Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Search - "salt"
-
I wrote a Student Information system for my midterm project back in 94 written in Clipper and runs on MS-DOS.
I demoed & explained to the panel of professors how it tracks enrollments, payments, class schedules, grades and attendance of each and every student. Has user authentication, auditing and reporting functionalities.
It has a lite version also written in Clipper that can be installed on a Professor's laptop so that he/she can update records even at home, and would be able to sync with the db at school via a BBS. Telix for DOS (self-taught) was my choice for the BBS as it was shareware, has built-in Zmodem support and comes with it's own programming language called SALT (Script Application Language for Telix) that can be used for automating tasks. The lite version of my project would dump the updates on an ASCII file, compress the file using PKZIP, use the laptop's modem to dial-up the number to the school's BBS and send the file across using Zmodem protocol.
The main version would then download the file(s) from the BBS and proceed to do a sync.
After the doing the demo and answering all their questions the panel asked me to wait outside the room, called me back in after 15mins and told me that I don't have to attend that class for the remainder of the term. The happiness as the my classmates outside of the room gawked at me felt like King Midas himself gave my balls his golden touch.
Then in 97, 2yrs after I graduated, I accompanied my cousins to a different campus of the same school for their enrollment and right there on the bottom of the screen were my initials on a very very familiar UI! They actually used, and were still using, my school project. Needless to say my cousins didn't believe that it was written by me.15 -
Thursday
PM: Hey why is A delayed? It should be top priority.
me: I just completed B, and C which were also top priority but got scheduled earlier, so I thought they..
PM: Agh, yes. But can you then finish A by the end of week? it would be very important!
me: No, I unfortunately don't think I'd have enough time by the end of wee..
PM: Why? This should be *the* top priority task. You should not start other tickets before A is done.
me: Exactly. But I *just* started. And. I. don't. have. enough. free. hours. left. this. week.
PM: But why?!
me: So just on Friday I have these 5 meetings here..
*shows calendar*
PM: Ok... OK! Then don't attend those before you are done. This should be more important.
me: Ugh, oh-key...are you sure?
PM: Yea, just let who invited you know that you can't attend and feel free to cc me in, I'll explain A is most important atm.
me: Ok, thanks, but that won't be necessary.
PM: What? Why?
me: You invited me to the Friday meetings.
Obviously I had to attend all 5 meetings today and A is pushed back to next week. :)10 -
Project Manager: You used a hash/salt to encrypt the password in our customer database?
Me: Yes.
Project Manager: That's mean we will not be able to see the password?
Me: That's the whole point. Why would you want to see what password customer is choosing?
Project Manager: Change it. Use random encryption method.9 -
I was registering for a website, and on a whim, I used this as my username:
null'); PRINT('Hello');--
And sure enough, the login system went down. The next day it was still down, so I went to Twitter to tell the people running the site that this was why, but to my surprise, I see them saying they had been hacked.
Based on the timing, I'm pretty sure they're referring to this, but they are saying user info was stolen. *facepalm*
They later said they stored passwords salted with a fixed salt and hashed with fucking md5, at which point I was glad not to have done any more business with them.
How incompetent can these fucking people be?!14 -
You know you've had to deal with a tough database problem at work when you start seeing SQL in your own kitchen... (It says SOL meaning salt)
P.s. I sure hope this is how these memes work, because I want my avatar15 -
Modern software has gotten so bad that it even gets sluggish at times on late 2018 flagship devices. Slow, cheap hardware like is usually developers' and fanboys' excuse, particularly when it comes to Windows stuff? Like hell it is.
Software "engineering" has become so.. terribly inefficient. I'd dare any developer worth their salt to rewrite their program to make it work on an early 2000's machine. After all, those can run pretty advanced GUI's, have a reasonable amount of hardware (just think about how large a gigabyte of RAM really is) yet should be able to make for a reasonable limitation set.
Hardware limitations are the mother of optimization. Not every person on the planet has a 32-core Xeon workstation with 64GB of DDR4 RAM and a GTX Titan in it. Whether your application performs reasonably well on your machine shouldn't be the metric. Try deploying it on that laptop you tucked into a shelf years ago and reevaluate.. please.
And definitely you Slack!! Slacking off, is that what inspired the name of that pile of junk?! 😡26 -
1. Promise anything, everything to clients
2. Set unrealistic deadlines
3. Devs can't meet deadlines
4. Blame the devs
Anyone?8 -
Immagine that you microwave a burrito, and it turns out perfectly. But if you add one grain of salt to it, the microwave will blow up. That's what the code I'm working in right now is like...
😿🔫7 -
!security
(Less a rant; more just annoyance)
The codebase at work has a public-facing admin login page. It isn't linked anywhere, so you must know the url to log in. It doesn't rate-limit you, or prevent attempts after `n` failures.
The passwords aren't stored in cleartext, thankfully. But reality isn't too much better: they're salted with an arbitrary string and MD5'd. The salt is pretty easy to guess. It's literally the company name + "Admin" 🙄
Admin passwords are also stored (hashed) in the seeds.rb file; fortunately on a private repo. (Depressingly, the database creds are stored in plain text in their own config file, but that's another project for another day.)
I'm going to rip out all of the authentication cruft and replace it with a proper bcrypt approach, temporary lockouts, rate limiting, and maybe with some clientside hashing, too, for added transport security.
But it's friday, so I must unfortunately wait. :<13 -
They removed the salt and pepper shakers from the tables in the cantine, because they are sources of infections.
...buuuut they keep an open salad bar.2 -
more buzzword translations with a story (because the last one was pretty well liked):
"machine learning" -> an actual, smart thing, but you generally don't need any knowledge to use it as they're all libraries now
"a bitcoin" -> literally just a fucking number that everyone has
"powerful" -> it's umm… almost working (seriously i hate this word, it really has a meaning of null)
"hacking" -> watching a friend type in their facebook password with a black hoodie on, of course (courtesy of @GeaRSiX)
"cloud-based service" -> we have an extra commodore 64 and you can use it over the internet for an ever-increasing monthly fee
"analysis" -> two options: "it's not working" or "its close enough"
"stress-free workplace" -> working from home without pants
now for a short story:
a few days ago in code.org "apscp" class, we learnt about how to do "top down design" (of course, whatever works before for you was not in option in solving problems). we had to design a game, as the first "step" of "top down design," we had to identify three things we needed to do to make a game.
they were:
1. characters
2. "graphics"
3. "ai"
graphics is literally a png, but what the fuck do you expect for ai?
we have a game right? oh wait! its getting boring. let's just sprinkle some fucking artificial intelligence on it like i put salt on french fries.
this is complete bullshit.
also, one of my most hated commercials:
https://youtu.be/J1ljxY5nY7w
"iot data and ai from the cloud"
yeah please shut the fuck up
🖕fucking buzzwords6 -
So I've had my "emergency meeting" with my manager about me leaving.
(Re https://devrant.com/rants/4896068 )
As some of you advised I prepared to try my best to stay exceptionally calm for this.
First my line manager just casually asked if I could stay. I politely explained "no. :)"
Then she said it's a catastrophe, they would be in a chaos, etc etc and then she personally assures I would have less bs meetings mid-sprints (one of the things I had requested a while back).
I responded that's kind but I also was far from what I should be earning.
Then she explained that suddenly now that I am leaving it would not be a problem to raise my salary as appropriate.
So I asked why could they not do this when I had brought this up a ton of times earlier and why I got peanuts as a raise in summer.
The response was that "they unfortunately could not get a higher budget authorised from higher up" and that " sadly that affected the whole team".
So I asked since when can they get this authorised and the response was "recently". Then she quickly switched back to the question whether I'd stay with higher salary and other earlier requests met.
I was pretty salty at this point so I just sarcastically said "unfortunately I've already signed".
She then switched back to "ok, ok, but we really need your help! you know it, the x project will be a nightmare to keep in one piece without me".
I literally just didn't respond so then she continued "ok so then can you then help us out for just a few hours a month for x/hour? please"
Now the thing is that this last offer actually would have been super compelling but given everything else I would not want to rejoin this environment. Thankfully I had to say anyways that my new contract doesn't allow that.
So then belive it or not, she asked me if I could ask my new employer to change the contract to permit me to still work a few hours a month for them.
What. the. fuck.
After this I was super done so just kept responsing a few words to everything and shortly after that we called the meeting. I feel dumb to have stayed here so long and am glad that my new contract doesn't allow working for others as maybe my stupid ass would have considered the offer on the spot.9 -
Manager: I'm so sorry to say but your collegue A has passed away yesterday afternoon. There will obviously be flowers etc and we'll try to support her family as much as we can..
Me: Oh, no. My deepest condolences. (I'm always bad at saying much in situations like this, but)
B: My gosh! So does this mean A's family also caught it??!? (Corona)
Manager: She died in a car accident.
...
Also how unfortunate. Due to the lockdown, a ton of the people use the roads as a racing track around here...7 -
Don't be afraid to question senior devs as you go through your career. You'll learn a lot yourself, and any senior worth their salt will be open to the dialog. You'll learn a lot about the topic and potentially about the people you work with. Never stop learning and stay relevant with technology.1
-
Him: "No developer worth his salt puts each of his brackets on a new line."
Me: "I mean... I agree it's uglier but your whitespace commit means we git blame you for everything."
Him (upset): "You BLAME me? I'm sorry I have standards."
Me: "Not blame blame, git blame like the history view of the-"
....too late he reverts his commit and hates me for life.
I wasn't even disagreeing, I was trying to explain git blame. :(17 -
*Extreme security measures on the backend, it must be failsafe, every db is as redundant as possible, generated salt, 2fa, everything*
*Forgets to add a case for {"key":""}*
I would blame it on the team but i built the entire backend myself.1 -
When I learnt programming, sugar was still made out of salt and hence not used in coffee.
Also, we didn't have source level debuggers, only the "print" method. However, compiling was also slow. It was faster and more convenient to go through the program and execute the statements in one's head. This helped understanding what code is doing just by reading it. It also kept people from trial and error programming, something that some people fall for when they resort to single step debugging in order to understand what their own code is even doing.
Compiling was slow because computers in general were slow, like single digit MHz. That enforced programming efficient code. It's also why we learnt about big Oh notation already at school. Starting with manual resource management helped to get a feeling for what's going on under the hood.20 -
I managed to re-negotiate my offer to reach the (accidentally) advertised range exceeding my original (realistic) expectations and this is in huge part thanks to the helpful bunch of you here.
So: Thank you!!
And I can't belive that in a single fucking day I benefitted more from posting to devrant than all the time spent on toxic subreddits, calling useless recruiters, forums and others. Here, even those comments that I disagreed with were phrased in a reasonable manner and they also helped me formulate an apparently very strong argument in the compensation meeting.7 -
My LinkedIn profile: Open to remote opportunities, or those in Hawaii. Need to stay local for family reasons.
Recruiter DMs: "Interested in an opportunity in:
Denver?
Nashville?
Connecticut?
Oklahoma?
Salt Lake?
...
-_-5 -
English teacher :prepare a recipe of your favorite meal
Me :yeah sure
Title :how to prepare md5 seasoned with salt.
Procedure :
$salt="*+3256_$@";
$userpass="12345aeiou";
$md5hash=md5($userpass.$salt);
echo $md5hash;3 -
"Lightweight rant"
Good job, devs of Sparkasse.
Time to "jobn't" y'all.
That error message is very informational.
I know it is because of the time counter being at 0 and I need to relogin to reset it, but what if I was a regular dumb client? To add more salt into it, what if I was someone in his 90s.
Do your fucking job properly.
Edit: The error message translates to "Error", "Error" and "Close"4 -
I heard scary thing.
A tester found an issue yesterday. He came to the dev and reported about it. Apparently the only feedback message was "something went wrong". They spend almost an hour hunting down the cause for that. It turned out the error message was from one of the try-catch. I do not know much details apart from that. At the end, the dev lead said this (which he had said before).
"That's why I don't like to catch exception."10 -
OK, so I get that we don't have a great reputation for dating but at the same time it's kinda rubbing salt in the wound when a dev company organises a global coding challenge for valentines day.3
-
So, now that companies are used to "WFH", maybe we can agree upon a better office for tech companies?
I do actually think the more "ideal" tech company office wouldn't have to be expensive.
