Here's a short story about luck:

A few months ago my wife signed a new job contract requiring relocation. However before starting that new job she got another (and much better) offer (also relocating to the same place) which she took on. Recently that first company fired 700+ people, including the unlucky one that filled her position.

If she had not gotten that second offer, she'd be out of a job after just relocating.

Depends on the definition "without break".

Does taking a walk count as a break if I'm thinking about work during it?
Does taking a shower?
Would it be considered continuously working if I'm sleeping for a few hours every few days, but otherwise work even while eating and pooping?

So I could say I range from ~48h hours on the strictest mode to multiple weeks on the permissive one. I wouldn't recommend any of these.

I'm at that point again where I question whether I want to still do computer stuff for work, but this time I kinda want to do part-time computer work and part-time physical work instead..

If my body is this bad when I'm not even 30, I wonder how I can do this sedentary job until retirement..

I've found an affordable flat and it feels like winning the lottery. Before this one I wasn't even getting the overpriced ones!

*discards the tent*

How can you fuck up your code so badly that what should be a reasonably simple desktop app is lagging on any system, no matter how fast?

!dev (feel free ignore my rambling)

Fuck my piece of shit landlord that doesn't want me to provide a next tenant because they already have someone (without visiting, I believe they have some shady dealing since I noticed a pattern in regards to the last two flats that changed tenants) and doesn't give a shit about the kitchen I had built in / says "maybe you can leave it [for free] or maybeee the owner will take it but don't expect as much as 500 or 600€ and whatever the owner proposes is non negotiable [...] if you wanna take it out we'll buy a new one" (i.e. fuck you we rather pay 4k for a new one than give you the 2k it's worth)

(╯° □°） ╯︵ ┻━┻

aaaaargh this certainly doesn't help my stress levels which are already 11/10 with the flat search

I am implementing an API. How do I know what to do? Read the docs! Unless... there's none on the website. Asked by email and they could provide a PDF, which contains some graphics which you're free to interpret ...
Machine readable description? Nope.
How do I get to know about updates to the API? *blank stare*

I just had my first "Microsoft you have a virus on your computer" scam call today and I managed to waste 29 minutes of their time, collect 4 numbers to report and call the guy and asshole in the end.

The Berlin rental market is so bad that I have to spend my long weekend figuring out how to write a bot to send applications for me.. (or keep hitting F5 all day and still be too late)

I hate it when I want to implement a 3rd party API and their docs have no hint at how to create a test account.. Why do they make me call their sales team / bother their support for that?

Here I am again, entertaining the thought of having a day job that doesn't require me to be in front of a computer..

!dev

So my (public) health insurance should cover a test I'd like to make. But if I don't want to call a bunch of clinics every week for months only to get an appointment a year later eventually I'll have to pay myself (to get an appointment in a few months instead).

This and Road Rash and Windows 95 and accidentally deleting the soundcard driver to make space for Rollercoaster Tycoon.

Sometimes, when I think I'm going crazy, I open devrant and realize that I'm still very far from MadMen / YouAllSuck / AvatarOfKaine.

I'm trying to improve my email setup once again and need your advice. My idea is as follows:
- 2-5 users
- 1 (sub)domain per user with a catchall
- users need to be able to also send from <any>@<subdomain>.<domain>
- costs up to 1€ per user (without domain)
- provider & server not hosted in five eyes and reasonably privacy friendly
- supports standard protocols (IMAP, SMTP)
- reliable
- does not depend on me to manage it daily/weekly
- Billing/Payment for all accounts/domains at once would be nice-to-have, but not necessary

I registered a domain with wint.global the other day and I actually managed to get this to work, but unfortunately their hosting has been very underwhelming.. the server was unreachable for a few minutes yesterday not only once, but roughly once an hour, and I'd really rather be able to actually receive (and retrieve) my mail. Also their Plesk is quite slow. To be fair for their price it's more like I pay for the domain and get the hosting for free, but I digress..

I am also considering self hosting, but realistically that means running it on a VPS and keeping at secure and patched, which I'd rather outsource to a company who can afford someone to regularly read CVEs and keep things running. I don't really want to worry about maintaining servers when I'm on holiday for example and while an unpatched game server is an acceptable risk, I'd rather keep my email server on good shape.

So in the end the question is: Which provider can fulfill my email dreams?

My research so far:
1. Tutanota doesn't offer standard protocols. I get their reasons but that also makes me depended on their service/software, which I wouldn't like. Multiple domains only on the business plans.
2.With Migadu I could easily hit their limits of incoming mails if someone signs up for too many newsletters and I can't (and don't want to) micromanage that.
3. Strato: Unclear whether I can create mails for subdomains. Also I don't like the company for multiple reasons. However I can access a domains hosted there and could try...
4. united-domains: Unclear whether I can create mails for subdomains.
5. posteo: No custom domains allowed.

