devRant - A fun community for developers to connect over code, tech & life as a programmer

@Stuxnet yo! Been a while for sure! Full year of not being here. I spent the last year focusing on personal life and relationships, it went really well. How have you been doing?

Yesterday I drank one glass of port wine before messing up my main network by stopping the active VPN server for it.. I'm scared for today when I'm doing the same and evaluating the effects of a DHCP/DNS configuration change...

To the manufacturer's defense, building an Android ROM with customizations is a difficult undertaking. However, they should've done proper testing, internal beta and public beta before final release to millions of devices.

If this is OFW, chances are that you'll have more luck on XDA's custom ROMs to be honest. Still a kangfest for the most part that's populated by people who have no idea what they're doing in the lesser ROMs, but you'll quickly find what's got good reputation (LineageOS, Pixel Experience, SyberiaOS and such).

Now that's an interesting rant to see for the first time of coming back to DR. Who would ever stop to think that a single word has such a deep story behind it. Try not to get too offended by such shallow people, but you've handled it brilliantly. Thank you for sharing this story!

@lesbianmilitia I thought it was a sexual preference. If a man were to confess to me, I'd also tell him that I'm not gay and therefore not interested. If you want people to just tell "not interested" instead, be my guest but don't tell me what to do.

@AvatarOfKaine Excuse me?

@killames Totally inappropriate and she's lesbian.

I used to be very active back in the day, but life pretty much got in the way of development. I also calmed down a little too wrt.. modern software development practices. Idk, I guess people just come and go :)

Not bad, I like it! Well done :)

@iiii While true, I do not consider it grounds to give up. In a healthy relationship you must make compromises and gradually gravitate towards one another. Living together for about a month now, that's exactly what we're doing. It's hard at first, but totally worth it. For the most part, I would say that it's important to communicate about such things.

@HitWRight @Fast-Nop @ochuwa @JKyll

Thanks a lot for these comments, we eventually resolved it. Headphones were my personal favorite since I already like listening to music while working. Eventually we ended up settling on that and most importantly, discussing our work for the day when we wake up. This way we're both on the same page and both of us get to be productive for the day.

Honestly I gave up on Gnome when they made Gnome 3. I really don't want a tablet's interface on a desktop machine, thank you very much. Instead I kept on using Mate, being pretty much Gnome 2. Some of their other software is good though, like Evolution. For mailing lists, multiple email aliases and GPG signing it works really well.

@Floydimus Yes, very early on actually. Pfizer's Comirnaty vaccine, no complications at all on either of the 2 shots. It took a while for governments to start acknowledging the existence of vaccinated people though. In the meantime we got the pleasure to deal with antivaxxers and the term "vaxhole" coming to fruition. Things are improving though, and vaccination rate is surprisingly high to be honest. Did you get yourself vaccinated?

@Floydimus oof, been a while since I've last been here. How are things going?

@shine I think what's really important with big projects is to break it down. It's impossible to do when you look at it as one massive project, but doable when you look at it in smaller chunks.

Basically the LCD mod, the flash mod, the battery mod, the Debian 9 installation, the custom kernel build, and eventually an upgrade to Debian 10 (which it is currently running after much anxiety).. all of those are (sub)projects in their own right. Each of those took maybe a few days. That is certainly achievable for many. Afterwards you can combine them and say "here's my big project" :)

As for the Debian 10 issues from earlier, it turns out that those were indeed driver-related and only present on the stock kernel. Currently on Debian 10 with custom Linux 5.9.16, the network does not disconnect anymore. And it gives me the latest features (as far as Debian can be considered new anyway) on a super old device, yay!

@RememberMe sorry, that bot project was supposed to be in comparison with another one I forgot to mention. Long stressful day, late at night etc...

The bot it was inspired by is https://github.com/Nick80835/.... It consumes roughly 200-250MB memory average, and does roughly the same things as my bot (except a bit more modules / features, but the number of that isn't that relevant here). Don't get me wrong, it is a good bot. I looked at its code several times and it's well-written too. But nonetheless my bot is orders of magnitude more efficient. And compared to browsers.. those things are easily the heaviest thing on my entire systems. When it comes to that, what I would blame is maybe things like isEven (actual JS module) versus a modulo operation. Does the same thing but one is for retards while the other is not. But this is a bigger problem than that. The modern web is bloated... There's many places we can look for accusations and defenses. I think it should just be solved.

Well that explains a thing or two... How much memory does it use? How much of the third world shithole laptops with 32GB RAM do I need to sacrifice for this one?

