Is this another Array bound check not being performed? Another I'm copying huge chunks of weird characters into memory and overwriting crap?
With all the extra horspower can we not get a something added to C++ to make this happen?
DOSs seems harder to fight against. Is it bad code that loops for ever or is just not optmized. I bet most libraries could be found to have some of that.
Or is it that if you not some IT guy or developer it isn't all that bad. People don't give a crap about standards or even really security. That battle is for us and MS has "largely" fixed things. Security is greatly improved, stanards are more closely followed, and speed has been improved.
The battle should be with corps that are still using IE6, pirates that won't just use Linux, and companies that choose to write and adpot applications written with ActiveX. I say Amazon and everyone else should put a stop using IE6 on our site banner to get people off of it. I bet if Google did that on their main page we'd have full percentage points more of IE 7 or 8 users within days.
I've been using some form of a keycard to get into my building/office/server room for how long now?
Could a little USB reader integrated with the OS really be all the expensive.
Getting this integrated with the browser world might take some time...but I could see a good password saver attaching your keycard to your ID and encrypting it up. Something that keyloggers couldn't get to. Malware might be a harder problem, but if the program is smart enough to detect access to the metabase of password it might actually become a malware detector.
At the very least logging into Active directory at work would be swiping my card, encrypting the number, having Active directory have the number in my card, and havign the kernel active. If someone steals my keycard they can access my machine, but then there is some physical trail. Maybe have me put in small password after my keycard swipe to get in if you're really worried about that.
Then put a web cam on my desktop and have it record when the keycard is swipped...okay maybe that's a bit ridoulous. In all honesty making my user have a 12 digit password is as well....at the end of the day no one wants to hack the normal office works user id and password because it doesn't have meaningful data. The IT worker and the HR person maybe...
It's not a small amount, but considering there are 100s millions of machines around the world it is a pretty small amount.
How many machines out there have a HD failure everyday? I'm guessing it is less than 50,000, but probably not much lower. Google and wiki searching only gave me numbers like 3% annualized failure rate up to 13%.
Once the system is rebooted what kind of error message will they see? OS not Found from the bios? I wonder how many users will simply think their harddrive failed.
Cross platform is a huge reason why I've been loving Mono.
I've used java for years because it took common programming tasks and made them not only cross platform, but some what standard..NET/Mono borrowed from that.
Think of network sockets, file access, threads, and a bunch of other things that quite frankly are annoying to do in C or C++. Even worse they are way different on Windows and Linux and so you end up writing big chunks of code twice...for really no reason. Apache portable runtime hopes to do it for C++ apps...but it's quite frankly a pain.
Bottom line if you want to write a GUI based type app Mono is better than Java Swing and better than playing around with C++ and GTK+...unless you need something to the scale of Firefox or openOffice. Even then I think Mono could scale.
The Java VM was a good idea, but Sun never bothered to port other languages to it. With Mono you get a choice of languages, a common library, and apps that really can run anywhere without a whole lot of extra work.
One problem we have is that we want to open many of the same applications more than once. Imagine wanting to login to slashdot with two different logins.
Right now in IE and Firefox each tab shares the same cookie space. So when you login with one tab you'll notice the cookie in the other tab getting "overwritten".
Now with multiple processes is this the case. When one tab "open another window" resutling in another tab are these two tabs in the same processes sharing cookies and the like?
The browser is general is a horrilbe state machine. It would be nice if Javascript would support some form of lighter weight cookie that could be access between page loads.
I think the thing missing is some underlying infrastructure that companies can tap into. I used to subscribe to Slashdot, but quite frankly I don't anymore because I'm just too damn lazy.
The cable market tends to work okay. You can argue price, service, etc, but the idea of subscribing to a master provider and getting sub-services seems like something internet companies could really use.
Internet TV is begging for this. I don't mind paying for Hulu...even if it does have some advertising in it. I like my cable TV, but the entry point for cable channell is still way to high. Internet TV chanells could easily tie into Hulu...which in turns ties into a large subscription.
