×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Comments

top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:Sloppy code (445 comments)

You're not kidding. There's also an awful lot of code passing pointers to functions, where those functions dereference the pointers without checking if they're not null.

about a week ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:Bigger problem: stupid 'optimizations' (445 comments)

If I put profile run numbers into comments for every optimisation I did, my code would be overrun with such comments.

about a week ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:Where C++ applications interface with C librari (445 comments)

If they're required to interface with existing C libraries, they're going to run into similar unsafe API wrapping regardless of their chosen language. C++ may interface with C libraries more frequently than others, but that doesn't make the "safer" languages immune.

about a week ago
top

UN Report Reveals Odds of Being Murdered Country By Country

GigaplexNZ Tongue-in-cheek (386 comments)

The Economist includes an intriguing 'print only interactive' (see the PDF) and has some tongue-in-cheek tips on how to avoid being slain:
<snip>...sit back and grow older

You're not kidding about the advice being tongue-in-cheek.

about two weeks ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:Whatever you may think ... (445 comments)

I didn't get to read his disclaimer prior to having my living room intruded by his vehicle so I was unable to make such an informed decision. He should have honked first.

about two weeks ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:He's sorry now ... (445 comments)

I'm sure there are many places that don't permit such a EULA, however are they the jurisdiction where he wrote and published the code? (honest question - I don't know) Jurisdiction matters for such things, which is how some open source projects get away with code that infringes patents in some regions but not others for example.

about two weeks ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:Sloppy code (445 comments)

In an unrelated function I saw an array declared on the stack, getting filled up, and then a pointer to this array getting assigned to a field of an argument to this function, and then a return...

Seriously? What function?

about two weeks ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:for a library... (445 comments)

Moving away from C just means you now have to have faith in some bytecode virtual machine's memory and buffer management. Is it a more secure approach? Maybe, but if the root complaint is putting faith in complex software, coding in Java or some .NET language means trusting the people coding those engines are equally capable of screwing up. All these higher level virtual machines and interpreters are ultimately written in C.

Or you could just use C++ complete with their bounds-checked containers.

about two weeks ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:on purpose or not, couldn't happen if... (445 comments)

All I know is the organization I work for has prohibited use of C or C++ for mission critical software for years now. The languages we use would not ALLOW code to execute which tries to copy 64K from a 2 byte sized container.

C++ has bounds-checked containers.

about two weeks ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:Improving? (445 comments)

Still it surprises me that security software can be modified so quickly and with only one review

It's an open source project, who's going to stop them writing the code and making it available?

about two weeks ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:He's sorry now ... (445 comments)

This is the second example I've seen in this thread where disclaiming negligence for vehicular accidents is compared to disclaiming negligence for software bugs on an unpaid open source project that companies aren't obligated to use.

And even if these companies could legally sue (jurisdictions notwithstanding), what would the point be? This is an individual with limited funds - they'd bankrupt him but wouldn't get enough from him to cover their legal fees.

about two weeks ago
top

Heartbleed Coder: Bug In OpenSSL Was an Honest Mistake

GigaplexNZ Re:Whatever you may think ... (445 comments)

Totally not the same thing. These companies have the option of not using OpenSSL. In your analogy, where's my option of not getting hit by you?

about two weeks ago
top

OpenSSL Bug Allows Attackers To Read Memory In 64k Chunks

GigaplexNZ Re:I take it this is a server concern (303 comments)

If you store data on servers (hello cloud) then as a client you should be concerned.

about two weeks ago
top

Microsoft Ships Surface Pro 2 Tablets With Wrong, Slower Processor

GigaplexNZ Re:I Predict (147 comments)

The RT line, with the ARM chips (like what this whole story is about) are not doing so well.

The title says Pro, the summary says Pro, and the chips in question are quoted in the summary (Intel chips). Where'd you get the impression this was about ARM?

about a month ago
top

VLC Finally Launches App For Windows 8

GigaplexNZ Re:No V-Sync (170 comments)

Tearing can happen when the frame rate is lower than the screen refresh rate. All it means is that the frame is updated mid screen refresh. Triple buffering can resolve tearing for frame rates lower than the monitor refresh rate at the cost of input lag.

about a month ago
top

VLC Finally Launches App For Windows 8

GigaplexNZ Re:No V-Sync (170 comments)

I get quite a bit of tearing with VLC on my Win 7 HTPC.

about a month ago

Submissions

top

Microsoft developer tools abandon Windows XP suppo

GigaplexNZ GigaplexNZ writes  |  more than 2 years ago

GigaplexNZ (1233886) writes "Earlier this year a bug was filed against the developer preview of the next version of Visual Studio complaining that applications built with it are incompatible with Windows XP. Pat Brenner from Microsoft Visual C++ Libraries Development issued a response: "Thanks for the report. This behavior is by design in MFC and CRT for Visual Studio vNext. The minimum supported operating systems are Windows Server 2008 SP2 and Windows Vista. Windows XP is not a supported operating system for the release (design-time or run-time)." Can Microsoft seriously be considering preventing early adopters of the next version of Visual Studio from supporting a large portion of their existing customer base?"
Link to Original Source

Journals

GigaplexNZ has no journal entries.

Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Sign up for Slashdot Newsletters
Create a Slashdot Account

Loading...