It is not just the forums, it is in the php documentation itself. For instance, the documentation for the 'date()' function on the php.net website has the following example code:
The problem with this example is that the date() function can return a different value every time it is called - because time keeps on ticking (into the future). So this code has a good chance of failing at any midnight, end of month, or end of year.
Many of the contributed posts at the end of that page also make the same mistake.
A few years ago I posted a friendly comment saying that you are better off getting the timestamp once and then manipulating the fields individually instead of calling date with no timestamp repeatedly.
Instead of any rebuttal or comment to my posting, they just deleted it.
It is scary to think of how many websites out there use broken code like this. I hate when example code is flawed. Avoid doing transactions at midnight server time!
Explode was the wrong term. I have worked with R&D Cyclic Battery Charger devices which the battery companies used to conduct long term charge profile experimentation. 'Explode' was the term used but in reality they meant 'over heat'. The overheating however can cause flames/fire, but not an explosion.
Also, one of my pet peeves with 'snopes' is that they say that cell phones can't/don't cause gasoline vapour to explode, however their analysis and science behind the statements is based on the theory that the only way for this to happen is for the radio signals to cause some sort of spark.
However we all know that improperly charged NiCd and Lithium ion batteries can explode by themselves - what happens if your cell phone explodes when you are at the gas pump filling your card with gas?
Strangely, snopes.com never responded to my email stating this question...
Fantastic! You should re-publish it for example's sake. Another one I love looking at is Peter Jenning's MicroChess for 6502 which is just a bit over 1 K byte as well.
--jeffk++
The reason I have been wishing for mac os x support in vm's (but not server support!) is because I hate that when I bought a new laptop it came with tiger and panther would not install on it. So if I wanted to sell a program that is validated to work on panther, I had to keep old hardware around that would run panther. Same issue now with leopard and tiger. If I could run the o/s in a vm like I do with windows 2000, xp, and vista, then I'd be able to validate the software for all the o/s's easily. Even win98 if I had to, even without an old computer that could still run it.
I can vouch for that. It was a long time ago, I think around Visual C++ studio V4 or V5, most definitely before V6- The EULA said that you could not use the tools to create programs that competed against their Microsoft Office suite.
It wasn't poorly constructed logic, I was being a bit snarky towards Sony - I did not say that the cell isn't 10x as powerful as a ps2. The cell is hard to program and Sony is being lazy.
Re-read my message, you failed at basic reading comprehension.
Good luck in your peace making attempts.
Too bad there aren't enough friendly people wanting peace.
Sony's choices make it less likely that I will get a PS3, even though I have a PS2, and do CELL PPU/SPU programming at work for non-game systems, and at work we have a PS3 running linux for tests. It is a bad choice that sony made, and sony most definitely has the tech and people power to implement a ps2 in a few CELL SPUs.
What does make install not war actually mean for you? Is that just a slogan that you repeat but don't live?
My History
--jeffk++
If CSIRO has pending issues with companies violating their existing patents on 802.11G, then why would IEEE believe that 802.11N would be any different?
I used to think this way when I heard about the Canadian Government budgeting $120 million dollars on a database and website for their Gun Registry, which ended up costing almost $2 billion. At the point where they spent half a billion dollars on the IT infrastructure alone it still did not work. Phones were not answered, web sites crashed, FAX lines busy.
I then thought "Oh hey I could have built them a distributed database and front end that would work for only about $20 million!"
But that is not what they wanted... They wanted to spend more and they didn't care if it worked. It's all about the kickbacks.
One of the things that I hate about svn is that not only is everything in there duplicated, but svn can't easily revert everything in a tree, I need to rm -r -f X and then svn cleanup; svn update...
Current versions of the JVM are not vulnerable to this attack because the Java security policy has been changed. Applets are now restricted to connecting to the IP address from which they were loaded.
if the web browser and applet are connecting to the server via a proxy, then neither the web browser nor the applet have control over "connecting to the same IP address from which they were loaded"
Therefore, if a proxy is involved then current versions of the JVM are still vulnerable.
Fortunately, the paper goes into detail about this later on:
Proxies. If a client uses an HTTP proxy to access the web, these mitigations do not prevent multi-pin attacks using Java applets. Clients using an HTTP proxy request web ob jects by URL, not by IP address.