I'm suprised Google hasn't built this to be honest. It be nice to pay for Hulu thru my Google account...any number of valuable services would popup just like iPhone apps.
2D layout The "div"/"clear" model of layout was a flop. Horrors of Javascript are needed just to make columns balance. Absolute positioning is overused as a workaround for the limits of "div"/"clear". (Text on top of text happens all too often.) Tables were actually a better layout tool, because they're a 2D system. HTML needs a 2D layout model that can't accidentally result in overlaps. There are plenty of those around; most window managers have one. There's been a quiet move back to tables for layout, but people are embarrassed to admit it.
Embarrassed or intimidated. Where the hell did the move to DIVs even come from. To this day I never understood it...I guess a bunch of CSS nose in the air aholes. CSS could have just as easily allowed styling on TDs.
Does this mean we won't have it for Diablo III as well? Plz noooooooo.
Does bnet\sc use UDP? Are they going to fix all the issue with two machines being on the same nated subnet? Will they auto pick a random UDP port so NATing worked
If the server and clients are on a LAN the packets will go to the person's box who started the game(the server). They will likely be desitened for the external(internet) IP...so even though you are just sending a packet to the machine on same switch you are plugged into you are going to route thru your cable/modem. It will have to go thru NATing...what a waste and a potential for LAG if you have a crappier router. Add 8 machines being NATTed and I don't know what will happen. Not to mention if you Dad is watching Hulu in the other room your local gaming should not be affected.
Hopefully they add an option where you can tell the game you are on the same subnet as the server so it will use the local IP. For security the server should have to say it is okay so you don't give out your internal IP scheme.
I still think it is a bunch of stupid nonsense for selfish reasons(how much money did they make reselling SC1 for years) and not good consumer reasons like they are pitching it. Leave it in Aholes.
Probably already is one of these, but can we get a plugin for Firefox that dumbs down the browser for them.
I think one of the toy company's had a toy/software setup where kids could visit a limited amount of sites using a special controller. Something to keep them out of trouble.
I want to give my kid a login with just a link to firefox and this plugin on the desktop. They click it an are presented with a list of safe sites. Any attempt to go outside of the domain is blocked and the sound card goes crazy with ("hey mom and dad get your ass in here and watch your kid")....hell have it text me. If the domain is safe I simply type a password and it gets added.
Sure just surfing in Firefox will prevent some of this, but I don't want any chance of any sort of firefox bug getting exposed. Remember that even firefox can fall victim to some sort of buffer overflow.
A little offtopic, but I think a Live CD of Ubuntu that accomplishes this would be great. Just give my kid an older computer with no harddrive and the CD and let them go...
I've seen this as a big issue with mashups of all sorts for a while.
When google was down a few months ago many sites I visited...including this one...had issues. Turns out that google was only down for my ISP due to a routing problem, but it didn't matter. The google analytics used by the site failed to load causing some weird issues. Just think how many sites are depenedent on services from third party's like google.
This to me is more of a general browser web 2.0 issue that needs to get addressed. If the ads where inserted using some sort of ajax control the news sites could easily load their content and then stream the ads in after the main content was up.
Using the html "script" tag doesn't have a lot of controls for when it loads a script that doesn't compile right or when it takes forever to load. A timeout attribute....wrap in try/catch...ignore on compile error...and some other attributes might be useful. The same would go from image tags and all other tags that have some sort of src attribute.
How long before you don't have to create the embryos to being with. Sure eggs come at a premium, but my little swimmers are a plenty. Is it possible to test individual sperm and eggs? I'm guessing no today without destroying them, but that won't always be true.
The other thing is you can only create the "best" kids that the two parents could possibly create. My wife and I are both well under 6 feet tall...I don't think there is anything in this process that could lead to a 7 foot tall BBall player.
