Posts by Claptrap314

Re: elephant in the room (or web page)

Which benefit is immediately seized to further enshitify the web.

Remember "Two seconds is too long"? I do.

Re: Equality Laws and DEI Policies can't co-exist.

And that's why the affirmative action recruiting by colleges got taken down by the USSC in the '90s. Same song, second verse. Outta get better, but it's gonna get worse.

Re: Javascript

I'm afraid it goes much deeper than that. Certainly, javascript has a lot of problems. In fact, it's very presence in browsers was controverted because it broke a traditional security boundary--connecting to another computer should NOT mean executing arbitrary code at the behest of the said computer.

One of the tenants of the The Cathedral and the Bazaar is "given enough eyeballs, all bugs are shallow". Management has taken this to effectively mean "OS software is bug free". So while everyone has made use of OSS, almost no one has been reviewing it for bugs or security issues. Sure, we get occasional big splash announcements of various initiatives, but they always shut down because there is no profit in it.

Of course LLMs aren't really helping because there are SO MANY issues that maintainers can't respond to them all. Moreover, when LLM providers start charging enough to recover costs, things will revert to something close to the prior status quo.

Note that many of the LLM-spotted issues are WONTFIX-class. It is worthwhile to ask, however, "why?" It's because the cost to the maintain of a fix exceeds the value. Not that there is no issue at all.

The reality is that we started using the term "software engineering" in the 90's in an attempt to cut down on the amount of slop software that was being foisted off on an unsuspecting public.

I'll keep saying this: customers have no way to evaluate security, and little ability to evaluate software quality in general. Companies exist to generate profits.

Re: WTF

Yes, fat-soluble toxins tend to get stored in fat, but there is no body-awareness. Fat people losing weight, however, generally have to deal with this side-effect.

I don't know what the standard time is for the US to hold TOP SECRET material, but word that we had completely broken Enigma was still held tight when David Khan wrote The Codebreakers in 1967. So, in the US at least, twenty years is a known minimum for at least some classes of information.

Moreover, we have held detailed census data for seventy years.

There really are quite a few secrets that need to be held, not for one decade, but for several.

Re: Sponsored Items

Or maybe you're product's decent, but your competitor is sponsoring...

Re: apt-listbugs

Would that be "someone other than me" and "do it for free"? I think that's a major part of the original problem...

Re: maybe wrong choice of sci-fi

I read that quite differently. In each case, the three laws were tampered with in some way--with catastrophic consequences. In the final two stories, the bots, properly applied the three laws (so far as the author was concerned) in defiance of the operators.

It's a big win for the token sellers, I'll grant you that much.

If there were, it would be quite boring. With 40k birds, Musk gets a bit more than 1k/bird to wobble around. The relevant parties ARE paying attention, and WILL take action long before we have any real dangers.

Remember, space is BIG. LEO is also quite large, actually.

Re: Again a case for caching...

I don't see how. These packages were updated via legitimate channels. A cache is just going to hold on to the update.

I've been pushing for local package caches for more than a decade, but they DO require careful attention or they become another way for things to break.

Re: Congress shall have power .. to declare war

Yeah, but as I learned after the Soleimani extermination, the US has gone to war without a formal declaration of war starting with the Quasi-War with France (1798-1800) and Barbary Wars, I and II (1801-1815). The five times we have actually declared war per the constitution stand out for their exceptionalism.

More relevant to the discussion, the Geneva Conventions were updated, as covered by these pages, to include cyber attacks as potential casus belli after Mr. Obama left office. However, as is generally the case, the GCs were updated AFTER various countries had declared that cyber attacks could be considered such.

In the end, you don't act if you believe that it is likely that the consequences will be unacceptable. Ambiguity, therefore, almost always delays action.

"Presidents should never say never."

Wow. And actual, appropriate use of "fascist" in 2026. Will wonders never cease?

Re: 'special' people

Most? It's not that hard to make the case that a neurotypical is generally incapable of the rigid adherence to rules that is needed to be an effective programmer. Even 20 years ago, there were public discussions that the bulk of programmers were actively slowing down their projects.

Re: This isn't the real problem

Check with Vancover, BC on that one.

Re: Babbage had the answer: "What?"

Google has "did you mean"? Huh. I wonder when they came up with that. Not much, though.

Re: X.400 vs SMTP

These people were gaming nuclear war & assuming that the bad guys would just ignore our communications network?

Don't answer--I already know. ArpaNet was under-specified from the beginning. We've been paying for it almost the entire time.

Re: Methodology failure?

Agile is called agile because it is the continuous, methodical search to do things better. If anyone thinks or expect that proper agile is going to look the same in an unregulated industry verses a regulated one, for instance, they need to be kept far away from any decisions.

Yes, there are some pretty hard rules--like dropping features as needed to meet deadlines. Like setting aside weeks every few months for serious introspection.

Honestly, I don't know that I've ever seen a team that was clearly function with just these two criteria.

Don't be. If those systems had been mothballed for ten months, the cost to bring them all back online would have been substantial. And, in the mean time, they were a non-performing asset.

Post mortem?

Didn't AWS used to do post mortems for major outages? How detailed was their discussion this time?

Re: But is this "news" ?

"... invent perfect security, they would become very rich very quickly"

No, because it is EXPENSIVE to implement.

I was shocked

when reading up on the history of formal declarations of war after the elimination of UN-santioned Qasem Soleimani. Starting with the Quasi War (US & France, 1798-1800), and the First Barbary War (1801-1805), the US has prosecuted wars without a formal declaration of war by Congress. That article you linked appears to think that the history of the US started around 1914.

It was particularly noteworthy to me that on Sept 14th, after congress passed the infamous AUMF resolution, Senate Majority Leader Tom Daschle (D), held a press conference on the steps of the senate, with leaders of both parties in both houses and stated, "This is a declaration of war". Of course, he had to say it because it plainly was NOT. What it was was the latest in a two hundred year of tradition of the US congress formally authorizing the use of force without a proper declaration of war.

Sadly, the murder of innocent civilians of other nations has never really been enough to get countries to go to war. In this case, Iran was going gang busters on building cruise missiles capable of striking the entire Middle East and a good chunk of Europe. They also bragged that they had enough uranium ready to be able to quickly build eleven nuclear bombs.

President Trump barely mentioned them in the State of the Union address in order to lull the Iranian leadership. This apparently worked.

Re: Play it again, Sam

Cute, but these things are, by design, incapable of learning.

Re: Is it just me..?

Don't see many of those around here any more. You come from a more civilized age.