That's an amazing wife you've got there, cherish her! There really aren't many women that would do this :)

As far as engine efficiency goes, I have loaded my site in my own browser (https://git.ghnou.su/ghnou/browser). As you so nicely put it in my other post about that, I made a browser by using a browser. So yeah, might as well be a full browser then, not just its engine with the bare minimum of extras (which it actually is). It consumes 68MB of memory. My site (https://ghnou.su) is ridiculously efficient, no problems there. It loads instantly and doesn't need a fancy CDN for that. Yet it's still 68MB for around 10kB of site data. And I have entire containerized systems running production code (e.g. https://git.ghnou.su/ghnou/konata) that consume 3-5MB of RAM for that, depending on whether I am logged in and loaded a shell. In a single engine process I can fit 23 of those entire systems. Don't tell me that gigabytes of RAM for a dozen tabs is fine, regardless of the reasons for it. And with invasive companies waltzing right over the security aspect, it's not even being solved properly.

@RememberMe I see what you're trying to get to. There's many ways to skin a cat, and there's a number of ways to do the same thing. Interpreters and compilers do not check for that, and should not. If the code is syntactically valid, that's all they should care about. Whatever the program is doing, don't even bother.

This is not a problem that's unique to web browsers either. I have run literal malware in VM's as part of my security research. Android phones take an elegant approach with separate users for each app, and groups for permissions. iPhones run everything as mobile but each app has its own sqlite database for data. And it works.

You may think, well that's the thing that a separate process for each tab does in browsers, confining it. But then for a dozen to a hundred tabs it'd better be efficient. And I'd like to raise the issue.. why can e.g. Facebook and Google track me with their JS across other sites, when browser vendors care so much about my security?

@IntrusionCM Now that you mention it yes.. in Android you can change it in the developer options, but whatever is set there is what browsers will use. In Apple devices it must be Safari's engine too, and I don't think it's modifiable. In Linux too it's mostly webkit2gtk in pretty much every browser I looked at. It's also what the browser I made for shits and giggles uses. It's just the engine and I didn't write a UI on top of it, but it works. Single-tabbed, and it just takes a URL as an argument. The engine has done nearly all the hard work. At that point I think anyone and their cat can write a browser. But the work that these engines do, having to deal with the shitfest that is the modern web. Even with a gigantic resource footprint, they do it somehow.

@RememberMe I am well aware of the NP problem. Some code does not compute. As for validation.. let's see. Compilers like GCC constantly fuck me up on that. Interpreters such as bash, Python, whatever. Programming languages have to be well-defined so that you can write code in it in the first place.

HTML is well-defined, although you can certainly forget to close a tag and the browser will just deal with it. XML is even better and what I would strive for. And yes even JS or ECMA rather. It's also been written in a single afternoon.

Other than that you can run a separate engine process for every tab, duplicate all the memory for that.. and web devs can load several MB of crap just to make an image go blinky blinky.

On my previous comment: validation is not the same as confinement. Browsers do go to extreme lengths to confine, and play every trick in the book to do so. But validation is not that. You get a correctly written website and it will render in any browser, strict or not. Yes even IE6 and a lot more than that too. Just because websites are written like shit, doesn't mean that browser vendors should bend themselves like a pretzel to just confine all the rancid shit.

@RememberMe input validation! Yes anything you get from the interwebs (i.e. a website in this case) can be malicious. It should be strictly validated when being rendered. Maybe web browsers should be *more* strict there. Currently they are extremely lax.

As for media, do you really think that the browser vendor whose business is making a *browser* is going to make a media library better than those whose job it is to make a media library? Also, how is a media file downloaded from the internet that you play in the browser different from a media file you download to disk and open in a native media viewer/player for it?

I've been in security for 4 years and I'm baffled.

@IntrusionCM That's actually a really good question! I do know that the TLS certificate store must be its own. The internal web browser does not trust any current certs, it's too old. For renderer differences I should perhaps look for inconsistencies in web page renders. It's a J2ME application, do those have much access to the rest of the system? Maybe it's part of the PSPKVM "game" you run to have the JVM to run those? I'm quite unsure about the internals regarding that, but very curious now.

@sbiewald I would say that rendering (but not decoding) an image (or video for that matter) would be the engine's job. It should be able to hook into system libraries for that. Most media players do this as well (VLC being one of the few exceptions I know of). What the engine would need to do on its own would be looking at style properties for where to place it in the page, how large it needs to be, etc.

Same goes for audio decoding. You can decode MP3 files with libmp3lame for example. Same goes for pretty much every other format. None of this should be the browser's job. Yes its process has to make the call, that is true. But it doesn't need to implement any of this itself.

@endor oh, that could explain it yes. I also found online that people do use replacement controllers for AAA mods, as well as replacement LiPo cells of varying capacities. Seems like the aftermarket controllers are a lot more customizable in this regard, and it might be related to Pandora batteries as well. I see options for it in VSH but I'm still not quite sure what it is or how exactly it changes the battery. Oh well, not a bad idea to get a proper replacement regardless. They're cheap anyway :)