I'm getting tired.. *sigh*

I finally got a promotion! I like my new responsibilities and the pay will be much more appropriate. (I was underpaid before.)
I guess I can up my headhunter wish list by a level or two...

My company will change the VCS to git. Now the though part is: GitHub or GitLab?

I just noticed that my hotel room card is a simple, unprotected NFC card that has a whopping 8x8x16=1024 bit allocated. If I had another NFC tag with my I'd be tempted to copy it and play around with it a bit...

Thoughts on brain doping, supplements & microdosing in a school, university or job context?

Gonna have a lesson with Uncle Bob tomorrow

wk257 - How did you learn to program?

GTA San Andreas Multiplayer Mod (SAMP), when I was maybe 14. Then some Java in high school. Studied Engineering and the only thing that didn't completely suck was programming (C), so I changed my field to work as a dev.

I spent the easter weekend migrating a bare metal Windows installation to a Proxmox VE server with a Windows VM (and set up an rdp client).

I am finally gonna learn git tomorrow (and the day after). I hope I'll still have some energy left for that after work..

I just got a message from my company's front desk lady that someone called and asked for me and left a number for me to return the call. I've had a feeling about it and as it turns out, yes, it really was a recruiter who had the confidence* to call my company to sell me another job.

Supposed work hours: 240
Actual work hours: ca. 350

It's Wednesday morning and I almost finished my weekly working hours.. but still had to move today's deadline.

Am I in developer hell already? A shitty project is about to come to an end (hopefully), or should I rather say: It needs to come to an end. But I am still quite lost in how to deal with it, hence procrastinating on it - making the deadline come closer and with it the realization that I'll probably have to rewrite almost everything. I'm not sure how, but I do know that the current code is a dumpster fire.

Basically what I need to do is dealing with the APIs of different payment providers/gateways (like PayPal, AmazonPay). For most cases I'll get a payment ID from the shop and need to act on it later, e.g. capture the authorized money in the case of a credit card transaction or do refunds (without user interaction, unless there is an error). Now at first I put something together where I try to abstract the payment information into two tables:
orders{1}<->{0..n}payments
payments{1}<->{1..n}paymentDetails

Unfortunately trying to abstract the different payment methods and to squeeze them (and their different possible stati and functions) in these tables was not very successful, it's a total mess with magic numbers, half-broken behavior and without any consideration for partial payments/captures or unfinished requests (i.e. if there is an exception before the response is dealt with, there is no indication that anything has ever been sent). Also the current amount is calculated through the history of the paymentDetails table, which basically works differently for each payment type.

How to fix this mess in a way that I'll still have a job by next week?

I'm trying to improve the db schema first, as I think my biggest problems are lying there. Through some research I've come across a recommendation for making payment type specific subtables (with a magic number/string in the main table to prevent having to look up all subtables). That way I can record what I send and receive without having to abstract it too much, so I'll have an acceptable transaction log. The paymentDetails table can be removed (necessary fields go to the payments table). The payments table gets multiple fields for the amount (differentiating between open, authorized, captured, processing and refunded values) and always reflects the current status.

Tables:
payments
paymentRequestsPaypal
paymentRequestsAmazonpay
paymentRequestsXyz

I think I'm going in the right direction here. hm. Maybe there's some light at the end of this long, dark tunnel. Or a train. I'll have two days to find out.

I just found a vulnerability in my companies software.
Anyone who can edit a specific config file could implant some SQL there, which would later be executed by another (unknowing) user from within the software.

The software in question is B2B and has a server-client model, but with the client directly connecting to the database for most operations - but what you can do should be regulated by the software. With this cute little exploit I managed to drop a table from my test environment - or worse: I could manipulate data, so when you realize it it's too late to simply restore a DB backup because there might have been small changes for who knows how long. If someone was to use this maliciously the damages could be easily several million Euros for some of our customers (think about a few hundred thousand orders per day being deleted/changed).

It could also potentially be used for data exfiltration by changing protection flags, though if we're talking industry espionage they would probably find other ways and exploit the OS or DB directly, given that this attack requires specific knowledge of the software. Also we don't promise to safely store your crabby patty recipe (or other super secret secrets).

The good thing is that an attack would only possible for someone with both write access to that file and insider knowledge (though that can be gained by user of the software fairly easily with some knowledge of SQL).

Well, so much for logging off early on Friday.

pen testing

!dev

To anyone suffering from chronic pain, especially lower back pain: Don't get fooled by shitty doctors. And don't expect doctors to magically heal you. If you want to stop your suffering, you need to be proactive.

What? But my herniated disc from 10 years ago... bla bla bla. So what? It's not going to get better when your only exercise is putting on your socks. Chances are 99% that your spine has shit to do with your pain. Go to a proper chronic pain therapy instead of downing opiods and getting sick notes.

Note to self: Do your sports every day you lazy bastard. Eat healthy, sleep regularly, don't stress out over every damn thing and don't forget to fucking relax!