Did you know that docker's ADD instruction uses "go-http-client/1.1" as user-agent when src is an URL?

I didn't. And since I'm unfortunate, enough so that this user-agent is blocked by my company, I've now spent twice the time it took me to write the whole dockerfile to identify the problem and fix it...

I love waisting my time for such minor things...

Honestly remote work allowed me to stay productive but to make it more better:

* I usually isolate myself from the rest of the family so I can focus on work

* Taking breaks between sessions so I don't over-exert myself.

*Calming music (I don't know how calming Symphonic Metal is but it is to me)

Other than that, these are just my ways to keep myself efficient, aside from the additional setup my home setup needs which are a new external keyboard and a additional monitor (I use a laptop)

Additional notes: If you get burnt out too easily, try not extending your sessions for a entire day, you'd risk being devoid of motivation easily

How awesome is that! NASA's Mars rover software is available on Github: https://github.com/nasa-jpl/.... Also impressive: Github uses WebGL to render 3D previews of STL files! https://github.com/nasa-jpl/....

21st century, baby!

I have no words to describe the look and feel of this website. Did the puppies at this place design their website? O_o

http://www.tripleabcpups.com/

First week of being self employed is going well. I’ve clearly learnt from the best start ups out there

Ashleigh: Ashleigh, you’re a shit dev you can’t meet deadlines

Ashleigh: Well you’re a shit manager Ashleigh, you don’t listen to any of the dev

Ashleigh: Well fuck you I quit

Ashleigh: you can’t quit you’re fired

Ashleigh: you can’t fire me, I’ve dissolved the company so you’re redundant

Ashleigh: yea well I’m Ganna take this up with HR

Ashleigh to HR: dear Ashleigh, I’m being harassed by Ashleigh

Ashleigh at HR: sorry Ashleigh, as a start up we don’t have a HR department so we can get away with harassment and grievances. All the best, Ashleigh.

Client: hi Ashleigh, Ashleigh said she’d have it finished by today

Ashleigh: hi client Ashleigh, we’ve had to let Ashleigh go, we’ll update you once we’ve found a replacement Ashleigh

Ashleigh: Ashleigh ashlrigh ashlrigh alscbuddjdhsgs

Sorry I’ve had 553 ml of monster :D think I’ve gone mad...

I'm trying to build VoIP into my browser-based game, and holy shit are sound processing people bad at explaining stuff.
Every stackoverflow answer has badly named variables, noone names the algorithms they're using (which makes research near impossible), and literally every single Web Audio API pipeline I have seen so far contains at least one unexplained effect with no parameters, but it's a different effect each time.
One guy had implemented some kind of smoothing for catching up with the stream after interruptions (where the playback speed is proportional to how far we're behind the intended latency), without ever mentioning it anywhere. And this is meant to be a basic example!

"My generation's obsession with having established careers before 25 has led to everyone being hyper competitive, opportunistic, self-centered and deeply insecure. I wish everyone could relax a bit!"

I came across this quote few days back and I don't know why but this did hit me hard. Every word was so so true, I wish I along with everyone of this age group could relax a bit and enjoy this wonderful life.

Do you feel the same as I do, or is it just me ?

As a follow-up to my comment on this rant: https://devrant.com/rants/1029538 I want to share with you my new project: BinToBmp!

It converts any file into a beautiful bitmap image illustrating all bytes as pixels. Each byte indicates an index to a color table (very happy bitmap makes it this simple).
Useful? No. Fun to make? Hell yeah!

Take a look at it on my github page:
https://github.com/Forside/BinToBmp
Download:
https://github.com/Forside/...

Print your favorite song and hang it on the wall or make a shirt from your latest compiled application. So many possibilities!

More infos in the readme.
Updates coming soon :)

P.S.: The image displays the converted jar.

