Hey everyone - please help get devRant on stage at the TNW Momentum Conference that we will have a booth at!

We need your votes which you can place here: http://thenextweb.com/scale/vote/...

If you're going to be at the conference, please stop by as we'd like to meet any devRant community members that are there :)

Thank you and please let me know if you have any questions. We appreciate the help!

Edit: if you want to track our competition/where we stand, the leaderboard is here: http://thenextweb.com/scale/vote

Breaking devRant news: we are extremely excited to announce the featured guest for the first episode of our podcast. He co-authored possibly the most famous software development book of all-time - "The Pragmatic Programmer" and is well-known for many other titles including "Practices of an Agile Developer." For the devRant community, one of his coolest/fun claims-to-fame might be that he is the inventor of rubber duck debugging, a frequent topic of discusson here on devRant. Beyond this, he is also one of the founders of the agile development movement. Our first featured guest is Andy Hunt (http://www.toolshed.com/about.html)!

As you can probably imagine, we're very excited to have Andy on the first episode of the devRant podcast and there's so many things we want to ask him. We want to give the devRant community a chance to submit questions too because we know devRanters will come up with fun questions. So feel free to just submit any questions you'd like us to ask on your behalf as comments on this rant, and we'll pick the best ones. Thanks!

At the end of our first podcast (https://devrant.io/podcasts/...) we gave a hint about the featured guest on our second episode. Now, it's time to announce this guest!

For the next episode of The devRant Podcast, we're fortunate enough to welcome David Heinemeier Hansson, also commonly known as DHH!! (http://david.heinemeierhansson.com/) David is the creator of Ruby on Rails and founder/CTO of Basecamp/37signals (project management tool), and a best-selling author know for titles like "Rework." He also drives race cars. We're extremely excited that we'll have the change to interview him as our second featured guest.

Like last time, it's time to take questions from the devRant community! If you have a question you'd like us to ask David, please add it as a comment on this rant or you can email me (david@devrant.io). Thanks everyone!

Hey everyone,

Our live stream announcement and Q&A will be going live in less than 30 mins (9pm EDT)!

The event is here: https://youtu.be/Vk7TIKadYHk

We will be taking questions on the YouTube chat, feel free to ask whatever you want!

Thanks to all who tune in, hope you enjoy!

EDIT: big thanks to everyone who joined us and participated! The replay is available at the YouTube link above, and you can check out devDucks in the devRant swag store (https://swag.devrant.io) or the page we set up at http://devducks.com

For my fellow javascript devs:

var floored = 12.68 | 0;

Is much faster than:

var floored = Math.floor(12.68);

And in both cases floored === 12
#JustJavascriptThings ¯\_(ツ)_/¯

Source: http://stackoverflow.com/questions/...
Performance test: https://measurethat.net/Benchmarks/...

So today (or a day ago or whatever), Pavel Durov attacked Signal by saying that he wouldn't be surprised if a backdoor would be discovered in Signal because it's partially funded by the US government (or, some part of the us govt).

Let's break down why this is utter bullshit.

First, he wouldn't be surprised if a backdoor would be discovered 'within 5 years from now'.

- Teeny tiny little detail: THE FUCKING APP IS OPEN SOURCE. So yeah sure, go look through the code! Good idea! You might actually learn something from it as your own crypto seems to be broken! (for the record, I never said anything about telegram not being open source as it is)

sources:
http://cryptofails.com/post/...
http://theregister.co.uk/2015/11/...
https://security.stackexchange.com/...

- The server side code is closed (of signal and telegram both). Well, if your app is open source, enrolled with one of the strongest cryptographic protocols in the world and has been audited, then even if the server gets compromised, the hackers are still nowhere.

- Metadata. Signal saves the following and ONLY the following: timestamp of registration, timestamp of the last connection with the server (both rounded to the day so not on the second), your phone number and your contact details (if you authorize it) (only phone numbers) in HASHED (BCrypt I thought?) format.
There have been multiple telegram metadata leaks and it's pretty known that it saves way more than neccesary.