It can be smaller. Any tech company worth it's salt should have discovered in the last few months that it's not just devs who can work from home. Sales, support, management — you really don't need to fight your way through highway traffic or cram yourself into a sweaty subway every day.
There's value in having an office. Not everyone can fit a good workspace in their apartment.
But we could at least center it around:
1. A bunch of small, completely soundproof isolation booths, for those who need a focus space, and can't find a silent spot at home.
2. A social lounge space, a communal living room with couches, a bar, creative relaxing stuff, whiteboards, etc. WFH can become depressing even for the most antisocial employees, chilling on a couch with some coworkers to brainstorm ideas or chat about random tech is valuable for building good relationships with your team.
The "open plan office" with rows of desks and monitors, no matter how luxuriously decorated with vertical gardens and hipster desks from reclaimed wood, can go die a fiery painful death.
I either want to work, or socialize.
Open plan offices (and it's even more dystopian suicide-inducing cousin, the cubicle) are like being unable to choose between fucking and a blowjob, so you end up humping a navel.
Oh, and conference rooms, go fuck yourself as well. I want to be able to minimize your ugly face if you plan to talk about company financial reports for 2 hours.2 -
Fuck our new project manager.
Literally all she does in her time is schedule meetings for others and send us emails stating that X needs to be done by date or why are we delayed with Y. Then she even manages to completely screw us with the meetings she schedules.
Today I woke up to seeing a beautiful gapless column of colorful rectangles in my dairy.... for today. And last time I saw this Monday it only had 2.5 hours of meetings!!
Now a lot of us from our team had the Friday afternoon off so it may be that she did this beautiful piece of artwork during that time, in which case she could somewhat rightfully say that we should have taken a look at it. But we actually have a convention to only schedule planning meetings for Mondays which these fucking aren't and even if she hadn't known this, who the fuck schedules a ton of meetings to Monday?! from a Friday afternoon?!?!
By the way the new pretty pink and orange meetings I have today are about actually important topics in between which I would normally appreciate to grab a tea or at least use the fucking restroom. Officially I only have a 45 minute lunch break all day.
Oh and naturally she sets up the meetings as organiser so that we can only suggest her new times and can't change it on our own.
But naturally PM lady never actually attends the meetings because she wouldn't understand shit. So when my fav female colleague, Sammy and I joined our 11am meeting, the first thing Sammy said - well after I greeted her by "wtf" - is to just leave the call on while we grab brunch.
So here I am sitting in the close by park with my brunch and thought I could use the now extended lunch break time efficiently by ranting my ass of and asking you guys why the fuck such people like our PM get paid.5 -
Every time I got a mandatory security question, I type in "go fuck yourself with a cactus". There's only one answer for all of them.6
-
Found that out that one of our company's internal API (I hope it's only internal) is exposing some personal data. After finally getting the right people involved they said they'd fix it 'immediately'.
5 days later I check and now there is more personal data exposed...which includes personal security questions and the hashed answers to said questions.
And of course they are using a secure hashing mechanism...right? Wrong. md5, no salt
Sigh...5 -
I quit abusive relationship. I quit smoking. I quit vaping salt nicotine, yes, the one that vape bloggers tell you is impossible to quit. I overcame opioid drugs addiction that developed when I recovered after a surgery back in 2015.
My last addiction is sugar. Yesterday night was the night when I ate about 100 grams of it in one take, feeling like I need more and more to take that hunger away. It felt EXACTLY like when I was hitting my 50mg vape literally every 20 seconds no matter the headache and dizziness.
I’m already insulin-resistant. After I’ve eaten all that sugar I felt really thirsty and then it hit me. I don’t want diabetes. I don’t want to inject myself. And I’m already insulin-resistant. It’s not me who crave sugar, it’s my internal animal and it only understands the language of pain and fear of death.
After I quit it, I’m officially a superhuman. Addicted to nothing but self-expression. That’s what I like, that’s who I naturally am.12 -
SQL injection holes everywhere... The original author of the product put concatenated SQL queries throughout the whole application. If it's not the client asked for a penetration test, we as developers wouldn't even be given chance to fix this shit.
I'm actually glad to have the chance. I can't live seeing them every day but force myself to ignore them.8 -
WANKETEERING FUCKING CUNTS!!!!!
Just now I had this great incident with rosé wine hitting my couch (on a Monday, yet another reason to hate that fucking shit day). If that is you dear Google searcher, let me tell you this. GRAB YOUR FUCKING SALT, AS QUICKLY AS YOU CAN AND POUR IT ON THERE IMMEDIATELY!!!
(edit: seems to work quite well for sucking up the wine moisture, not sure about smell or discoloration.. so far so good)
At least that's what a wanketeering cunt told me after having me read through 5 minutes of their dribble. While the motherfucker explicitly mentions that you're on a time limit, mind you!!! Because you know, fuck your goddamn couch, I want that fraction of a cent in ad money, that oh you've blocked it? I have no fucking idea. But waste your time on my shitsite nonetheless!!!
You know what, marketeering motherfucking dickhead. If that salt isn't going to fix my goddamn fucking couch, how about I take your goddamn shitsite down for the next FUCKING MONTH, HUH?!! Just to make up for the hundreds of fucking euros that a motherfucking couch is worth?! That'll serve you fucking right for pissing off a hacker!!! MOTHERFUCKER!!!!12 -
So recently I did a lot of research into the internals of Computers and CPUs.
And i'd like to share a result of mine.
First of all, take some time to look at the code down below. You see two assembler codes and two command lines.
The Assembler code is designed to test how the instructions "enter" and "leave" compare to manually doing what they are shortened to.
Enter and leave create a new Stackframe: this means, that they create a new temporary stack. The stack is where local variables are put to by the compiler. On the right side, you can see how I create my own stack by using
push rbp
mov rbp, rsp
sub rsp, 0
(I won't get into details behind why that works).
Okay. Why is this even relevant?
Well: there is the assumption that enter and leave are very slow. This is due to raw numbers:
In some paper I saw ( I couldn't find the link, i'm sorry), enter was said to use up 12 CPU cycles, while the manual stacking would require 3 (push + mov + sub => 1 + 1 + 1).
When I compile an empty function, I get pretty much what you'd expect just from the raw numbers of CPU cycles.
HOWEVER, then I add the dummy code in the middle:
mov eax, 123
add eax, 123543
mov ebx, 234
div ebx
and magically - both sides have the same result.
Why????
For one thing, there is CPU prefetching. This is the CPU loading in ram before its done executing the current instruction (this is how anti-debugger code works, btw. Might make another rant on that). Then there is the fact that the CPU usually starts work on the next instruction while the current instruction is processing IFF the register currently involved isnt involved in the next instruction (that would cause a lot of synchronisation problems). Now notice, that the CPU can't do any of that when manually entering and leaving. It can only start doing the mov eax, 1234 while performing the sub rsp, 0.
----------------
NOW: notice that the code on the right didn't take any precautions like making sure that the stack is big enough. If you sub too much stack at once, the stack will be exhausted, thats what we call a stack overflow. enter implements checks for that, and emits an interrupt if there is a SO (take this with a grain of salt, I couldn't find a resource backing this up). There are another type of checks I don't fully get (stack level checks) so I'd rather not make a fool of myself by writing about them.
Because of all those reasons I think that compilers should start using enter and leave again.
========
This post showed very well that bare numbers can often mislead.21 -
I don't hate Java, seriously.
I just prefer spending my first hours with a language actually programming in it rather than fixing shitty uninformative errors and learning libraries that follow no standards.
Pour your salt below.15 -
Worst dev experience was when I was asked to "take a look at" a propriatery Windows app built by a now non-existent team at the company.
The code base resembled the quality of legacy code where about every hour I felt like I needed to vomit. But that wasn't even the worst part for me.
This was the first time I had to develop on Windows and was sent a separate dedicated laptop for this. Now I started to have a bad feeling about this because as far as I had known every single dev at the company used company Macs for development (including me for other projects). It turned out the Windows laptop was indeed configured for a non-dev team :)
Having liased with IT admins for a day I finally got my environment set up and hit install on the dependencies and in 10 minutes it got to less than 10%. The laptop was pretty powerful so I couldn't belive wtf was going on, fans were ramping. Checked task manager and the company Anti-Malware was hogging the whole CPU.
I was so mad that I managed to get the IT admins to completely disable it and then it was only the pain of working with shitty code on Windows which would have been more than enough from the start. Thankfully it only lasted a week. -
First of all how the fuck you are able to tell that MY password is one of many that have been stolen? How you are able to get those stolen passwords AND WHY YOU ARE EVEN ABLE TO COMPARE THEM?! Are you storing as plain text or just randomly salt all stolen passwords and chceck if they are in your base?
Now that is an INSTAdelete.8 -
interview today
me: and can you tell me a little bit more about your development process? e.g. an example dev cycle from reqs to testing and review...?
senior dev interviewing me:
*gives frustrated/annoyed "why tf are you asking these?" look*
So, uh, we don't really use testing for these projects cuz it would make it harder to refactor later.
(and responded nothing else on the topic)
I left shortly after that.9 -
Incompetence of people around me drives me mad. I see a piece of shit code and I can’t stop myself from improving it.
Also better developers around me. I need to find out how they’re better and beat them6 -
You know the thing where you put "password":" asd" in a json file to test locally and then push it to the server.
You know when you push to git and not add the generated files to gitignore.
You know when you use "asd123" as salt.
You know when instead of using triggers, you do everything with code.
Yeah...1 -
Warning: pretty sad thoughts. If you're having a blast of a day, please skip. It's for your own good.
That feeling when you finish watching a piece of art. Be it a film or anime or anything. You're confused why you feel good, but at the same time you're hurt. You smile but the pain is still there when you reflect on the feelings and the experiences you had and you realise that none of it will ever happen again. No art or any of the past will happen again exactly the same way how you felt and experienced.
You think of the best friend you once had. Think of the girl you held hands with and time stopped. The first time you embraced her and knew you loved her more than anything, even if she didn't know your feelings. Think of your first kiss. Your first serious relationship. The last time you saw your parents, your wife, your children, family.
Now look at the perspective of the future and the past you: blissfully ignoring the certain end to all experiences until they all abruptly end reminding you of this and it hurts. Damn it hurts.
I will never be able to see me best friend again, nor will I ever be able to hold hands with her either. First time I kissed is now long gone. It's almost like you wish you were aware of how valuable and important the experience was and to not just throw it away like the last time and the several times before that. But the sad part is, you don't know which experience will make you realise how much you missed it.
But even if you do realise by placing yourself in the place of your future self, and you cherish the experience, you blame yourself because you could have either avoided it's end or did something better.
Like your break up: could it be fixed? Was it worth the little time you have on this plante?
Like your friends argument you had: could you have done better? Could you have stopped it?
Like your parent's death: could you have been a better son to your now overworked dying mum? Could you see how hard they tried even though you thought they were total dicks?
Now you realise that literally anything you do, you will have a problem with somewhere down the line. You're destined to be sad shattered and broken by every day that is tragedy.
But it's similar to art. After all, your life is a piece of art about how you died. Which is why you smile and enjoy the last second of the experience which you just had. That chest warming feeling will only last a little. You smile through pain, yet you realise its not the end.
Then again, its just my thoughts that i need to vent. Take it with a pinch of salt.8 -
Got a gift from my friend. It was from an Indiegogo project. It worked fantastically until it has broken recently.
Although 1 year warranty was promised according to the site, the fact that it's from Indiegogo means that's non existence (I'd say if you actually receive the thing, you're very lucky). So I disassembled it and had a look.
Now I'm thinking maybe I just need to hack my way in to find out what that blown chip is and if I can replace it.