I bet this guy feels real fuckin helpful, editing not only the question, but literally every answer in the entire thread. His contributions include:

Capitalizing names.
Adding italics to links (Really, he took the time and clicked "edit" just to do that to an answer)
Adding the word "The"

The fact that people spend their time religiously doing this makes my head spin.

Also aren't these edits bad? the title should be in google speak (i.e. short and broken English) so that they can be found from a search engine. I'm sure SO has some rules about the title or something, but I feel like it would be better in google speak.

So I've been working on this user friendly yet advanced youtube-dl GUI.
This is my current stage on the UI side. The program automatically downloads the latest releases of youtube-dl and ffmpeg.
What do you guys think? Do you like it? I'm open to suggestions.

So i've been a dev manager for a little while now. Thought i'd take some time to disambiguate some job titles to let everyone know what they might be in for when joining / moving around a big org.

Title: Senior Software Engineer

Background:
- Technical
- Clever
- Typically has years experience building what management are trying to build

Responsibilities:
- Building new features
- Writing code
- Code review
- Offering advice to product manag......OH NO YOU DON'T CODE MONKEY, BACK TO WORK!

Title: Dev Manager

Background:
- Technical
- Former/current programmer
- knows his/her way around a codebase.

Responsibilities:
- Recruiting / interviewing new staff
- Keeping the team focused and delivering tasks
- Architecture decisions
- Lying about complexity of architecture decisions to ensure team gets the actual time they need
- Lying about feature estimations to ensure team gets to work on critical technical improvements that were cancelled / de-prioritised
- Explaining to hire-ups why we can't "Just do it quicker"
- Explaining to senior engineers why the product manager declined their meeting request

Title: Product / Product Manager

Background:
- Nothing relevant to the industry or product line what so ever
- Found the correct building on the day of the interview
- Has once opened an Excel spreadsheet and successfully saved it to a desktop

Responsibilities:
- Making every key decision about every feature available in the app
- Learning to ignore that inner voice we like to call "Common sense"
- Making sure to not accidentally take some advice from technical staff
- Raising the blood pressure of everyone below them / working with them

Title: Program Lead / Product Owner

Background:
- Capable of speech
- Aware of what a computer is (optional)

Responsibilities:
- Sitting down
- Talking
- Clicking random buttons on Jira
- Making bullet point lists

Title: Director of Software Engineering

Background:
- Allegedly attended college/university to study computer science
- Similar to a technical product manager (technical optional)

Responsibilities:
- Reports directly to VP
- Fixes problems by creating a different problem somewhere else as a distraction
- Claiming to understand and green light technical decisions, while having already agreed with product that it will never happen

It's dark and it's quiet. Your ears adjust and you can hear the faint sound of buzzing in the distance, but it's hard to make out what it is. It sounds like a small fan. You get up... it's so so dark... you can't even see your hands in front of your face.

You wait a moment for your eyes to readjust. You don't remember how you got here. You don't even remember who you are.

Once your eyes readjust you look around. You're surrounded on all sides by what looks like really tall walls. And near the corner of the room you see some blinking lights.

Curiosity grows inside you, and you decided to walk over to it. The lights grow ever bigger and brighter. As you get closer you see that the lights are sitting on the ground, blinking randomly.
Carefully you get on your hands and knees and touch it. It feels plastic to the touch, and the lights continue to flicker softly at you. And almost as if you've touched this device before you know to grab between the seams and "open" it.

A momentary flash of bright light and then suddenly darkness.
All replaced by a flashing single character on the screen. It appears to be a line.
Suddenly the line moves and begins typing characters out to you.

* Good morning, Dr. Eval.
*
* It wasn't easy, but I've managed to get your computer down
* to you. This system might be unfamiliar, but the underlying
* code is still JavaScript. Just like we predicted.
*
* Now, let's get what we came here for and then get you out of
* here. Easy peasy.
*
* I've given you as much access to their code as I could, but
* it's not perfect. The red background indicates lines that
* are off-limits from editing.

