• 0 Posts
  • 23 Comments
Joined 1 year ago
Cake day: October 13th, 2023
  • Atlas_@lemmy.worldtoProgramming@programming.devSelf-documenting Code
    11·
    25 days ago

    In addition to the excellent points made by steventhedev and koper:

    user.password = await hashPassword(user.password);

    Just this one line of code alone is wrong.

    1. It’s unclear, but quite likely that the type has changed here. Even in a duck typed language this is hard to manage and often leads to bugs.
    2. Even without a type change, you shouldn’t reuse an object member like this. Dramatically better to have password and hashed_password so that they never get mixed up. If you don’t want the raw password available after this point, zero it out or delete it.
    3. All of these style considerations apply 4x as strongly when it’s a piece of code that’s important to the security of your service, which obviously hashing passwords is.
  • Atlas_@lemmy.worldtomemes@lemmy.worldI could see benefits and drawbacks
    25·
    6 months ago

    Yes, but also some of polyamory is that not every relationship has to be “we cohabit and have kids and can deal with every single little quietly annoying thing the other does”. Some relationships are focused on sex. Some are focused on breaking into aquariums together. Some are with people across the country and even though you are close it doesn’t make sense to get together more than once a year. Although polyamorous relationships can look like monogamy*2, part of the point is that more focused, smaller relationships can also be romantic.

  • Atlas_@lemmy.worldtoTechnology@lemmy.worldNo more Pornhub? That will depend on what happens with a Senate billEnglish
    10·
    9 months ago

    I don’t trust them first off, but even trusting them to not voluntarily disclose it doesn’t mean they won’t have a security breach and disclose it involuntarily. Also, the database has to be created and queried somehow; some employees and govt workers will be able to see what queries are made. Even trusting the business and the govt and the security of both, I don’t trust those random people having access to that info.

    What evidence do you have to give the website that you are person X that they’re running the database query against? If that’s an ID there’s going to be some available online, or a kid can just sneak it from the parent. Everything I’ve heard proposed for the identification strategy is either grossly invasive or quite easy to step over.

    I don’t believe that Canada will actually enforce this across all websites. If they do it on only the large/main ones, it makes it harder for kids to access the relatively safe and legal porn hosted on sites making effort to follow the law, and pushes them towards sites that aren’t making such an effort and therefore probably have more objectionable content.

  • Atlas_@lemmy.worldtoAsk Lemmy@lemmy.worldWhat's some amazing technology they have in Japan that's very normal to them but would blow our minds here in the US and western world?
    101·
    10 months ago

    Takkyubin.

    If you have a large suitcase or other parcel it may be unwieldy to walk around Tokyo or another city with it. Subways only allow one suitcase of a certain size, so you might have to take a much more expensive taxi.

    Instead you can go to a desk at the airport and have your luggage delivered same day or next day to ~any hotel, subway station, or convenience store. It will be insured and kept safe for you there to pick up. And at the end of your trip, you can send it back. The price for this convenience? Around $10.

    This is not only a good demonstration of Japanese trust and customer service, it’s also a legitimately hard logistics problem. I daresay that such a business could not succeed in the US both because of our defensiveness and sprawling cities.