So, before you start judging an app which is open, uses one of the best crypto protocols in the world while you use your own homegrown horribly insecure protocol AND actually tries its best to save the least possible, maybe try to fix your own shit!

*gets ready for heavy criticism*

I'm going for longest rant. TL:DR; version here:

http://pastebin.com/0Bp4jX9y

then:

http://pastebin.com/FfUiTzsh

Twat Client,

As per our conversation, here is an invoice for the work you requested on behalf of U.S. Bloom. I realize that you ended up going with another designer, but you did request samples of what my take on the logo design would be. The following line item is indicative of 1 hour of graphic design consultation as per your request via Skype.

As I recall, you mentioned that this is not how Upwork "works" but considering it was you who requested that I converse with you via Skype instead of via the Upwork messenger, and since there were no clear instructions on how to proceed with Upwork after our initial consultation, It is assumed that you were foregoing Upwork altogether to work with me directly, thus the invoice from me directly for my time involved in the project. I would have reached out to you via Skype, but it seems that you may have severed our connection there.

After spending a little time researching your company, I could not find current information for Basic Media Marketing, but I was able to reach out to your former partner Not A. Twat, who was more than helpful and suggested that he would encourage you to pay for the services rendered.

It is discouraging that you asked for my help and I delivered, but when I ask for compensation in return for my skills, you refused to pay and have now taken your site offline and removed me as a contact from Skype.

{[CLIENT of CLIENT]},

I am sorry that I have bothered you with this email. I copied you on it merely for transparency's sake. I am sure that your logo is great and I am sure whatever decision was made is awesome for your decision. I just wanted to make sure that you weren't getting "samples" of other people's work passed off as original work by Twat Media Marketing.

I can't speak for any of the other candidates, but since Twat asked me to conduct work with him via Skype rather than through Upwork, and since he's pretty much a ghost online now, (Site Offline, LinkedIn Removed or Blocked, and now Skype blocked as well) one has to think this was a hit and run to either crowdsource your logo inexpensively or pass off other artist's work as his own. That may not be the case, but from my perspective all signs are pointing to that scenario.

Here is a transcript. Some of his messages have been redacted.

As you can clearly see, requests and edits to the logo were being made from Jon to me, but he thinks it's a joke when I ask about invoicing and tries to pass it off as an interview. Do you see any interview questions in there? There were no questions about how long I have been designing, what are my rates, who have I done work for in the past, or examples of my previous work. There were none because he didn't need them at this point.

He'd already seen my proposal and my Behance.net portfolio as well as my rates on Upwork.com. This was a cut to the chase request for my ideas for your logo. It was not just ideas, but mock designs with criticism and approval awaiting. Not only that, but I only asked for an hour of compensation. After looking at the timestamps on our conversation, you can clearly see that I spent at least 3 hours corresponding with Twat on this project. That's three hours of work I could have spent on an honest paying customer.

I trust that TWATCLIENT will do the right thing. I just wanted you guys to know that I was in it to do the best design I could for you. I didn't know I was in it to waste three hours of my life in an "interview" I wasn't aware I was participating in.

Reply from ClientClient:

Hello Sir,
This message is very confusing?
We do not owe your company any money and have never worked with you before.
Therefore, I am going to disregard that invoice.

Reply from TWATCLIENT's boss via phone:

I have two problems with this. One I don't think your business practices are ethical, especially calling MY client directly and sending them an invoice.

Two why didn't you call or email Jon before copying my client on the email invoice?

Me: Probably because he's purposely avoiding me and I had no way to find him. I only got his email address today and that was from a WHOIS lookup.

Really, you don't think my business practices are ethical? What about slavery? Is that ethical? Is it ethical to pass of my designs to your client for critique, but not pay me for doing them?

... I'LL HAVE TO CALL YOU BACK!

My email follow up:

http://pastebin.com/hMYPGtxV

I got paid. The power of CCing the right combination of people is greater than most things on Earth.