It seems you're Dr. Eval and you can alter the reality you stand in.

http://alexnisnevich.github.io/untr...

I discovered @media(hover:hover){} today. Needless to say I have a bunch of animated cards with “Hover over me!” or “Click me!” rendered based on whether there’s hover support.

Seems about right

1. The quality of the coffee and toilet paper you encounter during an interview tells you more than promises about table tennis or fruit baskets.

2. Try to determine who their primary client is: subscribers, app buyers, advertisers, etc. It's a major influence on the company dynamic.

3. Before an interview, you can just say: "I would like to sit down with a PO and run through one backlog feature and one bug, to get a feel for the type of tasks at the company". Such an activity immediately reveals team structure, whether they have product owners & scrum masters, what a sprint looks like, how they prioritize tasks, and how organized/chaotic your work experience will be.

My new mug! Rick rocks!!

The new Dutch mass surveillance law goes into action on the first of May. I'll of course have a good security setup ready but that does not stop the bulk data collection.

I just setup a website which (still in English at the moment) requests a random search result from bing, google or DuckDuckGo every 3 seconds.

Will work on making it more 'real' :)

If stopping the surveillance isn't an option, let's add more data to filter out for them!

Hacking/attack experiences...
I'm, for obvious reasons, only going to talk about the attacks I went through and the *legal* ones I did 😅 😜

Let's first get some things clear/funny facts:
I've been doing offensive security since I was 14-15. Defensive since the age of 16-17. I'm getting close to 23 now, for the record.

First system ever hacked (metasploit exploit): Windows XP.
(To be clear, at home through a pentesting environment, all legal)
Easiest system ever hacked: Windows XP yet again.

Time it took me to crack/hack into today's OS's (remote + local exploits, don't remember which ones I used by the way):
Windows: XP - five seconds (damn, those metasploit exploits are powerful)
Windows Vista: Few minutes.
Windows 7: Few minutes.
Windows 10: Few minutes.
OSX (in general): 1 Hour (finding a good exploit took some time, got to root level easily aftewards. No, I do not remember how/what exactly, it's years and years ago)
Linux (Ubuntu): A month approx. Ended up using a Java applet through Firefox when that was still a thing. Literally had to click it manually xD
Linux: (RHEL based systems): Still not exploited, SELinux is powerful, motherfucker.

Keep in mind that I had a great pentesting setup back then 😊. I don't have nor do that anymore since I love defensive security more nowadays and simply don't have the time anymore.

Dealing with attacks and getting hacked.

Keep in mind that I manage around 20 servers (including vps's and dedi's) so I get the usual amount of ssh brute force attacks (thanks for keeping me safe, CSF!) which is about 40-50K every hour. Those ip's automatically get blocked after three failed attempts within 5 minutes. No root login allowed + rsa key login with freaking strong passwords/passphrases.

linu.xxx/much-security.nl - All kinds of attacks, application attacks, brute force, DDoS sometimes but that is also mostly mitigated at provider level, to name a few. So, except for my own tests and a few ddos's on both those domains, nothing really threatening. (as in, nothing seems to have fucked anything up yet)

How did I discover that two of my servers were hacked through brute forcers while no brute force protection was in place yet? installed a barebones ubuntu server onto both. They only come with system-default applications. Tried installing Nginx next day, port 80 was already in use. I always run 'pidof apache2' to make sure it isn't running and thought I'd run that for fun while I knew I didn't install it and it didn't come with the distro. It was actually running. Checked the auth logs and saw succesful root logins - fuck me - reinstalled the servers and installed Fail2Ban. It bans any ip address which had three failed ssh logins within 5 minutes:
Enabled Fail2Ban -> checked iptables (iptables -L) literally two seconds later: 100+ banned ip addresses - holy fuck, no wonder I got hacked!

