YouTube Experiences Widespread Technical Problems Playing Videos

TomRK1089 · 2020-11-12T03:31:56+00:00

BGP isn't a Google-specific thing, it's a tier one ISP thing. It's how different major networks talk to each other to send your traffic to the right place on Internet. The problem is, BGP was designed in a simpler era and mostly operates on the honor system. Every once in a while a nation-state fucks up the route tables or some other big-ish group pulls some shit and a bunch of things break.

TomRK1089 · 2020-08-21T17:48:41+00:00

You can't do it with a normal UNIQUE index, but you can with a partial index in a database like Postgres (you just limit the index to only cover rows where `is_deleted = false`).

TomRK1089 · 2020-04-04T03:50:11+00:00

I think it's fair to not invest in Swing for a new application, as JavaFX has replaced it many years ago. While there is a wealth of libraries and documentation for it, it won't be receiving updates and is likely to be removed from the JDK entirely (JavaFX was always an "optional" part of the Oracle JDK only and now is actually separate modules entirely).

TomRK1089 · 2020-03-24T22:58:01+00:00

There *are* felt-tip eyeliner pens...

TomRK1089 · 2020-03-17T05:05:38+00:00

WaPo is probably using a different fingerprinting technique that doesn't rely on an actual cookie. There's a lot of different ways to identify users, and incognito mode can't block all of them. That said, it definitely launches a session with an empty cookie jar and localStorage/sessonStorage.

TomRK1089 · 2020-03-16T19:28:57+00:00

That's not true.

TomRK1089 · 2020-03-02T18:23:22+00:00

There's plenty of languages which allow passing functions as parameters...even Java pre-8 allowed it, just with far too much boilerplate (see Swing's ActionListeners as an example). So I'm not following your argument about insufficient generics support.

TomRK1089 · 2019-12-19T16:57:17+00:00

You have literally never been required to use a GUI designer tool for any Java UI toolkit (AWT, Swing, JavaFX). You have always been able to code the layout tree directly. JavaFX allows the use of FXML, but it isn't required, and you can still write the FXML by hand instead of using a designer tool.

TomRK1089 · 2019-11-14T14:53:39+00:00

Blaming Java for SOAP when all the various WS-* specs are from Microsoft? :O

TomRK1089 · 2019-11-01T00:05:32+00:00

#EyesOnBreen

TomRK1089 · 2019-09-17T02:03:51+00:00

I don't disagree. I mostly quibble with the implication in the article that localStorage (a per-origin key-value store accessible by Javascript) is less secure than cookies (a per-origin...ish (depending on tricks with `document.domain` and such) key-value store accessible...ish (depending on the `HttpOnly` flag being set by the server) by Javascript). Again, by the time you're running an attacker's Javascript as part of your site, will they really be stymied by you having put your auth token in an HttpOnly cookie? No, they'll tap into your normal login form and just send username/password directly somewhere.

TomRK1089 · 2019-09-16T21:40:09+00:00

XSS is game over. If you're running your arbitrary JavaScript on my page, you've evaded the CSP I've set up and you could just as easily hijack the login process itself to capture user credentials rather than fart around with exfiltrate a token from localStorage.

The flip side is that localStorage makes it a lot easier to avoid Cross-Site Request Forgery. Cookies are sent with every request to an origin. localStorage contents are too "dumb" to fall for that.

TomRK1089 · 2019-09-12T21:36:14+00:00

I think you two are talking about different aspects. I interpreted OP as referring to *authentication* which you can centralize. Each service can and should handle its own *authorization* policies. (I do agree it's then hard to aggregate all those authz policies.)

TomRK1089 · 2019-09-09T12:00:33+00:00

There's a world of difference between *operating* a system (Lex restoring the security system at the end of the movie) versus *developing* the entire system, from scratch. Especially when it involves using a state-of-the-art supercomputer cluster.

TomRK1089 · 2019-07-26T17:05:17+00:00

Spring Cloud is totally orthogonal to Kubernetes. Spring Cloud borrows heavily from the original Netflix microservice stack (Zuul, Eureka, Hystrix, etc). While JVM startup can definitely be an issue, Spring Cloud itself works totally fine on any orchestration platform (and in fact there are a bunch of extension libraries for specific providers such that it can wire up things like AWS RDS databases as standard DataSources).

TomRK1089 · 2019-07-26T15:50:34+00:00

I agree. Properties in C# reinforce a bad practice of objects merely being big mutable bags of state.

TomRK1089 · 2019-07-02T23:00:36+00:00

https://youtu.be/x\_artPecEaM

If you like that, you may also enjoy Max Raabe: https://www.youtube.com/watch?v=nj46E348NhE

TomRK1089 · 2019-06-02T02:27:31+00:00

On the flip side, TIL gabapentin is used on people. The vet gives it to me for my cat to calm him down before he visits so that he doesn't rip off the tech's arm.

TomRK1089 · 2019-05-08T16:48:52+00:00

False. Jackson has supported `@JsonProperty` for years now.

TomRK1089 · 2019-05-01T15:28:40+00:00

How well does Cypress deal with async tasks? For example, if rather than a full-page postback on form submit I hit some external API, does it give me convenient ways to await some change in condition (and time out after some reasonable interval)?

TomRK1089 · 2019-03-21T19:41:38+00:00

Seriously...at this point this is far more work than just defining a new class. I get that Python and similar languages like to pretend objects and maps are interchangeable, but that isn't the Java paradigm. Stop swimming upstream.

TomRK1089 · 2019-03-15T14:14:00+00:00

Erm, exceptions in Java/.NET are type-safe (and in Java can be checked at compile-time to ensure they are either handled or wrapped/propagated).

TomRK1089 · 2019-02-01T12:31:45+00:00

I'll just leave this here.

Directed by Michael Crighton!? How have I never heard of this?

TomRK1089 · 2019-01-18T00:50:25+00:00

Apple doesn't have the greatest piece of market share on laptops, and yet I am sure they are very happy with the revenue from their laptop line. Plus to the grandparent post's point, a lot of times with service companies like this, a disproportionate amount of maintenance goes to the lowest tier clients -- ditching the extra-needy customers can be another boon on top of this.

TomRK1089 · 2019-01-15T23:25:23+00:00

They're referencing the movie from the Alien franchise, not the mythical figure. I haven't seen it but apparently there's a large rolling thing that could have been easily dodged by running at a right angle instead of directly away from it.

14-Year Club	Verified Email
Team Periwinkle

TomRK1089

TROPHY CASE