For PHP + *SQL, use DBO, first proper interface for databases in PHP IMO.
Where I work there is no interface to the database other than stored procedures, yes writing programs takes longer and requires one of the DBAs to make the procedure, however, we have never had a single incident of some cowboy programmer forgetting to add a where clause to an update/delete, nor some insane environment where random pageviews clobbers the databases.
One should use positional/named bindings and let the driver handle escape sequences, make sure the Web user only has access to what is needed, rather than running everything as root. Use procedures/views where possible and never allow dynamically created queries.
I think you are confusing argumenting correctness and proving correctness.
It is impossible to prove that your escape sequence for PHP will proper escape any given input for a given field, just look at how many tries the developers behind PHP had at escaping a simple query string for MySQL - and still failed - why? Because they failed to imagine the myriads of ways you can make quoutes in UTF-8 and failed to take into account the forgiveness of MySQL. Very few languages allows you to prove correctness, add an intelligent file pointer like MySQL and you can't prove anything.
I *HATE* inline comments, stuff like resolution in your viewer can seriously fuck up the way the mail is displayed causing confusion about what belongs where. Also when you do inline comments people getting into the conversation later on will have a hard time figuring out what belongs where and who said what, having replies going on top means it's easy to see who wrote what earlier.
The problem is the term global warming, people seems to take that very litterally. Climate change is happening, man made or not we are locally breaking a lot of records and we see societies being flooded, ice melting.
We don't know if it is part of a solar cycle, polution or just an act of god, however, we might as well cover some of our bases and think about the amount of pollution we pump out, yes we might be doomed either way, but lets at least try to make the world a better place.
I work for a Telecom in EU and we coulnd't care less if you where tethering your handset, 3G data traffic is cheap and if you tether your phone/device, chances are you are opting for a large dataplan which means we earn money, or if you are less inlighted and opt for a pay per MB we would be even happier.
I type fast, very fast, I still however only use pen and paper for notes. Using a computer is simply too slow if I need to draw a diagram, also I find looking through notes is faster than finding it on a computer - having a set of notebooks helps looking through the design process.
Also, OO can read most office stuff (except for latest greatest (depending on your distro of choise)) while office doesn't do OO - which means those 17% sets the communication standard for the rest of EU; want to talk to us in Denmark (or other EU countries where they have gone OO) - install OO...
True, but with a couple of cases going to court ending up in a reasonable ball park then they would be able to save on lawyer expenses since they already know what to charge - they can point at the cases and say, hey, you can try you luck, but we know how it will end up.
That would be quite a lot better than current extortion letters since we are suddenly talking about real case law.
Actually I think $1188 fine would be better for RIAA, headlines with "millions in fine for copyright infrigement" while looking impressive is such a big number most people can't cope with it.
$1188 fine is something people can releate to, that's the new television they where saving up for, the repair bill for their car or something similiar.
Personally, if I got a fine for a bazillion dollars I wouldn't care, there is no way it would ever be repaid and they can't kill you, they might make life miserable, but there are ways around that - getting a fine for $1188 would suck hard, you can't justifiable go bankrupt, it doesn't pay to try to bail on it. Basically you would just have to suck it up and pay the damned thing.
Currently I'm looking at 1-2 months of (unpaid) overtime because sales people have sold something we didn't have and never checked with the software guys. For once I wish sales was the one ending up neck deep in crap.
(Why do I do it? Well if no one else does it, the company goes bankrupt and doing unpaid overtime is better than no pay)
The audit is quite normal, think of it as insurance - your company can point at them and say, well those big guys said everything was in order - they in turn have probably calculated the risk of something going bad vs. amount of money made with overworked inspectors and come to the conclusion that everything is peachy as it is.
I consider Portal to be a way better game than CS or WoW, I have however only played portal once (around 6 hours), whilst the other two are counted in days if not months of playtime.
I have to ask myself, did the poster think that after quoting and highlighting a particular thing from the original post, we still wouldn't understannd that they thought it was an important part?
Seriously, the "THIS" meme has to die, and I don't care how ugly it gets or how loud it wails, as long as I get to say "I am thankful for its end." Next time, I'm using mod points.
"As far as I know, console makers (MS and Sony, at least) hate usermade content on their consoles, making it diffcult (and against the EULA) to mod the games on their consoles."
The castle scenario is done in WoW, PvP in wintergrasp is about protecting or storming the castle (depending on who won last match), the attacker starts out with their own set of towers which the faction on defense can attack to end the match quicker, there are several siege engine shops where controlling faction of said shop can acquire engines. And of course you got all your weapons/spells from normal levelling in WoW.
