Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
-
I. FUCKING. HATE. MOBILE. DEVELOPMENT.
I already manage the data, devops, infra, and most of the backend dev.
We had a mobile guy. He was great. I never had to think about it and kept moving quickly on my work. #SpecializationOfLaborFTW
He left. Why? Because they wouldn't give him a small raise despite being one of the best mobile engineers in the firm. WTF.
I made the mistake of picking up just enough slack on this workflow in the interim such that I'm, apparently, the fucking god-damned release manager, fixer of pipelines, fixer of build configs, fixer of anything where someone just needs to RTFM for a half-hour to not fucking break things.
Now, 8 months later...and, apparently, Fortune 500 companies are too fucking god-damned cheap to pay for someone who actually knows WTF they're doing for a very reasonable thing to have at least one dedicated set of eyes for.
I never wanted to be a mobile dev.
I never will want to be a mobile dev.
And I certainly don't want to manage your HALF-FACE-FUCKED detached expo configs.
There's a reason I never intentionally involved myself in mobile. All the way down, it's just shitty cross-compilation, transpilation, dependency-hell, brittle-as-fuck build processes so we can foot-gun and mouth-gun react-native and expo and babel and whatever the fuck else cargo-culted horseshit into the wild.
And why? What's the actual fucking root cause? The biggest white elephant that ever fucking elephant-ed? It's because Apple and Google decided to never collaborate on a truly-native cross-platform SDK--where engineers could write native code that compiles to native binaries that's simply write-once, run-everywhere. They know they could have done that, and they didn't. So what'd they get back? Expo--a too-cleverly-designed backdoor/hack--more-or-less a way to circumvent the sane release process software has usually followed: code -> executable -> deploy. Or code -> deploy (for interpreted langs). Expo's like "keep your same executable, we're just gonna to do updates by injecting new code into it whenever we want". Didn't we learn anything with web? Shit gets messy real quick? Not to mention: HEY EXPO, WE WERE ALREADY BUILDING NATIVE APPS, YOU SHORT-SIGHTED FUCKS. THANKS FOR LURING OUR CTOs INTO FORCING EXPO DOWN OUR THROATS W/ THE IMPLICIT (BUT INCORRECT) TOO-GOOD-TO-BE-TRUE PROMISE THAT WE CAN HAVE WRITE-ONCE, RUN-ANYWHERE WITHOUT ANY BUY-IN OR COOPERATION FROM THE ACTUAL TARGET PLATFORMS.
And, we just, like, accept this? We all know it's garbage engineering. The principles we learned in the classroom aren't just academic abstractions--they actually yield real-world results--and eschewing them yields real-world failures. Expo is tightly-coupled to high-heaven, with leaky abstractions six-ways-to-christmas, chock-full of foot-guns, and fails the most basic test of quality: does it, "just work?"
Expo is fucking shameful and it should fucking die. Its promises are too bold, its land-mines too many, its future-proof-ness is alway, always, always questionable as fuck and a risk to every project that uses it.
You want a rant? This is my fucking venue, 'tis not? Well, then this is a piss and vinegar rant straight from my blood-red, beating fucking heart:
EXPO FUCKING SUCKS. AND IF YOU'RE A FAN, YOU FUCKING SUCK TOO.27 -
Drug dealer : yo, you code right?
Me: yeah, why
Drug dealer: can you hack into the police station.. You know, see if they are checking me out.. If they know I'm dealing.. I'll just move
(I've never hacked but I know i could learn if I have to)
Me:... That's actually brilliant
I love in a small town at the moment.. I bet the police security is a joke
Kinda high risk though20 -
Riskiest Dev choice...
Leaving a previous job, moving 1000KM (620 Miles) away with no job prospects and going absolutely broke.
This was all in the name of “I need a better job”, so what better way to force yourself to get one.
I’m currently in my second job since then and now make just over double what I was earning before.
Sometimes it takes a high risk to get out ahead.4 -
Hey there! I am pretty new but old to the community xD. Let me explain and introduce myself.
The post might be a little longer, depending on my inspiration, read it at your own risk ;)
I am here on devRant for almost a year now but, this is my first post. I wasn't active until a week ago or so. Why? Well, at the time, I didn't find posts interesting enough to keep me from work or school. I must addmit I was either stupid or confused (not uncommon for me).
Well, I am high school student who, when not prepearing for an entrance exam for faculty, is learning and doing indie game developent with my cousin's support.
Even though I was intermediate gamer whan I was younger, passionate but not addicted, I didn't even think about getting into game development until my cousin showed me one secific game and told me a story about it. Let's stop here and let me tell you why I tagged this rant with wk88.
I've already mentioned my cousin, he's my wk88 trouble. Why? I'll tell you only one thing. He studies CS at University of Cambridge, UK. He earned the scholarship by competing and earning multiple medals in programming in International Olympiad in Informatics. And here I am struggling with ******* trigonometric identities. But nvm, let's move on.
I told you about the game but didn't actually tell you the title and who developed it. So, my inspiration for getting into game development was Alexander Bruce , guy who designed Antichamber. If you haven't heard of it before/tried it yet, give it a shot, you probably won't be disappointed of you like fucking with your brain.
Here're some facts:
- Started learning programming at the age of 12, thought by my brother using Free Pascal in Lazarus.
