The question of ethics or morals seems to come up occasionally. The smog-gate issue, self driving cars killing people, etc. I’m a programmer so I feel both sides of this issue e.g. While my animal brain wants blood for the programmers that wrote the code for these things, my thoughtful brain would never want to be blamed for something “out of my control.” The banality of evil by Hannah Arendt is a good read, it talks about how normal people do terrible terrible things. While I think you can point to high profile individuals like Uncle Bob, Bret Victor, etc. that would have the luxury of authority and context to be “ethical.” I think your general run of the mill programmer would not. Also this ethical conundrum is not isolated to programming. Other fields that seem to have issues are Medical and Financial off the top of my head.

At a prior job many years ago, I was shocked at the terrible practices used to “secure” a password. It was some home-grown pseudo hash that was just terrible and trivial to break. After I had updated that code to use industry standard techniques, a request came in from LEO to crack the password of a device used in a case for a drug dealer (drugs are bad, mmmmkay). I happily cracked the password and got a letter of thanks. I was young. Today I would probably refuse on moral grounds but I wonder, given the same situation of negligently bad password securing practices, what I would do.

I think one of the reasons people always give simplistic examples of tests is that testing is very difficult to do right. At least as difficult as coding and maybe more so. I have never seen any value to unit testing and it objectively halves (or more) velocity and doubles (or more) the code to maintain. I do feel there is significant value in code review (properly done its the reviewee that finds the bugs not the reviewers), Testing In Production methodologies, Fuzz testing, and BADD

I had to take my Mac Book into Apple to get the video card repaired. I was so paranoid that someone would look at /copy my HDD (proprietary software and private keys) that I took it out and replaced it with a blank drive. With the new Mac’s the HDD is not removable so aside from the other downsides, no tech is ever going to get something with my private keys on it. My porn is pretty vanilla so I’m not that worried about it, but my keys cause me far more anxiety if any rogue tech got a copy.

The thing is, figuring out all the exceptions is not free. And often the exceptional cases are rare enough that the benefit is minimal.

unit tests aren’t very helpful in testing a cryptographically secure random number generator.

Bollocks. That’s a perfect use case for them.

unless you can write a unit test to determine awesomeness.

Is that supposed to be hard?

What did “Can anyone say OpenSSL?” have to do with anything? I was with Zed until that point. Are people glassy eyed about OpenSSL? AFAICT there are forks and other attempts at cleaning things up, and a lot of eyes are on it. But my concern even with Heartbleed is that “with enough eyes all bugs are shallow” doesn’t apply with crypto/SSL/TLS because it takes a very special kind of eyes to do that stuff. Hindsight is always 20/20 but at the end of the day we are all human (I think).

That comment seemed out of left field. Can anyone explain?

This sounds a lot like Baseline Acceptance Driven Testing/Development

https://medium.com/@tinganho/baseline-acceptance-driven-development-f39f7010a04#.8fqlj5ykh

The implementation also leaves a lot to be desired, as it’s left up to the whims of the site owner to decide what password strength means. One site’s “good” is another site’s “get outta here with that Fisher-Price toy password”. It’s frustrating.

So, with Discourse, rather than all that, I decided we’d default on a solid absolute minimum password length of 8 characters, and then verify the password to make sure it is not one of the 10,000 most common known passwords by checking its hash.

How is that not equally the whim of the site owner?

I FINALLY deployed my reporting application (yay me), am working on getting some packaged stuff up on debian, and learned why my current resume is so devops heavy and why I can’t answer algorithm questions in interviews.

The basics of why the deployment is such a big deal is that I’m so fast with development that stuff piles up. Devops is not my strong suit so it takes longer. I have to research what to do, how to do it, then do it. With development its just a tiny bit of how, then just do it.

I also found a bug that made me feel the same way I feel when faced with algorithm questions in interviews. But this was my bug and I wanted to fix it (unlike interview questions). So the way I approached it was with inputs and tons of trial and error with working code and working tests. I finally got it down. Originally the tests had to be slowed way down to compensate for the bug. Now that its “fixed” its so fast that the testing knocks the server over before knocking the application over.