Why the hell would parents want to choose this stuff anyways? I wnat to know if my kid will have bad skin, bad eyes, or will be super hairy....don't care of the color perse. Since my wife has light hair and I have dark(and I'm a f'ing monkey) choosing light color skin would have more to do without them being super hairy and being picked on for it.
I often find that the applications coming from China and India to be poor. They are often ugly and hard to use.
I think we need to differentiate between being able to write an Algorithm and being able to produce something like ITunes.
Part of this is actually having talented designers and people who can come up with good specifications and use cases and everything else that goes into it.
These code tests rarely talk about coming up with a good application architecture or good design. Sure we need people writing device drivers, but we also need the higher level tasks done as well. I don't think they are represented well.
I often try the Google code challenge only to feel bored. I guess I don't really like solving "shortest path" type problems. I'm more about creating a data model, interface, and ultimately a tool with a good user expeirence. Something that solves a day to day task.
Maybe we should have application challenges where we say "write the easiest to use calculator":)
Will any certification companies even work with them now? It is the right of any business to refuse service to any other business correct? If they cannot find a company to certify them in PCI then they will loose their rights to process cards right?
I swear IT folks have shorter memories than even the average American retard.
When IE came to dominance it came because Netscape came to pure suckiness. Does anyone here acutally remember using Netscape? My god it was horrible.
Hell netscape wanted to use layers. LAYERS!!!! over divs. Everyone got their panties in a bundle because MS introduced IFRAMES...some thing badly needed and DIVs still need a SRC attribute if you ask me.
Firefox 2 and up is great. But that was only a few years back. IE has to deal with a whole era of legacy that Firefox does not. MS should be yelled at for ActiveX, but in reality the problem is with HTML. Many Intranet apps used by call centers and the like really didn't work all the great in HTML 3.2...even 4 when it first came out. Hell AJAX is just now getting somewhat stable...if you want to call it that. Libraries like JQuery and Prototype have turned a piece of shit lanaguage like Javascript into a usable one...a real language wouldn't need a library just be useable.
Web "standards" are treated as some sort of god ordaned thing. Or even worse like stanards such as TCP/IPv4. IPv4 and TCP are incredibly simple compared to HTML. HTTP 1.0 and 1.1 are similiar in complexity, but HTML is like an entire GUI API. Add CSS in there and my god what a mess.
I've been developing since I was 12 (30 now) and I honestly have no desire to anymore with this hunk of shit we call the web stack. Even this sight slashdot is going to hell as more and more DHTML comes into play. At work it looks entirely different. I surf in IE, Firefox, and Chrome at home. At work I'm stuck on IE 7. I see differences in all three and worse I see Javascript just randomly breaking. As most of us have seen one bad line of JS and all the JS stops(ever had Google analytics fail?)...so the page then renders wrong...or won't submit because every anchor in slashdot has an onclick handler..I'm guessing added by some JQuery like piece of code that scours the page for them. DOM tranversing is incredibly buggy in all browser and even between releases. I have had tried and ture Prototype library code just not work on some form in Firefox...then pull it up in IE and bam.
JS performance has gotten way better with Firefox and Chrome. And developers are taking advantage of the finally optmized versions. Why the hell was it so slow in the first place huh? And of course I'm already seeing Firefox and IE just "hangin" while a JS happily loops over huge sections of the ever increasinly bloated DOM. Talk about bloatware...the DOM is getting out of control.
Hulu is now releasing a full desktop app, eBay put out an AIR app, iTunes is a desktop app. Flex and Silverlight will have some limited footprint. The vast majority will be newspaper sights where the HTML is just lots of formatted text. Intranet apps will likely be Flex and Silverlight or heavy Ajax stuff with one browser still being "recommend over another". Chrome is already putting out example that just run in it.
At the end of the day I think we are moving away from the browser. This is a just a futile effort by the EU. They just want to punish IE...maybe a few want to help the end users...but if that was the case they'd invest money in Ubuntu and bring it the rest of the way.
Unless it is something you use at work for 8 hours a day.
