most harm to society. If you're not prepared to go after an armed thief or other violent criminals don't become a police officer.
I've had to go after both types (violent and non-violent) of criminal helping my dad bounty hunt. Can is be scary? Yes, but that's part of the job. You either learn to control your emotions or find another line of work.
Touche, I was using that phrase in the context of libcurl though. In this case none of those things happen ;).
Forgive me for not proof reading a post on the Internet. Hopefully, the world won't come to an end, but if it does I hope grammer nazis die first.
While those are valid points and should be corrected I still say it's the fault of the developers and not libcurl. Every option is documented well and the documentation is easy to find.
By default libcurl is secure. It's only insecure if you mess with an option. Personally, I'm glad that option is there.
This is the quote from the FAQ
>Q: How do I use cURL securely?
>A: CURLOPT_SSL_VERIFYPEER must be set to TRUE, CURLOPT_SSL_VERIFYHOST must be left to its default value or set to 2. Anything >else, such as setting CURLOPT_SSL_VERIFYHOST to TRUE, will result in the SSL connection being insecure against a man-in-the-middle attacker.
Yes, it is and it's bs that libcurl got caught in the middle. By default libcurl is secure.
Just to clarify Yehezkal didn't say they owed every at libcurl an apology. I did.
The compliant about libcurl is baseless. It's said VERY CLEAR in the documentation how to use the feature. If stupid devs can't figure it out that's hardly the fault of a library developer. I've never had an issue with it and I've used it in C, C++, and PHP.
To repeat what I said on the mailing list. If I break my thumb with a hammer do blame the hammer or do I blame myself?
As Yehezkel Horowitz pointed out on the mailing list.
This is the quote from the FAQ
>Q: How do I use cURL securely?
>A: CURLOPT_SSL_VERIFYPEER must be set to TRUE, CURLOPT_SSL_VERIFYHOST must be left to its default value or set to 2. Anything >else, such as setting CURLOPT_SSL_VERIFYHOST to TRUE, will result in the SSL connection being insecure against a man-in-the-middle attacker.
The real answer should be - cURL defaults are secure - no need for any code to use it securely.
==================
In general I think the very short answer for this publication should be RTFM.
The little bit longer answer would be -
1. cURL is a C code library - you can't set a value to TRUE since this is not in the language syntax.
So you has somewhere in your includes something like "#define TRUE 1" - you must be aware to this issue - this is an important part of the relations between computers/compilers/programmers.
2. Before setting any option to cURL - you should read the very clear documentation about this option.
==================
As to what we can do to make cURL even better (in order to protect unprofessional users that don't know what they are doing), We could make '1' to act as '2' (verify peer identity), and add a special magic value (i.e. 27934) that will act as todays '1' (check for CN existence but don't verify it).
I think they owe everyone at libcurl an apology.
My grand father has them all over his land. I was staying out there when they were building out a new site and holy shit did I want to kill someone. There was noise 24/7. At least he gets compensated for it.
argg.
"wasn't romantic enough"
I once had a girlfriend (shocking I know) that I was romantic enough and a previous boyfriend had bought her a star. She got mad when I went on about how he got scammed. It's a good thing she's gone.
The law is ridiculous hopefully it gets over turned.
I'm leery of Googles intentions when it comes to my personal data, but I continue to use their services for the reasons you state. They're simply the best I can find. If there was something at least as good I'd move over to them and use a different provider for each of the different services I use from Google.
I was around (like many people on /.) back when Microsoft was force feeding us IE. I chose to use other browsers, but they made it a real pain in the ass. Even web sites would intentionally break when they detected Opera! I still to this day have no clue why so many websites would purposely die when Opera was fully capable of rendering the pages fine. Google is nothing like that.
Who knew Samuel Jackson read ./ ?
I guess I'm odd, because if my lead says an idea of mine is stupid chances are it probably is and I don't get personally offended. He's not calling me stupid he's calling the idea I had stupid. For every good idea I have, I have a couple bad ones and I'd imagine most people are that way as well. Even if it's a good idea and he wants to go a different direction that's his prerogative. He's the lead. People shouldn't be so touchy that they're personally offended by every discussion their boss makes.
One of my favorites was Toneloc.