- Have been learning C++ for 4 years and C# for 3, both at the same time.
- While learning these two, started building .NET based back-end and doing SQL stuff; failed to finish it, gave up after I realised I needed some advanced front-end skills, which I didn't want to learn, to implement a lot of things I wanted.
- Played a piano since I was 11 and been playing around with music production recently.
Here I am now, learning Blender and hoping that one day I will publish the game I've been developing for past year and a half.
Hope you didn't waste your time reading this. I will try to keep you up with things I experience durning future development.
Cheers! 🍻13 -
(possibly political, but not really)
I think there's an under-reaction culture around covid19. People are mitigating it to be "just a bad flu" and keep bringing up the 2-3% death rate.
I see that people may have good intentions but spreading lies just to make it seem like the virus isn't bad is worse than the media overreacting.
I'm tired of people just repeating the same "ugh, calm down, it's just the flu!" Just because they don't want people to worry. While panic isn't good, disregard is worse.
The "bad flu" stage is only the second of three stages. Stage one is minor symptoms (so nobody cares if they are sick at this stage) coupled with patients being highly infectious (you can imagine, this is a bad combo)
Stage two is of course the famous "bad flu".
Stage three is fucking respiratory issues including pneumonia, AFTER you have already gone through stage two, which can be rough on its own.
The CDC (not any media) has issued warnings to those at high risk to stock up on supplies and medication they may need. As usual for this sort of stuff, the elderly and those with pre-existing conditions are in the high risk groups.
2% death rate (low end) is one in 50 people. That could be someone you know. 4% (high end) is one in just 25 people. That's the average high school class size where I live. That's a lot, that's pretty deadly.
Stop calling it a bad flu. Stop listening to people on Facebook, CNN, and devRant. Please visit the CDC, they are constantly giving updates.
Stay smart27 -
So I have seen this quite a few times now and posted the text below already, but I'd like to shed some light on this:
If you hit up your dev tools and check the network tab, you might see some repeated API calls. Those calls include a GET parameter named "token". The request looks something like this: "https://domain.tld/api/somecall/..."
You can think of this token as a temporary password, or a key that holds information about your user and other information in the backend. If one would steal a token that belongs to another user, you would have control over his account. Now many complained that this key is visible in the URL and not "encrypted". I'll try to explain why this is, well "wrong" or doesn't impose a bigger security risk than normal:
There is no such thing as an "unencrypted query", well besides really transmitting encrypted data. This fields are being protected by the transport layer (HTTPS) or not (HTTP) and while it might not be common to transmit these fields in a GET query parameter, it's standard to send those tokens as cookies, which are as exposed as query parameters. Hit up some random site. The chance that you'll see a PHP session id being transmitted as a cookie is high. Cookies are as exposed as any HTTP GET or POST Form data and can be viewed as easily. Look for a "details" or "http header" section in your dev tools.
Stolen tokens can be used to "log in" into the website, although it might be made harder by only allowing one IP per token or similar. However the use of such a that token is absolut standard and nothing special devRant does. Every site that offers you a "keep me logged in" or "remember me" option uses something like this, one way or the other. Because a token could have been stolen you sometimes need to additionally enter your current password when doings something security risky, like changing your password. In that case your password is being used as a second factor. The idea is, that an attacker could have stolen your token, but still doesn't know your password. It's not enough to grab a token, you need that second (or maybe thrid) factor. As an example - that's how githubs "sudo" mode works. You have got your token, that grants you more permissions than a non-logged in user has, but to do the critical stuff you need an additional token that's only valid for that session, because asking for your password before every action would be inconvenient when setting up a repo
I hope this helps understanding a bit more of this topic :)
Keep safe and keep asking questions if you fell that your data is in danger
Reeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee5 -
If the company advertises itself as a family environment, RUN. I know no family's perfect, or how functional yours is- but remember that with any family there's a high risk of drama and bullshit.2
-
my staff got selected to go do something RETARDED on site when all restrictions on the city have been lifted and the fucking numbers of covid-19 cases have been rising, last week 4 people fucking DIED and they wanted to put my guys for some RETARDED SHIT THAT can be completely ignored in which they would deal with countless of RETARDS that as I know will probably be ignoring all safety precautions and getting everyone fucking SICK.
I don't give a fuck, my employees are high risk personell, if they get sick they might fucking die, I said no to fucking everyone and had the head of my department to back me up. Fuck this shit man I am so tired of this pandemic since it had made everyone 10 billion percent-o more retarded than they already were.
If the head of department ignores it I will instruct my people to just ignore that shit and don't make themselves present at that bullshit ass fucking event.
See what the fuck they do. I treat my employees as if they were my soldiers, I know what leadership is and they are not making me fucking budge, if your command is bullshit i will fucking say no and you can go ahead and do whatever the fuck you want with that shit, just based on my title and experience I can go where the fuck I want and you will eat dick.
Luckily for me the HOD is on the same boat, he thinks this shit is fucking stupid.4 -
So I'm starting a job at a large company in the early part of next year... it's a total mindfuck because the salary is a m a s s i v e bump up and for the first time I'm experiencing imposter syndrome. I never really fully grasped the feeling that a lot of people here described until after that final interview and an offer was extended. I'm stoked AF to start and it's going to be a huge learning experience while working there.