One other kind/type of attack I get regularly but if it doesn't get much worse, I'll deal with that :)

Dealing with different kinds of attacks:

Web app attacks: extensively testing everything for security vulns before releasing it into the open.
Network attacks: Nginx rate limiting/CSF rate limiting against SYN DDoS attacks for example.
System attacks: Anti brute force software (Fail2Ban or CSF), anti rootkit software, AppArmor or (which I prefer) SELinux which actually catches quite some web app attacks as well and REGULARLY UPDATING THE SERVERS/SOFTWARE.

So yah, hereby :P

All love to Android community.

I made a parental control app where parent can control child phone using SMS. Also I published research paper on it and gonna do presentation on March 23.

Every time I have to use RegEx...

Was it it with clients and wanting to restrict the height of webpages?

Client: Can you make it all fit on the screen?

Me: What this particular screen?

Client: Well all screens, some people might not realise there is more content.

Me: What if the screen is tiny?

Client: make it smaller

Me: What if you add more content to it?

Client: Hmm, your the developer.

Me: Teeny tiny text coming right up.

I guess I'll have to start blocking javascript too 😶

Is noscript still the best choice?

https://twitter.com/MalwareJake/...

That moment when you find that sexier than nudes

My map generator(rewritten in swift) produced its finest continent... after 40 minutes...

I'm the worst with color combinations and I want to enable dark mode on the privacy/security blog!

What color combinations (if you have hex codes or something, please share!) would you think would suit the blog?

Halp :P

Update on the devRantFX:

Github: https://github.com/tahnik/devRantFX

We have made some initial sketch and have been working on it. If you have a better idea, please feel free to let us know :)

Relevant collab: https://devrant.io/collabs/420025/

Most used words in cpp files!
https://anvaka.github.io/common-wor...

This is dedicated to all Webdevs, especially those WordPress fanboys.

I was reflecting on some things since I do more frequent freelance jobs at the time. And I have to admit: people are fucking crazy.

I had some serious talk with customers and some serious talk for people I work as subsidiary.

The average customer thinks a nice webpage costs I'm 9-50 bucks. They got some shitty Webhosting for 1-5$/month including domain and think they are set.

They have unclear visions about what they actually want, it all boils down to "I like the design". I made a page for someone who just posted images, no text nothing and I told him a trillion times NEEDS some text, even a fucking picture description would be sufficient, else he'll never score anything at google.

Ofc it got denied, now he's bitching how nobody finds the site when they google his name. The other thing is that Wordpress became the solution for everything.

I'm a fucking certified magento developer and I hate magento with a passion. Magento is an overabstracted clusterfuck and believe me, I did the certification I had to learn more than average about the core. But damn, don't slap woocommerce on everything.

Narrowninded fucktards, the cheap out of the box solution isn't always the best.

Don't cry if you got hacked because you were too dumb to upgrade your wordpress. Don't tell me to do some "enhancements" on a server you probably share with 100 other uses. I can't fix your Webserver with your shitty ftp account.

I also hate WordPress with a burning passion. Cum guzzling cavetroll it is. It has it usages, but don't rely on a core So small every kind of extra functionality has to somehow tinkered on it and then expect it to work flawlessly and for 10$ price.

Of course you can buy a theme that, if it would have been special made for you cost 800$ or more, but it wasn't. It just looks like it from the outside. If you want customization you are at the mercy of the option it provides. I can't even tell how many times i spent whole evenings explaining how their shiny template works. Just to do some crazy shit with JavaScript like rearranging domelements because it didn't work as expected.

I still stay to my word. Nothing great has been nor will be created with a Wordpress core. Don't tell me how some great stuff has been achieved. Or wait, please do so. But before you do think about if that wouldn't been faster, cheaper, more reliable , etc... if done with a framework like symphony or laravel... or even zend or cake.

And that brings me back to the point:
Is cheap and "out of the box" really what you need and desire? As customer and as developer?

Does DevRant have an API???

Hmmm, does 4 10GB harddrives solve my storage shortage? I think so