Flex is not used by Amazon.com...although eBay has a nice AIR app for the power bidder.
Really..I think I spend no more then 45 minutes on anyone site. After that I start to think about how I can get to it without my browser.
I haven't logged into gmail.com since my last vacaction. I use a full featured email reader and IMAP.
Flex is useful for those in house apps that have people on them 8 hours a day and need a high level of interactivity and also have a smaller more controlled base of system they run on.
There are plenty of sites that don't even need JS like you suggest, but hit the real world and you'll see plenty of sales/scheduling/accounting/ and other "business critical" apps that really benefit from a think client type of presentation. That is where AIR and Flex play well. The 500 bucks a developer cost is nothing to these companies.
I'm no fan of DRM or good friedns with the *AAs, but I'm not their enemy either.
Yes I'd like the songs I buy on Apple to be MP3s, but downloading songs for free from thepiratebay is not protesting anymore it is just stealing.
What pisses me off the most about my friends who still download crap illegally is that it is not forming the market we need. Instead form consumer protection groups and force...or maybe even just nicely ask...the companies to give us the content a little differently.
Honestly I think the powers that be have no f'in clue. Really they just need to be told what to do...but instead we all go off and download crap illegally...and then wonder why the RIAA and MPAA exists? Really...what are we f'in stupid.
DRM is a result of our stupidity. Stop downloading and start organizing. but I guess we are the lazy get everything for free generation so I bet we will just pay piratebay for a VPN connection instead of supporting music. And the end result is I have to listen to "gotta get that boom boom boom" on the radio now.
MS could do this with silverlight. Adobe withe Flex or Air...it just won't work. It works for the IPhone because Apple has a monopoly on the application. Sure you could hack on an application, but most users just won't.
The PC doesn't have a central source of applications. There is the web, downloads.com, individual authors, etc. etc.
What couldn't be delivered in a browser via Ajax, Silverlight, AIR/Flex that this could possibly do?
Furthermore mobile platforms have nice little niche applications. I would like a google desktop app versus using google maps..it'd be nice it if was built into Windows, Linux, Mac.
What I'd rather see is MS, Apple, and the Linux community create a decent plugin infrastrute for the OS and have an easy to use "Find extensions" program. Imagine if the search in Vista's start menu could accept an address and pop to google maps via a native app. I'd like to see the usability of mobile apps ported to the desktop.
Serious answer. Apache is a modular beast and since doesn't get blaimed for modular problems like this.
There have been issues even bigger in various mods like mod_php.
Even code red was a problem with Internet printing and not really the core IIS. Maybe IIS should have blocked it and already had URLScan, but ultimately it was just passing a URL along some C++ code that blew up. MS created that.DLL so we can blame MS..but blaiming IIS itself was slightly off.
The core of both IIS and Apache have been pretty well hardened. Hence why WebDav is turned off in IIS 6. Even.ASP has to be turned on during setup.
MS puts out it's own mods essentially...where Apache would have a different team working on WebDAV. If the same "exploit" was found in mod_webdav who could we really blame. Yell at the Apache foundation...no we would professionally fix the issue. Maybe some flaimbaiters on the other side would yell..."see open source is less secure".
Softwares has bugs, some of them are security related. When open source creates them they are presented as bugs...when MS creates them it is some kind of great conspiracy to rule the world. Some guy just like you wrote this bad code and is probably feeling like crap today. Some tester let it get thru and is feeling really crappy today. A bunch of dudes in at both MS and the rest of the security community are pulling up their britches and getting it fixed...move along nothing to really see here.
Slashdot Mirror
Is this another Array bound check not being performed? Another I'm copying huge chunks of weird characters into memory and overwriting crap?
With all the extra horspower can we not get a something added to C++ to make this happen?
DOSs seems harder to fight against. Is it bad code that loops for ever or is just not optmized. I bet most libraries could be found to have some of that.
