In any programming language, people can do stupid things. Also in PHP 7. And even with the older MySQL library in PHP, it was very well possible to write a secure database driven application. All it required was knowledge, like with any language.
PHP is not the issue. Yes, it's an easy language which draws a lot of noobish programmers. But it's not hard to make a secure website with PHP. Take a look at this framework for example.
I did not intend to drive over people, I just wanted to drive through town blindfolded?
Then I would take away your driver's license and your car, because insane people should not be allowed to drive a car. If your insanity would pose a threat to society in a general way, then, but only then, I would lock you up. Not in jail, 'cause that wouldn't help you, but in an institution.
But not with the intention to harm people. Yes, he took a big risk. But putting him behind bars so he can sit there and do nothing, is not the best way to point that out to him. Let him do community work at a hospital for several days. Show him what an injury can do to people's life. Confront him with the results of his actions. That's how he learns and will think twice before doing anything stupid like what he did again. Jail time doesn't do that.
The operator made a mistake. A bad mistake, but just a mistake. While applying law, I think we should primarily took at someone's intentions, not only is actions. My point is; what do you think the operator feels like after that month jail time? Do you think it will be something like "Ok, that was a meaningful lesson. I'm a better person now" or more like "Yes, I made stupid mistake. But for that, I was kicked aside for a month like dirty trash. F*ck this shit". Personally, I think it will more likely be the last one. I think that man will leave jail with some anger. At least, not with positive energy. Now tell me, how is that going to make society a better place?
Place yourself in the position of the operator. As far as I can see, I didn't do it on purpose. Sending him to jail for a month, putting him between a bunch of real criminals, how to you think he will feel afterwards? Think he feels he's been treated fairly? Law should be about making society a better place, for both the victim *and* the offender.
How about community service in a hospital for a few days and not allowing him to fly his drone for a month? Let him see and understand what the results are of the risks he took. That's a message he can learn from. What possibly can he learn from sitting in a cell for a month, staring at four walls? Don't forget, he's just a man who made a mistake, not a criminal willingly harming other people.
Sending a harsher message to the offender than the unjust that was done to the victim will only make things worse. Law should be about punishment, not about revenge.
America's OCD of putting people in jail for even the most silliest things is very disturbing. Removing people temporarily from society should only be done when that person poses a threat to society. If the drone operator was being reckless, he should be punished for that. But putting him in jail for it, helps nobody. Not the operator, not the victim, not society. The operator is not a threat to society. This sounds more like revenge than punishment.
Yes, I do. Needing privacy is part of being human. As long as we are human, there is need for privacy. And since the arrival of the computer and specially the internet, the playing field of privacy only has become bigger. That our privacy is invaded via such technologies doesn't decrease our need for privacy. The real challenge with internet is that privacy has become more complex. Unfortunately, most people with power don't understand the need for privacy. Fearing to be held responsible for incidents and because they have so much responsibilities and so less time, they choose 'easy' security (even security theater) over privacy. That needs to change. And the only way to do it is education. We all need to stand up and say 'no more'. Tell world leaders why. Why we don't need false security over privacy. This starts with everybody, this starts with you!
And this is exactly what is wrong with the current world leaders. They cause dissension. People who don't even know each other are now shouting at each other how much their world sucks, while they have not even the faintest idea of that other world. World leaders are playing their own personal battle, while the common people are becoming the victims. Instead, world leaders should be in service of the common world, uniting countries. Of course, Trump is an America president, so his priorities should be aimed at America. But shouting 'America first' is like saying to the rest of the world 'You don't matter'. That's not uniting and will eventually bite back.
First of all, everybody knows Sony is crap. So don't buy their shit and complain afterwards.
But second, they offered to cancel the whole deal, but Vincent refused. Another reason to not complain. Although most laptops are sold with Windows, it is possible to buy one without. Dell for example sells FreeDOS / Ubuntu laptops. He should have picked that one.
Apparently there is not enough market for non-Windows laptops. If where him, I would simply buy the laptop I want, removed Windows, installed Linux and used the Windows license to install Windows as a virtual machine. Always fun / nice / useful to have a small Windows installation at hand. Just in case.
First, your claims about the GPL are simply incorrect. And even if they were, you still started doing something without having a clue about what you were dealing with. So, nice cry story, but completely your own fault.
Sure, but with the introduction of cellphones, society changed. You can ban cellphones, but you can't change back society. You can't change back how insurance companies will respond to an incident during a concert.