The company wants me and my family to relocate to another state (US) and it's got my stomach doing somersalts.
It's especially painful because the current place I'm working is amazing; the people are great, the work is solid but fairly low pressure, and there's lateral freedom to work on improving the systems and infrastructure whenever there is free time. And I know that the new gig is going to have certain expectations that need to be met or my head could be on the chopping block.
High risk, high reward I guess 😅
My anxiety is raw dogging my brain and it fucking sucks, but my wife has been doing a great job keeping me level headed and thinking logically about the future and growth this opportunity brings with it.
I'm not trying to gloat or brag, just really needed a place to share some of this since I'm freaking out and don't feel like I have enough experience/skills to take on this job. Those interviews left me worn out. 4 rounds and the final interview was 5 hours long all in one day. 😫2 -
Sorry, long since my last post...
I have quit my job recently at DERP & CO.. The level of anxiety was already somewhat of medical severity.
For months I had been in a project that not only did not progress, but that it was getting worst day by day.
A bit of Context
November: "Dev, junior anon needs you to help him on the SHIT project because they are running out of time, it is mainly doing unit tests."
Well, the code was a mess, there was a LOT of copy paste and it was all bad quality (we talk about methods with complexities between 80 and 120 according to SONAR QUBE).
Dev: "Anon, you know this is wrong, right?"
Anon: "Why? it works"
Dev: after long explanation.
Anon: "Oh well, yes, from now on I will take it into account." And he did it / try his best.
Dev does the unit tests and do extra work outside of the reach of the sprint (y than i mean work after hours, classic) and alerts the boss of the mess.
December: After a project of approximately 6 or 8 months of development, the boss discovers that the junior anon have been doing everything wrong and/or with poor quality (indicating that throughout the whole development the quality of the code was NEVER checked nor the functionality).
Boss: "This is a shit. Dev, you have to correct all the errors and warnings marked on sonar", which are around 1200 between smelling code, high risk errors, etc.
Dev fixes something like 900 bugs... lots of hours...
Boss: "This still is all wrong, we have to redo it. We will correct the errors leaving something stable and we will make a new repository with everything programmed as it should be, with quality and all"
- 900 corrections later, now are irrelevant -
Boss: "Dev, you will start to redo it, anon is out on other project. First you must leave the existing one working properly"
Dev: "ok ..."
January: How can I correct the mess if the client asks for more things. I am just fixing the mess, doing new functionalities, and when I have free time (outside the work) I try to advance the new repository, poorly I must say because burntout.
Boss: "Everything should be arranged at the end of January, so that you can redo everything well in February."
I can't handle everything, it starts to fall further behind. Junior Anon quits the job.
February: Big Bad Bugs in the code appear and practically monopolize the month (the code is very coupled with itself and touching in one place sometimes meant breaking other stuff).
Boss: "It can't be, you've been with this since January and you haven't even started correcting this mess in the new repo"
Dev: "It is that between the new things that are requested and the bugs I cannot put myself with that"
Boss: "Do not worry, you will be helped by random dev if you needed. SPOILER ALERT: random dev is allways bussy. Not made up bussy, He had a lot of work by itself, but it can't help me the way I need it.
High anxiety levels, using free time to try to reduce the work left and gradually losing the taste for develop.
March: So far, not only do they add new things day and day, but now they want to modify things that were already "ok", add new ones and refactor everything in a new repo. I just did not see an end of this nonsense.
Dev breaks, the doctor says it's anxiety, so I just know what I have to do.
Dev: "I quit my job"
Cool Manager: "Damn, why?"
Explain everithig
Cool Manager: "Do you want to try if I can change you to other project or anotjer scope on the same project?"
Dev: "Thanks, but no Thanks. I need to stop for a while".
End. sry for long sad post and maybe poor use of English (?) Not my native language.10 -
An enormous government project that leaves the tax office's database along with all backups exposed to SQL injection.
I know for a fact that the tax office database in at least one country only got a cold backup a few years ago, so it's more likely than you think.
Although around that time someone hacked the public transport company and bought a 12 month ticket for free as PoC and he got jail for it so the risk is quite high.5 -
A few days ago, I saw a topic from hackernews about Xiaomi phones having a high risk vulnerability because of analytics.apk. I didn't mind it (I'm using a Xiaomi phone).
After about 2 days, I had a notification on my screen having a message 'test' made by my browser.
I immediately installed a firewall blocking all Xiaomi related services.
WTF Xiaomi
3 -
#confession
I don't know what you guys think but I freaking love programming my own Minecraft client. It sounds childish but I love to see server owners rage when they see their Servers dying because of my exploits. It's a good feeling.
But I got 3 DOS attacks afterwards so there is a high risk to make lifetime enemy's.
Let us all post our dark side of knowledge and the shit we have done to amuse ourselves!11 -
It would be great if CS students graduated and emoloyers could plug them in anywhere knowing that they can do their job without anymore training.
There for I think students sould have full on collaboration with high risk companies. Deadlines with serious consequences if they aren't met (i.e bad reviews on your profile). Computer science and programming really needs deep thought and concentration. Being able to work in a team to deal with issues as fast as possible.
