WingNews logo WingNews GitHub [2]

sirwolfgang's comments

sirwolfgang | 9 years ago | on: Bouncing bomb

I always thought this was the more nuanced but clever part of the operation.

That said, I would hate to have been one of the test pilots for the barrels. One of them bounced too high, and ripped the plane in half.

sirwolfgang | 10 years ago | on: New debugging method found undetected security flaws in popular web apps

The main one in the article:

http://www.cs.berkeley.edu/~jnear/space/

"SPACE is a specification-free tool for finding missing security checks in Ruby on Rails web applications using a catalog of access control patterns in which each pattern models a common access control use case. SPACE checks that for every kind of data exposure allowed by an application's code, some security pattern in our catalog also allows the exposure. The user provides a mapping from application types to the types of our catalog, and then SPACE identifies security bugs automatically."

The paper referenced:

https://dspace.mit.edu/bitstream/handle/1721.1/99841/9274107...

sirwolfgang | 10 years ago | on: WordPress base configuration files on GitHub

[I not saying I am an expert] It is always a problem to expose passwords. Sure they can't use it from the outside, but what's the point of even having the password if its public? The password is to prevent unauthorized access. If they are able to get to a box, and pivots, that password becomes useful to the attacker.

sirwolfgang | 11 years ago | on: Ask HN: Why are Silicon Valley interviews such a drag now?

Because as much as spending 4 hours doing unpaid work may seem to suck. (Which let's face it, I do at least 8 hours of unpaid development a week on side projects.) It's a better and more accurate test of your abilities than doing what can only be compared to that of a trivia based game show.

Option A) Spend anywhere from 2 to 12 hours interviewing for a position with little to no break. While being asked to solve problems, that may very well actually be unsolvable, under the pressure of rotating team of people. And for bonus if you suffer from any sort of test taking anxiety in school you'll get to feel the blood drain from your prefrontal cortex, as your fight or flight instincts kick just enough to make sure that doing high cognitive work like programming is next to impossible.

Option B) Spend a few hours solving a hopefully interesting programming challenge at home where you're probably not wearing pants.

sirwolfgang | 11 years ago | on: Show HN: Feature voting for GitHub

It seems like you build off the comments of issues, parsing for the :+1:, you could functionally provide the same tooling, but in the same additive way that waffle.io does.

sirwolfgang | 11 years ago | on: Why We Killed Off Code Reviews

The biggest problem I see with this is that your not really getting a second pair of eyes when you pair program. You almost get second eyes. Even if the person with you is 100% engaged the entire time, you end up syncing your thought patterns.

For example, I once worked with a teammate for 9 hours to write and debug a physics system. After all that time solving the problem with him, I was solving the problem like him. We ended up writing this 900-line solution to our simulation that kinda worked right most of the time.

I went home and laid down for 30 mins. During that mental reset, my mind turned to solving the problem with my method of thought. I ended up sitting up and grabbing my laptop and replacing all that code with a 30-line solution that worked 100% of the time.

Code review allows someone to come at a problem with a different perspective to find issues, not more of the same perspective.

sirwolfgang | 11 years ago | on: Sortie en mer – A trip out to sea

Develop as part of an interactive experience by the agency CLM BBDO for yachtwear manufacturer Guy Cotten and released on Apr 24, 2014. The goal is to remind people to buy and wear lifejackets.
page 1
more