I am also disgusted by the Chinese printed on the IC...13 -
The only thing more dangerous than an alcoholic short-term-memory-challenged non-technical throw-you-under-the-bus IT director with self-esteem issues that are sporadically punctuated by delusions of superiority is one who fears for his job. Submitted for your inspection: a besotted mass of near-human brain function who not only has a 50 person IT department to run, but has also been questioned by the business owners as to what he actually does. So he has decided to show them. He has purchased a vendor product to replace a core in-house developed application used to facilitate creating the product the business sells. The purchased software only covers about 40 percent of the in-house application's functionality, so he is contracting with the vendor to perform custom development on the purchased product (at a cost likely to be just shy of six-figures) so that about 90 percent of existing functionality will be covered. He has asked one of his developers (me) to scale down the existing software to cover the functionality gaps the purchased software creates. There is no deployment plan that will allow the business to transition from the current software to the new vendor-supplied one without significantly hurting the ability of the business to function. When anyone raises this issue he dismisses it with sage musings such as, "I know it will be painful, but we'll just have to give the users really good support." Because he has no idea what any of his staff actually does, he is expecting one of his developers (again, unfortunately, me) to work with the vendor so that the Frankensoftware will perform as effectively as the current software (essentially as a project manager since there will be no in-house coding involved). Lastly, he refuses to assign someone to be responsible for the software: taking care of maintenance, configuration, and issue resolutions after it has been rolled out. When I pointedly tell him I will not be doing that (because this is purchased software and I am not a system admin or desktop engineer) he tells me, "Let me think about this." The worst part is that this is only one of four software replacement initiatives he is injecting himself into so he can prove his worth to the business owners. And by doing so he is systematically making every software development initiative akin to living in Dante's Eighth Circle. I am at the point where I want to burn my eye out with a hot poker, pour salt into the wound, and howl to the heavens in unbearable agony for a month, so when these projects come to fruition, and I am suffering the wrath of the business owners, I can look back on that moment I lost my eye and think "good times."4
-
So I've announced my leaving today and my dear line manager responded with asking if they could make me change my mind.
Like what makes you think this is up for debate? I literally noted I signed for another place. Maybe you should have thought of this when I a million times before said that I might leave if x or y doesn't change.
She also scheduled an "emergency meeting" with me for today. I'm eager to hear what she has to came up with..14 -
I'm not sure where I'm going with this, but I'm fucking sick of my experience with the world.
I have a feeling that all that 1984 conspiracy type of ideas that I previously considered bullshit and fear mongering are real.
(Just to be clear, I'm not including most conspiracy theories which are very ignorant like flat earth, fake moon landing, or antivax, the people that spread those theories can die a horrible death IMHO).
Corporation consolidation is a fact and appears to become irreversible.
Because of technology, I can stay in the comfort of my house, safe from crime and be entertained without needing to have direct contact with humans.
People might say "that's your fault for not leaving the house". True but that is just how the world is.
The outside world in the cities I lived in is not a welcoming place.
Hell if you fucking find a bench it's a goddamn miracle, and if you do and sit for a long time, the police stares at you like you are up to something.
People don't talk to you because "don't talk to strangers".
It can be rare to find water or a bathroom that isn't a complete shithole.
So no wonder I rather stay at home, the outside world is hostile.
So yeah, go to a mall or something. And consume, consume, consume, because the outdoors suck.
Many pioneers thought technology was to improve the quality of life.
But no, it's just more isolation, less direct contact with people, less giving a fuck about other people.
And that's how feel about people of today. The least amount of fuck giving about others possible.
You would you would connect to more people faster, but no, the result is just millions of people browsing through the same "entertainment", shitty aggregated content.
Yes, consolidation affects internet too. Everything goes through fucking google, youtube, or whatever other fucking top 10 company.
Just like the class disparity, 1% of the things online get 99% of the exposure.
So if you're a small time anything, basically fuck you, because you're not something enormous.
Like, I wished I was a game developer, but there's thousands of brilliant indie games that get released every year, and they barely make what they're worth.
So why should I fucking try? So I can get ruined financially and I don't have a place to live in?
Software itself is so complex that is impossible to scrutinize decently.
We all laugh at congressmen asking the zuck silly questions.
Out of touch, true, but in hindsight, it is true to some extent that software is hard to regulate. Every software I on earth doesn't meet some standard one way or another.
Or maybe it's just too many of us right now.
When people scroll their search results to get access to the things they should be interested in, the only practical interface right now is being showing one link at a time.
But there's millions and millions of results.
One redeeming aspect of life is that one day I won't be alive anymore to observe the disgusting world we live in.
This could be just pure rambling and I can't prove any of the things I'm saying, I could just have been making the wrong friendships. So take this with a grain of salt.7 -
Create value, not work
Can't believe I'm asked to do something that I feel is absolutely worthless
Okay, yes I know I need to get paid...
Let's just say I don't share the vision with whoever came up with these tasks4 -
It's my end of probation and I just got demoted, from originally "Senior dev" to "dev".
My manager found it a bit difficult to tell me but funny enough, I am completely fine with it apart from the little dent on my pay check. Let me talk about the bad first: money. I believe I have been on the lower end of the market pay range anyways so this step-back gives me about 5% cut, which is acceptable and fair enough.
And the good? Quite a bit. When I got this job offer 6 months ago, it was when everything literally went to shit. I was upset with a somehow not so smart but stubborn tech lead and I desperately wanted to quit. Then I got the offer, which even after 2 interviews I still didn't recall it was a job ads for "technical lead". The manager thought I was not there yet but wanted to keep me as a senior dev. Then, this pandemic almost took away this job. My manager brought my case to the CEO and convinced him to keep me, by saying a lot of good things about me (which I think might not be true for the tech side...)
Throughout the whole 6 months I have been working remotely from home. WFH is not new to me, just this time it's very challenging as I was starting a new job. I have been struggling to keep my pace. All people in the team are nice. However if I don't reach out, no one would notice I need help. And with zero knowledge for this job, I got stuck with "I don't know what I don't know". This ranges from company culture, practice, new tech.. everything. So, that's how this 6 months feels long, but also short.
In our review meeting I think my manager finally realise this. Otherwise he would have gone for the "terminate employment" option. Taking away the "senior" title also takes away the expectation of "I should know XYZ", which I don't. I told him I am kinda happy with it because this sets me up for a more comfortable position to catch my breathe. He told me he noticed my improvement along the way. I told him yes I have been putting in efforts but just given the situation it's not as quick as anyone would expect. We're on the same page now.
So compared to my previous job, I got paid less. But in return, I get many more opportunities to expose myself to new tech. I get a good team who are respectful and open-minded. This is exactly what I was looking for and the drive for me to quit my previous job.
Not to mention I got a reality check. This is also an indicator for me starting to become an imposter, which is the thing I despise most in the industry. I don't want people to value me for how many years I have got in my career. I want to prove myself by what I am capable of. If I'm not there, I should and will get there.
And the last thing which I'm not very keen but it's 100% worth mentioning, is that my manager said I should aim for taking the "senior" role back. He said the salary raise is waiting when I get there. But... Let me just take my time.4 -
When I just started making things in PHP, I always taught that md5 encryption was the best thing out there.. Once I learned that it was the most easy way to break I changed to SHA1. What were I thinking? I now use a custom generated SALT for each user and encrypt with SHA512, should be safe for a while, right?7
-
Junior engineer asking managers on Slack about prioritisation..
Junior eng: Hey managers, I have these tasks A & B lined up and some other type of work... Is it ok if I finish A by Weds and B by the end of week or should it be done sooner? Also, is the order fine or should I prio B first?
*silence for hours*
Random dev feeling bad for junior getting no response chips in: Hey, you are doing great, that order makes sense to me and let me know if you need any guidance or have questions!
Junior dev: Thaanks and will do!
*another hour goes by*
Manager: Hi team. I have asked other engineer X to do task B tomorrow.
what the fuck. at least answer the fucking question and say it needs to be done sooner. felt bad for poor junior here. :/3 -
My fellow dev (a younger guy) and I have been having a lot of disagreements with the lead dev (obviously a more experienced, older guy).
We can have arguments with him all day long, to explain and convince him that he's not that right, or not right at all.
Or we can keep silent and wait for shit to happen.
I'm already applying the stfu strategy myself... Because the other way round is exhausting.
At the same time, naturally, I'm looking for opportunities somewhere else. And, naturally, in those job ads, they state "X years of experience".
This further sets me off.
I'm sick of having an argument shut down because someone has X more years of experience, at a higher position, thinks he is better.
I am starting to hate people who boasts his years of experience instead of having the real knowledge and skills to create value.9 -
I saved passwords to db hashed to SHA-1 with no salt... I left that company but I'm sure that application is still actively used today.2
-
Boss asks us to make sure out documents/instructions to clients are idiot-proof. I am not disagreeing this but usually clients are more idiotic than the most idiotic idiot you can ever imagine...4
-
Just learned that yesterday someone suggested putting the dev team on "workspace", when I was on leave.
My first question, "what the hell is workspace?"
"It's a remote environment..."
Okay I get it. Are you kidding me? Doing development on remote desktop?
My second question, "Why the hell did someone suggest that?"
"We have had issues with devs using MySQL but the target prod will be using PostgreSQL. That caused issues, inconsistencies... And we found some issues after deployment."
Okay so much for DB agnostic. I called it out that everyone now install PostgreSQL on local. Problem solved, hopefully.
Why we had MySQL in the first place? Yes DB agnostic is one of the reason. The other being I'm more familiar with MySQL so it's quicker to perform tasks (like "can you clone that environment for me" and "can you fix the data on XYZ"). But that's trivial.
Just some ridiculous suggestion that set me off.7 -
My manager announced in today's team meeting that I got promoted and going to work in another department next month and no one said anything and I'm so fucking triggered. I just can't help it, I worked with most of these people for a long time, I know their best wishes mean nothing but come on, how fucking salty can you be, and why do I care so much lol.8
-
So I've opened myself to new software engineering positions and was recommended one where the first *benefit* stated:
- High engagement opportunities across our global client base
Am I the only one for whom this is a gigantic red flag and con rather than a benefit? wtf4 -
I rebooted a device that everyone uses
It has not come online yet
It's been an hour, and counting...
What a good timing we're all working from home eh?3 -
All of a sudden the Macbook Pro power adapter was broken yesterday. Guess how much does it cost just to replace it?
Fuck you Apple. If you're gonna overprice, it make it durable and good quality dammit.9 -
Customers are so fucking stupid.
You're already on the page with a form with a "password" field and a fucking "save" button. WHY ARE YOU STILL ASKING ME HOW TO CHANGE YOUR FUCKING PASSWORD???
FUCKING STUPID CUSTOMER WHY DON'T YOUR FUCKING KILL YOURSELF???
FUCK!2 -
Which of the following can successfully lead a company for digital transformation?
A) CEO
B) CTO
C) Covid192 -
Vape bloggers be telling people that it's impossible to quit vaping salt nicotine but I quit successfully. Here's how it went:
1. I took my addiction to the point when I vaped three cartridges a day (that's a lot). I remembered that feeling and recalled that dizziness and urge to vomit instead of "pleasure" when I wanted to vape again
2. It's hard to quit on your own. Instead of nicorette and other shit that doesn't work (because it's also nicotine), I took Cytisine. It removed that URGE and the only thing left to tackle was a psychological addiction
3. Vaping and smoking in my head was tied to a cool moments that I experienced, like smoking with the boys after a hackaton, etc. I analyzed them and realized that they're cool not because of the fact of smoking, they are cool per se. So smoking was not necessary
In my last days of cytisine therapy I not only forgot that I vaped, I sometimes forgot to take cytisine. That means the therapy was successful. My average running distance already improved from 1.5 to 3 km.
There is a research that quitting consuming nicotine can help cure depression. I'll check on that6 -
2021 was really rough, saw friends going over the deep end with burnout, significant incidents to handle and a shitty manager to deal with.
It wasn't about blood and tears, it was about commuting 4 hours/day mid-pandemic to be present in the office and respond to an incident whilst having to deal with a bunch of heroes thinking they were part of a CSI: Cyber episode.
All of that just to be said that my raise "would be enough to keep me from looking elsewhere" as my manager said they were very happy with my performance.
This week I found out exactly how much this appreciation is worth: 2%. And I should consider myself lucky with this number as my performance wasn't good enough to grant me any raise whatsoever.
feelsreallybad.png4 -
This is probably not a popular comment, but here are the reasons I sometimes do not like working from home.
- if I don't get food, the kid starve
- if there's a meeting, the kid decides to play piano
- I have to watch delivered food that needs refrigerated to rot, while I really want to focus on that mudafukin bug
- if misus is not sleeping during the day, there is a 50% chance I smell something burnt in the house
Feel free to add to this list8 -
Ok, I am actually losing my mind at this bad excuse of a work place.
This guy, that I had only briefly talked to in email twice before, never met or even had a video chat, opened a ticket like this:
"Hi Alt-Tab,
I hope you enjoyed the end of last week, the weekend, and the beginning of this one! All well here. I ventured to [random place in London] for the first time on Saturday – liked it."
