Welcome to the wonderful world of code obfuscation
I don't think so. I just made a screenshot of one random convo he's having about this, but there's loads more in a similar fashion.
And all of his other posts besides this one seem legit on the surface.
So it would be pretty weird if he randomly has a very bad take, and then just claims "Lol this was a troll post, gotcha!"... That's pretty much the 4chan defense when you get called out - "Haha guys, I'm actually not r-worded, I'm just trolling!"
I don't think it's satire, this guy is actively defending this on Linkedin: https://i.imgur.com/SlJPG85.png
The question is a bit too vague to answer, there's not really any right answer.
Just - find what you like to do with it, and go for it. Want to make a game? Maybe play around with Godot or unreal engine or something.
Do you have any repetitive task that you're doing a lot that you could maybe automate? - try doing that.
You can read some books or watch some tutorials or something, but the best way to actually learn is to actually program.
Yea true, if people can vote on something, other people will use those votes as metrics for how good something is
My perspective was more about what they actually do. Not the meta-effects they might have socially
Eventually, you will be able to turn a repository with a high star count into money or advancement
I think you overestimate how much money or advancements you can really get from it though.
Money wise - I can't find an overview of "Most Sponsored github repos" - but it's pretty bare. I checked to see if I could find any example, for example if you look at FluentAssertions - A project that basically everyone uses, has 292.6 Million total downloads on Nuget. If you check their sponsers - they currently have 17. Assuming their the lowest tier, you're getting $85 a month. Which is cool, I guess, but a neglectable amount for a developer with a normal job
And advancements wise - any actually good developer doesn't really have a problem getting a good job - And any good company reviewing a candidate might fool the HR by buying stars, but a dev reviewer or something will actually look though the code won't care much about stars
Stars don't really do that much, people mostly use it to "favorite" your repo. Or just a general "Upvote" or something
I have a repo with about 1.4k stars, so what it gives you:
- The Starstruck badge in your profile with different tiers at 16/128/512/4096 stars
- Visibility in search: When you search for something in Github, it takes into account the amount of stars something has
Not sure if that affects other searches, like google
Even more stars (apparently like 5k+ or more) gives you
- Github Copilot is free if you're a "maintainer of a popular open source project"
--i-am-a-dummy 😂
I didn’t mean this as IDE thing
Well, the link you've posted is specifically for MySQL CLI Client - Maybe I should have I said "Client" instead of "IDE" - but if he uses a different IDE/Client besides MySQL-CLI it's probably a different setting
for postgres and Ms SQLserver
It's not really a SQL Language feature, more an IDE feature. So to tell you where the settings are, we'd have to know which IDE you're using.
For example, in DataGrip (which I think you can use both for postgres and MSSQL), there's "Show warning before running potentially unsafe queries"
If you forgot to put the WHERE clause in DELETE and UPDATE statements, DataGrip displays a notification to remind you about that. If you omitted the WHERE clause intentionally, you can execute current statements as you planned.
What we have is machine learning, just an algorithm that takes input and gives you output. It can’t act on its own.
Isn't that basically what "real learning" is as well? Basically you're born as a baby, and you take input, and eventually you can replicate it, and eventually you can "talk" for example?
But in the training data something was off, suddenly your AI is racist and gives every black person a lesser amount.
Same here, how is that different from "real learning"? You're born into a racist family, in a racist village where everyone is racist. What is the end-result; you're probably somewhat racist due to racist input - until you might unlearn that, if you're exposed to other data that proves your racist ideas were wrong
If a human brain is basically a big learning computer, why wouldn't AI eventually reach singularity and emulate a brain and beyond? All the examples you mentioned of what it can't do, is just stuff it can't do yet
Well since this is a Typescript / Microsoft kinda thread - there are replacements.. You can use C# with Blazor (from Microsoft)
And you can also compile Go and Rust to WASM (probably some other stuff as well that I'm not aware of)
do you worry that Microsoft is going to eventually do the Microsoft thing and horribly fuck it up for everyone?
I'm not really sure what you have against Microsoft, or what "Microsoft classic" you'd be referring to...
In the last 10 years or so they pretty much moved everything C# related to Core, cross platform and open source. Even the decision making for the language is "Open source" - Microsoft is not really behaving the same as the Microsoft from 2000...
Soo, I don't really know how they could possibly fuck it up. They might add more and more features you might not like, but you could just choose to stick to an older version of the language
Take the same approach with tickets: Finish one in 10 minutes? You just get a new one. Finish the same one in 2 days, and claim "Pff, that was a tough one, but I did it!" - Makes the Product Owner think the Developer is working, and appreciates the result way more
In your original comment, it seemed like you were suggesting hashing only before transmission
Ok, that wasn't what I was suggesting, no. That would effectively make your password hash the password itself - and it would kinda be stored in PlainText on the server, if you skip the client auth and send that value to the server directly through the api or something
how does such a service (like Proton Mail) perform this in a web browser without having access to the data necessary to decrypt all of the data it’s sending? [...] do you send down an encrypted private key that can only be decrypted with the user’s password?