Or is it that if you not some IT guy or developer it isn't all that bad. People don't give a crap about standards or even really security. That battle is for us and MS has "largely" fixed things. Security is greatly improved, stanards are more closely followed, and speed has been improved.
The battle should be with corps that are still using IE6, pirates that won't just use Linux, and companies that choose to write and adpot applications written with ActiveX. I say Amazon and everyone else should put a stop using IE6 on our site banner to get people off of it. I bet if Google did that on their main page we'd have full percentage points more of IE 7 or 8 users within days.
99.9999999 percent of all complaints about Vista is actually Office 2007 Vista. People are creatures of habit if we needed any more proof.
Yeah, and my grand dad had to walk up three hills in the snow to get to work. I got to take a fart filled bus.
I've been using some form of a keycard to get into my building/office/server room for how long now?
Could a little USB reader integrated with the OS really be all the expensive.
Getting this integrated with the browser world might take some time...but I could see a good password saver attaching your keycard to your ID and encrypting it up. Something that keyloggers couldn't get to. Malware might be a harder problem, but if the program is smart enough to detect access to the metabase of password it might actually become a malware detector.
At the very least logging into Active directory at work would be swiping my card, encrypting the number, having Active directory have the number in my card, and havign the kernel active. If someone steals my keycard they can access my machine, but then there is some physical trail. Maybe have me put in small password after my keycard swipe to get in if you're really worried about that.
Then put a web cam on my desktop and have it record when the keycard is swipped...okay maybe that's a bit ridoulous. In all honesty making my user have a 12 digit password is as well....at the end of the day no one wants to hack the normal office works user id and password because it doesn't have meaningful data. The IT worker and the HR person maybe...
What? He never said it? Really?
No shit sherlock. That's the joke...and you just fell for the trap. It's an industry wide inside joke. I think we all get it.
It's not a small amount, but considering there are 100s millions of machines around the world it is a pretty small amount.
How many machines out there have a HD failure everyday? I'm guessing it is less than 50,000, but probably not much lower. Google and wiki searching only gave me numbers like 3% annualized failure rate up to 13%.
Once the system is rebooted what kind of error message will they see? OS not Found from the bios? I wonder how many users will simply think their harddrive failed.
Cross platform is a huge reason why I've been loving Mono.
I've used java for years because it took common programming tasks and made them not only cross platform, but some what standard. .NET/Mono borrowed from that.
Think of network sockets, file access, threads, and a bunch of other things that quite frankly are annoying to do in C or C++. Even worse they are way different on Windows and Linux and so you end up writing big chunks of code twice...for really no reason. Apache portable runtime hopes to do it for C++ apps...but it's quite frankly a pain.
Bottom line if you want to write a GUI based type app Mono is better than Java Swing and better than playing around with C++ and GTK+...unless you need something to the scale of Firefox or openOffice. Even then I think Mono could scale.
The Java VM was a good idea, but Sun never bothered to port other languages to it. With Mono you get a choice of languages, a common library, and apps that really can run anywhere without a whole lot of extra work.
One problem we have is that we want to open many of the same applications more than once. Imagine wanting to login to slashdot with two different logins.
Right now in IE and Firefox each tab shares the same cookie space. So when you login with one tab you'll notice the cookie in the other tab getting "overwritten".
Now with multiple processes is this the case. When one tab "open another window" resutling in another tab are these two tabs in the same processes sharing cookies and the like?
The browser is general is a horrilbe state machine. It would be nice if Javascript would support some form of lighter weight cookie that could be access between page loads.
Exactly much like NBC, CBS, or ABC.
I think the thing missing is some underlying infrastructure that companies can tap into. I used to subscribe to Slashdot, but quite frankly I don't anymore because I'm just too damn lazy.
The cable market tends to work okay. You can argue price, service, etc, but the idea of subscribing to a master provider and getting sub-services seems like something internet companies could really use.
Internet TV is begging for this. I don't mind paying for Hulu...even if it does have some advertising in it. I like my cable TV, but the entry point for cable channell is still way to high. Internet TV chanells could easily tie into Hulu...which in turns ties into a large subscription.