Now. I already can't fucking stand when colleagues that are not at all close start emails with "how was your weekend?" shit because then I have to waste another minute addressing that. But this guy took it to such another level that I literally had to read his email 3 times to believe what I just witnessed.
And of course he then went on and described the issue as folows:
"Just a quick note about the issue I have - could you let me know why the calendars are not syncing?"
Maybe if you fucking spent half of the energy of you writing a polite bullshit "hello" and instead used that to actually describe the issue I could help.
Fuck off.22 -
All these “top password” lists appearing.. Who audits this? Like ain’t that stuff supposed to be cooked with some salt or something?4
-
You can type your code like an angry bitch as if you are gonna smash the fucking keyboard. I can live with that. But please don't knock on the desk every so often. That's just pointless and annoying.3
-
Legit have to control myself not responding to subtle sarcasm or passive aggressiveness in people's rant or comments with utter salt and shade. 😒😒😒
Note to self: Live and let die.11 -
!rant && 'suggestion'
What if we write cook book in pseudo code (or official development languages) instead of plain english so dumb fuck that can't follow a simple instruction like me could actually make something nice?
def mayonnaise:
mayonnaise = random.shuffle(['yolk', 'salt', 'pepper', 'mustard', 'vinegar'])
while(mayonnaise not "thick"):
mayonnaise.whip()
mayonnaise.append('olive oil')
mayonnaise.append('seasoning' || 'lemon juice')6 -
Since we announced our product yesterday, the bots have started emailing our fuckin support system (which automatically ends up in our Jira Service Desk).
Pound salt you halfwit marketing fucks, you're cluttering our bug reports -
Probably my favorite item is the canister I use as a pen/squishy ball holder. My Dad gave it to me; it's part of a self rescue respirator from the salt mine he works at.
I got to go down in the mine several years ago, pretty awesome. It's around 700ft deep underground and is fully self supporting; down there everything is salt, the walls, floor and ceiling.4 -
Okay so my ticket got rejected because the on screen texts are not in the correct case (upper/lower). Totally fair because nowhere in the spec are those texts defined. As a developer I am also responsible for what "makes sense" for the user.
I'm just gonna say this next time I ask for a raise. -
My LinkedIn is usually pretty quiet. Recently I've received quite a few messages from recruiters. Some of them put numbers in and I look at them, well, the market looks hot.
I like where I am but doesn't hurt to have a look around eh? So I went through some interviews and shit. No preps, not trying to please anyone, being completely honest. And out of the 3 I tried, 1 got to the final round.
Before the final round, the recruiter kept harassing me (it's their job really) about what my "bottom line" is. She said they really liked me but I'm not up to their expectation as a senior role. So they want to proceed with a non-senior role, then climb my ladder up. I told her, I don't give a shit about the title. The she said for that, the salary will be "adjusted" (reads reduced). I told her, look, I said I wouldn't bother if the offer is anything less than X amount of money. Then she said but this company would offer 10% bonus, which will add up , mind you, "close to" X. She said she wanted to know so we don't waste the director's time (as the final round is to meet the bloody director).
I said, if I need to disclose my bottom line before going to this, which is pretty much my negotiation, then let's call it off. No point wasting my time either.
The next day I received the last call from her. They fucked right off.
I know everyone here already knows. But let me experience be another example of how a plague recruiters is. I don't have any experience like this before but this is probably a fucking lowball case too.3 -
During one of our visits at Konza City, Machakos county in Kenya, my team and I encountered a big problem accessing to viable water. Most times we enquired for water, we were handed a bottle of bought water. This for a day or few days would be affordable for some, but for a lifetime of a middle income person, it will be way too much expensive. Of ten people we encountered 8 complained of a proper mechanism to access to viable water. This to us was a very demanding problem, that needed to be sorted out immediately. Majority of the people were unable to conduct income generating activities such as farming because of the nature of the kind of water and its scarcity as well.
Such a scenario demands for an immediate way to solve this problem. Various ways have been put into practice to ensure sustainability of water conservation and management. However most of them have been futile on the aspect of sustainability. As part of our research we also considered to check out of the formal mechanisms put in place to ensure proper acquisition of water, and one of them we saw was tree planting, which was not sustainable at all, also some few piped water was being transported very long distances from the destinations, this however did not solve the immediate needs of the people.We found out that the area has a large body mass of salty water which was not viable for them to conduct any constructive activity. This was hint enough to help us find a way to curb this demanding challenge. Presence of salty water was the first step of our solution.
SOLUTION
We came up with an IOT based system to help curb this problem. Our system entails purification of the salty water through electrolysis, the device is places at an area where the body mass of water is located, it drills for a suitable depth and allow the salty water to flow into it. Various sets of tanks and valves are situated next to it, these tanks acts as to contain the salty water temporarily. A high power source is then connected to each tank, this enable the separation of Chlorine ions from Hydrogen Ions by electrolysis through electrolysis, salt is then separated and allowed to flow from the lower chamber of the tanks, allowing clean water to from to the preceding tanks, the preceding tanks contains various chemicals to remove any remaining impurities. The whole entire process is managed by the action of sensors. Water alkalinity, turbidity and ph are monitored and relayed onto a mobile phone, this then follows a predictive analysis of the data history stored then makes up a decision to increase flow of water in the valves or to decrease its flow. This being a hot prone area, we opted to maximize harnessing of power through solar power, this power availability is almost perfect to provide us with at least 440V constant supply to facilitate faster electrolysis of the salty water.
Being a drought prone area, it was key that the outlet water should be cold and comfortable for consumers to use, so we also coupled our output chamber with cooling tanks, these tanks are managed via our mobile application, the information relayed from it in terms of temperature and humidity are sent to it. This information is key in helping us produce water at optimum states, enabling us to fully manage supply and input of the water from the water bodies.
By the use of natural language processing, we are able to automatically control flow and feeing of the valves to and fro using Voice, one could say “The output water is too hot”, and the system would respond by increasing the speed of the fans and making the tanks provide very cold water. Additional to this system, we have prepared short video tutorials and documents enlighting people on how to conserve water and maintain the optimum state of the green economy.
IBM/OPEN SOURCE TECHNOLOGIES
For a start, we have implemented our project using esp8266 microcontrollers, sensors, transducers and low payload containers to demonstrate our project. Previously we have used Google’s firebase cloud platform to ensure realtimeness of data to-and-fro relay to the mobile. This has proven workable for most cases, whether on a small scale or large scale, however we meet challenges such as change in the fingerprint keys that renders our device not workable, we intend to overcome this problem by moving to IBM bluemix platform.
We use C++ Programming language for our microcontrollers and sensor communication, in some cases we use Python programming language to process neuro-networks for our microcontrollers.
Any feedback conserning this project please?8 -
LinkedIn recruiter:
- messages me about a fantastic job opportunity
- waits exactly 3 days
- messages me asking about the cool company I work at and how I find the engineering department here
- again 3 days
- messages me saying that he has heard some amazing recent news (there were none) about the fast growing company I work at and asks how I feel about the changes caused by our headcount growth
- 3 more days go by
- today, I get a notification that this recruiter has given me random LinkedIn endorsements for some skills that I had put on my profile back in college and since then forgot about even the existence of the endorsements feature
My favorite part is that the job they had originally sent expects a few languages and other tech skills most of which I actually have listed on my profile, but naturally, he only endorsed me for skills not required for said job spec.
What kind of weird sorcery is this?2 -
Good fucking lord, what the fuck is happening with dev recruitment these days. I do get that the technologies go forward, but me being a 13+ years as dev, i am able to learn new shit, pretty easily. BUT NOPE, if you say in the interview that you don't know stuff, then they never call you back.
I worked as a senior fullstack for the past fucking 5-6 years on remote, but most probably i will be forced to move to another city and work as a junior.
Fuck also that my wife is pregnant second time and this time ther is a high risk of misscariege. So i need to work at home and also somehow look after my kid and wife. Nope, according to every hr ever FUCK THAT.4 -
Me to QA: I need an urgent signature.
QA: That costs a cake.
Me: If we baked cake at our company, that would have too much sugar, and we would use more salt as workaround.4 -
HRM student: Hey, can I borrow your flash drive?
IT student: Sorry mate, I don't have that now. I left it at home.
HRM student: Seriously? How could you left if at home? You shouldn't have taken IT course. Lol
IT student: Oh I see, so where is your
Cooking Utensils
Graters & Peelers
Kitchen Shears
Mandolines & Slicers
Salt & Pepper Mills
Food Mills
Colanders & Strainers
Measuring Cups & Spoons and more? I guess you better drop all your subjects now.2 -
PM: Heyy team x, could we have a suuper quick 90 sec tops call?
B*tch, if the call is actually 1.5m there is no way we need that call. We can actually respond to your question in text quicker.
But I know you. You can't fool me that it would actually be 90 seconds.
It's also fucking Friday afternoon.
fml2 -
The one project where I had to build a browser based status dashboard for a molten-salt solar powerplant
-
"Easily add this widget anywhere that accepts Html."
Oh, nice.
*click*
"<script type='text/javascript' src='https://company.com/widgets/...'></script>
<script type='text/javascript' src='https://analytics.com/trackers/...'></script>
<script type='text/javascript'> companyWidget3.initialize('Hello world', 'id12345', '#123456'); companyWidget3.config("https://company.com/resources/..."); companyWidget3.fetchResources(); companyWidget3.logUsage("ref=12345", annoyingTracker); annoyingTracker.notify("myass");
// other bs
companyWidget3.draw();
</script>"
Nice fucking html, fml. -
Fuck timesheet
It's bad enough someone fucking disturb you in the middle of great thoughts. What's worse, you're QUESTIONED where the fuck your time was spent. So you need to work out how much time you have been disturbed, and put in the fucking timesheet!
What a fucking joke! As if we have too much time for meaningful stuff.8 -
So I've just had a meeting with a colleague of mine and, well, he didn't know I was leaving. It turns out, since Friday, my manager/management simply didn't announce it to those for whom it may be relevant because my manager thought they could make me stay.
It was a super awkward call in general and especially because they were hoping for my help on a future project. And now I feel bad for this guy as he was always very nice to me and also apologised a million times during the call for "his mistake". Then he even spent like 5 minutes searching for the announcement email in his inbox making it even more awkward when we both saw there was no such email sent.
(This is following this post: https://devrant.com/rants/4896892 ) -
Everytime im visiting msdn, I'm about to start criying. Especially today. Im having until wednesday to fix a bug, and the only documentation I can find that talks about this issue is on msdn and the site takes fucking forever to load, pouring salt in my wounds.3
-
Did my first meaningful work in angular in many moons at work today - also apparently the first time I've touched it in 4 major version releases lol.
I typically find myself specializing in API and service architecture lately, so I was pleasantly surprised at how quickly I got back into the swing of things with the front end in general. Granted the app itself has been very neatly organised and written which goes a very long way to helping one find their way quickly.
That said, I really can't admit to having any desire to stay working in angular for very long. Yes, I think it speaks well to the framework itself that I can pick up immediately going from version 8 to 12 without any issue, but also, I think angular kinda sucks ass*.
* Opinion should be taken with a grain of salt coming from a .NET dev. This does not reflect the views of .NET or other devs in general. User results may vary.1 -
My final commit in 2017 is a bug in my salt state 😢 but my friends are waiting so the fix has to wait until tomorrow!
-
We have a bunch of legacy applications that runs on Windows only. I'm pretty much the only dev here who doesn't use a Windows machine.
In order to run those applications, I need use remote desktop to a Windows VM.
I use a Mac. And I use a lot of keyboard shortcuts. Case in point, CMD + L to go to the address bar in the browser.
This happens every time when I need to access those applications.
me: *remote desktop to the VM
me: "oh I need to get to the index/landing page"
me: *CMD + L
VM: "I'm locked now"8 -
I hate having to deal with our IT service desk. Every time it takes enormous energy to get to the right people and make them understand that no, you are not an idiot, but you actually have a technical issue.