These days you don't need to know a lot of theory to get started. Knowing it all helps, but being able to figure it out and then finding beter ways to slove the issues as you progress through becoming a master in your field really burns the knowledge and skill into your being.
6 -
High paying unstable job at a startup vs. Low paying stable job at a huge company.
I'm currently at the latter and I'm expecting a job offer (hopefully!) from the other one today.
Low paying job:
Pros:
1) big name. (their stock has recently gone down tho)
2) insurance and stuff.
3) quite stable.
4) can re-skill and move to another team.
5) work from home.
Cons:
1) shit technologies.
2) lots of fake "we are a family" kinda crap.
3) shit pay for a huge company.
4) boring. I feel very unmotivated.
5) obsolete systems and management processes.
6) it would take years to save for a car even with my upcoming promotion pay raise.
High paying job:
Pros:
1) awesome salary. Like 6x my current.
2) up-to-date technologies. Something I'm passionate about.
3) team lead position.
4) I can buy a car in a couple of months.
5) might get a visa sponsorship in the future.
6) small team, my voice will be heard.
Cons:
1) it's a startup so it can go down anytime.
2) no insurance or any kinda benefits.
3) no work laptop.
I'm kinda in the beginning of my career, so my gut is telling me to risk it and go for the unstable job.
It will be my first time to be an "official" team lead and honestly idk how I'll go about it yet.
Which one would you go for?
And wish me luck! The interview went pretty well but I'm dreading for some reason.17 -
Pentesting for undisclosed company. Let's call them X as to not get us into trouble.
We are students and are doing our first pentest at an actual company instead of assignments at school. So we're very anxious. But today was a good day.
We found some servers with open ports so we checked a few of them out. I had a set of them with a bunch of open ports like ftp and... 8080. Time to check this out.
"please install flash player"... Security risk 1 found!
System seemed to be some monitoring system. Trying to log in using admin admin... Fucking works. Group loses it cause the company was being all high and mighty about being secure af. Other shit is pretty tight though.
Able to see logs, change password, add new superuser, do some searches for USERS_LOGGEDIN_TODAY! I shit you not, the system even had SUGGESTIONS for usernames to search for. One of which had something to do with sftp and auth keys. Unfortunatly every search gave a SQL syntax error. Used sniffing tools to maybe intercept message so we could do some queries of our own but nothing. Query is probably not issued from the local machine.
Tried to decompile the flash file but no luck. Only for some weird lines and a few function names I presume. But decompressing it and opening it in a text editor allowed me to see and search text. No GET or POST found. No SQL queries or name checks or anything we could think of.
That's all I could do for today. So we'll have to think of stuff for next week. We've already planned xss so maybe we can do that on this server as well.
We also found some older network printers with open telnet. Servers with a specific SQL variant with a potential exploit to execute terminal commands and some ftp and smb servers we need to check out next week.
Hella excited about this!
If you guys have any suggestions let us know. We are utter noobs when it comes to this.6 -
I'm a developer, member of the A-Team. Actually I'm the leader of the A-Team.
We are incredibly skilled. Our problem solving capabilities is amazing, almost 100 times more effective than the rest of people. We produce code 10 times faster and better than anybody else. We have THE knowledge.
We can save the company in case of emergency.
For that reason, it's of paramount importance to nurture and protect the A-Team.
- When there is a bug, A-Team will not correct it. Because, if A-Team is busy, and bad shit happens, the company could be destroyed and we couldn't help
- When there is some important features to develop with a deadline, A-Team will not participate: A-Team must stay alert and ready in case of emergency
- If huge catastrophe happens and long hours, night and weekend are needed to fix it, A-Team will not risk burning the A-Team because it's the only high skilled team we have. The company cannot afford to have an A-Team member exhausted, underpaid, unhappy leaving or sleepy. Therefore, the company will sacrifice other less important people.
A-Team is company biggest asset and must be protected in any kind of situations.
The company should also pay training for them in order to increase their skills and make them unreplaceable.
These are my conditions. I'm the leader of the A-Team. You can't afford to loose me.7 -
It was the last year of high school.
We had to submit our final CS homework, so it gets reviewed by someone from the ministry of education and grade it. (think of it as GPA or whatever that is in your country).
Now being me, I really didn’t do much during the whole year, All I did was learning more about C#, more about SQL, and learn from the OGs like thenewboston, derek banas, and of course kudvenkat. (Plus more)
The homework was a C# webform website of whatever theme you like (mostly a web store) that uses MS Access as DB and a C# web service in SOAP. (Don’t ask.)
Part 1/2:
Months have passed, and only had 2 days left to deadline, with nothing on my hand but website sketches, sample projects for ideas, and table schematics.
I went ahead and started to work on it, for 48 hours STRAIGHT.
No breaks, barely ate, family visited and I barely noticed, I was just disconnected from reality.
48 hours passed and finished the project, I was quite satisfied with my it, I followed the right standards from encrypting passwords to verifying emails to implementing SQL queries without the risk of SQL injection, while everyone else followed foot as the teacher taught with plain text passwords and… do I need to continue? You know what I mean here.
Anyway, I went ahead and was like, Ok, lets do one last test run, And proceeded into deleting an Item from my webstore (it was something similar to shopify).
I refreshed. Nothing. Blank page. Just nothing. Nothing is working, at all.
