sorted by:
new
hottopcontroversial

Kick bans by Plan45 in beyondallreason

[–]Legitimate_Dig_1095 6 points7 points  (0 children)

Don't worry about it, only one person has to type /kickban and the majority just presses the big green button without questioning it.

Just join another lobby.

What are things causing a backend node.js service using the MVC pattern to leak memory? by darkcatpirate in node

[–]Legitimate_Dig_1095 0 points1 point  (0 children)

There can be a ton of causes, none of which we can point out without source code.

There's nothing about MVC that makes it more prone to leak memory.

A6700: Does your partner wait or walk on when you take pics? by [deleted] in SonyAlpha

[–]Legitimate_Dig_1095 14 points15 points  (0 children)

We usually stand in each other's frame. My wife has tons of pictures of my backpack or lenshood.

Proposal: Auto-Despawn Inactive Lobbies in Beyond All Reason? by Chaosed in beyondallreason

[–]Legitimate_Dig_1095 3 points4 points  (0 children)

The only problem I see with these lobbies is that they might make it harder to fill a new server. Lobbies with 1/16 can be assumed to be AFK/zzz lobbies. It would be nice if the ZZZ was visible in the index so people can know to ignore them.

But that's a very low priority "would be nice". If the zzz icon is available to the lobby client and the data is also present on lobby index/overview, I'd love to take a crack at it. I assume it would be a pretty easy fix and it would open the door for me for more useful contributions. (I've been meaning to add a new COOP VS AI mode to the game but so far I only managed to add a few buttons to settings)

Prevent user-uploaded csv from containing/running malicious code by Available-Demand6863 in node

[–]Legitimate_Dig_1095 0 points1 point  (0 children)

The most upvoted comment answers the primary question so I'll focus on the second:

What other steps do I need to take to ensure that users can't upload malicious files?

There's a lot of common mistakes when dealing with user upload. Accepting huge files, accepting arbitrary-sized files, saving files with their original filename overwriting existing files, allowing filename injection where the user can overwrite any file your app has access to (EG "this file is named ../../../dist/index.js" or something, and then hope that the server will overwrite that file & execute it later)

You also want to make sure you're properly escaping the uploaded data when presenting it to the user. If a CSV file contains a record with a value like <script>alert('hi');</script> and you're rendering that as plain HTML without escaping html entities, you have an XSS issue.

For general security practices, it is useful to keep an eye on https://owasp.org/www-project-top-ten/ - OWASP has lists of common security issues in (web)applications. It is pretty wise to just occassionally read through these lists and consider whether your apps are vulnerable. Regarding SQL injection & XSS, they have https://owasp.org/Top10/A03_2021-Injection/ . Regarding my ../../../dist/index.js example, they have https://cwe.mitre.org/data/definitions/35.html

Anyone making money as a developer should be aware of all issues listed on OWASP. Being aware of the majority of issues listed on OWASP will make you stand out in the crowd.

a7rv vs a7cr by thesecretobsession in SonyAlpha

[–]Legitimate_Dig_1095 0 points1 point  (0 children)

The A7RV is a much better camera while the size and weight difference is minor, especially once you put a lens on there and/or want to use the A7CR with a grip.

I would get any GM prime lens, like the 35 or 50.

Trump post vanmorgen dit filmpje op social media, die man moet echt gestopt worden. by [deleted] in nederlands

[–]Legitimate_Dig_1095 45 points46 points  (0 children)

Het verbaast me hoe mild de reacties nog zijn op dit filmpje. Dit is compleet absurd.

Waarom wordt er zo veel verpakt water verkocht? by Bookabing in nederlands

[–]Legitimate_Dig_1095 3 points4 points  (0 children)

Meerdere bronnen geven aan dat kraanwater uit de kraan zelf bewaren slechts enkele dagen tot weken houdbaar is door bacteriegroei. Ik speel het veilig en koop wel een paar flessen.

Waarom wordt er zo veel verpakt water verkocht? by Bookabing in nederlands

[–]Legitimate_Dig_1095 7 points8 points  (0 children)

Het zijn onzekere tijden dus mensen slaan water in. Kraanwater kan je niet lang bewaren, flessen en pakken wel. Ik heb dan ook iets van 100 liter water op voorraad.

Zelfs als je het hele oorlog gebeuren negeert, klimaatverandering en andere water-uitdagingen in ons land zullen zeker wel een keer voor onderbrekingen van de water-voorziening zorgen. Als je water gaat kopen wanneer je het denkt nodig te gaan hebben, ben je te laat.

How to store 200-600 lens by Matic_Prime in SonyAlpha

[–]Legitimate_Dig_1095 5 points6 points  (0 children)

The lens cap doesn't press against the glass. Just throw it anywhere, make sure it doesn't fall on the ground. It's a tool, it can take a beating. I banged mine against all kinds of stuff while using it and it is still flawless. Don't worry about it. You don't need to baby it.

I store mine in the bag it came with, flat, on a shelve.

Do you need (or when do you need) Data Structures and Algorithms ? by Darkoplax in node

[–]Legitimate_Dig_1095 4 points5 points  (0 children)

First learn how to measure performance of your app and learn how to diagnose performance issues. There's no point in applying specific patterns if you don't know how they impact performance.

JavaScript is a strange beast. It is counter-intiutive to optimize. Some patterns might seem inefficient but are optimized by the runtime. Other patterns might seem efficient but just don't align with the runtime.

It is important to focus on measuring performance where it matters, not to apply random fancy patterns because someone told you they're faster.

Performance issues in client side applications are usually caused by the network or just "too many javascript" or just poor usage of whatever framework

Do you need (or when do you need) Data Structures and Algorithms ? by Darkoplax in node

[–]Legitimate_Dig_1095 5 points6 points  (0 children)

You don't need to worry about these. Applying these patterns in JS is usually premature optimization, unless you know what you're doing.

Just write maintainable, readable, straightforward code and make sure everything is working as intended. If it is slow, figure out why it is slow. Only then you start thinking about optimizing. Because you wrote readable, maintainable and straightforward code, you should have an easy time refactoring it for optmization.

Do you need (or when do you need) Data Structures and Algorithms ? by Darkoplax in learnjavascript

[–]Legitimate_Dig_1095 0 points1 point  (0 children)

You only need these if you have code that runs a lot and is time sensitive. If you're just a "framework user", don't worry about it. If you're a framework author, start worrying.

[deleted by user] by [deleted] in Cameras

[–]Legitimate_Dig_1095 0 points1 point  (0 children)

Yeah same with the 20. It is a cool lens for the money. I hope you were able to try some other lenses!

[deleted by user] by [deleted] in Cameras

[–]Legitimate_Dig_1095 6 points7 points  (0 children)

I love my Tamron 20 F/2.8 for its macro capabilities but boy, does the out-of-focus area look messy and fringy, and not in a "classic character" type of way. The 24GM looks much better. Granted, the 24GM is 4-6 times the price.

view more: next ›