When you think about it software development is a relatively young profession compared to medicine, law, construction, public services, the arts, and so on. This is why modern tech kind of sucks despite being so cool, I say we are in the “Hey maybe we shouldn’t build our huts right on the river” phase of writing code, still figuring out problems that will appear mind numbingly simple in the future.
Another issue is the fact that tech builds on itself and its flaws can be painted over with abstractions, while the aforementioned professions can’t get away with being subpar for too long. So the full metaphor really is after the river floods we build on top of the ruins and claim victory because we are slightly more elevated and will take less damage during the next flood.
The secret to better tech is rebuilding everything from scratch. The internet wasn’t designed with security and bad actors in mind. Plenty of corporations are running a Frankenstein system that contains code older than most millennials, botched modernization efforts, buzzword laden over-engineered applications, and bugs that aren’t features just permanent residents in your code base.
…But there is profiteering to contend with, good code takes time, time is money, good code is expensive. “Good enough” code is easy to write, so its better for the bottom line.
In the end it really is…
Developer: “Hey the river flooded and our huts were demolished, we should move to higher ground and build there”
Corporate Leadership: “No that is too expensive, just build on the ruins and next flood we should be safer, oh also you’re laid off”
I know you didn’t ask for this, but its been on my mind for a while and I felt like this was a good time to get this out of my head haha
The secret to better tech is rebuilding everything from scratch. The internet wasn’t designed with security and bad actors in mind. Plenty of corporations are running a Frankenstein system that contains code older than most millennials, botched modernization efforts, buzzword laden over-engineered applications, and bugs that aren’t features just permanent residents in your code base.
Rebuilding everything from scratch will take ages and cost everyone a lot of money, because you have to replace all your hardware (router boxes, PC s, phones, smart watches, …), because the internet protocols are often designed into the hardware itself, and changing them fundamentally means a lot of trash. Also there is no system that guarantees that the result will have fewer issues or will not required to be succeeded by something else a couple of minutes later, because some new issue was discovered.
Also software is highly complex and need to adapt to many different scenarios, while maintaining compatibility to each other, which the other disciplines of human engineering don’t have to deal with as much, they are much more purpose driven.
It is like trying to create a universal building code (for building houses) that simultaneously works on every country on earth, hell, maybe even on multiple planets, with wildly different and constantly changing environments and is guaranteed to result in save houses. Not really possible in one shot, only possible by constantly trying to adapt. That is what software has to deal with. I am talking about fundamental software like the Linux kernel here, for example.
Enough with this American take, electronic voting works fine in Brazil, only right wingers complain about it, and the American ones also complained about their paper votes when they lose.
What does the Brazilian electronic voting system do that allows you to trust it? I’m not trying to bait or anything I know nothing about it and want to be informed.
Luckily in many European countries it is not used.
I would credit institutions like the chaos computer club and other non-profits, which where instrumental in convincing the government about the dangers. It was a difficult battle against the corporate lobbyists, and is understandable that other countries could not fight against the corporate interests or corruption and succumb to use them.
There where and still are so many issues with them, one of the most fundamental is described by Ken Thompson in his Reflections on trusting trust, which is especially effective for electronic voting machines, where no other way of verification is possible.
Huston or whereever you are, you have problem. I live on other side of the pond. More specifically in certain biggest country, where Ella Pamfilova can pull out any number she wants from remote electronic voting.
electronic voting works fine in Brazil
It works here as intended too. Wins elections for Putin’s mafia.
only right wingers complain about it
4chanland, you have another problem. Putin is right wing. And he is super happy about it.
and the American ones also complained about their paper votes when they lose.
I don’t know what Americans complain about when they loose.
Yes, github arctic code vault. It seems some people just don’t get it.
Qr codes can be great but they obviously need to interact somehow (not directly I hope) with a real database.
I mean QR codes as a mean of storing lots of data on paper, in a way that does not require humam or OCR for computer to read. Basically as a joke about paper databases.
It’s like non-security tech savvy people embracing IoT devices throughout their homes - smart bulbs, smart toasters, etc - fucking disaster waiting to happen.
Keeping stuff offline with paper and floppies is exceptional SecOps. It’s obviously more work, and ease-of-use is degraded, but if we ever see real cyber warfare, having stuff on paper and/or airgapped storage is the best one can hope for
I’d argue using cash, paper, floppies is fucking advanced and the right move.
Source - I work on tech
Mini Rant:
When you think about it software development is a relatively young profession compared to medicine, law, construction, public services, the arts, and so on. This is why modern tech kind of sucks despite being so cool, I say we are in the “Hey maybe we shouldn’t build our huts right on the river” phase of writing code, still figuring out problems that will appear mind numbingly simple in the future.