Went ahead to debug almost everywhere, nothing, I’ve gone mad, like REALLY mad and almost lose it, then an hour later of failed debugging attempts I decided to rewrite the whole project from scratch from rebuilding the db, to rewriting the client/backend code and ui, and whatever works just go with it.
Then I noticed a loop block that was going infinite.
NEVER WAIT FOR A DATABASE TO HAVE MINIMUM NUMBER OF ROWS, ALWAYS ASSUME THAT IT HAS NO VALUES. (and if your CPU is 100%, its an infinite loop, a hard lesson learned)
The issue was that I requested 4 or more items from a table, and if it was less it would just loop.
So I went ahead, fixed that and went to sleep.
Part 2/2:
The day has come, the guy from the ministry came in and started reviewing each one of the students homeworks, and of course, some of the projects crashed last minute and straight up stopped working, it's like watching people burning alive.
My turn was up, he came and sat next to me and was like:
Him: Alright make me an account with an email of asd@123.com with a password 123456
Me: … that won't work, got a real email?
Him: What do you mean?
Me: I implemented an email verification system.
Him: … ok … just show me the website.
Me: Alright as you can see here first of all I used mailgun service on a .tk domain in order to send verification emails you know like every single website does, encrypted passwords etc… As you can see this website allows you to sign up as a customer or as a merc…
Him: Good job.
He stood up and moved on.
YOU MOTHERFUCKER.
I WENT THROUGH HELL IN THE PAST 48 HOURS.
AND YOU JUST SAT THERE FOR A MINUTE AND GAVE UP ON REVIEWING MY ENTIRE MASTERPIECE? GO SWIM IN A POOL FULL OF BURNING OIL YOU COUNTLESS PIECE OF SHIT
I got 100/100 in the end, and I kinda feel like shit for going thought all that trouble for just one minute of project review, but hey at least it helped me practice common standards.2 -
!dev
Should I be myself? A tougher question than is seems.
I’ve had major struggles, faced and conquered death, travelled the world, and live with highly functioning Aspergers and much more. Not boasting, just laying the background info.
With all of this it has led me understand, on a fundamental level, difficult truths that most people only understand upon death (if ever at all).
These lessons have had an unspeakable positive impact on my life and the way I approach things.
The problem seems to be that many of these truths are non-transferable, and that the process of even mentioning them makes most people uncomfortable.
I understand though, that the best truths in life are ALWAYS uncomfortable, and that there is great value in this for those who choose to accept it.
But should I risk putting these views into the world in a recorded manner?
This is something I struggle with all the time.
Currently, I do not use social media often (devRant excluded) because it is a cancer. Even when FB came out in high school I knew (without having the words to express it) that it was dangerous and cancerous to real life.
But it is such a powerful tool that it cannot be ignored.
———
For example. I moved across the country without a job, away from everyone I ever knew, to pursue the goal of starting my own software businesses.
The responses I got to this included...
“Won’t you miss you family and friends?”
“Why don’t you save for a while and go then?”
“Why don’t you look for a job and leave when you get one?”
“Aren’t you afraid of being alone?”
Most these seem like legitimate questions, and because I cared about these people I treated them as legitimate.
But my real opinion is that every one of those questions is based on either weakness, fear or stupidity.
- Of course I will miss my family and friends, why try to guilt me into sacrificing life for this!
- Why not wait for “the right time”, because the right time never comes. That is an excuse for failures to continue failing.
- Why not wait to get a job? Because that won’t happen if your not there! It’s just a fact, get over it!
- You are alone! You can try to fill your life with people and crap but in the end you are born and die alone! I’ve been dead and know this like I know the sun will rise.
But you see all of that above, for most people that stuff hurts. It seems insensitive and cruel.
It hurts because it is true.
————
That’s just a small sample of things.
The larger question still stand...
Should I be myself?
I really don’t know the answer and don’t expect one to come. Maybe someday I will find a way to do this.
For now I will continue to be what people expect me to be.
———
To end this I am gonna quote the rapper Pusha T and his new album...
“Remember Will Smith won the first Grammy?”
“And they ain’t even recognize Hova until Annie”
“So I don’t tap dance for the crackers and sing Mammy”
Maybe some day I will be able to stop tap dancing...
Maybe
https://open.spotify.com/track/...7 -
I had mentioned before I got offered a new role, with 50% increase.
I wasn’t expecting my current employer to counter, but they suddenly shat themselves and basically matched the salary, and offered promotion to software developer (sans junior). They acknowledge my role within the company is only increasing in responsibility and so far I have exceeded expectations. Its a nice response to have from them, although I do wonder how long it might have taken without the panic.
The new company have counter-countered, promising to raise salary by a further 20% of total, within the first 6 months, provided I learn React reasonably quickly (about a month), integrate with the team and start to take on my roles within the Agile set relatively independently (3-6 months). They also don’t bother with the junior role title at these pay bandings.
I currently get about half an hour a week with my lead dev on sticking issues. In this new team, I would be one of ten javascripters, working towards best practices, TDD etc. This is absolutely the realm I want to specialise in, at the first stage of my career.
I said I would stay with my current employer, before the counter counter move. Now I am full of doubt.
