Living in a state of accord.
I'm Adrian Sutton, otherwise known as AJ.
I'm the CTO at Ephox, coming to grips with what that means and how to do it. I've recently moved over to the UK to help increase Ephox's presence in Europe. You can follow my travel stories at "The Suttons".
In my spare time I'm busy exploring the sights of the UK and Europe.
Contact:
adrian@symphonious.net
+44 7 525 806 170
+1 (650) 292 9659 x717
More Ephox Blogs
You are currently browsing the Symphonious weblog archives for the day Wednesday, July 14th, 2004.
July 14th, 2004
This is pretty scary. Read it, contemplate it and remember it when you next come to vote.
UPDATE: It would help to format the HTML correctly on the link so that browsers actually pay attention to it…. Sorry about that and that’s to the anonymous commenter that pointed out the problem.
July 14th, 2004
John O’Conner raises a good point - Opensource projects tend to have poor documentation. Java tends to have good documentation (IMO, the best documentation I’ve seen for a programming library). Will Opensourcing Java reduce the quality of it’s documentation?
The obvious response is that Sun and IBM etc will still be investing so their doc writers can continue writing the documentation just like now. Except that most of the documentation for Java is written by the same people who write the actual code within Sun - at least that’s the impression I get. If people outside of Sun are writing code it would be up to them to document it - how well would that be kept up if there was no performance review checking up on them?
July 14th, 2004
Once again the Mac world has led the way in pioneering new technology - this time in an area that they are traditionally criticized for the lack of software options: security exploits. Close on the heals of the Safari URL exploits, Mozilla caught up with a shell: exploit and now at long last Microsoft catches up. (Okay it was a few days ago, but that was when I started writing this entry.)
My favorite comment from the slashdot thread would have to be:
… what gets patched in the open source world gets exploited further in the proprietary world. MS should probably pay more attention to projects like Mozilla… it might save them a lot of time and effort in the long run.
Such wisdom! Such good council! Such arrogance! Such blindness. Perhaps if Mozilla had been paying attention to projects like Mac OS X it might save them a lot of time and effort in the long run.
This leads into why you should take time to correctly implement fixes for problems instead of rushing out a patch as fast as possible. When you find one security issue, there’s likely to be others that are similar to it, so you should review your code and design decisions to make sure that you fix them all at once instead of just the ones that have been discovered so far. It’s all very well to ship a patch quickly but it’s pointless if you have to continue running around putting out very similar spot fires instead of taking more time and putting out the source of the fire.