Aside from the lacking of credibility as posted http://blog.easydns.org/2016/02/22/the-us-government-has-no-credibility-to-compel-anybody-to-weaken-security/. There is absolutely no indication that the FBI or any other TLA government institution is either capable or willing to use the information they are collecting to “protect the American public.” With all the data they ARE collecting they are doing a piss poor job of anything. No matter what happens with that phone, those 14 dead are not coming back.

There was a study done recently that seemed to indicate that DT languages had more errors statistically than ST languages.

http://www.computerworld.com.pt/media/2014/11/lang_study.pdf

From the conclusion:

The data indicates functional languages are better than procedural languages; it suggests that strong typing is better than weak typing; that static typing is better than dynamic; and that managed memory usage is better than un- managed. Further, that the defect proneness of languages in general is not associated with software domains. Also, languages are more related to individual bug categories than bugs overall.

I admit to submitting this primarily because my immediate reaction to it was disbelief and annoyance. That probably means that it’s a good discussion topic, right?

Let’s break it down:

I will not produce harmful code.

“Harmful code” is not always obvious when you write it. If you’re working in a legacy system, you can produce “harmful code” purely by accident.

The code that I produce will always be my best work.

Likewise, impossible. If you’re working on a team with a legacy system, and you have deadlines, you have to do what you have to do in order to get things out: removing side effects and refactoring a vast, sprawling class in decade-old core logic is not usually an option.

I will produce, with each release, a quick, sure, and repeatable proof that every element of the code works as it should…

Er, no you won’t. Tests are not proofs.

I will make frequent, small, releases so that I do not impede the progress of others.

Yes, very important–unless you’re doing a refactor or library upgrade that requires a big-bang release.

I will fearlessly and relentlessly improve the code at every opportunity. I will never make the code worse.

Deadlines again: if you are working against a short deadline, and must deliver a feature, it is definitely possible to make the code worse while meeting business goals.

I will do all that I can to keep the productivity of myself, and others, as high as possible. I will do nothing that decreases that productivity.

Short term or long term? How does this jive with the previous rules?

I will continuously ensure that others can cover for me, and that I can cover for them.

Not really sure how this one pertains to programming: assignments and hiring are not usually in my power, so I can’t control whether there is someone who has the time to learn my organizational knowledge.

I will produce estimates that are honest both in magnitude and precision. I will not make promises without certainty.

This is impossible. There are entire disciplines of estimation. Vast arrays of books. None of them work.

I will never stop learning and improving my craft.

Finally, something valid! This is the most important and powerful rule, and the only one that is not tangled up in business dependencies or otherwise outside our control as developers.

Struggling to work on RADIUS module (FreeRADIUS). Struggling because I realized that I’m suffering burnout and extreme frustration. The burnout is due to every effort I put in seems to be a complete waste of time. On side project this is exemplified by countless efforts that have gone absolutely nowhere. @work this is exemplified by putting in a lot of effort to think about and solve problems despite a completely dysfunctional working environment.

The frustration is due to the perception of very unbalanced effort. For this RADIUS project I have to admit the FreeRADIUS mailing list has been exemplary in terms of fast response. However I ran into an issue with VPN server (ASA 5505) where multiple Reply-Message’s are not handled by IKEv1. Until this point I have never dealt with RADIUS, VPN’s or ASA 5505’s. With help I got the 5505 configured locally, I figured out how to enable enough debug to log what I was seeing and posted on reddit, StackOverflow, Cisco Support Forum, and email to the person that helped me configure the ASA 5505 in the first place. This specific instance is not the frustrating part, its a death by a thousand cuts that’s been going on for longer than I care to admit.

So after getting the module ready, I guess I will be faced with looking over what source code I can glean from Cisco’s documentation about open source they use. It feels very unbalanced but I realize that I need to suck it up. I just am having a difficult time doing that right now.

Without a really good crystal ball how do you know what future-proofing you are going to need? It’s really hard from your post to determine if this problem you’ve identified today was completely obvious to everyone but you. Personally I watch out for things like cross cutting and leaky abstractions so whatever terrible choice that were made N units of time ago, are encapsulated well enough that “fixing” them doesn’t require a whole re-write.

I’m going to repost a good comment from teraflop on MetaFilter here because y'all seem to be weirdly negative in this post.

