Posts by Laurent Leconte

@AC 12:35

Jesus, that comes as close as it can to a declaration of war, doesn't it ?

Condescending tone, inflammatory rethorics, gratuitous insults...you forgot to mention Joan of Arc but otherwise a very good effort. I give this flame 3 flint stones out of 5.

A caveat : I'm a French engineer so of course I'm going to have a biased view. But I for one believe that nuclear power is currently the only viable solution for supplying sustainable electrical energy; and that as a country producing 3/4 of its electricity from nuclear plants, and having built quite a lot of power plants at home and abroad France (its industry, at any rate) certainly has the necessary know-how. Much as I'd like to see our French-hating neighbours personified by AC revert to the Middle Ages I honestly think this deal would have been a good thing for both countries.

Eagerly awaiting the French-bashing and green propaganda !

@ coding AC

> However I was using ActionScript 3.0 so my website will be powered by "AAS".

Would that Action Script interact with the or be downloaded from the "Server Side" ?

If so then you can legitimately say you website is powered by "AASSS", although that probably makes it NSFW. As, indeed, any website using applets.

@Ken

The ".33€ donation" is probably a mistranslation. Methinks it's actually the "eco-tax", by which you have to pay a (small) fee to cover electronic waste disposal when you buy a new electrical/electronical device.

@Only half the issue has been addressed

I just had a thought that made me giggle out loud.

Imagine that Phorm and BT lie and spin their way around the opt-in issue (as many commenters have suggested).

Imagine that the "service" Phorm offers comes back insidiously, and that a substantial proportion of computer-illiterate users are opted in.

So far, that would mean the little guy got shafted by the big corp; par for the course and not that unlikely.

Now, imagine that the other shoe drops; i.e. website owners objects to *their* content being intercepted. And, at the top of your head, which big web companies, interested in keeping their lucrative online advertisement business, would be likely to step into the arena ?

That's right, I had a dream of a massive legal struggle between BT, phorm, Google, Yahoo, Microsoft (they're bound to have a go at the thing, on one side or the other) and a few others probably... A corporate version of Alien vs Predator, with Godzilla and the Gremlins thrown in as well !

Man, I almost hope Phorm makes it that far, just so that I can grab the popcorn, kick back, and enjoy the show (almost, but not quite).

@Aquilus & jubtastic

The broken Flash allows for XSS exploits (quote from original article : "Vulnerable content opens websites up to cross-site scripting (XSS) exploits that allow an attacker to perform any action available to a user of the targeted website"). So yeah, a spam pusher or russian mobster could put the flash on his website and steal the personal info you were about to submit... on his website.

The point here is that the vulnerable websites are corporate ones : banks, e-commerce, etc. When you run a website, and there's a vulnerability caused by something you (or most likely that chick from marketing who likes to download flash tutorials from the net to make purty blinking ads) put on one of your pages, you don't say "my customers should install the latest version of Adobe Flash Player, or even better switch to Links". You damn well go and fix it.

The reason is, you can't trust your users. You can't trust Grandma Jane who wants to buy a tricycle on-line for her grandson's birthday to have the latest version of IE/FF/whatever with all the plug-ins and the relevant Windows service pack.

The onus of making sure a user's input can't break your website, and that your website doesn't break the user's PC, is yours. If that means changing your pretty code so that it doesn't conflict with a buggy browser version, then so be it. Incidentally, this is why most commercial websites, at least those not done in Flash, use all sorts of ugly CSS tricks to work with the standards and with IE.

This is also why you should never ever trust user input, even "validated" by Javascript, and always run server-side checks.

Rant over.

@A J Stiles

>"Intellectual property" should not be allowed to be bought and sold in the same way as real property.

This is the underlying principle behind a market economy : any type of property (i.e., something that someone can own) will eventually be sold, bought, traded, and give rise to speculation. What's more, there will eventually emerge a global marketplace where such sales and trades will be formalized and 'industrialized' so to speak, which in turn gives rise to more sophisticated and/or derivative products based on the original commodity.

This principle applies to just about everything : raw materials, currencies, stock, real estate... but also debts (your bank owns your debt, so why shouldn't it be free to sell it to another bank ? Hey, can anyone say 'subprimes' ?), stock options, derivative products (whose sole purpose is to be bought, sold, and speculated with), and much much more...

The only upside is that patents are currently used defensively mostly -except in the good ole district of Eastern Texas of course- and that there isn't yet (to my knowledge anyway) any agreed-upon mathematical formula for estimating the value of a patent. So using and abusing patents is still a somewhat artisanal process: you have to fight it out in court, there's no guaranteed return on investment, etc.

The day we know how to put an accurate value on a patent without 'exercizing' it (i.e. going to court), is the day patents will become just another commodity. Don't believe me ? Think stock options and the Black & Scholes formula.

All this leads me to wonder what will be the next 'property' playground. My bet is on privacy and/or private data. You own your private data right ? So... if you own it, it can be bought. If it can be bought, it can be sold again. Or traded. Or sold in bulk. This is already the case on the black market, it's only a matter of time before it becomes another legal avenue of financial frolicking.

IANAL, but it might be a good thing we don't actually 'own' fundamental rights (if I remember correctly, they're granted by the state although I suspect Your Constitution May Vary) or some poor sods are bound to sell them one day... or be defrauded of them.

Flash to the rescue

Werl, the easiest way out is to code all your websites in Flash ! It's a universal standard, can do purty moving thingamajigs and even "creative types" can code in it.

And all you need to do is plug in a big ole <object> in your page, and every browser will render the same thing ! (except Links, but that's only used by commie b**tards anyway).

So why don't we let the W3C play with itself in the corner and adopt a proprietary standard proven time and again by the stock exchange! Besides, ever since they took away the blink and marquee tags, HTML just hasn't been the same...

I take comfort in the fact...

... that CMOT Dibbler is probably going around the crowd that's formed on this thread to sell sausages in a bun

@Brian Miller

'At the bottom of the article it says: "Error: A thorough search of the Register database for "Sierra Leone" and "lunatics" returned [0] results. Please modify your search to contain at least one IT-related term." '

Indeed. Which leads to one (and only one) of 2 conclusions :

1- whoever coded the Register website knows that empty strings, badly built queries, null pointer exceptions and what have you will happen, knows to test for them and knows the value of a clean, userfriendly error message (instead of the traditional "what should never have happened, has happened. Sorry"). In which case, they should be rightly commanded.

2- in the original version of the article, the "related stories" paragraph was replaced by a crappy mySQL error message. Which quickly led to someone inserting a dirty hack to make it look as if the code had recovered gracefully from the lack of previous references to smelly african lunatics.

My money's on #2...

specs & contracts

For the sake of conversation let's go with the assumption that the original specs were crap (which the article doesn't mention btw) and that the big question is 'should the coders have done something about it or not'.

Now, if everything from the specs to the finished (and I use the term loosely) code is done in-house, the coders can and *should have* raised the point of general spec-crapiness. You do what you're asked to do, but it doesn't take a genius to figure out that if you're coding crap, you're bound to have to recode it at some point and in the meantime Bad Things can happen to your website and your company - especially where security's involved.

If however you use an outside firm (be they in India or the building down the road), the specs become part of a contract between two companies, and as such the coders will have absolutely no say in the matter, even if they wanted to. It's not even a question of good or bad developers - from the moment the contract is signed specifying which specs will be coded for what price and in what time, the only way it's going to change is if you can convince the account manager there's more money to be made (and for that to happen, he has to convince the client to fork up extra dough).

Oh, and @Ed, the obvious answer is never EVER pay until you're completely satisfied with the code...