Has anyone landed in teams like this, only to find they didn’t offer increased learning at all? If that was a high risk for me, I wouldnt take it, despite the offer of more cash. I’d sooner get more skilled in the stuff I have been working in at my current role.
Pretty amazing how much amazing life experiences can cause anxiety. Never been in the middle of a bidding war before...13 -
Sus!
yesterday I bought a cool domain in namecheap, I was very lucky to find short and good one for my case.
Today (at weekends!!!!) I receive a letter:
>Hello **redacted name**,
>
>We are contacting you from the Namecheap Risk Management Team regarding your '**redacted name account**' account.
>
>Unfortunately, your Namecheap account was flagged by our fraud screening system as requiring verification and was locked.
>
>Please follow the instructions below to get your account verified:
>
>- take a color photo of the credit card used for the payment at **redacted link**
>
>Please make sure all of the edges of the credit card are visible, and that we can clearly see the card holder's name, expiration, and last four digits of the card number. The screenshots or images of the card cannot be accepted for verification. >If the submission does not meet these requirements, we can either request to submit the details again or permanently suspend your account.
>
>- provide a valid phone number and the best time to call you (within normal business hours, US Pacific time).
>
>If we do not hear back from you within 24 hours, we will be forced to cancel your orders.
>
>We apologize for any inconvenience that may result from this process. This extra verification is done for your security and to ensure that orders are legitimate. This industry, unfortunately, has a high rate of fraudulent orders, and this sort of >verification helps us drastically reduce fraud and ensure our customers remain secure. Such documents are used for verification only and are not provided to third parties in any way. Account verification is a one-time procedure, after your account >is verified, you will never face this issue again.
>
>Looking forward to your reply.
>
>---------------
>Dmitriy K.
>Risk Management
> Namecheap, Inc.
what if I did not notice it in 24 hours? It is the weekend for god's sake! People usually rest until monday.
They would what, cancel order and scalpel it to super high price?!
I have some doubts if the request is trully having anti fraudulent origins.
What if I used digital visa card? How was I supposed to photo it?
And the service they provided for photoing accepts only photos from web camera. I was lucky that I bought recently web camera with high enough amount of pixel power and manual focus. What if I did not?
That's all really SUS!
The person can not notice the letter within 24 hours time frame until the morning, when it would be already too late.10 -
being physically disabled is such a nightmare. i have experienced a whole different personality of being dependent on others , being incapable of basic tasks and feeling incomplete all the times. it's very humbling, and i have found a whole new respect for human body and social conduct.
just want to get whole again. don't know how long its going to take a humerus arm fracture to join back on is own, now that i got a plate screwed to the broken parts to keep them together.
the doctors will probably ask me to remove the external brace after a few months followed by exercises for next more months the complete bends/stretch will probably take 6-9 months and bone will join enough in 1-2 year after which i could get the plate removed (this is the happy case, not considering the high risk of my bones getting permanently twisted or plate getting envolped by bone mass )
everything simply sucks till then. imagine getting pushed back in your life by 2+ yrs in your prime age of 25.
farewell to my dreams of adventure sports, senior goals and gappy marriage .
folks, don't do stupid stuff that can get your body into trouble, you WILL regret.8 -
So the project I work on basically has to talk to a 3rd party plugin, through a 3rd party framework. The 3rd party plugin is a black box. This conversation happened:
Software guy: so we aren't sure what is breaking the thing. It's either us or the plugin, but it's probably both.
Systems guy: well then if we aren't sure then why are we writing an issue for it.
SWG: because we aren't sure but we know we are doing at least something that contributes. We read int X from a table and put it into a float. X doesn't perfectly represent in a float. It comes out X.0001. Then they take it and when it comes back it comes back as Y.0001. We cram it into an int so it becomes Y, we compare it to X which is really X.0001 and it comes back invalid.
SG: well as long as we are sending them the right number . . .
SWG: but we aren't sending them the right number. They are expecting X not X.0001. Then they send us back Y.0001 but it should be X so it's wrong.
SG: so they're giving us the wrong return value.
SWG: yes, but because we're giving them the wrong number.
SG: well not exactly . . .
SWG: yes exactly. It is off by .0001 because of floating point math.
SG: well . . .
Me: look it doesn't matter how it's breaking. But it IS broken. Which is why we're filling out the damn problem report. THEY ARE EDITABLE. We talked to the customer and gave them the risk assessment. They don't care. It happens rarely any way.
SG: then can we lower the severity?
Me: no. Severity doesn't relate to risk. That is a whole different process. Severity assumes it has already happened. It's a a high severity.
SG: but the metrics.
Me: WE GIVE THE METRICS TO THE CUSTOMER. WE TALKED TO THE CUSTOMER. THEY DON'T GIVE A SHIT.
And that was how I spent Wednesday wondering how a level 4 lead systems engineer got his job. How many push ups did he do? What kind of juice did he drink?2 -
A bunch of people who know a bunch of frameworks but lack intrinsic understanding CS, therefore bringing the degeneration of overall quality.
This ultimately leads to:
1- shitty dev jobs (the future blue-collar job, always in risk to be automated)
OR
2- super high-end dev jobs (most likely AI engineering, devops, data science)
As generations pass, this shapes out a whole new world economy.2 -
The evolving of software engineering is highly dependent on hardware engineering.