Sure thing they do have a few competent nice folks there too I've gotten to know over time and they indeed have to deal with a ton of dumb non-tech savvy idiots on a daily basis. However, if my job title mentions "software" and "engineer" they should at least assume I'm an idiot in tech. Or something. Every single time I need to open a ticket, even for the simplest "add x to env y", I need to quadruple check that the subject line is moron-friendly because otherwise they would take every chance to respond "nah we can't do that", "that's not us", or "sry that's not allowed". And then I would need to respond, "yes you do:) your slightly more competent colleague just did this for us 2 weeks ago".
Now you might imagine this is on even another level when the problem is complex.
One of our internal apps has been failing because one of the internal APIs managed by a service desk team responds a 500 status code randomly but only when called with a specific internal account managed by another service desk team.
(when I say "managed by", that doesn't mean they maintain it, it just mean they are the only ones who would have access to change something)
Yesterday I spent over a fucking hour writing a super precise essay detailing the issue, proving a million times it's not on our end and that they need to fix it. Now here is an insight to what beautiful "IT service" our service desk provides:
1) ticket gets assigned to a "Connectivity Engineer" lady
2) few hours later she responds and asks me to give her the app and environment IDs and grant her access to those
(naturally everything in my email was ignored including these two IDs)
3) since the app needs to be in prod for the issue, I make a copy isolating the failing part and grant her access to the original "for reference" and the copy to play with
4) few hours later I get an email from the env that some guy called P made changes to the actual app, no changes to the copy
(maybe they immediately fixed the app even though I asked them to only touch the copy)
I also check the env and the live app had been shared with another 2 people giving them editing rights:)
5) another few hours pass and the lady responds that she had been chatting with P (no mention of who tf that guy is) and that P has a suggestion that might work and I should test it, "please see screen shot" for details:
These motherfuckers sent me a fucking screenshot of the env config file where "P has edited a few parameters" that might help. The screenshot had a 16 line part of the config json with a bunch of IDs and Base64 params which HE EDITED LOCALLY.
Again, because I needed a few iterations to realise what I've just witnessed:
These idiots modified some things in the main app (not the copy) for hours. Then came to the conclusion that the config needs some IDs and params updated. They downloaded the config json. Edited it locally. Did not fucking upload it back to the main or test app. Did not test it live. Did not CC in or direct the guy with changes to me. Did not send me the modified config file. Did not even paste the new IDs into the email. But TOOK A FUCKING SCREENSHOT OF THE MODIFIED FILE AND SENT THAT SHIT TO ME. And then had the audacity to ask me to test it when they had access to it and that's literally their fucking job.
I had to compare the fucking screenshot to the live config file and manually type in the changes.
And no, it still doesn't work. And Now I have to get back to them showing it still fails the same way but I just can't deal with these people. Fuck. Was hoping by the time I write it all down it'd be better, and it does feel a bit better, but I still need to get this app fixed. And I can only do it through these... monkeys. I just can't. Talking to these people drains my life energy... I'm just sad. -
Weird thought.
Everyone seems to hate electron. It's one of the strongest cross platform developing environments though, so everyone uses it.
Google recently made 2 new platforms, flutter and dart, designed for cross platform applications... but then why is project fuschia's entire UI built in, you guessed it, dart and flutter?
I think Google is trying to make an electron replacement, endorse and grow it in fuschia, and have it grow as the new (resource friendlier) electron.
Of course, only my ramblings. Take with a grain of salt.5 -
Official documentation > StackOverflow.
StackOverflow sometimes has well-grounded and elaborate explanations on a question by well-meaning and knowledgeable developers, but oftentimes the answers also contain outdated or 'dirty' solutions and so it's always to be taken with a grain of salt.
However, in cases like the official Spring documentation, the IETF RFC's and the MDN, those provide a correct explanation to the problem, even if it requires some reading around. When it comes to serious and correct work, I favor these over the bro-zone that is StackOverflow.6 -
I was not happy with the way my team lead made those technical decisions. I couldn't do much about it. Hit with frustration, I switched job.
What a coincidence, my new employer is exactly his old employer. Although I liked the company with my impression from the interview, knowing this fact made me nervous. What if this is the place that bred him into what he is today?...
Turned out the reality is not cruel. I'm joining a team that is formed way after he left. And this new team is expected to bring changes to the old-fashioned existing product (or simply a revamp/remake if you call it).
And it's interesting for me to now come to understand the poor decisions he has made. I said I "understand". This does not mean I agree with him now. His approach makes sense when I look at the old-fashion product I am working on. But it still feels wrong in many ways for the product he is now in charge of.
There, I witness that someone with experience is not necessarily smart.
This is the same guy who said "That's why I don't like to catch exception."
FYI https://devrant.com/rants/2420797/...1 -
So I removed all the Eclipse crap from the repository (.settings, .project, etc), add those to the .gitignore, commit and push. The next thing happened is my co-worker found that broken his copy of the code as on Eclipse. That's expected. I told him it's justified to get rid of IDE specific stuff from the repo. All he needed is to set up the project again on his Eclipse.
...
...
...
And he didn't know how to do it.
...
...
...
I helped him out. Wasted 15 min. It shouldn't take that long if I did not try to explain along the way.
I feel like fixing printer.5 -
I forgot my password to my mindfactory account, one of Germany's biggest online vendor for computer components. So I go through the resetting process, which is:
- apply for password reset
- get a mail
- confirm the mail
(So far, so good)
- get a mail with a new CLEAR TEXT PASSWORD
Is this the stone age!?
You never send an email containing the cleartext! You never even store the password as is!
You, as the provider, should never be able to know what the actual password was.
All you are supposed to do is to generate a random salt, and hash the user's password with the salt, and then you only store the salt and the hash. And whenever a user inputs their password, all you do is to check if the you can recreate the hash with the help of the salt and your hash algorithm. (There are libraries for that!)
If a user wants to reset their password? Send them to a mail with link on where they can assign a new password.
At no point should the password ever be stored or transmitted in any other medium.5 -
Yesterday at my career progression chat my manager told me that to showcase more seniority I would need to "stop moving the needle by myself and become a multiplier".
So in order to progress I need to change from being a sewing machine to a mathematical operator??!!?!?
Thanks, that's very fucking helpful.17 -
I just remembered some of the "harmless" dev-related insults I've received over the years:
1) most recently, I shared a tool with an acquaintance cuz it bears the same name as something he put together a while back. Background: this guy likes to come across as having infinite programming knowledge and brags to his fb pals about being an expert in multiple languages. While trying to make sense of the cryptic docs of the package I sent him, he implies I don't know what the iframe or html5 canvas are. Claims not to elaborate what package does cuz the docs is meant for advanced desktop and mobile devs
It hurt because this is one of few people who know I built suphle, yet thinks so lowly
2) as you can tell from the first point, I share links I consider interesting with relevant contacts. I'm also quite vocal about my (mostly contrarian) takes on occurrences within the dev space that I'm familiar with. One day on the laravel board, this dude is reprimanding me and asks me to take the opinions I read on blogs and tabloids with a pinch of salt, implying I didn't form them independently but was influenced by what was written by some stranger online
It hurt because I expected him to know better. I felt I'd sufficiently proven to have actually built things that informed my school of thought
3) the oldest happened many years ago but I remember it now because the perpetrator called me out of the blue last week. I was teaching his boss, who managed an office but preferred to keep his student status hidden, to avoid being thought incompetent. This caller guy just so turned out to be learning js at the time. Fast forward some years, we all disbanded. He'd landed a dev job and was doing well. So I sent him one of those js gotchas, asking him to explain his answer
After he replied, I told him his answer was close enough but it had more to do with js passing closure arguments by reference. Dude responded that he knew that was the correct answer but wasn't aware I knew what closures meant. That stung me like hell back then. I missed his call and didn't know who owned the contact, so I searched my chats and saw that last interaction. Pain all over again3 -
Any other IT company is like:
* Task -> Designer -> Markup coder -> Backend -> Finish
Our IT company:
Act I: "Art of setting up contact with idiots".
------
Items:
*Cave scripts (aka "typical task")
Designer: -- "DAFUQ?"
Customer: *gives another interpretation*
Designer: -- "Erm... really? White text on white background?"
Customer: -- "Make a decision by yourself. I was expecting much more independence from you. You are an expert after all."
Designer: -- "Well. I'm making decision by myself. The text will be placed *here* and will be gray-colored, because *bla-bla-bla*"
Customer: -- "I disagree."
Designer: *1 hour of silence later* -- "Well...k."
Act II: "Design meets ar(u)tist"
----
Items:
*Something, that was drawn by dumb kid while smashing his own head against desk. (PSD layout)
* Salt (to pour it on open wounds)
Designer: -- "I'm seeing this task *this way*"
Markup: -- "And how do u think i should get this done? Have you even seen what you made?? This is bullshit!"
Designer: -- "It's not bullshit! It's a sci-fi themed layout!"
Markup: -- "With gameplay elements and graphics from Alien Shooter??"
Designer: -- "Well, I don't care." *brings new edits and changes*
Markup: -- "????"
Designer: *smug face* -- "!!!"
Act III (7 days later, 9 hours till deadline): "Short story about boy, who was trying to hang himself, but instead fell out from window."
----
Items:
*Markup, smelling like it went through hell and back (x1)
* Markup coder with fried butt (x1)
Backend: -- "What. Is. THAT?"
Markup: -- "It's a work we should complete in 9 hours."
Backend: -- "WE?? I know u mean me, but that's a nightmare. What the f*ck were you doing all this time?"
Markup: -- "Well..." *finds out that he was only watching films and sleeping* "I was making this thing up..."
Backend: -- "You mean "f*cking" *this* thing "up"?"
Markup: -- "Not without it"
(*3 hours of edits and changes of color from white to white later*)
Backend: -- "Well, let's do this."
*Picks PHP and tries to bundle it up with MongoDB. After some time tries to rewrite everything to JS and starts shouting something like "F***CK" and looking for window to walk through. Figures out that he is on first floor. And that he is too lazy to go upstairs*
Act IV (3 days after deadline): "Pain and misery":
-----
Items:
*Something covered with insul(t)ating tape. (Final product)
Customer: -- "Really?"
Team: -- "Kinda."
Customer: -- "Well, thanks for your work anyway. It feels like it's going to disassemble right in my hands but it just works. Oh, also, you didnt made this in time, so your payment will be over9000 times lower. That's all"
Backend, on fluids: -- "Well...yeah..."
Markup: -- "Don't look at me like that. I really was doing my job."
Designer, with twitching eye: -- "Huh, I see. You worked so hard that we have nothing to eat now. Thanks for that."
Backend: ...1 -
Prequel to my previous post:
I received an offer from a startup that did not meet the originally advertised salary range. In every other aspect this place seemed like where I'd enjoy working the most and each previous interaction made a very good impression on me. So needless to say this was quite a shock.
They immediately apologised and explained the situation. They only now started to expand to and hire from my location (which can be verified) and I would be the very first person from this location (seems true too but I could only really verify this after joining). They explained the salary range I had seen was for their main hub location (accurate too) and said that the recruiter who posted the ad did not adjust it to mine. I asked why tf they didn't notify me of this earlier and they said they are super busy with everything, are new to location based salaries and normally don't check the recruiters posts as it should be her work.
Now, even if this is totally true, it was an awful sudden shock and felt a bit like a scam - totally contradicting my previous impressions.
Here are a couple of other points that I'll just sum to save time:
- before seeing the job ad I had a *reasonable* salary expectation even lower than their actual offering
- on the ad, the bottom end of their salary range far exceeded my reasonable exp.
- the relative level of my position would be even higher up the range that I have seen realised would be top 5%
- having had seen the ad, I started to have an *ideal* expectation being the bottom of the range
- in first interview I told them my exp. is the bottom end of their range +- a bit
- I told this to a dev guy who has no fucking idea about this stuff and I don't blame him but he noted this down to higher management
- generally I have not been very precise of my expectation as previously I only had lower class dev jobs, this would be the first decent.
- Hence I have seen an enormously high variation in salaries offered to me so this advertised range whilst high seemed possible
Now, with all this in mind I posted here a question about what some of you would do in my position.
I received the following group of responses:
- it's a scam, bad place, run
- it's an intentional (common) trick
- people make mistakes like this esp. startups so find out if this is intentional or not
- just decide if their current offering is reasonable for the position and location, ignore the rest
- just decide if the amount is enough
- location based salaries are retarded, don't work there (I kinda agree and also don't)
- if they can afford the higher pay in another place they should have no prob. meeting the range
- it's more important that you'd enjoy it there if the pay is sufficient for general needs
- company culture is generally more important these days
- fuck recruiters and hr people (amen to that btw)
Here is what I did:
Regardless of whether I believe them or not I hyperfocused on the potential scam/trick aspect.
