Posts by jzl

Re: Another highly satisfied Mint user here...

Can you find an open source alternative to Excel that really - really - runs VBA macros? And an open source alternative to Bloomberg would be nice too.

Re: Iron Man vs Bezos

Bezos's accomplishment was impressive, for sure, although it's important to remember that the man is a bona fide independent billionaire. It's reasonably easy to do things when you don't have commercial constraints.

Aside from the massive technical differences, which you alluded to, what strikes me is that Musk has achieved this on a commercial launch with a company that actually has customers and makes money.

I also happen to think that Bezos is a total dick, but that's just personal.

Re: but how much re-use can you get?

The fuel is kerosene (jet fuel) and the oxidiser is, well, pure oxygen. So there's a certain risk with it but nothing that a pump, a good wash and a bit of care can't handle.

Re: A little obvious

There is good rigorous evidence that shared family mealtimes improve a number of childhood outcomes. If you don't have a shared mealtime, I would definitely recommend that you consider it.

See https://www.human.cornell.edu/pam/outreach/upload/Family-Mealtimes-2.pdf for example.

Re: The Pope

"Most of them, especially the children DIDN'T sign up....they were indoctrinated from birth"

While I agree with you, our society generally says adults are adults. Either we accept that they have the ability to consciously change their beliefs, or we drop the silly fiction that adults are responsible for all their own actions all the time. Can't have both.

Re: The Pope

"There is little difference between this and what goes on in Muslim Madrassas."

Don't see the Catholics instructing kids that Western education is evil, that the only thing worth doing is memorising a book, that women are property, or that waging neverending war against the infidel is the duty of everyone.

Aside from that, yeah, just like the madrassas.

Re: The Pope

He's not dictating to people. Last time I checked he had no actual power outside the Vatican. He's dictating to his followers and they signed up for it.

Don't like the pope telling you what to do? Stop being a catholic. Simple.

Re: Really?

"It is up to customers to vote with their feet and just walk away if they don't like an OEM's patching policy"

Really? What percentage of Android consumers do you think are honestly tech-savvy enough to even know what a patching policy is, let alone have any idea before purchase about their vendor's policy?

None. Or as close to none as makes a rounding error.

Google should be ensuring compliance from end to end as part of their CTS and play store policy.

Re: C

C and C++ are not *very* different. What an asinine thing to say. First, C++ is a superset of C. Second, the reason that C++ is dangerous come down to point 1.

Inferring that I know nothing about them from what I said is ludicrous. I have twenty years of professional development experience under my belt, a number of them in C++. I know what I'm talking about. Also, you might want to look up the phrase "Ad hominem attack" on Google.

If you want two very different languages, how about C and Haskell?

Re: C

I'm not exactly saying the language is "at fault". I'm not even sure that "at fault" is a meaningful concept.

I'm just saying that most of the major security flaws uncovered in code are down to two specific things: buffer overruns and pointer mismanagement. No matter how bad a developer is, most languages don't allow the first and make the second much less likely.

It's not like I hate C. I don't. I enjoy writing in it - it's powerful, expressive and fun. I just don't think the risks of using it in production environments are worth it.

Re: C

My concern there is that any solution which requires that people change their behaviour en masse is doomed to failure. So "having people create *easily* repeatable tests" is doomed.

If people were going to do that, they already would. Some do, lots don't and probably never will.

As for the idea of D being not suitable for use after 1999, well that's just silly. D is in strong, active development.

"C is the worst programming language, except for all the others."

Most modern programming languages make it essentially impossible to create a buffer overrun vulnerability, for example. All languages are not equal.

Re: C

"But the primary purpose of a handgun is to kill people."

Well, as we all know, C is short for "Confuse". The primary purpose of C is to confuse developers and produce security holes. Software is a side effect of code written in C.

Also, I wasn't comparing guns and C. I was comparing argument styles. You might want to brush up on your language comprehension skills.

Re: C

You people defending C remind me of Americans defending guns.

Guns don't kill people, people kill people.

C doesn't cause security holes, people cause security holes.

Whatever.

Re: C

If something as difficult and rocket-sciency as a hypervisor, presumably written by the best of the best of the best, can still contain these sorts of problems, what hope for the vast bulk of C software?

Most of which - unlike, perhaps, a hypervisor - could happily be written in any number of safe languages.

As for the hypervisor, well what about D? It's a mature, robust language. Or if you insist on going all dawn-of-computing, how about Ada?

Re: C

And for non-OS kernel use cases, for the most part, performance comes from good algorthims and good algorithms come from developer productivity.

Re: C

D?

Re: C

"But it's not the language, it's the bad developers!" they cry.

Fine, whatever, but does it matter what the cause is? Safe libraries for C have been around for a very long time. Why hasn't the situation improved yet? If we could fix the bad developers, we would have already done so. We can't. So let's engineer it so they can't do so much harm.

Re: Can we ditch the silly political correctness in reg articles

That's not political correctness. It's just not. You have a misogyny problem.

99.9% of hackers are not men. Most surveys put it at 85% at most.

So you'd expect to see at least 1/8 articles referring to "she". But then given that the human population is 50% women, why should the default be "he"?

And it's not going to get any better all the time there are grumpy, sexist trolls like you in the industry.

Re: More Bandaids from America

"in the hands of competent programmers".. There, that's the bad assumption right there.

Firstly, it's not just incompetent programmers that are prone to fits of forgetfulness and/or stupidity.

Secondly, many - perhaps even most - organisations do not exclusively employ only competent programmers. Clearly.

If they did, we'd never hear about buffer overrun exploits, would we? But we do hear about them. So something needs to change. If we can't change the people - and it appears that we can't seem to manage that - then maybe we need to get defensive with the technology instead?