If only software engineering would evolve then there would eventually be a point where theres nothing more to do due to the lack of hardware to develop software for.
So its more a question of how you see hardware engineering evolving.
I expect that there will be a point in the future where we have techology which in big scale does dangerous or time consuming tasks. Like for example at nuclear reactors or at other high level security and high risk locations. This of course requires highly sofisticated ai software. -
startup idea : job offer email as a service
basically a company which will send you a fake offer letter email, so you can try negotiating better salary from your current org.
high risk high rewards game3 -
script closing error-opened tickets from a customer using a tool which just repeatedly clicks on the same pixels over and over again... Error chance of around 50% if other windows open or the ticket window is resized a bit. There was a pretty high risk a real ticket a auto-closed with custoner-information by error...
Everything went well. About 1k tickets were closed by the script while I sat there and looked if it really clicks the right spots. -
Hey guys, could use some opinions. So I live in a country with a pretty small economy. I've been working at a big company out here for about a year now. Initially my plan was to work here for a year then apply for grad school in the states, try and use that leverage for one of those big us dollar jobs and potentially one of those magic green cards I've been reading about. I work about the equivalent of 35k/yr in my current position. It may sound pretty ordinary to some of you guys, but here it's a pretty huge salary. It's pretty hard to walk away from it. It's now becoming difficult to make the decision of giving up such a high salary, to make the time and money investment in school. Running the risk of spending a year or 2 in school and then not being able to work in the states. Putting the money aside i know that there'll be greater oppurtunity for learning and growth in the states, so it may be worth it for the experience alone. What do you guys think ? Take the risk? Stay safe in my job? look at other countries maybe ? I'm all ears.6
-
So I'm not much for Linux, but I'll admit. It's a pretty damn solid environment, especially for programmers.
Since my main computer can't afford to have Linux on it, I decided to start working on making the Raspberry Pi handheld notebook. But after I added up the price for all of the components, it's almost three hundred dollars.
Personally, I would love to have a mini computer everywhere I go. A Chromebook is ok. But I guess you need to take into consideration that it is NOT ment for programming. I have found several IDE's and found none of them have a debugger or a way to execute my code.
I did some thinking and I'm starting to wonder if it is worth it.
It's a hand held computer with ubuntu on it. What's the worse that can happen? I don't solder the battery correctly and the whole thing explodes in my hands? Yeah that's pretty likely. Another reason I look at getting it is because there is so much fucking theft at my school it's hard to believe we don't have armed gunmen at every corner since everyone is always sober or high as shit.
Having an 11.6 inch Chromebook also puts me at risk of getting mugged, because who the fuck wouldn't want to try and pawn a laptop for drug money? At least with a handheld I could keep it in my pocket where I know it'll be safe.
What do you guys think?
Should I build this little thing or keep my current Chromebook but try to keep it safe?4 -
Before I came along, my company was processing orders of type X by hand, taking many hours and being at greater risk of human error. So as a temporary solution, I crafted a console app to do the processing. Then, this app is needed to be accessed remotely. Because adding a newer .NET to a handful of servers was just too much to handle emotionally for management, the console app was revamped to a web app. During this revamping process, I was having my client send me an email so that I could initiate the processing myself until a friendlier UI was available. Well, I finished last night. I sent them an email explaining that it was live, gave them the address, and gave myself a high-five. A moment ago, I get an email from the client insisting that I process those orders quickly so that I don't cause a delay in shipping. FML!! Did they even READ the email I sent them?? They've been suckling at the teat for too long. Adding insult to injury, since the revamping project began, the client would CC my boss every time they emailed to have an order processed as if to hint at their frustration that the project wasn't done yet. Grr....
-
Today I created some reusable clean decent code to replace the random chaos in a huge project and then realised I had 3 options:
1. Sort out every instance to use the new code. This is very high risk because the project is both a shit show and has no tests. I don't have time to manual test or write unit tests on so much stuff.
2. Move over only some so that I can manually test. Still no time to unit test (management is fucked on their priorities). This will fuck the project even more since i will never get time to revisit this and adds yet more inconsistency and chaos to a project on its last legs and has this problem in droves.
3. Leave the project fucked
\_(^^)_/
I'm veering towards option 3 these days.1 -
So as a personal project for work I decided to start data logging facility variables, it's something that we might need to pickup at some point in the future so decided to take the initiative since I'm the new guy.
I setup some basic current loop sensors are things like gas line pressures for bulk nitrogen and compressed air but decided to go with a more advanced system for logging the temperature and humidity in the labs. These sensors come with 'software' it's a web site you host internally. Cool so I just need to build a simple web server to run these PoE sensors. No big deal right, it's just an IIS service. Months after ordering Server 2019 though SSC I get 4 activation codes 2 MAK and 2 KMS. I won the lottery now i just have to download the server 2019 retail ISO and... Won't take the keys. Back to purchasing, "oh I can download that for you, what key is yours". Um... I dunno you sent me 4 Can I just get the link, "well you have to have a login". Ok what building are you in I'll drive over with a USB key (hoping there on the same campus), "the download keeps stopping, I'll contact the IT service in your building". a week later I get an install ISO and still no one knows that key is mine. Local IT service suggests it's probably a MAK key since I originally got a quote for a retail copy and we don't run a KMS server on the network I'm using for testing. We'll doesn't windows reject all 4 keys then proceed to register with a non-existent KMS server on the network I'm using for testing. Great so now this server that is supposed to connected to a private network for the sensors and use the second NIC for an internet connection has to be connected to the old network that I'm using for testing because that's where the KMS server seems to be. Ok no big deal the old network has internet except the powers that be want to migrate everything to the new more secure network but I still need to be connected to the KMS server because they sent me the wrong key. So I'm up to three network cards and some of my basic sensors are running on yet another network and I want to migrate the management software to this hardware to have all my data logging in one system. I had to label the Ethernet ports so I could hand over the hardware for certification and security scans.