Loads of fun, it does however take quite some time before you are level 80 to join the fight (and have gear good enough to not get instagibbed in the battles).
Indeed, my television usage has dropped to zero after I started playing WoW (I still do my work (reading slashdot...) and out being social every weekend) - regarding the addiction, I was thinking when I hit 80 with my first toon that I kinda done everything and needed a new game, then I accidentically ended up in a PvP battle in wintergrasp and now I'm good an proper addicted.
Actually Steam is opt-in - also when they started doing the public tracking I wrote them a strongly worded letter (at that point they wouldn't allow you to opt out again) where I pointed out that their tracking mechanism is very much against the law to not be opt-outable in Denmark (where steam does business), shortly after they changed their practice and you can no longer find my profile on steam.
How can a right turn accident ever not be the fault of the driver?
Yes she might have been distracted and yes she might have walked into the turning circle of the truck, however, one cannot assume every pedestrian knows how a truck swings, I see lots of people choosing a bad position at a crossing because they aren't aware of how a truck turns - but this doesn't change the fact that the truck probably shouldn't have been in that crossing anyways, if she wanted to cross she would in most places around the world have right of way.
Here in Denmark the truck driver would definitely have been found at fault in that kind of accident.
Except you can't just buy stocks, someone has to be willing to sell them - and if word got out that Apple was trying to buy out Nokia to get rid of the patent trouble Nokia shares would explode - and Apple would be in big problems with international trade organizations since that move would imply they think they are in trouble.
If Apple where to lose patent cases in US and/or EU they might have money right now, but that would go bad real fast.
Also since the total lenght of any audiophiles cabling will be way below 100m, the "out of phase" factor will be quite a lot less (remember the Denon cable is 1.5m long).
If I was searching for a job there is no way I would bother with that kind of test. If you are looking for a job and got 20 interviews in a week you simply will not have time nor energy to do a "fun little test" for each of them.
My method for vetting the job applicants is giving them a couple of problems at the interview where there is no right answer, there are a lot of wrong answers however. I explain to them that I'm not interested in a solution, I'm very much aware that they are under pressure - the only thing I'm interested in is understanding their thought process. I need to know how they act and think under pressure, because when shit hits the fan I need someone who stays coolheaded and stops and thinks before he acts.
Slashdot Mirror
For PHP + *SQL, use DBO, first proper interface for databases in PHP IMO.
Where I work there is no interface to the database other than stored procedures, yes writing programs takes longer and requires one of the DBAs to make the procedure, however, we have never had a single incident of some cowboy programmer forgetting to add a where clause to an update/delete, nor some insane environment where random pageviews clobbers the databases.
One should use positional/named bindings and let the driver handle escape sequences, make sure the Web user only has access to what is needed, rather than running everything as root. Use procedures/views where possible and never allow dynamically created queries.
I think you are confusing argumenting correctness and proving correctness.
It is impossible to prove that your escape sequence for PHP will proper escape any given input for a given field, just look at how many tries the developers behind PHP had at escaping a simple query string for MySQL - and still failed - why? Because they failed to imagine the myriads of ways you can make quoutes in UTF-8 and failed to take into account the forgiveness of MySQL. Very few languages allows you to prove correctness, add an intelligent file pointer like MySQL and you can't prove anything.
I *HATE* inline comments, stuff like resolution in your viewer can seriously fuck up the way the mail is displayed causing confusion about what belongs where. Also when you do inline comments people getting into the conversation later on will have a hard time figuring out what belongs where and who said what, having replies going on top means it's easy to see who wrote what earlier.
I'm surprised you didn't invoke Godwin's law with that post.
The problem is the term global warming, people seems to take that very litterally. Climate change is happening, man made or not we are locally breaking a lot of records and we see societies being flooded, ice melting.
We don't know if it is part of a solar cycle, polution or just an act of god, however, we might as well cover some of our bases and think about the amount of pollution we pump out, yes we might be doomed either way, but lets at least try to make the world a better place.
Sounds like you live in the US.
I work for a Telecom in EU and we coulnd't care less if you where tethering your handset, 3G data traffic is cheap and if you tether your phone/device, chances are you are opting for a large dataplan which means we earn money, or if you are less inlighted and opt for a pay per MB we would be even happier.
I type fast, very fast, I still however only use pen and paper for notes. Using a computer is simply too slow if I need to draw a diagram, also I find looking through notes is faster than finding it on a computer - having a set of notebooks helps looking through the design process.
Also, OO can read most office stuff (except for latest greatest (depending on your distro of choise)) while office doesn't do OO - which means those 17% sets the communication standard for the rest of EU; want to talk to us in Denmark (or other EU countries where they have gone OO) - install OO...