I'm suprised Google hasn't built this to be honest. It be nice to pay for Hulu thru my Google account...any number of valuable services would popup just like iPhone apps.
2D layout The "div"/"clear" model of layout was a flop. Horrors of Javascript are needed just to make columns balance. Absolute positioning is overused as a workaround for the limits of "div"/"clear". (Text on top of text happens all too often.) Tables were actually a better layout tool, because they're a 2D system. HTML needs a 2D layout model that can't accidentally result in overlaps. There are plenty of those around; most window managers have one. There's been a quiet move back to tables for layout, but people are embarrassed to admit it.
Embarrassed or intimidated. Where the hell did the move to DIVs even come from. To this day I never understood it...I guess a bunch of CSS nose in the air aholes. CSS could have just as easily allowed styling on TDs.
Can't we start with something simpler and get some super yeast meant for beer!
As long as the anti-malware gives me the choice and some basic information they can clasify Firefox as malware.
Chances are if you don't recognize the software name it was either installed by the OEM or was installed without your knowing...
Plus the open market will sort this sort of thing out. If they start clasfiy incorrectly no one will use them.
Does this mean we won't have it for Diablo III as well? Plz noooooooo.
Does bnet\sc use UDP? Are they going to fix all the issue with two machines being on the same nated subnet? Will they auto pick a random UDP port so NATing worked
If the server and clients are on a LAN the packets will go to the person's box who started the game(the server). They will likely be desitened for the external(internet) IP...so even though you are just sending a packet to the machine on same switch you are plugged into you are going to route thru your cable/modem. It will have to go thru NATing...what a waste and a potential for LAG if you have a crappier router. Add 8 machines being NATTed and I don't know what will happen. Not to mention if you Dad is watching Hulu in the other room your local gaming should not be affected.
Hopefully they add an option where you can tell the game you are on the same subnet as the server so it will use the local IP. For security the server should have to say it is okay so you don't give out your internal IP scheme.
I still think it is a bunch of stupid nonsense for selfish reasons(how much money did they make reselling SC1 for years) and not good consumer reasons like they are pitching it. Leave it in Aholes.
Probably already is one of these, but can we get a plugin for Firefox that dumbs down the browser for them.
I think one of the toy company's had a toy/software setup where kids could visit a limited amount of sites using a special controller. Something to keep them out of trouble.
I want to give my kid a login with just a link to firefox and this plugin on the desktop. They click it an are presented with a list of safe sites. Any attempt to go outside of the domain is blocked and the sound card goes crazy with ("hey mom and dad get your ass in here and watch your kid")....hell have it text me. If the domain is safe I simply type a password and it gets added.
Sure just surfing in Firefox will prevent some of this, but I don't want any chance of any sort of firefox bug getting exposed. Remember that even firefox can fall victim to some sort of buffer overflow.
A little offtopic, but I think a Live CD of Ubuntu that accomplishes this would be great. Just give my kid an older computer with no harddrive and the CD and let them go...
I've seen this as a big issue with mashups of all sorts for a while.
When google was down a few months ago many sites I visited...including this one...had issues. Turns out that google was only down for my ISP due to a routing problem, but it didn't matter. The google analytics used by the site failed to load causing some weird issues. Just think how many sites are depenedent on services from third party's like google.
This to me is more of a general browser web 2.0 issue that needs to get addressed. If the ads where inserted using some sort of ajax control the news sites could easily load their content and then stream the ads in after the main content was up.
Using the html "script" tag doesn't have a lot of controls for when it loads a script that doesn't compile right or when it takes forever to load. A timeout attribute....wrap in try/catch...ignore on compile error...and some other attributes might be useful. The same would go from image tags and all other tags that have some sort of src attribute.
My fingers are up in the air when I read "disaster". At least SD is trying to let you know when a title is being over dramatic.
