Readit News logoReadit News
Sahhaese commented on Yoda conditions   en.wikipedia.org/wiki/Yod... · Posted by u/tosh
beatgammit · 7 years ago
I think this is reasonable readable:

    while ((status = systemcall(...)) != SUCCESS) {
        do something with status;
    }
Leave a comment there explaining the assignment.

Likewise:

    if ((status = systemcall(...)) != SUCCESS) goto error;
Or something like that. I don't understand the hate, just make sure it's obvious what you're doing.

Sahhaese · 7 years ago
This would achieve the same but is far more readable:

   while(status != SUCCESS) {
      status = syscall(...);
      // do something with status
   }

Sahhaese commented on The Horror of Microsoft Teams   medium.com/@joshuamkite/t... · Posted by u/rekoros
throwaway_391 · 7 years ago
Renaming executables to explorer.exe worked with the application whitelisting solution my school implemented.

That's how we ended up with 8-player age of empires 2 deathmatches after hours ;)

Sahhaese · 7 years ago
That brings me back. All .exe were blocked.

However it turned out that you could rename them .bat or .cmd and they would execute just fine.

I think Doom 2 multiplayer was extra fun because of the added need to be aware not just of in-game enemies but also the need to be aware of the teacher and be ready to instantly quit at any moment.

Sahhaese commented on Steam Windows Client Local Privilege Escalation 0day   amonitoring.ru/article/st... · Posted by u/codedokode
AnIdiotOnTheNet · 7 years ago
You could do that without steam just by clicking through the UAC prompt.
Sahhaese · 7 years ago
You can't click through a UAC prompt to elevate if you don't have local administrator rights.
Sahhaese commented on Katy Perry's Dark Horse Lawsuit Makes Waves in Music Industry   cbc.ca/news/entertainment... · Posted by u/aaronarduino
redm · 7 years ago
This reminds me of Under Pressure and Ice Ice Baby, the latter also having to pay up.
Sahhaese · 7 years ago
It's nothing like that because in that case, the latter directly sampled the former.
Sahhaese commented on Unusual, evidence-based ways to get better at a new language   digest.bps.org.uk/2019/07... · Posted by u/EndXA
lostlogin · 7 years ago
I’m not one of the down voters, but it’s likely because adding that word doesn’t really add anything - foreign can mean that something is strange or unfamiliar.
Sahhaese · 7 years ago
"Foreign language" is well understood as a concept and is used in the opening sentence. See https://en.wikipedia.org/wiki/Foreign_language . Arguing otherwise is just arguing for the sake of it.
Sahhaese commented on Steam Windows Client Local Privilege Escalation 0day   amonitoring.ru/article/st... · Posted by u/codedokode
marcinzm · 7 years ago
>Moreover, they didn't want me to disclose the vulnerability. At the same time, there was not even a single word from Valve. No, guys, that's not how it works. You didn’t respect my work, and that's the reason why I won’t respect yours — I see no reason why I shouldn't publish this report. Most likely I’ll be banned at H1 because of it, but it won't make me upset.

This seems pretty scammy of HackerOne and does nothing but hurt security. Either something is an issue and should be paid for, or it's not an issue and disclosure is fine. They're trying to have it both ways and trying to strong arm researchers into keeping quiet.

Sahhaese · 7 years ago
I've mentioned before how disappointed I've been to watch hackerone move from a platform helping responsible disclosure to a platform helping companies hide vulnerabilities.

It used to be that even accepted bugs and paid bounties would be publically disclosed. It helped me learn a ton just from reading the (partially redacted) bug reports. Over time they became more and more redacted until they were left entirely pointless.

To mark a bug as N/A, declare it 'not fix' but then say also it can't be disclosed is precisely why responsible disclosure is a thing. Companies can't have their cake and eat it.

Sahhaese commented on Unusual, evidence-based ways to get better at a new language   digest.bps.org.uk/2019/07... · Posted by u/EndXA
umvi · 7 years ago
Someone should edit the title to say "... at a new foreign language"
Sahhaese · 7 years ago
I'm not sure why your comments are attracting downvotes; from the title I assumed programming language.
Sahhaese commented on Cybersecurity Visuals Challenge   openideo.com/challenge-br... · Posted by u/baud147258
Sahhaese · 7 years ago
I don't have anything to contribute to the challenge but this is very much needed and I hope this challenge produces a richer visual language.

Here's the BBC's "cyber attacks" page: https://www.bbc.co.uk/news/topics/cp3mvpdp1r2t/cyber-attacks

Predictably the very first picture is a guy in a hoodie. In all the stories they clearly struggle for images. They picture instead the targets or in some cases resort to people holding laptops or phones or this garbage: https://www.bbc.co.uk/news/uk-england-essex-48351510

Sahhaese commented on Implement mechanism to wait on any of several futexes   lkml.org/lkml/2019/7/30/1... · Posted by u/yankcrime
cesarb · 7 years ago
> The technical review wasn't technical. [...] The technical content was entirely found in the comment about ABI compatiblity.

That review also had a comment about an implicit limit on the number of objects, which is caused by a limit on the amount of physically contiguous memory the kernel memory allocator can obtain at once, and a comment that the code being reviewed would allow for a large increase of the reference count of a couple of important structures. Both appear to be very technical comments to me.

Sahhaese · 7 years ago
This is my complaint about the styling issue, that the important technical notes get lost in the 'noise' of styling issues.
Sahhaese commented on Implement mechanism to wait on any of several futexes   lkml.org/lkml/2019/7/30/1... · Posted by u/yankcrime
robin_reala · 7 years ago
The specific proposal (linked to from the article) is https://lkml.org/lkml/2019/7/30/1399
Sahhaese · 7 years ago
Depressing to see reviewers waste review bandwidth bringing up issues such as "wasted newline" and "incorrect comment format". Do kernel developers not use auto-formatters?
S

u/Sahhaese

KarmaCake day782November 27, 2018View Original