Recap: https://www.devrant.io/rants/878300

I was out Thursday at the Hospital. I'm what the doctors would call "Ill as fuck"

So, Friday I’m back in the office to the usual: "How was that appointment?"
I know people mean well when they ask this. So, I do the polite thing and tell them it went as well as it could.

Realistically it does't matter how well it went... They haven't cured Crohn's because I showed up to the appointment. They know I'm fucked already.

But, push it down, add it to the future aneurism.

I had to go through the usual resignation meetings with managers:
"We"re fucked now you're going"
"yep"
"we need to get a handle on how fucked"
"already done that for you, here"s a trello board, very fucked."
"we need to put a plan together to drop all the junior devs in the shit with the work you’ve been doing"
"You need about 4 devs, please refer to the previous trello board for your plan"

Meanwhile, me and Morpheus are in constant communication because all of this is like a Shakespearean comedy.

So, I overhear a conversation between a Junior Dev and the Solution Architect.

[SA] took over the project because he knows better than two tried and tested senior devs -_- (fuckwit).

JD: "It took me one and a half days to build it out"
SA: "Yeah, it must have taken me twice as long... It must be a problem with the project, you should just be able to check it out and run it."
JD: "I know, it has to be wrong"

All of this is about Morpheus' work of art, of an Ionic 3 hybrid app.

I fumed quietly at my desk because I've been ordered by the Stazi to be hands off.

Since Morpheus and me were pulled from the project [JD] and [JD2] were dropped into it to get it over the line.

It"s unfortunate and I was clear and honest with my advice to them: I personally would not take over the project because I"d be way out of my depth... Oh, and the App works, so uh, there's no work to do.

They have been constantly at our desks. Asking fuckdiculous questions about how to perform basic tasks. So they can get Morpheus" frigging masterpiece to the user.

It"s like watching that touch up of jesus that got borked by an amateur. Shit I have google, it's like watching this happen: http://ti.me/NnNSAb

[JD] came to me Friday evening.
"I can’t get this to build to iOS or install on [Test Analyst]'s phone."

Me: "No worries brother, where are you stuck right now?"

[JD] describes the first steps with clear indication he hasn't googled his problem.

Life lesson: http://lmgtfy.com/?q=lmgtfy

Que an hour of me showing [JD] how to build an Ion3 project for iOS. Fuck it, your man's in a bind and he"s asked politely for help. I can show him quicker than he can read 3 sets of docos.

I took him through 'ionic cordova build ios', the archive and release processes in XCode 9, then the apk bundling process for droid. Finally we have an MAM so the upload process for that too.

All the while cleaning up his AppIDs, Profiles, deployment attempts.
Damn they were a mess.

I did this with a smile on my face, not because I could say "I told you so"... But. because when any developer asks you how to do something. If you know how to do it, you should always be happy to learn them some new tricks!

Dude's alright, he's been dropped in the shit. Now I know how badly so I'll help him learn things that are useful to his role, but aren't project specific.

As a plausi-senior dev (I'll tell you about that later); it's my job to make sure my team have what they need to go home smiling!

I’m not a hateful fucker, the guy asked me an honest question so I am happy to give him the honest answer.

I took him through it a few times and explained a few best practices. Most were how to do his AppID and ProvProfile set up. Good lad, took it all on board.

However! In his frustration, he pointed the finger at Morpheus' "David" (ref: Michelangelo).

He miraculously morphed into a shiny colourful parrot and fed me SA's line:
"you should just be able to build from a clean clone"

My response was calm and clear:
"You can, it took me 20 minutes on Thursday evening. I was bored and curios, so I wanted to validate Morpheus' work. Here it is on my iOS device and my Android device. It would have taken me 5 if my laptop wasn’t so horrifically out of date."

I validated Morpheus' work so I have evidence, I trust that brilliant bastard.
I just need to be able to prove it's good.

[JD] took this on board.
Maybe listening to two tried and trusted senior devs is better than listening to a headstrong Solution Architect.