How long before you don't have to create the embryos to being with. Sure eggs come at a premium, but my little swimmers are a plenty. Is it possible to test individual sperm and eggs? I'm guessing no today without destroying them, but that won't always be true.
The other thing is you can only create the "best" kids that the two parents could possibly create. My wife and I are both well under 6 feet tall...I don't think there is anything in this process that could lead to a 7 foot tall BBall player.
Why the hell would parents want to choose this stuff anyways? I wnat to know if my kid will have bad skin, bad eyes, or will be super hairy....don't care of the color perse. Since my wife has light hair and I have dark(and I'm a f'ing monkey) choosing light color skin would have more to do without them being super hairy and being picked on for it.
I often find that the applications coming from China and India to be poor. They are often ugly and hard to use.
I think we need to differentiate between being able to write an Algorithm and being able to produce something like ITunes.
Part of this is actually having talented designers and people who can come up with good specifications and use cases and everything else that goes into it.
These code tests rarely talk about coming up with a good application architecture or good design. Sure we need people writing device drivers, but we also need the higher level tasks done as well. I don't think they are represented well.
I often try the Google code challenge only to feel bored. I guess I don't really like solving "shortest path" type problems. I'm more about creating a data model, interface, and ultimately a tool with a good user expeirence. Something that solves a day to day task.
Maybe we should have application challenges where we say "write the easiest to use calculator" :)
Will any certification companies even work with them now? It is the right of any business to refuse service to any other business correct? If they cannot find a company to certify them in PCI then they will loose their rights to process cards right?
I swear IT folks have shorter memories than even the average American retard.
When IE came to dominance it came because Netscape came to pure suckiness. Does anyone here acutally remember using Netscape? My god it was horrible.
Hell netscape wanted to use layers. LAYERS!!!! over divs. Everyone got their panties in a bundle because MS introduced IFRAMES...some thing badly needed and DIVs still need a SRC attribute if you ask me.
Firefox 2 and up is great. But that was only a few years back. IE has to deal with a whole era of legacy that Firefox does not. MS should be yelled at for ActiveX, but in reality the problem is with HTML. Many Intranet apps used by call centers and the like really didn't work all the great in HTML 3.2...even 4 when it first came out. Hell AJAX is just now getting somewhat stable...if you want to call it that. Libraries like JQuery and Prototype have turned a piece of shit lanaguage like Javascript into a usable one...a real language wouldn't need a library just be useable.
Web "standards" are treated as some sort of god ordaned thing. Or even worse like stanards such as TCP/IPv4. IPv4 and TCP are incredibly simple compared to HTML. HTTP 1.0 and 1.1 are similiar in complexity, but HTML is like an entire GUI API. Add CSS in there and my god what a mess.
I've been developing since I was 12 (30 now) and I honestly have no desire to anymore with this hunk of shit we call the web stack. Even this sight slashdot is going to hell as more and more DHTML comes into play. At work it looks entirely different. I surf in IE, Firefox, and Chrome at home. At work I'm stuck on IE 7. I see differences in all three and worse I see Javascript just randomly breaking. As most of us have seen one bad line of JS and all the JS stops(ever had Google analytics fail?)...so the page then renders wrong...or won't submit because every anchor in slashdot has an onclick handler..I'm guessing added by some JQuery like piece of code that scours the page for them. DOM tranversing is incredibly buggy in all browser and even between releases. I have had tried and ture Prototype library code just not work on some form in Firefox...then pull it up in IE and bam.
JS performance has gotten way better with Firefox and Chrome. And developers are taking advantage of the finally optmized versions. Why the hell was it so slow in the first place huh? And of course I'm already seeing Firefox and IE just "hangin" while a JS happily loops over huge sections of the ever increasinly bloated DOM. Talk about bloatware...the DOM is getting out of control.
Hulu is now releasing a full desktop app, eBay put out an AIR app, iTunes is a desktop app. Flex and Silverlight will have some limited footprint. The vast majority will be newspaper sights where the HTML is just lots of formatted text. Intranet apps will likely be Flex and Silverlight or heavy Ajax stuff with one browser still being "recommend over another". Chrome is already putting out example that just run in it.
