Posts by fg_swe

Hetzner

You can order resources in very small increments, starting from 2 ARM cores. Full control of these increments at root level. Transparent cost.

They also have storage services, though probably not as complex as AWS.

Of Course

...the US giants will claim that only they can do "enterprise" workloads.

Which is wrong. Hetzner has a full blown API for creating and deleting cloud resources

https://docs.hetzner.cloud/#overview

Probably not as exquisite as AWS, but more transparent ?

Re: The Bright Side

Master of corruption BIDEN has been ejected...

A320, Jãger 90, A330, A330, A340, A380, A400M

V-Model works very effecively for these aircraft. Not a single airframe lost due to software engineering. Full software authority !

One loss of an A400M due to a mess-up in the loading of calibration parameters end of line.

If Airbus can do that, likewise SAP and Oracle can do it for the banking industry. It"s a matter of the right regulation and a minor finacial expense in the grand scheme of things.

MCAS, Ahr Valley Flood, Covid Scam

Arguably even worse, but no serious consequences. We live in a corrupt world and many of our leaders think it is OK because Moscow, Beijing and New Dehli are even more corrupt.

Banking Software Quality

I have worked in internet banking in the past and can tell you that very often software has very serious bugs. Sometimes the hardware, too. Including IBM mainframes.

No software QA to speak of seriously.

The government should mandate V-Model development standards, similar to what is in force for auto, train, aerospace and medical industries. Essentially, document everything, test everything on multiple levels.

Also, mandate extensive logging and archiving of logs.

Proper engineering instead of social science B.S.

Re: Lessons ?

That is what I meant with 3.

Multiple independent, machine- and human-readable logging is key to any serious banking operation.

Bash

Bash exactly exposes the punctuation craze, even worse than C.

Just because it comes preinstalled on most Unix like machines means little.

From a pedagogic point of view, Pascal, Ada, Java, C# or VB.Net are probably the best beginner's languages. Pupils should be shown the light before you take them down into the dungeons of C and C++. And of course there should be proper algorithms+data structures education, otherwise "learning a programming language" is rather pointless.

Pupils should know what variables and mathematic functions are. Which means that bothering 10 year old children with Scratch is not a good idea.

Garbage Collection

Typically, garbage collected systems need 2x the amount of RAM an equivalent reference counted system needs. Reason is simple: you cannot run the GC all the time or efficiency goes to zero. So the program must "accumulate" serious amount of garbage, before the next GC run.

Also, the non deterministic GC execution point in time is bad for semi-realtime things such as ergonomics.

GC is great for academic systems such as functional languages or for various accounting efforts. Not so much for the real world that interact with fingers, signals, sensors, actors, motors, brakes and so on.

Pointer Arithmetics, Funny Casting

It is very much possible to write fully functional C application programs without these two things.

The only reason for pointer-magic I can see is system-level programs, which need to perform special things such as copying program images and the like.

C can only be made "somewhat" memory safe by extremely expensive efforts such as

A) valgrind

B) 16 octet fat pointers

C) Always-atomic, always-expensive reference counting

I still fail how "Fil-C" can stop the casting of an integer into a pointer(can be part of a struct that is casted to) and then all hell breaking lose.

Somewhat Yes

valgrind will slow down your program by a factor of 100 to perform type checking. Other memory safe languages such as Java, Rust, C#, Sappeur only reduce performance by a factor of 3 to 7.

Re: Probably it was, for the time

According to Sir Hoare, there was a Fortran to Algol Transpiler for an ICL machine. It exposed tons of indexing bugs in "proven' Fortran code.

Syntax Not Equal Semantics

Ficus on semantics, Rust is imperative, while Ocaml's key aspect is functional programming.

Male Cow E..

All multithreading needs atomic operations for the collaboration of threads. All you can and should do is to limit the atomic operations to a minimum. But not zero.

Fat Pointer Disease

Sane languages need only 16, 32 or 64 bit(depending on hardware size) pointers. Sane languages do not have pointer arithmetics. The objects/structs pointed at typically need 16 or 32 bit of reference counter. Only mulithreaded objects need to operate on this counter using atomic instructions. The language type system should make the difference between single and multithreaded records/objects/structs crystal clear.

Then memory safe pointers/references can be compact and very fast.

Indeed !

Algol was high quality technology as opposed to the C-Hamburger-fast-food stuff.

Re: Yolo-C/C++

There is zero need to make every pointer operation atomic, IF the type system has a notion of single- and multithreded data rypes. ST code needs only simple refcounted pointers for memory safety. MT data structures/objects do need atomic locks, though. Efficoent, well designed code will operate on ST data 99,99% of time.

see http://sappeur.di-fg.de

Bloat

There is zero need for bloat due to memory safety.

My memory safe transpiler needs in the order of 10000 LOC. Generated programs can be tiny, too, if only few standard libraries are used.

http://sappeur.di-fg.de

FALSE

Memory errors of C and C++ programs can be very hard to track down, especially in multithreaded programs. They also enable Silent Subversion of anything facing the outside world.

The "programmers should be better" argument has proven to be unrealistic. Hundreds of times in anything from VxWorks to the Windows Kernel. Or SSL implementations.

Re: Wonder how long before the US CISA stops issuing warnings and recommendations.

Trump can intercept the firewall physically and then do some reflashing on the PCB.

FALSE

Any non trivial intranet will contain an exploitable thingy, from which an attacker can lauch the attack.

So- the command interface of a firewall must either be a dedicated RS232 or a minimalist secure crypto interface.

E.g. https://github.com/DiplIngFrankGerlach/MST

FALSE

He acted upon obvious security risks. Where he failed was in the calm explanation.

Yes, It Was in 1944 Already

That allmighty Tiger was a sitting duck against the US and UK air forces then. Large, slow sitting duck.

It has now become worse, as the infantery and helicopters with long distance arms have joined the game.

Ukraine proved this. The talk of "combined arms" is theoretical babble - because the ATGM gunner can hide 3000 or more meters away.

The heavy tank industry has a vested interest and produces lots of heavy steel and hot propaganda air.

No

Recent history from Yemen to Ukraine proves Mr Schmidt right.

Your dislike of this oligarch might be clouding your mind ?

Re: He's an inept dolt and the project is a distraction and a money pit.

So you claim he is responsible for "evil" information/ideas being published on the WWW?

Like Guttenberg being the cause of the 30 years war ?

It would be so much better if the old information monopolies/empires(newspapers, TV, Radio, book publishers) kept their power ?

If there were only the catholic church ?

Let me propose this: on the WWW you can show your best or your worst side. You can parrot nonsense. You can be tricked by hostile actors. But you can also act in good faith to help others. You can find very good advice in a heap of rubbish, just like there are good books amomg a mountain of others.