I told them that every other interaction with them was positive and would love to join them but this was a really bad impression and feels like they are playing with me. I made up some bullshit previous examples of companies trying the same trick on me (which obv. never happened).
Then I said that I think to resolve this they should invite me to their main office for a day (all interviews had been online) and if after that they are still not ok to offer me at least the bottom of the adv. range then we can part ways. Otherwise this should ensure both of us that we are a good match, etc.
They seemed to love the idea and said that I should go there for x till y (3 days) and if we don't hate each other by the end I'll get the amount at the bottom of the range and they apologised again about it looking like a scam, etc.
So thanks a bunch again to those of you who provided valuable input. -
Trying to learn Angular and reactjs, reading up the tutorial or documentation...
Why the hell are there ten million more shit I need to look at first? (such as rxjs, Babel, webpack... and whatever the fuck they are)
Now am I supposed to master those ten million tools/libraries before I can proceed?
Of course there is no ten million but mentally it's no difference. I'm just fed up with this.3 -
Brave Browser.
There’s a reason why brave is generally advised against on privacy subreddits, and even brave wanted it to be removed from privacytools.io to hide negativity.
Brave rewards: There’s many reasons why this is terrible for privacy, a lot dont care since it can be “disabled“ but in reality it isn’t actually disabled:
Despite explicitly opting out of telemetry, every few secs a request to: “variations.brave.com”, “laptop-updates.brave.com” which despite its name isn’t just for updates and fetches affiliates for brave rewards, with pings such as grammarly, softonic, uphold e.g. Despite again explicitly opting out of brave rewards. There’s also “static1.brave.com”
If you’re on Linux curl the static1 link. curl --head
static1.brave.com,
if you want proof of even further telemetry: it lists cloudfare and google, two unnecessary domains, but most importantly telemetry domains.
But say you were to enable it, which most brave users do since it’s the marketing scheme of the browser, it uses uphold:
“To verify your identity, we collect your name, address, phone, email, and other similar information. We may also require you to provide additional Personal Data for verification purposes, including your date of birth, taxpayer or government identification number, or a copy of your government-issued identification
Uphold uses Veriff to verify your identity by determining whether a selfie you take matches the photo in your government-issued identification. Veriff’s facial recognition technology collects information from your photos that may include biometric data, and when you provide your selfie, you will be asked to agree that Veriff may process biometric data and other data (including special categories of data) from the photos you submit and share it with Uphold. Automated processes may be used to make a verification decision.”
Oh sweet telemetry, now I can get rich, by earning a single pound every 2 months, with brave taking a 30 percent cut of all profits, all whilst selling my own data, what a deal.
In addition this request: “brave-core-ext.s3.brave.com” seems to either be some sort of shilling or suspicious behaviour since it fetches 5 extensions and installs them. For all we know this could be a backdoor.
Previously in their privacy policy they shilled for Facebook, they shared data with Facebook, and afterwards they whitelisted Facebook, Twitter, and large company trackers for money in their adblock: Source. Which is quite ironic, since the whole purpose of its adblock is to block.. tracking.
I’d consider the final grain of salt to be its crappy tor implementation imo. Who makes tor but doesn’t change the dns? source It was literally snake oil, all traffic was leaked to your isp, but you were using “tor”. They only realised after backlash as well, which shows how inexperienced some staff were. If they don’t understand something, why implement it as a feature? It causes more harm than good. In fact they still haven’t fixed the extremely unique fingerprint.
There’s many other reasons why a lot of people dislike brave that arent strictly telemetry related. It injecting its own referral links when users purchased cryptocurrency source. Brave promoting what I’d consider a scam on its sponsored backgrounds: etoro where 62% of users lose all their crypto potentially leading to bankruptcy, hence why brave is paid 200 dollars per sign up, because sweet profit. Not only that but it was accused of theft on its bat platform source, but I can’t fully verify this.
In fact there was a fork of brave (without telemetry) a while back, called braver but it was given countless lawsuits by brave, forced to rename, and eventually they gave up out of plain fear. It’s a shame really since open source was designed to encourage the community to participate, not a marketing feature.
Tl;dr: Brave‘s taken the fake privacy approach similar to a lot of other companies (e.g edge), use “privacy“ for marketing but in reality providing a hypocritical service which “blocks tracking” but instead tracks you.15 -
I need guidance about my current situation.
I am perfectionist believing in OOP, preventing memory leak in advance, following clean code, best practices, constantly learning about new libraries to reduce custom implementation & improve efficiency.
So even a single bad variable name can trigger my nerves.
I am currently working in a half billion $ IT service company on a maintenance project of 8 year old Android app of security domain product of 1 of the top enterprise company of the world, which sold it to the many leading companies in the world in Govt service, banking, insurance sectors.
It's code quality is such a bad that I get panic attacks & nightmares daily.
Issues are like
- No apk obfuscation, source's everything is openbook, anybody can just unzip apk & open it in Android Studio to see the source.
- logs everywhere about method name invoked,
- static IV & salt for encryption.
- thousands of line code in God classes.
- Irrelevant method names compared to it's functionality.
- Even single item having list takes 2-3 seconds to load
- Lag in navigation between different features' screens.
- For even single thing like different dimension values for different density whole 100+ lines separate layout files for 6 types of densities are written.
- No modularized packages, every class is in single package & there are around 100+ classes.
Owner of the code, my team lead, is too terrified to change even single thing as he don't have coding maturity & no understanding of memory leak, clean code, OOP, in short typical IT 'service' company mentality.
Client is ill-informed or cost-cutting centric so no code review done by them in 8 years.
Feeling much frustrated as I can see it's like a bomb is waiting to blast anytime when some blackhat cracker will take advantage of this.
Need suggestions about this to tackle the situation.10 -
I went to meet a client with our CTO. In the meeting we discuss the implementation of SAML SSO. Their SSO guys asked whether they need to build 2 trusts for our application because we have 2 modules that use SSO. Both the CTO and I were not sure because we did not have any prior experience of integrating SAML SSO. To act professional, we couldn't say we were not sure. So the CTO said we needed two trusts. I immediately added "We may only need one. Let us do a bit of investigation and confirm."
After the meeting I did the investigation and found out we really only needed one. So I sent out an email to tell the client, cc the CTO. 1 minute later I got the email from the CTO "why tell them one when I said two?". When it's an immediate response with only 1 line, I know I'm in trouble. So I called him and was ready to explain to him. I couldn't. Later I found out the time I was calling him, he was talking about this with the CEO.
I thought maybe I can explain to him when he's available. The next morning as I came to work, the CEO asked me to come to his office. He closed the door, and told me the first line the CTO told him the day before was "I want him (me) fired." I was so shocked. Having been working with the CTO for quite a while, I was surprised he said that without even communicating with me. Did I do something that wrong that you don't even bother to tell me what's wrong? I was not fired because the CEO at least asked what happened. He also understood I was actually making a better technical decision. But well, guess I shouldn't be making a decision when I had no power to. And even I believed the client heard my "let me investigate first" comment, the CTO didn't. I still got an unofficial warning. For that whole day because of the stress, I don't remember getting anything done.
Fuck that acting like profession and smart when you are not. I'd go down the path of becoming professional and smart instead. And fuck metting with clients. I'm a dev don't fucking dare to talk to me and get me fired. If you wanna talk, talk to the big guys who don't make us look bad like I did.
If you ask me today I still believe I haven't done anything wrong there. So fuck everything.2 -
Just got an email from HR asking everyone to put in leave for Christmas by TODAY.
Christmas is like a month away...
Before this email, there is no similar announcement whatsoever informing we have to put in leave by certain date.
It's lucky I checked my email (because I basically ignore it unless someone comes and tells me he's gonna send me something through it). It's luckier I got my Christmas plan sorted.
But... What if I'm still figuring out what to do for Christmas? Is this reasonable?4 -
Microsoft has put out some really fantastic and educational lectures for free on YouTube. And I understand they have to use Microsoft technology but it makes me cringe when they say things like "Now I'm going to open Microsoft Edge and use Bing." You're working on a projector, we all see you doing it, you don't have to rub salt in the wound.2
-
"The thing I want to change is very simple.."
Day starts off great again by manager saying the above - which is already problem with her limited technical knowledge - and then she proceeds by wanting to change multiple properties of a primary key in our live db.
I really hope my interviews go well this week and I can leave this place soon.. -
As far as mobile games go I am never to interested in or really bother much with some of them. But Honkai Impact 3rd really makes me go woaaah every time I play it. The graphics are absolutely stunning and so is the gameplay. Damned game looks absolutely gorgeous and it makes me think or xbox360 graphics. I do not have a good eye for graphics at all and I am not much of a pc or console gamer. So take that with a grain of salt.4
-
I’m getting good at cooking. The fucking marvel that salt does when I leave salted chicken for a few hours or overnight is something else.
It feels that this already made anything I make around 50% tastier. The hard part is keeping it to a very low minimum to have a reasonable amount of sodium. The other day I had some thin chicken breast slices that were left salted for a few hours, then I cooked them in unsalted butter with a modest amount of pepper and herbs.
And I’ve just read a few pages of the damn book, I’m so excited for the rest.11 -
Today I was told that full stack is another name for a shit developer who wont be able to develop anything good because they aren't focused on one skill.
But it was by a person who claims to like OOP but doesn't know the 4 principles, SOLID, GoF, or DDD. So I take it with salt. But he claims his entire company follows this philosophy.
I think that some developers just decide that they're hot shit and refuse to talk about any other skills they don't know about since they must not be needed if they don't know them. Code is code.9 -
Weekly summary: 1 of your workflows have failed
- shit
The below workflow had an unusual number of failures:
Workflow X
Failed 1 times
- oh so it is failing since yesterday?
*swaty click*
8 h ago - Succeeded
1 d ago - Succeeded
[...]
6 d ago - Succeeded
1 wk ago - Failed
- Oh. Great. Perfect time and way to notify me.8 -
Holy fucking shit are email clients bullshit.
I don't know what happened there but if you thought the chrome-firefox-ie-egde gaps back in the days were sick - let me tell you.. email clients are made by the devil himself. All of them. All of them? Yup. Because he made some of them being owned by apple, working beatuiful and no weird stuff.
But on the same end he made some of them owned by microsoft and their office Studios. They use the word engine to render html emails. Read this again. Read it without starting to cry in agony.
But thats not enough. Let's make some of them use an ie-engine and the mac os variants going to use some webkit based renderer. This way there will be no valid ruleset to make it look good on all of them, isn't this great??
Now this might be hell already. But lets pour more salt into these wide opened wounds.
Let there be Germany and United Internet, owning trash like Web.de and GMX, whose android clients going to work completely different across Android and app-versions!
Once you've mastered these, let me introduce you to gmail. Lets take only the body node of your email and do some fuck up with it, so you have to display a non-responsive variant on mobile.
Now you might be thinking "but there are web-based clients, they'll do good ain't they?" Long story short: fuck you.
Not enough.
Let's go back to ms.
Hey dude lets make it possible to scale up your whole system. So old people can read shit better. And now the funny part: let's make it so that the word rendering engine, rendering emails goes completely mayhem on your mail, so it looks like a completely different thing! (:
If you ever receive a newsletter in your inbox and that shit looks like it's planned to look like.. appreciate that shit. Sacrifice a virgin as thanksgiving for it.
TL;DR:
E-Mail needs to die. I'm doing this for over 2 years now and this shit needs to stop asap.2 -
semi dev related(later half)
A common and random thought I have:
A lot of units that humans use are either needlessly arbitrary or based on something weird. Like Fahrenheit. That shit is weird! 0°F is the freezing point of a water and salt solution. What a weird fucking thing to use!
But also, I like Fahrenheit more. Probably because it's what I was raised with and switching is tedious (though I'm trying. I'd like to use metric more), but also because one degree F is a smaller, more precise change. You can describe more accuracy without decimals.
On the other hand I prefer metric for length. Centimeters, and centimeters are way more precise and way less confusing than inches and .... 1/8th inches? Who the fuck decided on 1/8ths?!