When JD left for the weekend I was working a late one (https://www.devrant.io/rants/874765).

His sign off was beautiful.
"I think I can happily admit defeat on this one, it can wait until Monday."

To which I replied: "no worries brother, if you need a hand give me a shout."

Rule 1: Don't be a cunt.
Rule 2: If someone needs help and you can give it: Give it!
Rule 3: Don't interrupt James' cigarette time.
Rule 4: goto Rule 3.

About 18 months ago my non-technical Manager of Applications Development asked me to do the technical interviews for a .NET web developer position that needed to be filled. Because I don't believe in white board interviewing (that's another rant), but I do need to see if the prospective dev can actually code, for the initial interview I prepare a couple of coding problems on paper and ask that they solve them using any language or pseudo code they want. I tell them that after they're done we'll discuss their thought process. While they work the other interviewing dev and I silently do our own stuff.

About half way through the first round of technical interviews the aforementioned manager insisted we interview a dev from his previous company. This guy was top notch. Excellent. Will fit right in.

The manager's applicant comes in to interview and after some initial questions about his resume and experience I give him the first programming problem: a straightforward fizzbuzz (http://wiki.c2.com/?FizzBuzzTest). He looked as if the gamesters of Triskelion had dropped him into the arena. He demurs. Comments on the unexpectedness of the request. Explains that he has a little book he usually refers to to help him with such problems (can't make this stuff up). I again offer that he could use any language or pseudo code. We just want to see how he thinks. He decides he will do the fizzbuzz problem in SQL. My co-interviewer and I are surprised at this choice, but recover quickly and tell him to go ahead. Twenty minutes later he hands me a blank piece of paper. Of the 18 or so candidates we interview, he is the only one who cannot write a single line of code or pseudo code.

I receive an email from this applicant a couple of weeks after his interview. He has given the fizzbuzz problem some more thought. He writes that it occurs to him that the code could be placed into a function. That is the culmination of his cogitation over two weeks. We shake our heads and shortly thereafter attend the scheduled meeting to discuss the applicants.

At the meeting the manager asks about his former co-worker. I inartfully, though accurately, tell him that his candidate does not know how to code. He calls me irrational. After the requisite shocked silence of five people​ not knowing how to respond to this outburst we all sing Kumbaya and elect to hire someone else.

Interviews are fraught for both sides of the table. I use Fizzbuzz because if the applicant knows how to code it's an early win in the process and we all need that. And if the applicant can't solve it, cut bait and go home.

Fizzbuzz. Best. Interview. Question. Ever.

A list of hilarious comment in code:
http://stackoverflow.com/questions/...

One that I liked in particular:

So I have seen this quite a few times now and posted the text below already, but I'd like to shed some light on this:

If you hit up your dev tools and check the network tab, you might see some repeated API calls. Those calls include a GET parameter named "token". The request looks something like this: "https://domain.tld/api/somecall/..."

You can think of this token as a temporary password, or a key that holds information about your user and other information in the backend. If one would steal a token that belongs to another user, you would have control over his account. Now many complained that this key is visible in the URL and not "encrypted". I'll try to explain why this is, well "wrong" or doesn't impose a bigger security risk than normal:

There is no such thing as an "unencrypted query", well besides really transmitting encrypted data. This fields are being protected by the transport layer (HTTPS) or not (HTTP) and while it might not be common to transmit these fields in a GET query parameter, it's standard to send those tokens as cookies, which are as exposed as query parameters. Hit up some random site. The chance that you'll see a PHP session id being transmitted as a cookie is high. Cookies are as exposed as any HTTP GET or POST Form data and can be viewed as easily. Look for a "details" or "http header" section in your dev tools.
Stolen tokens can be used to "log in" into the website, although it might be made harder by only allowing one IP per token or similar. However the use of such a that token is absolut standard and nothing special devRant does. Every site that offers you a "keep me logged in" or "remember me" option uses something like this, one way or the other. Because a token could have been stolen you sometimes need to additionally enter your current password when doings something security risky, like changing your password. In that case your password is being used as a second factor. The idea is, that an attacker could have stolen your token, but still doesn't know your password. It's not enough to grab a token, you need that second (or maybe thrid) factor. As an example - that's how githubs "sudo" mode works. You have got your token, that grants you more permissions than a non-logged in user has, but to do the critical stuff you need an additional token that's only valid for that session, because asking for your password before every action would be inconvenient when setting up a repo

