Programmer Humor

31224 readers

65 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

Posts must be relevant to programming, programmers, or computer science.
No NSFW content.
Jokes must be in good taste. No hate speech, bigotry, etc.

founded 4 years ago

MODERATORS

[email protected]

766

Web 2.0, and its consequences... (media.kbin.social)

submitted 10 months ago by [email protected] to c/[email protected]

84 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 26 points 10 months ago (4 children)

Bruh, I actually prefer the "Web 2.0" solution. That way the god damn editor can't just start accessing all the shit on my drive.

[–] [email protected] 49 points 10 months ago (1 children)

Lol but included in the source for www.texteditor.com is analytics, beacons, etc from Google, Microsoft, Facebook, Twitter, Cloudfare, and a bajillion different ad networks that send the content of your text file to AI models.

[–] [email protected] 0 points 10 months ago

pihole and unbound dns babyyyyyy

[–] [email protected] 37 points 10 months ago* (last edited 10 months ago) (1 children)

My text editor doesn't access shit on my drive (unless I ask it to) because it's Free Software and my Linux distro package maintainers audit it to make sure it doesn't contain malware like that.

You're praising a pathological solution to a problem that shouldn't exist to begin with.

[–] [email protected] 14 points 10 months ago

Forever audits of free software are unsustainable in my opinion.

To truly audit every piece of software, you need an independent party to spend time (often more than the development) to look through the code, that person needs to be equally or more experienced than the developers of the software, and have specific knowledge for vulnerabilities and malicious techniques.

They then need to audit and monitor all of the channels of distribution for that software, including various websites and repositories. This needs to be done constantly.

You effectively need to double or more the total level of effort for all software.

Yes, high profile software (sometimes) gets audited regularly, but the assumption that anything you grab from your package manager has been truly audited leads to a false sense of security, additionally the assumption that an audit being performed means there are no issues with the code also leads to problems.

The reality is that most open source software doesn't get audited because it is too much work.

[–] [email protected] 14 points 10 months ago (1 children)

Wait until you meet with Javascript and WebAssembly viruses!

[–] [email protected] 2 points 10 months ago

WebAssembly is sandboxed and deterministic. Any impure code has to be triggered via message passing with the host language.

[–] [email protected] 3 points 10 months ago

That’s why there is sandboxing on macOS and in Flatpacks