Yes, pretty much. I can't really find a good, detailed explanation from Proton how it exactly works, but LastPass uses the same zero-knowledge encryption approach - which they explained with some diagram here - with a good overview of the client/server separation of it's hashing.
I'm not really sure how it opens up replay attacks, since it doesn't really change anything to the default auth. There are already sites that do this.
The only difference is that instead of sending an http request of { username = "MyUsername", Password = "MyPassword" } changes to { username = "MyUsername", Password = HashOf("MyPassword") } - and the HashOf("MyPassword") effectively becomes your password. - So I don't know how that opens up a possibility for replay attack. There's not really any difference between replaying a ClearText auth request vs an pre-hashed auth request. - Because everything else server side stays the same
(Not entirely auth related), but another approach of client side decryption is to handle decryption completely client site - meaning all your data is stored encrypted on the server, and the server sends you an encrypted container with your data that you decrypt client side. That's how Proton(Mail) works in a nutshell
No, the client side hashing doesn't substitutes anything server side, it just adds an extra step in the client
there is no possible way to handle sensitive data without storing it in memory at some point
Since we're nitpicking here - technically you can. They could run hashing client side first, and instead of sending the password in plain-text, you'd send a hashed version
This whole article could have just been a report of “How I found a bug in the Kernel and helped fix it” - instead of something this negative
I disagree. If noone spoke out about Linus Torvalds calling people “dumb fucks”, he would still be doing it.
It's kind of a leap from "not accepting a PR because the maintainer thought the code wasn't good enough to accept it at face value - and the maintainer apparently didn't care enough to give the contributor an extended code-review on how to fix it" vs "calling people “dumb fucks”"
If a maintainer get a PR that's bad and it would take an hour to write an explanation on how to fix it - and then hoping the end-result from the contributor is as expected, otherwise he'll have to write another explanation on how to fix it and go back and forth for a while - vs - just spending that hour rewriting the fix himself - I'm pretty sure most maintainers just do it themselves.
When you actually work for a company and you're working with other (junior) devs, you should go for the option of educating them on what's wrong with their PR... But in this case - I don't even know if the maintainer is doing this as a paid job or just in their spare time - but either way why would the maintainer spend time getting the PR right if it was apparently far off.
Did the author do the best job with this article? Probably not. That does not invalidate his experience though.
I didn't say his experience was invalid, but his experience probably isn't unusual. He could've taken this experience as "I contributed the QA and diagnosing part of this bugfix, but my code wasn't up to par. Next time before submitting some random fix for a bug that I found (that wasn't even "Up for grabs") (or discussed how it should be fixed at all) - I should contact the maintainer first" - Instead it seems he found a bug, didn't really report or communicate about it, because he wanted to race for a fix himself because he wanted to get recognition for actually creating the code the fixed the bug
Edit: the amount of downvotes you get for saying something unpopular without being violent or abusive is showing the lack of guts to discuss something in a civilized manner. Shame on you.
People aren't discussing this because "try to sue in this case" is just an absurd concept - but okay.
Who are you going to sue and for what? His concept of recognition is just "getting his code into the kernel"? He could have written a blog post in the context of “How I found a bug in the Kernel and helped fix it” - He did contribute, he did the QA part and the diagnosing part, thats contributing.
But his post with the sentiment of "I did it all for nothing!" makes it seem like the goal was to get "recognition" and get his code into the repo... The goal is just to fix bugs, and he did contribute to that
That in itself is the problem. If the kernel community wants to attract new contributors, mentorship is important and appreciation of effort is important, despite the result of that effort not being up to par yet.
Well it depends on the quality of the PR. If there are minor things wrong, you can point them out the the contributor and help them get their PR to a level you want..
If the PR is "Ok, thanks for pointing out where the issue is, but I'm going to have to rewrite your solution entirely" - what is the maintainer supposed to do? Take their PR, overwrite the solution, and git squash them together so the original contributor gets "credit" in form of being in the git history?
I doubt the maintainer would even consider that the contributor would feel "belittled and angry" if their fix wasn't accepted at face value, or if they didn't get enough credit would write an angry blog post about it. This whole article could have just been a report of "How I found a bug in the Kernel and helped fix it" - instead of something this negative
Yea, I was thinking the same. I have the JetBrains toolbox, and already have these installed:
- Rider
- RubyMine
- PyCharm
- GoLand
- CLion
I don't really get why they need to make 10 different IDEs for every language, instead of just consolidating everything into a single UI/IDE.
For pricing it doesn't make that much sense, anyone that wants more than 2 JetBrains products is better off buying the entire toolbox.