True, but with a couple of cases going to court ending up in a reasonable ball park then they would be able to save on lawyer expenses since they already know what to charge - they can point at the cases and say, hey, you can try you luck, but we know how it will end up.
That would be quite a lot better than current extortion letters since we are suddenly talking about real case law.
Actually I think $1188 fine would be better for RIAA, headlines with "millions in fine for copyright infrigement" while looking impressive is such a big number most people can't cope with it.
$1188 fine is something people can releate to, that's the new television they where saving up for, the repair bill for their car or something similiar.
Personally, if I got a fine for a bazillion dollars I wouldn't care, there is no way it would ever be repaid and they can't kill you, they might make life miserable, but there are ways around that - getting a fine for $1188 would suck hard, you can't justifiable go bankrupt, it doesn't pay to try to bail on it. Basically you would just have to suck it up and pay the damned thing.
Oh god I wish that was the case around here.
Currently I'm looking at 1-2 months of (unpaid) overtime because sales people have sold something we didn't have and never checked with the software guys. For once I wish sales was the one ending up neck deep in crap.
(Why do I do it? Well if no one else does it, the company goes bankrupt and doing unpaid overtime is better than no pay)
The audit is quite normal, think of it as insurance - your company can point at them and say, well those big guys said everything was in order - they in turn have probably calculated the risk of something going bad vs. amount of money made with overworked inspectors and come to the conclusion that everything is peachy as it is.
I think the EFF has more than one lawyer, perhaps they threw an entire department at universal, aggregated costs tend to explode on you.
I consider Portal to be a way better game than CS or WoW, I have however only played portal once (around 6 hours), whilst the other two are counted in days if not months of playtime.
This!
"As far as I know, console makers (MS and Sony, at least) hate usermade content on their consoles, making it diffcult (and against the EULA) to mod the games on their consoles."
Little Big Planet...
The castle scenario is done in WoW, PvP in wintergrasp is about protecting or storming the castle (depending on who won last match), the attacker starts out with their own set of towers which the faction on defense can attack to end the match quicker, there are several siege engine shops where controlling faction of said shop can acquire engines. And of course you got all your weapons/spells from normal levelling in WoW.
Loads of fun, it does however take quite some time before you are level 80 to join the fight (and have gear good enough to not get instagibbed in the battles).
Indeed, my television usage has dropped to zero after I started playing WoW (I still do my work (reading slashdot...) and out being social every weekend) - regarding the addiction, I was thinking when I hit 80 with my first toon that I kinda done everything and needed a new game, then I accidentically ended up in a PvP battle in wintergrasp and now I'm good an proper addicted.
Actually Steam is opt-in - also when they started doing the public tracking I wrote them a strongly worded letter (at that point they wouldn't allow you to opt out again) where I pointed out that their tracking mechanism is very much against the law to not be opt-outable in Denmark (where steam does business), shortly after they changed their practice and you can no longer find my profile on steam.
How can a right turn accident ever not be the fault of the driver?
Yes she might have been distracted and yes she might have walked into the turning circle of the truck, however, one cannot assume every pedestrian knows how a truck swings, I see lots of people choosing a bad position at a crossing because they aren't aware of how a truck turns - but this doesn't change the fact that the truck probably shouldn't have been in that crossing anyways, if she wanted to cross she would in most places around the world have right of way.
Here in Denmark the truck driver would definitely have been found at fault in that kind of accident.
Except you can't just buy stocks, someone has to be willing to sell them - and if word got out that Apple was trying to buy out Nokia to get rid of the patent trouble Nokia shares would explode - and Apple would be in big problems with international trade organizations since that move would imply they think they are in trouble.
If Apple where to lose patent cases in US and/or EU they might have money right now, but that would go bad real fast.
Disclaimer: I'm a HTC fanboi.
Also since the total lenght of any audiophiles cabling will be way below 100m, the "out of phase" factor will be quite a lot less (remember the Denon cable is 1.5m long).
If I was searching for a job there is no way I would bother with that kind of test. If you are looking for a job and got 20 interviews in a week you simply will not have time nor energy to do a "fun little test" for each of them.
My method for vetting the job applicants is giving them a couple of problems at the interview where there is no right answer, there are a lot of wrong answers however. I explain to them that I'm not interested in a solution, I'm very much aware that they are under pressure - the only thing I'm interested in is understanding their thought process. I need to know how they act and think under pressure, because when shit hits the fan I need someone who stays coolheaded and stops and thinks before he acts.
Well whoosh to you too sir, since you obviously totally failed the point of my post.