The big difference: Europe never allowed citizens to own guns the way the US does. Maintaining the gun control in Europe is much easier than introducing one in the US. In the US, it requires the taking back of a lot of guns, which is not likely to happen. Specially not the illegal ones.
Gun control is no longer an option in the US. You can impose gun control rules on citizens, but not on criminals. I often hear the excuse for not having gun control: in area's where there are more strict rules for owning a gun, there's more gun violence. That might be true, but it also proofs my point.
No, don't use technology to try to solve a problem that's not a techical one. This problem, the reason why some people start shootings, is a social one. Use social means to solve it.
No, MVC is no magic bullet. I never said that. But MVC, or any other architecture that offers the same structure, is a basic requirement for writing readable, maintainable and proper code.
You want proof for Drupal not being secure? How about this: https://www.drupal.org/security. I'm sure you've seen it before.
To prove that something is secure, you have to prove the absence of security bugs. Proving that something is not present is practically impossible.
I can tell you, but not prove, that I have many Banshee based websites and none of them has ever been hacked. I even have used Banshee professionally and had the web applications I created with it audited by IT security companies. No security flaw has ever been found.
WordPress (core) is probably the most secure CMS out there
Hahaha, seriously, no! If you know anything about secure software development, you would understand that Wordpress was not well written. I've used it during my Secure Web Development course to show students how NOT to write code. Although the code might look clean, it is the perfect example of spaghetti code. Mainly because it has no MVC structure. Business logic, HTML, Javascript, database queries, everything is mixed together in Wordpress. And although it might not contain a serious flaw at this moment, absolutely nothing guarantees that this will still be the case in the future.
Because of the mess, it's easy to make a mistake and introduce a security flaw when changing or extending something. If you ask me, that's exactly the reason why so many plugins are insecure. Because it's hard for the plugin developers to understand the logic and structure of the Wordpress main codebase. Wordpress the most secure CMS? With this codebase? No, not now, not ever!!
that's more of a function of popularity than inherently "bad" code
I fully disagree. Yes, more bugs will be found when more people look at the code, but for bugs to be found, they have to be there in the first place. You won't find many bugs in a proper piece of code, no matter how many people use it and look at its code. So, I think it's a bad excuse.
Slashdot Mirror
In any programming language, people can do stupid things. Also in PHP 7. And even with the older MySQL library in PHP, it was very well possible to write a secure database driven application. All it required was knowledge, like with any language.
I'm using PHP for many years, got a lot of hack attempts, but never got owned. So, give me your best shot.
Banshee for sure!
PHP is not the issue. Yes, it's an easy language which draws a lot of noobish programmers. But it's not hard to make a secure website with PHP. Take a look at this framework for example.
That's not what happened here, so I don't see why that story is relevant.
Then I would take away your driver's license and your car, because insane people should not be allowed to drive a car. If your insanity would pose a threat to society in a general way, then, but only then, I would lock you up. Not in jail, 'cause that wouldn't help you, but in an institution.
But not with the intention to harm people. Yes, he took a big risk. But putting him behind bars so he can sit there and do nothing, is not the best way to point that out to him. Let him do community work at a hospital for several days. Show him what an injury can do to people's life. Confront him with the results of his actions. That's how he learns and will think twice before doing anything stupid like what he did again. Jail time doesn't do that.
The operator made a mistake. A bad mistake, but just a mistake. While applying law, I think we should primarily took at someone's intentions, not only is actions. My point is; what do you think the operator feels like after that month jail time? Do you think it will be something like "Ok, that was a meaningful lesson. I'm a better person now" or more like "Yes, I made stupid mistake. But for that, I was kicked aside for a month like dirty trash. F*ck this shit". Personally, I think it will more likely be the last one. I think that man will leave jail with some anger. At least, not with positive energy. Now tell me, how is that going to make society a better place?
Place yourself in the position of the operator. As far as I can see, I didn't do it on purpose. Sending him to jail for a month, putting him between a bunch of real criminals, how to you think he will feel afterwards? Think he feels he's been treated fairly? Law should be about making society a better place, for both the victim *and* the offender. How about community service in a hospital for a few days and not allowing him to fly his drone for a month? Let him see and understand what the results are of the risks he took. That's a message he can learn from. What possibly can he learn from sitting in a cell for a month, staring at four walls? Don't forget, he's just a man who made a mistake, not a criminal willingly harming other people.
Sending a harsher message to the offender than the unjust that was done to the victim will only make things worse. Law should be about punishment, not about revenge.