Sigh. This made the rounds on Hacker News yesterday. To head off some common complaints:

• They’re talking about deprecating plaintext HTTP, not removing support for it.
• There are good reasons for this. When they say “browser features”, what they’re mainly talking about are privacy-sensitive things like geolocation, or access to your microphone and webcam. For obvious reasons, these features require the user to explicitly provide permission. But if they’re used on an http:// site, you have no idea who you’re granting permission to. That code could have been modified by your ISP, or your government, or whoever set up the wi-fi at the coffee shop you’re sitting in, or just any random person on your local network.
• This is not a hypothetical problem; ISPs (including Comcast) have already demonstrated that they’re willing to hijack your plaintext connections to inject ads.
• HTTPS is becoming cheaper and easier to set up. This move is being done in conjunction with the Let’s Encrypt project, which aims to make SSL certificate setup free and effortless. If you don’t want to wait for that to take off, you can already get free certificates from StartSSL.
• Yes, the CA architecture has problems. No, nobody’s come up with anything else that works as well. Mozilla isn’t doing this unilaterally; Chrome has already announced similar plans in the last few months.
• For development purposes, “localhost” will continue to be treated as secure. If that isn’t good enough, creating your own internally-trusted CA is probably a lot easier than you’re imagining.
• The fact that they’re talking about this now doesn’t mean it’s going to happen soon. Browser vendors are very serious about doing slow, methodical, careful rollout plans, even for much tinier compatibility issues than this one.

Anything else?

Gonna work on an integration with Symantec VIP. All evidence points to this effort being a waste of time but a very wise person said “take solace in the fact that even if it’s for naught, your brain may make a connection down the road, that it wouldnt have otherwise.”

I’m trying to figure out how to minimally affect things while still making client authenticated TLS connections for SOAP calls to VIP. Ive been wrestling with how difficult the choice was for me to require client authenticated TLS REST calls and now I’m on the other side of that. Wish me luck.

This week is primarily about RSA conference. Not the conference per se, but all the people that come for it. So far Monday, Tuesday and Wednesday are booked and I am irrationally happy about that. Hopefully some interesting things will come of it.

Decided to take a break for while and train for an upcoming century. Its a tough one so as long as its not raining I’m going to try for the metric and if I feel good, maybe more.

Just finished up a pre-alpha integration with PingFederate as an IdP Adapter. It was fairly tough only because the documentation is sparse and the examples are pretty basic/old. Made a few false starts but once it got going it was done over this last weekend. That’s going on the back burner until I hear back from integration partner. Just blew away some work on a reporting dashboard that I stupidly did in place and am going to try and resurrect that. Then I’m going to continue on the Rules Engine track to implement some behavioral rules. Not sure how much I can get in this week but thats my plan.

Just finishing up a prototype POC for my next feature. I’m using Drools which is RETE rules engine. There is an experimental branch on 5.6 that implements a Fuzzy Logic belief system that matches how I conceptualize the way to do what I want to do. Next I’ll be considering ways to integrate the POC into the service I run and how to deploy it.

Semantically what I am trying to achieve is ways of expressing sentiment about things in code and distancing myself from meaningless numbers. For example, I am “suspicious” of this spam rather than scoring it as .30

I tried to update a customer to some new stuff and get them off old servers. Everything has to connect over SSL and the old servers are still not updated to mitigate all the known attacks so far. This particular customer’s clients are PHP and use OpenSSL for the connection. Unfortunately its an old PHP (5.4.x) and an old OpenSSL (0.9.8b).

The first thing I considered was asking the customer to update PHP and OpenSSL. I tried it myself on my MBP and couldnt figure it out so bail on that. I asked for SSH access to the customer’s machine and did some tests with openssl s_client -msg -debug to see how and why it wasn’t working. The old versions of OpenSSL always start with SSLv2 ClientHello UNLESS you specify -no_ssl2 or -tls. (Looking at OpenSSL changelog seems this was changed in 0.9.8n). Looking at the source for PHP, I was able to figure out that the only way to set that flag was to open a stream socket wrapper with tls:// as the scheme, BUT then you have to write the HTTP protocol yourself. I found a library to write HTTP protocol, Snoopy, and modified it to use the tls:// scheme and some other stuff I needed. The client’s test site is working correctly against the new servers.

This week I’m going to shore up stuff to use Snoopy in the case of really old OpenSSL situations.