![](https://programming.dev/pictrs/image/1e6fe574-1f0c-4c85-94e9-400dd9f858cf.png)
![](https://beehaw.org/pictrs/image/fed50129-04e7-4dbc-8f54-4ba5bae58370.png)
I played Mass Effect as female Shepard because i heard the voice acting was better. Generally for RPGs I play as “myself” though.
I played Mass Effect as female Shepard because i heard the voice acting was better. Generally for RPGs I play as “myself” though.
Ohhh good call. I saw ads on Facebook saying it was on sale and didn’t realize it was on Epic not Steam. Yeah, screw Epic.
Should I get RoboCop: Rogue City or Star Trek: Resurgence now while they’re on sale or wait to see if they go lower?
It’ll probably be 3-6 months before I get around to playing either
Only 8? Those are rookie numbers
JavaScript is a language that runs on a user’s computer, when they visit a web page. It is often used for dynamic functionality, ie when you click “like” on a comment… JavaScript running in your web browser will make a request to the server letting it know that you liked the post, then the server will respond with a total number of people who liked it or something.
But, the server needs to know how to authenticate which user liked the comment (so you can’t like it twice etc). There are various authentication mechanisms to do this, with their own trade-offs. Over all, there’s secret information that the browser and the server have to share with each other, and we don’t want that information being accessed by the wrong people.
There’s also a common problem with web apps called “cross site scripting”. Basically somebody might craft a cleverly formatted comment that exploits a bug in the web page and causes the attacker’s code to run. One trivial example might be if every time a person read a comment thread, the attackers code caused that person to “like” a request. A more serious exploit would be one that finds out that secret authentication information I mentioned and shares it with the attacker. They can then pose as the victim user and do anything they want as that person. This would be bad.
So, on to the different approaches and their tradeoffs.
Anyhow, one common solution here is to set very short expiration dates on those bearer tokens. That way if somebody steals it, they can’t use it for long.
Another strategy is to limit what each token can do. OP needs to make it so you can like a comment using one of those bearer tokens, but more dangerous actions like purchasing things, deleting content, etc, should be guarded by a more secure mechanism. Then the damage is mitigated if the bearer token leaks.
Only 20 tickets? Sounds pretty stable
Tiny house
I use a “real name” domain. My last name ends in the letters “in”, so I bought a .in
domain, such that the domain name is my last name with a dot in it.
Can’t honestly recommend that approach. It’s a cute gimmick, but when non-technical people ask for your email address and it doesn’t end in a TLD they recognize, their heads explode. I usually give out my gmail address.
All this concern over the guy who says “wahoo” and “it’s-a-me, Mario” is fascinating. Seriously it’s never been more than a few lines. Why is any of this such a big deal?
“I could rewrite this in a week!”
~ junior dev, 3 months ago
I almost gave up on Starfield because the main quest is just chasing MacGuffins around the universe, apparently? But I started doing the Ryujin Industries side quests and those are kinda fun I guess.
Is it the employer’s responsibility to determine that somebody is or is not a spy? Like the scam here was to do the actual job and send money back, not to steal company information etc. companies have legal obligations to make sure people are authorized to work in the US etc, but the government sets those standards. If you’ve got convincing enough paperwork, it’s the governments job to enforce this stuff, not the employer.
That said, I’ve interviewed several remote people who were clearly using fake identities and also clearly didn’t have the skills for the job. Seems obvious their scam was to just collect a paycheck doing nothing, so if that’s the same group, then the employers bear some fault for hiring unqualified people… but on the other hand if the North Koreans were actually doing the jobs they were paid for, no reason the company should care.
There any xenonauts communities on lemmy?
Later on when I want to look productive I’ll delete all those printfs then pay myself on the back for committing a lot of code changes that sprint and for reducing our log storage costs by 75%
Value watching is just printf; change my mind
Is gmail still considered beta?
I appreciate the quick hack, but with a little more foresight you could have just put up a blurry jpeg with that number and changed the prompt so it looks like a CAPTCHA. Nobody would have given it a second thought.
well, “Genesis does what Nintendo won’t do”, therefore Genesis must run Cyberpunk 2077 at 1080p 60fps.
Why can’t I play it on my Super Nintendo?
I tend to think people shit on Musk more than they should, but holy shit does it bug me when a CEO talks about engineering problems with such bravado.