• 0 Posts
  • 95 Comments
Joined 2 years ago
cake
Cake day: June 17th, 2023

help-circle

  • One time a VP decided to jump in and be a developer and he just pointed a bunch of cards when the dev that was really going to do the work was off for the day. Obviously the points were way too low, so I just padded out the rest of the cards knowing the 7 points on the cards the VP pointed was going to be the entire two week sprint for the other dev and I’d need to to whatever else was put into the sprint.

    And that’s how I found out the Product Manager was putting the points into a spreadsheet to track how many points each individual dev was doing. He was actually upset at me for doing 20 points in the sprint. Sure, I padded them out, but why wasn’t he bothered by the cards that had too few points on them? Just upset his spreadsheet was screwed up, but couldn’t be angry at the VP that under-pointed a bunch of cards.



  • SpaceCowboy@lemmy.catoProgrammer Humor@programming.devYes, But...
    link
    fedilink
    arrow-up
    8
    arrow-down
    1
    ·
    2 months ago

    Avoiding 403 seems like a security through obscurity approach to me.

    I suppose there might be some special admin only endpoints you’d want to 404 on if the user is not an admin. But for most cases it’s really hell integrating an API that 404s on everything… is my token invalid, did I set a parameter wrong, or did I get the path wrong? I guess I gotta spend all day doing trial and error to figure it out. Fun!

    Also makes integration tests on your security unreliable. Someone renames an endpoint and suddenly your integration tests aren’t actually testing security anymore. Checking for 403 and getting a 404 because someone renamed something will indicate the test needs to be updated to use the new path. Checking for 404 (because the user isn’t supposed to have access) and getting 404 (because the path was changed) means your test is useless but you won’t know it was rendered useless.


  • Waterfall is more like: You want to go to Mars. You start to build the rocket. Managers that don’t know anything about building a rocket starts having meetings to tell the engineers who do know how to build a rocket what they should be doing. Management decides to launch the rocket based on a timeline that’s not based in reality. Management tries to launch the rocket based on the timeline instead of when it’s actually finished. Rocket explodes. Management blames the engineers.

    The various methodologies don’t actually change what the engineers need to do. But some of them can be effective at requiring more effort from management to interfere in the project. Bad managers are lazy so they’re not going to write a card, so they can be somewhat effective in neutralizing micromanagement. I say somewhat, because bad management will eventually find a way to screw things up.






  • Yeah, Yoda became a parody of his character in ESB.

    In ESB he comes across as someone that’s speaking in a second language. Sometimes he mixes up the grammar, especially when emotional and trying to speak quickly, but when he’s more relaxed and speaking slowly (or saying something simple) he usually gets it right.

    In other portrayals it feels more like he’s got brain damage.


  • IMO it should even be hashed on the client side before being sent so that it doesn’t show up as plaintext in any http requests or logs. Then salted and hashed again server side before being stored (or checked for login).

    But if someone got that hashed version they could hack the client to have client side hashing code just send that hashed value to the server. You’d want to have the server to send a rotating token of some sort to use for encrypting the password on the client and then validate it on the server side that it was encrypted with the same token the server sent.

    Seems complicated to me… https is probably has good enough encryption, so eh, whatever.


  • Yeah it’s a weird thing about parasocial relationships. You like someone based on things you’ve seen about them on TV and then you start feeling like you know them. But really, nope you don’t.

    I think it’s fine to like famous people, but just understand that you don’t really know them. If you later find out they’re a horrible person well then don’t like them anymore and it’s no big deal. You only like the things you know about the person, but if you avoid going down the road of feeling like you really know them, it’s fine.


  • Having a lot of joins can be expensive and non-performant.

    Only if you don’t know how to do indexing properly. Normalized data is more performant (less duplication of data, less memory and bandwidth is being used) if you know how to index.

    It may have been true decades ago that denormalized tables were more performant, I don’t know. But today it’s far more common that the phrase “denormalized tables are more performant” is something that’s said by someone that sucks at indexing and/or is just being lazy.

    But I do put JSON into tables sometimes when the data is going to be very inconsistent between different items and there’s no need to index any of the values in there. Like if different vendors provide different kinds of information about their products, I need to store it somewhere, so just serialize it and put it in there to be read by a program that has abstraction layers to deal with it. It’s never going to perform well if I do a query on it, but if all that’s needed is to display details on one item at a time, it’s fine.




  • SpaceCowboy@lemmy.caBanned from communitytoProgrammer Humor@lemmy.mlSite: "I don't feel so good...."
    link
    fedilink
    arrow-up
    6
    arrow-down
    1
    ·
    10 months ago

    For some reason I’m picturing the elves as white trash sovereign citizen types refusing to pay their taxes.

    As they fade away… “The flag of Gondor doesn’t have a gold fringe on it and you didn’t write my name in all capitals at a 45 degree angle in red ink therefore this court doesn’t have the authority to…” poof!


  • SpaceCowboy@lemmy.caBanned from communitytoProgrammer Humor@lemmy.mlWorst is UTC vs GMT
    link
    fedilink
    arrow-up
    6
    arrow-down
    1
    ·
    11 months ago

    Yeah it’s just being angry about the fact that the Earth is rotating ball. Wanting to abolish timezones is different from Flat Earth only be degrees.

    Sure the “what time is it there?” question goes away, but it’s replaced by “what are your business hours?”

    Ultimately it will be daytime in one part of the world while it’s night in another part of the world. That will always cause problems.


  • SpaceCowboy@lemmy.caBanned from communitytoProgrammer Humor@lemmy.mlWorst is UTC vs GMT
    link
    fedilink
    arrow-up
    2
    ·
    11 months ago

    This is actually the best approach.

    Obviously they are getting timezone information otherwise the app could only display whatever time the user entered in.

    If you want to sort things by the actual time, it’s simple and performant if all of the times are in the same timezone, and UTC would be the standard one to use. Pushing the timezone calculations to the client makes sense because the UTC time is correct, it’s just a matter of displaying it in a user friendly way, ie. show the time in the user’s timezone.



  • Yeah the Klingons changed over time, but once you they have a Klingon in the regular cast it’s kinda set at that point.

    Worf is THE Klingon now. All other Klingons will be compared to Worf from here on out. Sure there can still be some variance, but if they stray too far off from Worf, they’re asking people to choose which is the real Klingon: Worf or whatever they’re putting up on the screen now. The answer will always be Worf is the real Klingon, and the new version is not a real Klingon.

    It’s just how it is, and it’s really insane they tried to stray from Worf too much under the excuse that Klingons were changed previously. Yeah they were changed previous to a Klingon being a regular cast member on two popular Trek series.