I hope this helps understanding a bit more of this topic :)
Keep safe and keep asking questions if you fell that your data is in danger
Reeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee

For those are interested in devBanner project, here is the keynote.

All api calls will be made in
https://devbanner.center

Temporary frontend is available at
http://bashlord.com/devrant-banners

Concept frontend available at
https://cozyplanes.github.io/dB-UI

Contribute to the project at
https://github.com/cozyplanes/...

Docs coming soon!
Current:
https://cozyplanes.gitbooks.io/devb...

We are looking for a frontend developer and logo designer. If you are interested, reach me at cozyplanes@tuta.io (send questions here too)

Questions? Send via email (reply in 24hrs) or comment below by mentioning me.

Cheers!

To all "StackOverflow is BAD" ranters - give link or don't post. And even before, please read

http://rtfm.cz/smart-questions.html...

Facebook/Instagram era taught people that it's easier to just ask question gazzylion of times before doing research / using search (even "site:stackoverflow.com" search)

I do rarely post on SO just because in 99% of cases I find solution when preparing my question during research or due to yellow duck effect.

When I got qualified to do reviews on questions I started to see how often they are so abroad or so primitive than 10min of duckduckgoing would solve it. But no, it's easier to use other people for you.

Tomorrow I will be on a long train trip again so here goes!

My last train project is http://jsrant.com and people seem to enjoy it. Every time I am mentioned in a rant related to it people also mention the idea of a similar application but for in the terminal. So I intend to build that tomorrow.

To build the best thing for you I want to ask you some questions:

- What operating system are you running?

- Why (or how) would you like to use a devrant terminal reader?

- Why would you NOT want to use a devrant terminal reader?

- Would your use-case required obfuscated output? (Hiding it from someone)

- If so, what formats do you use on a daily basis or are you most comfortable with?

- Anything else you would like to mention or for me to consider?

I will be developing the larger part of this tomorrow, but the sources will be made available to the public.

I know this really isn't the place for this, but I REALLY need help..

I need to add app scaling inside my game.

To do this, I need to listen for a MouseDragEvent (or similar) on a JavaFX object like a Label or Image.

Here is my SO post:
http://stackoverflow.com/questions/...
Thanks in advance!

http://xkcd.com/208

How I feel when I answer StackOverflow questions with RegEx statements.

Hi guys, anyone knows about Google App Engine custom runtimes and CloudSQL?

Please answer my question on StackOverflow.

http://stackoverflow.com/questions/...

Looks like no one there cares about helping me...

#need_help
Dear all,

I'm trying to make a choice, a choice that won't make me regret it for the few years advanced, I'm in a dilemma, I don't know which MacBook should I get for my everyday life, I currently work as an iOS developer (Learned iOS using all kinds hackintoshes, yeah I never bought a single apple computer, yet), and always have motivation to learn new stuff (from machine learning, to web development, to making games with unity (or whatever engine), hell I even like to design stuff from time to time using Photoshop, sketch, I sometimes do video editing using premiere and after effects), and I yet have to choose which laptop to get, I got only one week to make the choice so...

Here are the options:

The new MacBook Pro 2016 (Touch Bar edition):
Pros: 'Latest' and 'greatest', have thunderbolt ports which makes it (sort of) future proof, TouchId for unlocking the laptop using a fingerprint.
Cons: You need a damn dongle everywhere, no escape key (Which I use for the autocomplete feature in Xcode), and this touch bar (Which I really have no idea if i will ever use it other than the nyan cat app for 5 minutes), plus I heard about battery issues with it (don't know if they resolved it or not), fucking huge trackpad, and no fucking MagSafe!

