9
wxWidgets 3.2.5 Released
(www.wxwidgets.org)
Here’s the sauce
I don't buy it. Unauthorized access attempts are a constant on the internet in general, and in AWS endpoints in particular. When anyone exposes an endpoint, it's a matter of minutes until it starts to get prodded by security scanners. I worked on a project where it's endpoints were routinely targeted by random people running FLOSS security scanners resulting in thousands of requests that were blocked either by rate-limiting or bad/lack of credentials. I don't believe that a single invoice of $1k would trigger such a sudden and massive change of heart, when accidental costs in AWS easily reach orders of magnitude above that price tag.
This seems like something they just never concidered until a really big client that was getting hammered told them they can stick the bill.
Yes, this indeed screams "Cloudflare does not pull this sort of shit", and now they are spinning this as something they do out of kindness.
You'd be missing the whole point too if you think that the pointer is the root cause. The problem is that the class is not designed to be copy-able, let alone moveable. Your suggestion to use a unique_ptr will also blow up in your face the moment you try to copy an instance.
Naked pointers are just too stupid for modern C++ ;)
Anyone who works on real-world production software written in C++ knows for a fact that pointers are a reality.
Also, there are plenty of frameworks who employ their own memory management frameworks, and raw pointers are perfectly fine in that context. For example, Qt uses raw pointers extensively because It's object system implements an object ownership system where each object can have child and parents, and you can simply invoke deleteLater() to free the whole dependency tree when you no longer need it.
Simply taking std::string by value (as it is a memory management class created for that explicit purpose) would have solved the problem without kneecapping every class you make.
I think you are missing the whole point.
The blogger tried to make a point about how special member functions can be tricky to get right if you don't master them. In this case, the blogger even presents a concrete example of how the rule of 3/rule of 5 would fail to catch this issue. As the blogger was relying on the implicit special member functions to manage the life cycle of CheeseShop::clerkName and was oblivious to the possibility of copying values around, this resulted in the double free.
You can argue that you wouldn't have a problem if the string was used instead of a pointer to string, which is a point that the blogger indirectly does, but that would mean you'd be missing the root cause and missing the bigger picture, as you'd be trusting things to work by coincidence instead of actually knowing how they work.
The blogger also does a piss-poor job in advocating to explicitly delete move constructors, as that suggests he learned nothing from the ordeal. A preferable lesson would be to a) not use raw pointers and instead try to adopt a smart pointer with the relevant semantics, b) actually provide custom implementations for copy/move constructors/assignment operators whenever doing anything non-trivial to manage resources, such as handling raw pointers and needing to both copy them and free them whenever they stop being used.
Any style guide is better than no style guide. Until a better option is presented, something is better than nothing.
Boy, that joke. How low can you go.
Eduards Sizovs, the DevTernity organizer accused of making up fake female speakers, felt it was the right PR move to post this message on Twitter:
https://twitter.com/eduardsi/status/1728447955122921745
So I've been called out (and canceled?) by listing a person on my conference's website (who never actually made it to the final program). JUST A RANDOM PERSON ON THE CONFERENCE WEBSITE canceled all the good work I've been doing for 15+ years. All focus on that.
I said it was a mistake, a bug that turned out to be a feature. I even fixed that on my website! We're cool? Nooooo, we want blood! Let's cancel this SINNER!
The amount of hate and lynching I keep receiving is as if I would have scammed or killed someone. But I won't defend myself because I don't feel guilty. I did nothing terrible that I need to apologize for. The conference has always delivered on its promise. It's an awesome, inclusive, event. And yes, I like Uncle Bob's talks. They're damn good.
When the mob comes for you, you're alone. So, let it be. I'll keep doing a great conference. With all speakers, half the speakers, or I'll be speaking alone on all tracks and lose my voice. But the event will be a blast. Like always. I'll die while doing great work. But the mob won't kill me.
I don't think that tone-deaf is the right word for this.
From the article:
"To spell it out why this conference generated fake women speakers," Orosz alleges, it was "because the organizer wants big names and it probably seemed like an easy way to address their diversity concerns. Incredibly lazy."
How hard is it for these organizers to actually reach out to women developers and extend an invite to talk about any topic they are interested in? In the very least, there are tons of high-profile bloggers who are vocal about things and stuff. Even though women are severely outnumbered, you almost need to go way out of your way to avoid actually extending an invite to a woman in the field.
A few years ago I was in a hiring loop where four interviewers grilled me on a number of subjects, including algorithms and data structures. They asked me all sorts of trivia questions on assimptotic complexity of this and that algorithm, how to implement this and that, how to traverse stuff, etc. As luck would have it, I was hired. I spent a few years working for that company and not a single time did I ever implemented a data structure at all or wrote any sort of iterator. Not once.
I did spend months writing stuff in an internal wiki.
I can't help but feel that those bullshit leetcode data structures computational complexity trivia are just a convoluted form of ladder-pulling.
view more: next ›