Another issue is the fact that tech builds on itself and its flaws can be painted over with abstractions, while the aforementioned professions can’t get away with being subpar for too long. So the full metaphor really is after the river floods we build on top of the ruins and claim victory because we are slightly more elevated and will take less damage during the next flood.
The secret to better tech is rebuilding everything from scratch. The internet wasn’t designed with security and bad actors in mind. Plenty of corporations are running a Frankenstein system that contains code older than most millennials, botched modernization efforts, buzzword laden over-engineered applications, and bugs that aren’t features just permanent residents in your code base.
…But there is profiteering to contend with, good code takes time, time is money, good code is expensive. “Good enough” code is easy to write, so its better for the bottom line.
In the end it really is…
Developer: “Hey the river flooded and our huts were demolished, we should move to higher ground and build there”
Corporate Leadership: “No that is too expensive, just build on the ruins and next flood we should be safer, oh also you’re laid off”
I know you didn’t ask for this, but its been on my mind for a while and I felt like this was a good time to get this out of my head haha
Rebuilding everything from scratch will take ages and cost everyone a lot of money, because you have to replace all your hardware (router boxes, PC s, phones, smart watches, …), because the internet protocols are often designed into the hardware itself, and changing them fundamentally means a lot of trash. Also there is no system that guarantees that the result will have fewer issues or will not required to be succeeded by something else a couple of minutes later, because some new issue was discovered.
Also software is highly complex and need to adapt to many different scenarios, while maintaining compatibility to each other, which the other disciplines of human engineering don’t have to deal with as much, they are much more purpose driven.
It is like trying to create a universal building code (for building houses) that simultaneously works on every country on earth, hell, maybe even on multiple planets, with wildly different and constantly changing environments and is guaranteed to result in save houses. Not really possible in one shot, only possible by constantly trying to adapt. That is what software has to deal with. I am talking about fundamental software like the Linux kernel here, for example.
You cannot just start over and be better.
Enough with this American take, electronic voting works fine in Brazil, only right wingers complain about it, and the American ones also complained about their paper votes when they lose.
What does the Brazilian electronic voting system do that allows you to trust it? I’m not trying to bait or anything I know nothing about it and want to be informed.
Luckily in many European countries it is not used.
I would credit institutions like the chaos computer club and other non-profits, which where instrumental in convincing the government about the dangers. It was a difficult battle against the corporate lobbyists, and is understandable that other countries could not fight against the corporate interests or corruption and succumb to use them.
There where and still are so many issues with them, one of the most fundamental is described by Ken Thompson in his Reflections on trusting trust, which is especially effective for electronic voting machines, where no other way of verification is possible.
Huston or whereever you are, you have problem. I live on other side of the pond. More specifically in certain biggest country, where Ella Pamfilova can pull out any number she wants from remote electronic voting.
It works here as intended too. Wins elections for Putin’s mafia.
4chanland, you have another problem. Putin is right wing. And he is super happy about it.
I don’t know what Americans complain about when they loose.
Wait…wasn’t that a movie too?
I would love if we kept the floppy form factor but with SSD flash on the inside.
I loved the solid feeling of disks and that “kachunk” of the drives.
They were also easy to label!
Paper databases are a terrible system
Github uses black-and-white film. Depends. You can print qr codes or some other crazy encoding scheme.
Do you know the difference between warehouse inventory management and a database?
You didn’t say you wanted database for warehouse inventory managment. In that case paper only useful for storing append-only logs or taking snapshots.
You are probably talking about the arctic vault.
They use film for extreme archival purposes that are not representative of anything normal.
Qr codes can be great but they obviously need to interact somehow (not directly I hope) with a real database.
Yes, github arctic code vault. It seems some people just don’t get it.
I mean QR codes as a mean of storing lots of data on paper, in a way that does not require humam or OCR for computer to read. Basically as a joke about paper databases.
How exactly is a floppy more advanced and the right move? Or fucking paper and photocopiers,/printers.
It’s like non-security tech savvy people embracing IoT devices throughout their homes - smart bulbs, smart toasters, etc - fucking disaster waiting to happen.
Keeping stuff offline with paper and floppies is exceptional SecOps. It’s obviously more work, and ease-of-use is degraded, but if we ever see real cyber warfare, having stuff on paper and/or airgapped storage is the best one can hope for
If you look a floppy disk from a weird angle, it will get a bad sector
Ahh yes, floppy disks, where if you breathe on it, you just corrupted 1.44 megabytes of data.