At the end of the day I think we are moving away from the browser. This is a just a futile effort by the EU. They just want to punish IE...maybe a few want to help the end users...but if that was the case they'd invest money in Ubuntu and bring it the rest of the way.
Unless it is something you use at work for 8 hours a day.
Flex is not used by Amazon.com...although eBay has a nice AIR app for the power bidder.
Really..I think I spend no more then 45 minutes on anyone site. After that I start to think about how I can get to it without my browser.
I haven't logged into gmail.com since my last vacaction. I use a full featured email reader and IMAP.
Flex is useful for those in house apps that have people on them 8 hours a day and need a high level of interactivity and also have a smaller more controlled base of system they run on.
There are plenty of sites that don't even need JS like you suggest, but hit the real world and you'll see plenty of sales/scheduling/accounting/ and other "business critical" apps that really benefit from a think client type of presentation. That is where AIR and Flex play well. The 500 bucks a developer cost is nothing to these companies.
I'm no fan of DRM or good friedns with the *AAs, but I'm not their enemy either.
Yes I'd like the songs I buy on Apple to be MP3s, but downloading songs for free from thepiratebay is not protesting anymore it is just stealing.
What pisses me off the most about my friends who still download crap illegally is that it is not forming the market we need. Instead form consumer protection groups and force...or maybe even just nicely ask...the companies to give us the content a little differently.
Honestly I think the powers that be have no f'in clue. Really they just need to be told what to do...but instead we all go off and download crap illegally...and then wonder why the RIAA and MPAA exists? Really...what are we f'in stupid.
DRM is a result of our stupidity. Stop downloading and start organizing. but I guess we are the lazy get everything for free generation so I bet we will just pay piratebay for a VPN connection instead of supporting music. And the end result is I have to listen to "gotta get that boom boom boom" on the radio now.
MS could do this with silverlight. Adobe withe Flex or Air...it just won't work. It works for the IPhone because Apple has a monopoly on the application. Sure you could hack on an application, but most users just won't.
The PC doesn't have a central source of applications. There is the web, downloads.com, individual authors, etc. etc.
What couldn't be delivered in a browser via Ajax, Silverlight, AIR/Flex that this could possibly do?
Furthermore mobile platforms have nice little niche applications. I would like a google desktop app versus using google maps..it'd be nice it if was built into Windows, Linux, Mac.
What I'd rather see is MS, Apple, and the Linux community create a decent plugin infrastrute for the OS and have an easy to use "Find extensions" program. Imagine if the search in Vista's start menu could accept an address and pop to google maps via a native app. I'd like to see the usability of mobile apps ported to the desktop.
Serious answer. Apache is a modular beast and since doesn't get blaimed for modular problems like this.
There have been issues even bigger in various mods like mod_php.
Even code red was a problem with Internet printing and not really the core IIS. Maybe IIS should have blocked it and already had URLScan, but ultimately it was just passing a URL along some C++ code that blew up. MS created that .DLL so we can blame MS..but blaiming IIS itself was slightly off.
The core of both IIS and Apache have been pretty well hardened. Hence why WebDav is turned off in IIS 6. Even .ASP has to be turned on during setup.
MS puts out it's own mods essentially...where Apache would have a different team working on WebDAV. If the same "exploit" was found in mod_webdav who could we really blame. Yell at the Apache foundation...no we would professionally fix the issue. Maybe some flaimbaiters on the other side would yell..."see open source is less secure".
Softwares has bugs, some of them are security related. When open source creates them they are presented as bugs...when MS creates them it is some kind of great conspiracy to rule the world. Some guy just like you wrote this bad code and is probably feeling like crap today. Some tester let it get thru and is feeling really crappy today. A bunch of dudes in at both MS and the rest of the security community are pulling up their britches and getting it fixed...move along nothing to really see here.