The irony is that many organizations use proxies to implement both content and virus filtering. The use of these proxies themselves makes their web browsers MORE susceptible to these pinning attacks.
If the researchers had control of which bots to use during the game, then the researchers were playing the game and the computer was not. Let's see how well the computer does when IT makes all the decisions.
I developed The Internet Filter back in 1995, to help show that parents can have the power to control what their children see on the internet and that specifically, this is the parent's responsibility and not any governments.
After it was released, we licensed some of the technology to a third party that used their own database which catered more to the right wing conservative customer base.
Then, the whole Monica Lewinsky thing came to light. The filter blocked the government web site which contained the explicit details of the dress, cigar, and other fun stuff.
But of course, this was not what the customer base wanted. They wanted to be able to read about all the dirty details that the president did.
Turns out that what is "Pornographic" is highly politically and culturally specific.
It was then requested that "All *.gov domains should not be blocked even if the content would have been blocked if it were on a *.com domain"
All that needs to be done is for a hacker to find out what specific software is used by the police, and subvert it so that the hacker can use it to attack people while the spyware detector software purposely ignores it, thinking that it is from the police.
After a point, I think that this was not really their plan. I remember when they added dummy virtual methods in all their c++ class definitions so that they could add methods without breaking their C++ ABI. Probably the best example of why C++ was not a good plan right in the beginning.
indent is not good for c++, specifically with the < and > used in templates and the 'public:' etc keywords... "bcpp" is nicer, but not good enough yet for myself, requires a lot of setup. I think boost uses it though...
Slashdot Mirror
It is not just the forums, it is in the php documentation itself. For instance, the documentation for the 'date()' function on the php.net website has the following example code:
The problem with this example is that the date() function can return a different value every time it is called - because time keeps on ticking (into the future). So this code has a good chance of failing at any midnight, end of month, or end of year.
Many of the contributed posts at the end of that page also make the same mistake.
A few years ago I posted a friendly comment saying that you are better off getting the timestamp once and then manipulating the fields individually instead of calling date with no timestamp repeatedly.
Instead of any rebuttal or comment to my posting, they just deleted it.
It is scary to think of how many websites out there use broken code like this. I hate when example code is flawed. Avoid doing transactions at midnight server time!
--jeffk++Thanks for the clarification.
Explode was the wrong term. I have worked with R&D Cyclic Battery Charger devices which the battery companies used to conduct long term charge profile experimentation. 'Explode' was the term used but in reality they meant 'over heat'. The overheating however can cause flames/fire, but not an explosion.
--jeffk++
Also, one of my pet peeves with 'snopes' is that they say that cell phones can't/don't cause gasoline vapour to explode, however their analysis and science behind the statements is based on the theory that the only way for this to happen is for the radio signals to cause some sort of spark.
However we all know that improperly charged NiCd and Lithium ion batteries can explode by themselves - what happens if your cell phone explodes when you are at the gas pump filling your card with gas?
Strangely, snopes.com never responded to my email stating this question...
--jeffk++
Fantastic! You should re-publish it for example's sake. Another one I love looking at is Peter Jenning's MicroChess for 6502 which is just a bit over 1 K byte as well.
--jeffk++
I had some MRI's - the music was piped through plastic hoses into my ears - no speakers or wires near the magnet.
I found myself falling asleep. I think it best to listed to heavy/hard loud fast music instead of the sleepy stuff.
--jeffk++
Sounds like a cell phone jammer would be a prime tool for terrorists!
--jeffk++
The reason I have been wishing for mac os x support in vm's (but not server support!) is because I hate that when I bought a new laptop it came with tiger and panther would not install on it. So if I wanted to sell a program that is validated to work on panther, I had to keep old hardware around that would run panther. Same issue now with leopard and tiger. If I could run the o/s in a vm like I do with windows 2000, xp, and vista, then I'd be able to validate the software for all the o/s's easily. Even win98 if I had to, even without an old computer that could still run it.
jeffk
I can vouch for that. It was a long time ago, I think around Visual C++ studio V4 or V5, most definitely before V6- The EULA said that you could not use the tools to create programs that competed against their Microsoft Office suite.
--jeffk++
It wasn't poorly constructed logic, I was being a bit snarky towards Sony - I did not say that the cell isn't 10x as powerful as a ps2. The cell is hard to program and Sony is being lazy.
