PHP has pretty much fixed SQL injection hacks, at least for MySQL, something TFA you quote mentions on page 74. Given that this is the majority combination on web-facing machines, shouldn't that blunt the "LAMP installations are also susceptible to SQL injection" if only by quantity? I mean, I agree with your counter-FUD reasoning, but it seems to me that this blunts your whole sentence, MySQL+PHP being two pillars (and the last half) of LAMP.
After agonizing over a problem that in theory should have been made simpler by operator overloading (I'm trying to do some numerical integration using a multi-precision library), I typed "c++ sucks" into Google. Lo and behold, but Linus Torvalds agrees with that sentiment:
C++ is a horrible language. It's made more horrible by the fact that a lot
of substandard programmers use it, to the point where it's much much
easier to generate total and utter crap with it. Quite frankly, even if
the choice of C were to do *nothing* but keep the C++ programmers out,
that in itself would be a huge reason to use C.
...
C++ leads to really really bad design choices. You invariably start using
the "nice" library features of the language like STL and Boost and other
total and utter crap, that may "help" you program, but causes:
infinite amounts of pain when they don't work (and anybody who tells me
that STL and especially Boost are stable and portable is just so full
of BS that it's not even funny)
inefficient abstracted programming models where two years down the road
you notice that some abstraction wasn't very efficient, but now all
your code depends on all the nice object models around it, and you
cannot fix it without rewriting your app.
In other words, the only way to do good, efficient, and system-level and
portable C++ ends up to limit yourself to all the things that are
basically available in C. And limiting your project to C means that people
don't screw that up, and also means that you get a lot of programmers that
do actually understand low-level issues and don't screw things up with any
idiotic "object model" crap.
And the ridiculous thing is, this wasn't written ten years ago when C++ was still going through the ISO standardization process — it was written last year!
For the record, I'm inclined to agree with Torvalds. The main problem with C++ is its insane levels of complexity and its unerring eye for adding subtle and difficult-to-diagnose problems once things like multiple inheritance get factored in.
High officials often seem to think the consequences of privacy-invading legislation will only occur to other (read: little) people. It's good to remind people in those positions that they do not have absolute power, and that they need to think about second order consequences.
I don't get why China gets as many breaks as they do, including Most Favored Nation status (permanently!).
The 2008 Olympics are looking more and more like the 1936 edition.
Maximum RPM was last updated in 1997 and the suite has since seen some rather sizeable changes. The reason I was given back in 2001 or so regarding the absence of updates was higher priorities elsewhere. He should look in-house before throwing stones at others.
I got a copy of the PDF from the Bittorrent posted upthread, and the best part is on page 100 (so far), talking about dealing with lawsuits ("Never if you can help it"), what to do when being investigated ("don't co-operate"), and how to deal with "entheta press":
1. Tell them by letter to retract at once in the next issue.
2. Hire a private detective to investigate the writer...
3. Have your lawyers or solicitors write the magazine threatening suit...
4. Use the data you got from the detective (!!) at long last to write the author of the article a very tantalizing letter. Don't give him your data on him. Just tell him we know something very interesting about him and wouldn't he like to come in and talk about it. (If he comes, ask him to sign a confession of collusion and slander -- people at that level often will, just to commit suicide -- and publish it in a paid ad in a paper if you get it.) Chances are he won't arrive. But he'll sure shudder into silence.
The real problem I had with Moore's citing of Cuba is that we have no idea how good their official statistics are. Also, if anyone is getting shafted by their medical system, was there any real chance of Moore -- or any outsider, for that matter -- finding out about it?
I read a study prepared for Caltrans back in the 70's that deduced exactly the same thing. The state of traffic "science" seems to be about repeating the same insight over, and over, and over...
A battery stores energy in chemical form (sulfuric acid eventually reacts with lead, for instance), while a capacitor uses physical effects, storing energy in an electrostatic field using an insulator between two conducting plates.
Focus fusion is, so far as I can tell, nonsense. Eric Lerner spends way too much time defending his reputation in places like Slashdot and Wikipedia, defending his dismissal of the Big Bang, a position rejected by most mainstream cosmologists. It is significant that he has been banned from editing his own Wikipedia page. He has never completed an advanced degree anywhere.
Some time ago, I discovered a useful BS detector kit on the Skeptics' Forum, and Lerner failed a bunch of these tests, especially test 7 ("Is the development always "on the verge" of being ready? Is the "establishment" always "wrong", and the principal always right?") and test 8 ("Show me peer-reviewed papers and presentations at mainstream scientific conferences by the principals" -- Lerner hasn't published in any of the relevant fusion journals, and most of his peer-reviewed papers are very old and in cosmology journals far afield from fusion).
The attractiveness of low cost manufacturing in China seems to be inevitably offset by some other negative, whether it be the creation of instant competitors once the contract manufacturer figures out how to reach their customers' customers, or ersatz ingredients (melamine in dog food last year for instance).
Remind me again, why is free trade with China such a great deal for the developed world?
