Crystal http://crystal-lang.org. It’s a Ruby inspired syntax, but compiles to code that’s comparable to C.
I dunno, isn’t this pretty much what ApplePay®™ is all about?
Not saying yay or boo, just sayin’…
“Apple added that they would not track usage, which would stay between the customers, the vendors, and the banks.”
Looks like… at least they’re telling us… that it’s just a payment service where they’ll make the traditional fees, support purchases of iPhones, and maybe other value-adds. They don’t have to do surveillance. They already got nice PR for anti-surveillance crowd after not unlocking the phone.
Apple isn’t in the ad business so I’m not sure how this comparison makes sense, even aside from their stated focus on privacy and lack of tracking as @nickpsecurity pointed out.
One need not sell advertisements, to profit from the capacity to conduct analysis on a large group of buyer’s spending habits. Recall that Apple acts as a media outlet, and partners with many large corporate entities in a variety of ways. I’m usually pretty wary about how the internet gets connected to my bank accounts, simply to ward off impulse buys and identity theft, so I never felt particularly comfortable with Apple Pay, which is why I’m not very familiar with Apple’s policies surrounding it’s use.
Initially, I was under the impression that this was about the Google Wallet®™ product, since, these sorts of services do support “offline” in-store purchases with NFC devices, but a CTRL+F for “wallet” reveals that I misinterpreted the first paragraph while skimming the article. This goes way deeper than just credit cards attached to NFC payment apps.
Google says its third-party partnerships capture roughly 70% of all credit and debit card transactions in the U.S.
Basically, if this is how the world works now, no one should ever use plastic to buy anything ever again.
there have been some articles here
Why are we even considering using a specific service for content hosting? I don’t see any benefit in using dropbox (or any similar service), especially not if it’s supposed to be the preferred option.
This looks quite interesting. Isn’t the way Query params are used as the Env a possible vector for maliciousness though, e.g. overwriting existing relied-upon environment variables. Perhaps this could be alleviated by prefixing the query string parameter names when loaded as the environment (e.g. HTTP_FOO instead of FOO).
This is quite similar to the
register_globals issue that PHP suffered for a long time with.
Yeah, this is pretty much just a simpler version of CGI. CGI uses QUERY_PARAMS to store the entire params. You make a good point though, can overload apps that are using something else. Although I’m not sure what you would gain since these are explicitly wired to webframework in config file.
Yeah, theoretically. but one of the assumptions Im using while running this for myself is that I’m not using pre-existing ENV vars in the executables I’m using. That can easily change tho, so thanks for bringing it up.
When you curl host:3000?FOO=bar it calls echo.sh with the FOO=bar environment variable.
curl host:3000?FOO=';rm -rf *'
$ a=';printf asdf' $ $a No command ';printf' found. $ ls $a ls: ;printf: No such file or directory ls: asdf: No such file or directory
I was using raw shell input previously so there was an actual attack vector. I changed the code to make it more secure
CGI is an actual standard. This is just a quick hack I threw together to serve stand alone executables.
Spend entire article shitting on Java. Then lists reasons why he likes Kotlin. #1 is “It works like Java”
mosh is amazing. I discovered after ~3 months of dropped ssh connections over a very poor internet connection. If only port forwarding was possible.
If someone wants to make some money: https://www.bountysource.com/issues/4471419-ssh-port-forwarding-doesn-t-work
Port forwarding is absolutely possible: Use ssh for it.
If you want a proper VPN that stands up to a lossy connection, use IPSEC with a dummy network.
mosh is secure remote desktop for terminals: Such a thing didn’t exist before mosh (or it wasn’t very good), but forwarding TCP is a solved problem.
I use syncthing for passwords too, but instead of keepass, I started using plain text files encrypted with encfs. I like keepass but for me personally, I like the flexibility of a plain text file.
To add to this, this thread actually inspired me to spend a few hours yak shaving my password management from “they’re in my brain” to “they’re encrypted in a git repo with the
pass tool.” It’s a bit of a different flavor than encrypting the entire file system, but it’s breathlessly simple and can be shared easily. i.e., My wife and I can collaborate on the same repo of passwords. There’s even an Android app! (And it works.)
I believe “Easyness” is missing. It is probably before or after Simplicity. I don’t know Pony.
The distinction by example: Lua is a simple language. Very few mechanisms (everything is a table). Python is not simple. There are lots of corner cases in the language. However, it is easy. Many people describe it as the language closest to Pseudocode.
I think easiness was part of simplicity. In the Richard Gabriel essay, the Worse is Better solution that favored simplicity might use an easy construct that sort of worked now but caused problems later. It should definitely be a measurement, though. One thing I’ll add that people overlook is your background and thinking style makes some things easy to you that aren’t to other people. People from mathematics background might grok functional programming while imperative programmers have a hard time with it. That was a common one with a general form, too: anything you are learning that’s really different from your main approach might be hard. If we follow that reasoning, we’d have tossed out both functional and OOP once imperative dominated the world.
So, we have to make sure we consider that when evaluating easy to learn/use. Easy to who and with what prior skills I’ll say.
People from mathematics background might grok functional programming while imperative programmers have a hard time with it.
Except the people who developed Fortran had a very strong mathematical background. Personally, I think the “mathematics” of e.g. Haskell is sloppy and poorly grounded. But each to their taste.
Except the people who developed Fortran had a very strong mathematical background.
You got me there. Excellent catch. It also helped that it was higher-level and closer to how mathematicians think than something like C. It had less dark corners in it that hurt optimization of numerical algorithms, too. No wonder it lasted in HPC with occasional updates.
They didn’t mention https://www.scuttlebutt.nz/ or zeronet
The sad thing is that only cryptogeeks (cypherpunks?) care about that.
Telegram tends to just work if you expect same level of trust/privacy than say public IRC.
Anything new here? This has been around awhile