America's OCD of putting people in jail for even the most silliest things is very disturbing. Removing people temporarily from society should only be done when that person poses a threat to society. If the drone operator was being reckless, he should be punished for that. But putting him in jail for it, helps nobody. Not the operator, not the victim, not society. The operator is not a threat to society. This sounds more like revenge than punishment.
Yes, I do. Needing privacy is part of being human. As long as we are human, there is need for privacy. And since the arrival of the computer and specially the internet, the playing field of privacy only has become bigger. That our privacy is invaded via such technologies doesn't decrease our need for privacy. The real challenge with internet is that privacy has become more complex. Unfortunately, most people with power don't understand the need for privacy. Fearing to be held responsible for incidents and because they have so much responsibilities and so less time, they choose 'easy' security (even security theater) over privacy. That needs to change. And the only way to do it is education. We all need to stand up and say 'no more'. Tell world leaders why. Why we don't need false security over privacy. This starts with everybody, this starts with you!
And this is exactly what is wrong with the current world leaders. They cause dissension. People who don't even know each other are now shouting at each other how much their world sucks, while they have not even the faintest idea of that other world. World leaders are playing their own personal battle, while the common people are becoming the victims. Instead, world leaders should be in service of the common world, uniting countries. Of course, Trump is an America president, so his priorities should be aimed at America. But shouting 'America first' is like saying to the rest of the world 'You don't matter'. That's not uniting and will eventually bite back.
For an accountant firm, they have a lot to learn about accountability.
First of all, everybody knows Sony is crap. So don't buy their shit and complain afterwards.
But second, they offered to cancel the whole deal, but Vincent refused. Another reason to not complain. Although most laptops are sold with Windows, it is possible to buy one without. Dell for example sells FreeDOS / Ubuntu laptops. He should have picked that one.
Apparently there is not enough market for non-Windows laptops. If where him, I would simply buy the laptop I want, removed Windows, installed Linux and used the Windows license to install Windows as a virtual machine. Always fun / nice / useful to have a small Windows installation at hand. Just in case.
First, your claims about the GPL are simply incorrect. And even if they were, you still started doing something without having a clue about what you were dealing with. So, nice cry story, but completely your own fault.
Sure, but with the introduction of cellphones, society changed. You can ban cellphones, but you can't change back society. You can't change back how insurance companies will respond to an incident during a concert.
The big difference: Europe never allowed citizens to own guns the way the US does. Maintaining the gun control in Europe is much easier than introducing one in the US. In the US, it requires the taking back of a lot of guns, which is not likely to happen. Specially not the illegal ones.
Gun control is no longer an option in the US. You can impose gun control rules on citizens, but not on criminals. I often hear the excuse for not having gun control: in area's where there are more strict rules for owning a gun, there's more gun violence. That might be true, but it also proofs my point.
No, don't use technology to try to solve a problem that's not a techical one. This problem, the reason why some people start shootings, is a social one. Use social means to solve it.
No, MVC is no magic bullet. I never said that. But MVC, or any other architecture that offers the same structure, is a basic requirement for writing readable, maintainable and proper code.
You want proof for Drupal not being secure? How about this: https://www.drupal.org/security. I'm sure you've seen it before.
To prove that something is secure, you have to prove the absence of security bugs. Proving that something is not present is practically impossible.
I can tell you, but not prove, that I have many Banshee based websites and none of them has ever been hacked. I even have used Banshee professionally and had the web applications I created with it audited by IT security companies. No security flaw has ever been found.
Hahaha, seriously, no! If you know anything about secure software development, you would understand that Wordpress was not well written. I've used it during my Secure Web Development course to show students how NOT to write code. Although the code might look clean, it is the perfect example of spaghetti code. Mainly because it has no MVC structure. Business logic, HTML, Javascript, database queries, everything is mixed together in Wordpress. And although it might not contain a serious flaw at this moment, absolutely nothing guarantees that this will still be the case in the future.
Because of the mess, it's easy to make a mistake and introduce a security flaw when changing or extending something. If you ask me, that's exactly the reason why so many plugins are insecure. Because it's hard for the plugin developers to understand the logic and structure of the Wordpress main codebase. Wordpress the most secure CMS? With this codebase? No, not now, not ever!!
If Wordpress had been written with security in mind, it would have a plugin system that won't allow plugins to do dangerous stuff.
I fully disagree. Yes, more bugs will be found when more people look at the code, but for bugs to be found, they have to be there in the first place. You won't find many bugs in a proper piece of code, no matter how many people use it and look at its code. So, I think it's a bad excuse.