Clearly, he hasn't read that the current Internet has a provision for this: the Evil Bit set in the IP header, as specified in RFC 3514, published 1 April 2003.
Re:Get off the security high horse.
on
Gmail CAPTCHA Cracked
·
· Score: 5, Insightful
Not all Admins are you. Some of us actually know how to keep a Windows machine secure. Ignorance of the facts isn't an excuse.
Yet it is the case that sufficiently large numbers of Windows users are unable to keep their machines secure for a botnet to accomplish this task. The fact that Windows can be made secure does not even remotely mean that this will be done in practice.
Any machine Linux or Windows will be exploited and gang raped if it's not regularly updated and kept clean with the permissions system.
I would like to hear how this is actually being done in the wild on Linux/*BSD/MacOS/etc. The fact is that it isn't.
This is a terrible idea, and here's why: it immediately turns something already of dubious benefit to society (copyrights, which now extend into infinity every time Congress sees fit to expand them) into a cash cow for the government. This ensures there will never be any discussion of reducing copyright duration, something that's long overdue.
These outages are occurring in places where the political system is, to put it gently, corrupt. Wake me when this becomes the norm in the U.S. (Louisiana and certain other states perhaps excepted).
Slashdot Mirror
PHP has pretty much fixed SQL injection hacks, at least for MySQL, something TFA you quote mentions on page 74. Given that this is the majority combination on web-facing machines, shouldn't that blunt the "LAMP installations are also susceptible to SQL injection" if only by quantity? I mean, I agree with your counter-FUD reasoning, but it seems to me that this blunts your whole sentence, MySQL+PHP being two pillars (and the last half) of LAMP.
For the record, I'm inclined to agree with Torvalds. The main problem with C++ is its insane levels of complexity and its unerring eye for adding subtle and difficult-to-diagnose problems once things like multiple inheritance get factored in.
High officials often seem to think the consequences of privacy-invading legislation will only occur to other (read: little) people. It's good to remind people in those positions that they do not have absolute power, and that they need to think about second order consequences.
I don't get why China gets as many breaks as they do, including Most Favored Nation status (permanently!). The 2008 Olympics are looking more and more like the 1936 edition.
Maximum RPM was last updated in 1997 and the suite has since seen some rather sizeable changes. The reason I was given back in 2001 or so regarding the absence of updates was higher priorities elsewhere. He should look in-house before throwing stones at others.
There. Fixed.
The real problem I had with Moore's citing of Cuba is that we have no idea how good their official statistics are. Also, if anyone is getting shafted by their medical system, was there any real chance of Moore -- or any outsider, for that matter -- finding out about it?
I read a study prepared for Caltrans back in the 70's that deduced exactly the same thing. The state of traffic "science" seems to be about repeating the same insight over, and over, and over ...
They continue to miss major deadlines. If they're right, it's a huge game-changer. If they're wrong, they wouldn't be the first.
A battery stores energy in chemical form (sulfuric acid eventually reacts with lead, for instance), while a capacitor uses physical effects, storing energy in an electrostatic field using an insulator between two conducting plates.
No story about ultracapacitors would be complete without a reference to EEstor. As usual, they've shifted their delivery goal to late 2008.
The implications are that it still won't work.
"They're kids. Scare 'em."
Some time ago, I discovered a useful BS detector kit on the Skeptics' Forum, and Lerner failed a bunch of these tests, especially test 7 ("Is the development always "on the verge" of being ready? Is the "establishment" always "wrong", and the principal always right?") and test 8 ("Show me peer-reviewed papers and presentations at mainstream scientific conferences by the principals" -- Lerner hasn't published in any of the relevant fusion journals, and most of his peer-reviewed papers are very old and in cosmology journals far afield from fusion).
The attractiveness of low cost manufacturing in China seems to be inevitably offset by some other negative, whether it be the creation of instant competitors once the contract manufacturer figures out how to reach their customers' customers, or ersatz ingredients (melamine in dog food last year for instance). Remind me again, why is free trade with China such a great deal for the developed world?
Clearly, he hasn't read that the current Internet has a provision for this: the Evil Bit set in the IP header, as specified in RFC 3514, published 1 April 2003.
from direct access to the Internets. The only secure MS machine is one with its Ethernet plug removed.
Imagine, for instance, if health care were both nationalized and paid for by cigarette taxes.
This is a terrible idea, and here's why: it immediately turns something already of dubious benefit to society (copyrights, which now extend into infinity every time Congress sees fit to expand them) into a cash cow for the government. This ensures there will never be any discussion of reducing copyright duration, something that's long overdue.
These outages are occurring in places where the political system is, to put it gently, corrupt. Wake me when this becomes the norm in the U.S. (Louisiana and certain other states perhaps excepted).
Richard Duncan is a paranoiac lunatic hack.
Looks like one of their senior people is in with George Soros. So they have potentially some very serious money behind them now.
... the Stephen Norris group. When do the judges get sick of barratry?