Which brings me to my common thought:
If you look at a Unix timestamp, you can approximate somewhat when it happened. Knowing the current timestamp and a few reference points you can see RELATIVELY what a epoch stamp translates to. A few days ago, an hr ago, 2014ish.
This leads me to think that if we actually taught from a young age to think in epoch as a unit (not as a replacement to normal date formats but as a secondary at first) that we could just naturally read epoch time in the same manner we read dates like "28/01/2006 14:24:10 UTC"
In your brain you automatically know how old you were when that timestamp happened. What grade/job and where you lived at the time. What season it was. You know how far into the day it was, a little before lunch (or after or whatever, your time zone will vary). Now try with 1138458250. I can usually get roughly the year, and month if I really think about it, but that's it. And it takes much more effort
I'm sure there's other units we could benefit from but epoch is the one that usually brings this to mind for me.13 -
I will literally pull out you soul, grill it, and then put it back into you just to kill you, roll you up in nice mustard, pickles, bacon, pepper and salt and then roll you over with beef so I can properly make a roast and then, when you're ded, I will take your soul again to just torture it for all eternity.
....didn't have my coffee yet, guten morgen12 -
So, I just started Week of Code 23, this was my first online competition. I got the email to start the first challenge and I clicked the link, then I went to do something else. When I got back I solved the challenge in 5 minutes (or less idk). I clicked submit, and then looked at the leaderboard.
My current position was something around 900 and I took 70+ minutes to complete the assignment xD :p
Bye chances of winning a t-shirt2 -
void encrypt(...) {
[...]
output.Write(iv);
output.Write(salt);
[...]
}
void decrypt(...) {
[...]
input.Read(salt);
input.Read(iv);
[...]
}
Took me 2 hours to figure out why it kept giving me decryption errors :/3 -
On Facebook open day:
Graduate dev lady telling a story about how much responsibility they are given and how she broke the password reset button for hours when her task was to instruct old users with weak passwords to update them...
//my first post, so not sure if it's appropriate, but surely did this come as a shock7 -
Anyone with game development experience? I'm thinking of doing a game development side project soon. Not expecting the best results, but games like cuphead, hollow knight and salt & sanctuary inspire me (2D platformers).
Will PyGame or LibGDX suit me fine or should I use a bigger engine like Unity or Unreal?8 -
Worst: job insecurity, i. e. "due to Covid, unfortunately we can only renew you for 1 month for now" which kept on going from March till October and during which all sensible colleagues left.
Best: finally leaving this piece of shit management in October for a better position.1 -
Someone should make a movie about three ghosts that haunt a BLOODY CROOK who makes his employees and coworkers burn the midnight oil in the bloody CHISTMAS EVE because the fucker haven't finished something that should have been ready TWO FUCKING WEEKS AGO.
The ghost of Christmas past shows the fucker that he was a bloody LAZY KID who made his elderly relatives cook, host, clean, wash the dishes and everything else all by themselves during family-gathering season.
The ghost of Christmas present shows him his employees' children teary eyed that daddy doesn't get to watch cartoons with them before bedtime (we're not Christians but just because my house is a steak-free zone it doesn't mean my kids don't expect gifts from santa, like most kids in their school!)
The ghost of Christmas future shows a Netflix documentary on how the fucker got arrested for being a BLOODY CROOK that gets played by some actor who is a hollywood-level jerk who beats his wife. And the show gets a 3% on rotten tomatoes, just to salt the wound. Oh, and a voiceover says the real BLOODY CROOK hanged himself in prison or something and his family is happy he did it.
Fuck, I hate, for real hate, people whose tardiness bleeds out on honestly-working people. I had to wake up one of my devs to fix the SHIT that the bloody crook higher-up shat on us.
My guy is getting a raise as soon as I can scream at the bean counters and my boss will be getting some loooooong, data-rich report on how the bloody crook's department is pissing in our soup.
Fuck everything.2 -
Does it bother you when a co-worker keeps talking on phone all day long and it's not work related? It bothers me.5
-
Our QA is acting like a customer, or even more... Pushy, demanding, some times rude... you name it
On the flip side, we have a real (cruel) world scenario in testing. Not too bad I think?3 -
I am trying to "invent" secure client-side authentication where all data are stored in browser encrypted and only accessible with the correct password. My question is, what is your opinion about my idea. If you think it is not secure or there is possible backdoor, let me know.
// INPUT:
- test string (hidden, random, random length)
- password
- password again
// THEN:
- hash test string with sha-512
- encrypt test string with password
- save hash of test string
// AUTH:
- decrypt test string
- hash decrypted string with sha-512
- compare hashes
- create password hash sha-512 (and delete password from memory, so you cannot get it somehow - possible hole here because hash is reversible with brute force)
// DATA PROCESSING
- encrypt/decrypt with password hash as secret (AES-256)
Thanks!
EDIT: Maybe some salt for test string would be nice8 -
Why the fuckin' hell does PayPal limit your password to 20 characters?!?
The length shouldn't matter if they hash and salt the passwords... sooooo...4 -
Managed to get Salt Stack working, feels so poweefull! I can feel all my machines at my fingertips. So overwhelming!1
-
The importance of not using static salt / IVs.
I've been working on a project that encrypts files using a user-provided password as key. This is done on the local machine which presents some challenges which aren't present on a hosted environment. I can't generate random salt / IVs and store them securely in my database. There's no secure way to store them - they would always end up on the client machine in plain text.
A naive approach would be to use static data as salt and IV. This is horrendously harmful to your security for the reason of rainbow tables.
If your encryption system is deterministic in the sense that encrypting / hashing the same string results in the same output each time, you can just compile a massive data set of input -> output and search it in no time flat, making it trivial to reverse engineer whatever password the user input so long as it's in the table.
For this reason, the IVs and salt are paramount. Because even if you generate and store the IVs and salt on the user's computer in plaintext, it doesn't reveal your key, but *does* make sure that your hashing / encryption isn't able to be looked up in a table1 -
Recep Tayyip Erdogan had a problem — after his army service, he got so used to cold that he could only sleep on a raw, cold metal grill. Usually, normal people put mattress on top, but Erdogan didn’t feel right this way. So, in one of his personal prisons, he established a social project for making a full metal bed for himself.
For starters, to calculate the shape, he took the smallest man ever (3 inches high) with his fingers and sunk him into molten plastic. “What are you doing?! It hurts!” — man screamed. “Shut up. You’re on an important mission. Your motherland won’t forget you.”
After three months, the bed was ready. It was more of the same — metal bars, but this time with some kind of structure built of metal hinges, rebar and strong springs. This was the day — this was the big reveal event. It took place in the same prison — three prisoners were ready to lay on their new full metal beds, while news crews congratulated Erdogan and celebrated his greatness. “Well, it is time!” — he said.
Prisoners laid flat. An awful screeching sound. Prisoner number two is bleeding out. The spring mechanism broke out and impaled his chest onto a large metal bar. He’s not breathing.
“Shut it down. Shut it all down. No more cameras, no more news”, — said Erdogan.
“Yes, our master”, — said news crews.
They wanted to draft me to Afghanistan.
“No!”, — a young officer shouted, misgendering me — “He doesn’t know the stages of pain. Useless.”
“Are you perhaps arguing pain with a bipolar patient?” — I replied.
“You are a rave. Nothing but a rave.”
Raves spawned near your doors at night. Sometimes, they even spawned on the inside. I can’t say you were in danger, but it certainly wasn’t a pleasant thing to happen to anyone. They looked ugly. They dressed weird. They spoke in riddles.
“How do I move to Europe?”, — a rave asked.
“I…”
“Shut up!”
Rave took a door, suspiciously painted over and over multiple times, and started to slam my door with it, using it as a ram.
My door started giving in.
Alarm system.
On a separate note, to disable the alarm system, you have to speedrun Stanley Parable. It’s the hardest speedrun ever, specifically its hidden ending. It disables all alarm systems in three-mile radius IRL. No one knows how it works, but it does. Back to the danger zone!
“The better quality time you spend sitting on your toilet, the more you’ll live.”, — an officer said.
“I once had a girl blow me while I was shitting,” — Matthias replied — “You have nothing on me.”
“Fair enough!”
It is a little known fact, but the liquid that Northern cities use to clean up snow isn’t quite what it seems like. It’s not salt — in reality, there are bases on Mars, and they store pink goo that… “iMpRoVeS” dead bodies. The liquid is biological in nature, and it expires. Expired liquid is recycled as snow melter. You learn that in high school, but now, living on a train, you should know that there are special learning rooms here, in every. single. carriage. The small gym ball with two handles on its sides is called Gandhi ball. Fun fact: if you wear headless Segways on top of your shoes, and then lay flat holding a Gandhi ball, you can reach the speed of 270 kph!
Today’s news: a Reddit moderator and a legless woman gave birth to a living sex toy for their domestic boar.2 -
Run a script, get a shit load of "Permission denied" error message... So I stop it by pressing Ctrl+C
Look at the script again there is this little line:
rm -rf $TMP_DIR/*
Look into the script again and again, $TMP_DIR is never defined...2 -
I fucking hate people who want to "perfect" his shit before push his code. Yes damn right. That means he doesn't fucking push his code until it's too late and his "perfect" shit will break everything. Not to mention the cry face he has when there are shitload of conflicts.
-
I don't know if this even belongs here, but lately, thinking about all the people that i used to know and how they just disappeared kinda makes me depressed. When i was a kid, i thought i was supposed to deal with loneliness, and i was very alone yet not realising the friends i had at the time and how i lost contact with all of them. So this is a rant on myself, fuck me. I had a bunch of friends online and in real life too, and all of them just vanished due to my indifference, wonder if they all are doing all right but fuck me i am a fucking moron and i absolutely desereved to be alone for like years. Take this rant with a grain of salt and approciate the people that you engage with in work or hell even online.2
-
Avoided IoT(IoS - InternetOfShit) for a long time now, due to the security concerns with retail products.
Now I looked into 433 Transceiver + Arduino solutions.. to build something myself, just for the lolz.
Theory:
Smallest Arduino I found has 32 KByte of programmable memory, a tiny tiny crypto library could take around 4 KBytes...
Set a symetric crypto key for each homebrewn device / sensor / etc, send the info and commands (with time of day as salt for example) encrypted between Server <-> IoT gadget, ciphertext would have checksum appended, magic and ciphertext length prepended.
Result:
Be safe from possible drive-by attacks, still have a somewhat reliable communication?!
Ofc passionate hackers would be still able to crack it, no doubt.
Question: Am I thinking too simple? Am I describing just the standard here?14 -
The other day when my family and I went to the beach, I met an old friend whom I hadn't seen since 2013. We hardly recognised each other. He brought to my attention that my hair had turned grey! 😮 I was imagining it was still black, but at a closer look it's more like salt & pepper or even beyond... 🤨 I thought I was immune to aging. Hence, the update of my profile avatar, to give an honest picture of my present appearance.2
-
Job requirement:
> Have been on a career break for a minimum of 6 months
???
What kind of fuckery is this?3 -
!dev
I paint as a hobby and i think I'll go the github way and relabel the black colors as nightly 🤔 and whites as salt 😃 (!?).
Sorry, don't mean to be a racist, i practically didn't differentiate between people based untill i was told in school that we should not differentiate based on color or race 🤣. Everyone was just a human before those lessons.3 -
Why do these article sites of news channels have a shitload of adds in it , so much that you can barely even see the article ... and even worse , some of them add random pop up modals in between of their article.
Like I am reading about salt or sugar which is better to add in curd and suddenly I see a f*cking deaf person trying on a hearing aid and smiling like some girl in sanitary pad advertisement after she aced in her exam because she used the extra wide pad.
And some of those website feel so delusionally confident about their articles that they decide to add a "Sign up to Read full article" thing in it ...
I was just trying to read "top 10 places to visit this monsoon in [city name]".2 -
End of financial year in Australia
Purchased IntelliJ Ultimate
The cost will be tax deductible
Nice1 -
!rant
Not sure if it's appropriate here...
I think I am getting more affected by the "depression"... Lower productivity, restless sleeps, etc.
I quoted "depression" because I think it's a medical term that I need to get diagnosed before confirming it. I am thinking maybe I need to see a doctor on this but don't know where to start.