The previous model MacBook Pro 2015:
Pros: Ports, lots of them, small trackpad (Which you don't have to worry about your palm screwing up your work), and MagSafe! (Which I honestly don't know if it'll make any difference for my usage)
Cons: has old CPU from Haswell generation (I know that it won't feel different, it's just that I like to have parts that are the 'latest')

Now some questions, for people who have the old MacBooks and new MacBooks:
For the ones with old MacBook:
If you were given the choice to replace the old MacBook for the new one for free, would you go for it?
After all this time, how's the battery performance? is it still great from the time you bought it?
Foe the ones with new MacBook:
Does the huge-ass trackpad interfere your work day?
Do you miss magsafe to a point where you really want to throw out the new laptop and go back to previous model?
Did you get used to carry out dongles everywhere?
Did you like the TouchBar? Does it help you in your everyday work? from designing to coding to whatever, do you think that now you can't live without it?
How's the battery performance?
Is programming on it joyable? or the new keyboard and touchpad are just a meh?

Strawpoll to make it easier to vote:
http://www.strawpoll.me/12856510

In addition to that I would love that you guys detail me your experience and answer some questions that I posted above, I would be very, very grateful.

// new Rant("help needed!")

I really need some help guys! Would be nice if you could checkout

http://stackoverflow.com/questions/...

and help me out if possible :) Got some problems with ffmpeg on OS X not streaming https urls.
And if these kind of rants aren't supposed to be posted/created please tell me so. I am still not familiar with the overall flare of this community ;)

You know you are done when stackoverflow gives upon you: http://stackoverflow.com/questions/...

So I decided to run a scheduled job on the server just before everyone starts using the it.

http://stackoverflow.com/questions/...

...and then you go whine that StackOverflow is full of arogant people that only downvote and flag. Yes they do... if you act like an ass or don't even go through the Tour.

Hey fellow ranters. Please help me with some trouble in my code :(

http://stackoverflow.com/questions/...

I think i'm losing hope in me and in my future as a developer... This is actually a pretty easy thing but nothing it is not working... Please help me!!

Why do people try to answer questions they don't even know what mean...
I want to use a package that's made for nodejs and it's using one of the core module of nodejs (http), so that's a problem because react-native doesn't have that module and I can't just simply install it (it won't work), so I search the web in the quest for a solution maybe a drop-in replacement or a polifill or something, I got to this question that's exactly what I would ask if I were to do the question myself https://stackoverflow.com/questions... asking for a polyfill to use http module in react-native, and the only answer is from a guy that I don't think he even knows what he is talking about, his answer don't make any sense with relation to the question and doesn't even address package http nor polyfill so obviously he didn't even know what the title of the question means...

If you don't fucking know something, just stay fucking silent don't reply with giberish stuff that don't have nothing to do with what people are asking. You don't have know it all, don't feel you have to... and don't try to answer stuff you don't even know.

¡¡Good news!! Finally solved the image upload problem with lumen and angular. It happens that, even the $request in Lumen was "empty" it turned out that the actual image file was a binary object inside the Lumen $request variable that didn't render because the browser, postman and everything I tried couldn't understand it (maybe something to do with the Content-Type). I figured out and solved it, now I can easily save, delete and even modify images when are in the server side.

One more thing... My code was fine the whole time, l mean like, 3 days of finding a big that doesn't exists haha

Everyday we learn some new si*t

For those who don't know what I'm talking about, the story is right here:
http://stackoverflow.com/questions/...

PS: thanks guys, I really appreciate your comments: @champion01 @itsdaniel0 @dfox @joetj

I am newbie to Ubuntu from windows
.
.
.
I installed nodejs in windows with few seconds
.
.
.
But here ubuntu i trying since last one week.
.
.

Error Posted on github (https://github.com/nodejs/...)
.
and
.
askUbuntu(http://askubuntu.com/questions/...)

.

.
No solution thinking back to windows.......................................