So at this point I have my system running with a couple sensors setup with static IP's because I haven't had time to setup the DNS for the private network the sensors run on. Local IT goes to install McAfee and can't because it isn't compatible with anything after 1809 or later, I get a message back that " we only support up to 1709" I point out that it's server 2019, "Oh yeah, let me ask about that" a bunch of back and forth ensues and finally Local IT get's a version of McAfee that will install, runs security scan again i get a message back. " There are two high risk issues on your server", my blood pressure is getting high as well. The risks there looking at McAfee versions are out of date and windows Defender is disabled (because of McAfee).
There's a low risk issue as well, something relating to the DNS service I didn't fully setup. I tell local IT just disable it for now, then think we'll heck I'll remote in and do it. Nope can't remote into my server, oh they renamed it well that's lot going to stay that way but whatever oh here's the IP they assigned it, nope cant remote in no privileges. Ok so I run up three flights of stairs to local IT before they leave for the day log into my server yup RDP is enabled, odd but whatever let's delete the DNS role for now, nope you don't have admin privileges. Now I'm really getting displeased, I can;t have admin privileges on the network you want me to use to support the service on a system you can't support and I'm supposed to believe you can migrate the life safety systems you want us to move. I'm using my system to prove that the 2FA system works, at this rate I'm going to have 2FA access to a completely worthless broken system in a few years. good thing I rebuilt the whole server in a VM I'm planning to deploy before I get the official one back. I'm skipping a lot of the ridiculous back and forth conversations because the more I think about it the more irritated I get.1 -
Client keeps contacting me telling me customers are having issues purchasing tickets (events site). Stripe is picking up potential fraudulent activity (high risk).
We know the people who are trying to buy, and they're genuine. Anyone else having issues like this?
It's not happening a great deal, I would say maybe 1 in 20 times.2 -
!rant
Looking for help starting with DevOps.
Does anyone know of a site or forum where you can talk about general coding/scripting patterns rather than just asking specific questions?
Bear with me, this may be a bit longer than most posts here.
I'm a self-taught admin/tech working with one colleague (who's also mostly self taught) at a high school, managing both clients and servers.
We've been doing most things manually bit I'm looking into converting as much work as possible into more of a DevOps setup, with Powershell-scripts for multi step tasks.
I want to do this for a number of reasons. Having a script doing a number of steps would cut down on time spent on individual tasks and minimize the risk that a step is missed or, perhaps even worse, mistyped. Also it's important that I actually learn what I'm doing, why something works and why something fails.
As and example, I have a powershell-script which moves a student from one year to another (basically they have user names with a two-digit prefix based on the year they started and a suffix with two letters from their first names and four from their last names) if they need to repeat a grade.
It basically renames the account in the AD with the correct year-prefix, changes the samAccountName, renames Home and Profile-directories on disk and changes paths on the profile-tab in AD, moves the user into a new OU and security group etc.
It works as intended if the user account to be renamed exists and there's no name conflict with the new name. But I'd like for the script to validate that there's no problem with user names, source and target security groups and OUs etc. and eventually split the script up into smaller clearly defined functions for better readability.
However, I don't want someone to just write the script for me, I'd prefer to be able to discuss script flow and come to my own conclusions and solutions.1 -
Most developers are morons.
Because the field of software development has a relatively low barrier of entry, we naturally have a large and steady supply of under-trained and clueless keyboard monkeys, hereby referred to as zombies.
The reason the industry is set up this way is because companies need a steady supply of new talent. Big Tech is so greedy, they snatch most good talent and bench them, leaving the scraps for everyone else. Other companies lower their standards and hire anybody that can copy and paste. Most entry-level software work at smaller companies is usually low risk and high churn and that's where the low barrier of entry comes in.
I have nothing against zombie developers, so long as they know their place.
I've seen too many zombies think they're CTO material after 2 years of fixing javascript bugs, or think that if they watch just enough egghead.io videos, they'll be promoted to senior.
Typically a zombie developer will go down one of two paths: 1) they either burn out and realize that software isn't what they're meant for (most common scenario) or 2) they actually get good and decide to stick around.
The ones who stick around though usually do so because it hits a sweet spot for them. To them, software is:
- Interesting enough to do it for a full-time job
- Good enough at it to secure a steady job at a two-bit company
- Pays enough to pay the bills
These people don't have a deep passion for software. It's basically just a full-time hobby for them.
And I have nothing against that. The market is satisfied, they're satisfied and I'm satisfied so long as they don't start thinking that they and I are on the same level.
Know your place, zombie devs.
2
Top Tags
Weekly Rant
View