Any Hong Kongers here, sharing the same feel?... -
as a seasoned systems eng myself, i had huge mental block of "i am not a programmer" whining when starting to incorperate agile/infrastructure as code for more seasoned syseng staff.
leadership made devops a role and not a practice so lots of growing pains. was finally able to win them over by asking them to look at how many 'scripts' and 'tools' they wrote to make life easier... and how much simpler and sustainable using puppet/ansible/chef/salt... and checking in all our sacred bin files and only approved 'scripts' would be pushed thru automation tool after post review.
we still are not programmers or developers, but using specific practices and source control took some time but saving us loads of time and gives us ability to actually do engineering
but just have 2 groups of younger guys that grew up wanting to be the bofh/crumudgen get off my systems types that are like not even 30... frustrating as they are the ones that should be more familiar with the shift from strictly ops to some overlap. and the devs that ask for root now that they can launch instances on aws or can launch docker containers and microservice..... ugggg. these 2 groups have never had to rack and stack servers, network gear, storage... just all magic to them because they can start 50 servers with a button click.
try to get past the iam roles, acls, facls, selinux and noshell i have been pushing. bitches. -
Hmm. I've been wondering how I'll deploy an api based on a microservice style the smartest way... The general plan was to use salt to setup the base server and install dependencies and add the configuration.. Doing updates would be a git pull and pm2 restart api. I would love to know how you deploy your software ?1
-
Looking for a way to generate an encrypted string (with salt) in C++ then send that string over to a java server and decrypt it on java as well. Any suggestions?9
-
Note to self: keep not trusting online tutorials and ALWAYS, A.L.W.A.Y.S take them with a grain of salt.
Now why do you fine lads think `nmcli networking off && nmcli networking on` over ssh is a bad idea? And how to quickly make it suitable for over-ssh-execution? Let's see who knows shell! [HINT: see tags for an almost-answer]
... when people not sure what shell characters mean are writing tutorials... FUCK!12 -
Should have asked for forgiveness instead of permission, it should have been an easy two line fix to unblock a developer trying to access a node in a different region in our testing environment.
Instead I’m being ordered on high to play messenger between two people like a pair of teenagers sitting at the dinner table telling mom to tell Jimmy to pass the salt instead of just asking Jimmy directly, and now people want to get on zoom and talk about it.
Just PR the IAM template change, approve it if it’s fine and let me get on to something that isn’t literally babysitting someone’s AWS access ffs.2 -
That debug moment where you have 50+ different vs.net web projects in one solution and each of the said web projects were set up using point-and-click web references, then realised that the developer who created it did not even bother to let people know that you need to run it all simultaneously and did not bother to use host names but instead used the http://localhost:<some-random-port> in IIS express.
Oh, just to rub salt in the wound, each project's programming code files jumps from a mix of vb.net to c# which is a complete waste of time and energy to do.
Whoopdee do. The debug task from hell.1 -
As a developer, how important to you that you have the choice of tools/platforms to do your job?
I've worked on some companies that don't give a damn as long as you get the job done, while some frown upon it because they haven't tried anything other than what they have and are skeptical. Some are completely locked because their products are platform specific so it makes sense for dev to work on the same platform.
Thoughts?5 -
Token for App -> backend authentication is generated one time when the user signs up. Sniff it once and you've got access to the user account forever.
Passwords are hashed with one round of SHA1, no salt.
Everything including login data is sent over plain HTTP.
Luckily I got permission to fix that mess1 -
not a rant.
More coronavirus doomporn so click away now if you're sicking of reading and hearing about it.
As I wrote to sweetnothings and Demolishun over here https://devrant.com/rants/2476697/...
Looting already started in my area.
Store was robbed in broad daylight after it was broken into just a few days ago.
And when the next surge of stimulus money hits people are gonna be like "I better stock up seeing as the shelves are kinda empty."
And then the shelves are gonna empty *quick*.
And people will see that and empty them *even faster*.
And then even faster than *that*, in a vicious cycle.
At some point people might panic and proper looting could begin.
Got my tax return before any stimulus so I took the time to go shopping.
Of course I didn't buy up all of any one item. Don't know why people feel like they need to do that.
Why wouldn't you want a variety of supplies anyway?
Gravy for example. No one can get any meat. Saw that coming a month ago.
If you're just buying for bulk, packet gravy is nice for things like pasta and staples like rice and potatoes.
Little things go a long way.
And salt. Salt is cheap now. Probably will remain cheap, but expect panicking buying to make supply spotty, like
everything else.
I expect these shortages to last 2-4 weeks, excluding things like dairy and meat which *could* go on longer.2 -
I don't know what but our customers have put new terms in our contacts. That essentially make us liable if we don't take certain measure to protect the access to stuff.
To me that means I have to log out of my computer whenever I leave my seat. I was told its not necessary if I go to toilet. So I set the computer to require login after 15 min of not doing shit. Usually I remember that and log out manually so that's just precautions measure.
Today before I got lunch, I forgot. And my boss happened to notice my computer was on within that 15 min after I left.
I got a warning.
Fuck this shit. I now set th timer to 1 min.
Now I need to login again and again if I'm reading docs or article.
Fucking shit.2 -
Salt is awesome, no questions about that. YAML is giving me headaches, but it's my fault and eventually I'll get used to it. But this being my first encounter with jinja, WHO THE HELL THOUGHT THIS PIECE OF CRAP DESERVES TO LIVE! Instead of writing python inside {% %} you have to write kinda pseudo python and I just spend over hour trying to build list inside for. Yes, great idea, scoping fors, and lets make it hard to escape scoping, beacause it would be a shame if somebody COULD ACTUALLY DO SOMETHING USEFULL. I though several times of using different renderer, but I want to keep my code readable and mainrainable and in the end I found a workaround, but still, Jinja, YOU SUCK!4
-
I’ve been slowly removing salt, meats, and sugar from my diet. It’s all going great. It’s cheaper, cleaner, and healthier. But I am struggling against milk. It pairs with way coffee so well…18
-
iPhone 6S got salt water damage. Turns out its the screen so replaced it. Original touch ID doesn't work so that's gone. Now I'm waiting for front camera, sensor, and speaker to arrive to fix that.7
-
Seing myself on devRant makes me realize I am a mix of sugar and salt : sweet, salty, and very dry.15
-
Anybody at Neumont FReX tmr in Salt Lake City? Chhbooi is visiting, I'd also love to know people's opinions about the school.
-
Isn't it just great when there have been unrealistic deadlines chasing you and you keep missing, every day, for over a year?
Meanwhile this guy on the other team just talks on phone all day long for personal matters, no giving a shit to progress.
Yeah I know it's none of my business. But just get the fuck off my face. The mumbling is so annoying.
And he's also that guy I keep bitching about because of his desk finger drumming and keyboard smashing. -
I have set up my automation through a private GitHub repo.
I know there is puppet, and salt, and Ansible. -
substr, substring and any variants
Confusing af. Added 5-sec of Dev time every time I use them because I have to look up just to make sure.
Why can't they be the same? If they're the same, why are they different?2 -
When you warn evil people and they don't listen to what is being said and pour more salt on the wound they get what they deserve eventually
Being a monster is not free9 -
I think i came up with the ultimate captcha. A gif that displays four numbers, one by one in current position. There's always one number displayed. I do not think that AI can recognize it without some nasty adjustments while it's very clear for humans. A while ago I had to do a captcha with six questions and failed it a few times. Wtf.
The site I'm working on will have this captcha soon. I make a microservice in C that will create a captcha equal to the last url parameter, the four digit number. By giving the number yourself as parameter you know what to validate with later at post. I probably include the answer hashed with some salt in a hidden field to compare answer with so it works if you have two tabs open20 -
Fuck you Linux! I thought user password validation would be a piece of cake, like bash one liner. How wrong could I be!
Yeah, it's already ugly to grep hash and salt from /etc/shadow, but I could accept that. But then give me a friggin' tool to generate the hash. And of course the distro I chose has the wrong makepswd, OpenSSL is too old to have the new SHA-512 built in, as it should be a minimal installation I don't want to use perl or python...
And the stupid crypto function that would do me the job is even included in glibc. So it's only one line of C-code to give me all I want, but there is no package that would provide me this dull binary? Instead I will have to compile it myself and then again remove the compiler to keep image small?5 -
Anyone know any good PHP/LAMP/Node devs worth a grain of salt?
Someone that can keep up with me?
I’m tired of working alone and having no one to talk to about code and systems.
Looking for friends first and possible future employees later :P6 -
My best friend (a consultant in salesforce) told me that he feels that software development is becoming like a blue collar casual job that anyone who has enough IQ can just pickup and start working. Have in mind that, he doesn't even have coding basics so I take his opinion with a grain of salt (since his work is just knowing the salesforce framework and teaching his clients what button to click where. He spends 80% of his day in business calls or meetings).
Personally I think that anyone can learn coding basics, but only certain people can stay in this field because you need to constantly grow, change, learn new things, have a huge treshold for failure and also somehow motivate yourself. Only 20% of my unversity peers are actually coding nowadays. Also only around 2-3 people out of 10 people in coding bootcamps actually become devs. So for me dev job is clearly not a casual job.
What are your thoughts on this?14 -
Shred some waves at the local break and drink some salt water in the process! That's my way to get unstuck.
-
Why do you ask “can you {do this/that}” when “no” is not an option? Why don’t dare dare to say “please {do this/that}”?
Yeah nah I’m still gonna say no. But fuck your hypocrisy too9 -
"...what I'm looking at... uh... wait this is ridiculous... what is this... how do I update this..."
This new guy I'm supposed to bring up to speed constantly mumbles like this. He's just talking to himself. But it's so annoying that it's like he's constantly asking me questions.2 -
The moment when you bring up something that's got quite some positive reviews from dev community (of course from the internet), and devs around you simply dismiss your idea of even trying...1
-
So we're approaching the end of WebStorm license subscription. Got notified about renewal. Then there's this question... Should we
1. not renew, use the fallback version (2018 something) because we don't need that many updates anyway and renew next year to get essentially a 50% off discount, or
2. renew and get the 20% off discount?
Asking for my boss lol3 -
Have you tried anything (legal) to consume/smell that helps you get in the zone?
I want to try smelling salt lol. Feels like it could give me a rush to crush whatever I'm working on17 -
I've been seeing job ads saying they look for people who are "good at node.js" or similar (e.g. guru, expert...) What does that mean? I only use npm when I do my reactjs projects. Does that count?4
-
I've come to my first real fork in my career. I currently work as a web developer for a medical software company. The pay is pretty abysmal but they're flexible and not super demanding. However, my formal education (take this with a grain of salt obviously) is in game development and I've been trying to build my portfolio and what not. I was offered a part-time internship, because I'm still in grad school, I haven't held a part time position since high school. But not only is the position a job I actually want, but the company is pretty great. I'd have to stay part time tell graduation (Next December). But they said they are already interested in transitioning me to full time once I graduate. Another note, I have to get some security clearance for the job, which is another reason they want me to start part time.
So I truly don't like web development and the company I'm at has been very up front that I'm going to stay at this pay rate for a while. But it's possible that they offer me a contract/part time position after I leave (mostly because I'm the one and only web developer and they're already on a hiring freeze). However, if they don't I'd have to scramble to find something else to pay bills for the next year.
Long rant. tl;Dr: should I stay or should I go?6 -
So last time saw one of the Zimmerman he was telling me the salt lake crisis from this time period was being overplayed to try to get people to want to flee salt lake city
Wonder if they ever just diverted a damn river to it . -
int yourMum = 10;
for(int boner = 0; boner < yourMum; boner++)
{
print("Fucked her last night m8");
}
return CallOfDuty.Instance.CurrentGame.Disconnect(DisconnectOptions.PULL_THE_PLUG, new Salt(SaltOptions.MAX_VALUE)); -
I've been working on a project which has been understaffed (from the beginning, now I know).
All the newly hired guys, who are more experienced than me (in terms of how many years of work experience), use Eclipse.
I use IntelliJ.
I don't think I can make them switch to IntelliJ.
On a scale of 1 to 10, how frustrated should I be?8 -
Learning Spring at the moment... The autowiring thing gives me a lot of WTF moments but I think that's why people love it. Can't find any good tutorial explaining what's under the hood either.
And I don't know why I just have this great idea of "let me make it harder" by switching to IntelliJ from Eclipse at the same time. As if it's not bad enough that I need to produce something useful within a short time...1