Re-read my message, you failed at basic reading comprehension.
Good luck in your peace making attempts.
Too bad there aren't enough friendly people wanting peace.
--jeffk++
Sony's choices make it less likely that I will get a PS3, even though I have a PS2, and do CELL PPU/SPU programming at work for non-game systems, and at work we have a PS3 running linux for tests. It is a bad choice that sony made, and sony most definitely has the tech and people power to implement a ps2 in a few CELL SPUs. What does make install not war actually mean for you? Is that just a slogan that you repeat but don't live? My History --jeffk++
But when the Cell processor was first being introduced they were saying it had much more than 10x the cpu power of the ps2!!!
This is a cop-out, either the CELL is not as good as they thought or they are very lazy - either way their sales are going to be reduced.
--jeffk++
A fool and his money are BEST parted.
The last thing you want are fools running around with economic power.
It can be viewed that it is on of your responsibilities to humanity is to extract money from fools.
--jeffk++
If CSIRO has pending issues with companies violating their existing patents on 802.11G, then why would IEEE believe that 802.11N would be any different?
--jeffk++
While that is true, This graph of CAD vs EUR shows CAD slightly gaining ground on the EUR.
--jeffk++
Try the new mac mini's with the Core 2 Duo in it. I had to use some and was very surprised at how fast they are!
--jeffk++
I used to think this way when I heard about the Canadian Government budgeting $120 million dollars on a database and website for their Gun Registry, which ended up costing almost $2 billion. At the point where they spent half a billion dollars on the IT infrastructure alone it still did not work. Phones were not answered, web sites crashed, FAX lines busy.
I then thought "Oh hey I could have built them a distributed database and front end that would work for only about $20 million!"
But that is not what they wanted... They wanted to spend more and they didn't care if it worked. It's all about the kickbacks.
--jeffk++
One of the things that I hate about svn is that not only is everything in there duplicated, but svn can't easily revert everything in a tree, I need to rm -r -f X and then svn cleanup; svn update...
jeffk
One point placed in the paper:
if the web browser and applet are connecting to the server via a proxy, then neither the web browser nor the applet have control over "connecting to the same IP address from which they were loaded"
Therefore, if a proxy is involved then current versions of the JVM are still vulnerable.
Fortunately, the paper goes into detail about this later on:
The irony is that many organizations use proxies to implement both content and virus filtering. The use of these proxies themselves makes their web browsers MORE susceptible to these pinning attacks.
--jeffk++If the researchers had control of which bots to use during the game, then the researchers were playing the game and the computer was not. Let's see how well the computer does when IT makes all the decisions.
--jeffk++
I developed The Internet Filter back in 1995, to help show that parents can have the power to control what their children see on the internet and that specifically, this is the parent's responsibility and not any governments.
After it was released, we licensed some of the technology to a third party that used their own database which catered more to the right wing conservative customer base.
Then, the whole Monica Lewinsky thing came to light. The filter blocked the government web site which contained the explicit details of the dress, cigar, and other fun stuff.
But of course, this was not what the customer base wanted. They wanted to be able to read about all the dirty details that the president did.
Turns out that what is "Pornographic" is highly politically and culturally specific.
It was then requested that "All *.gov domains should not be blocked even if the content would have been blocked if it were on a *.com domain"
--jeffk++
The problem is not the wireless standard, it is the other parts like DHCP server and NAT...
Some wireless router's firmware just plain sucks.
--jeffk++
All that needs to be done is for a hacker to find out what specific software is used by the police, and subvert it so that the hacker can use it to attack people while the spyware detector software purposely ignores it, thinking that it is from the police.
--jeffk++
Yeah, but the wireless access points at the Apple Campus are probably Airport Extreme base stations. Perhaps that is why it works there...
jeffk
After a point, I think that this was not really their plan. I remember when they added dummy virtual methods in all their c++ class definitions so that they could add methods without breaking their C++ ABI. Probably the best example of why C++ was not a good plan right in the beginning.
--jeffk++
indent is not good for c++, specifically with the < and > used in templates and the 'public:' etc keywords... "bcpp" is nicer, but not good enough yet for myself, requires a lot of setup. I think boost uses it though...
--jeffk++