On Thu, Apr 7, 2016 at 4:42 AM, Thomas 'PointedEars' Lahn
wrote:
> Chris Angelico wrote:
>
>> In other words, you are assuming that the string escaping *in the
>> module* is buggy. Well, duh. This is exactly what I said about not
>> having stupid bugs. The developer of a MySQL binding library shou
Chris Angelico wrote:
> In other words, you are assuming that the string escaping *in the
> module* is buggy. Well, duh. This is exactly what I said about not
> having stupid bugs. The developer of a MySQL binding library should
> know the *entire* rules for escaping, and, duh, that's going to
> i
On Sat, Mar 26, 2016 at 2:30 PM, Thomas 'PointedEars' Lahn
wrote:
> Since nothing indicates the used module and accessed DBMS (only that, if it
> is Python code, the module cannot be sqlite3 as that does not support “%s”),
> then this code can, if the module uses an escaping mechanism, still be
>
Chris Angelico wrote:
> On Sat, Mar 26, 2016 at 9:25 AM, Thomas 'PointedEars' Lahn
> wrote:
Attribution line, not attribution novel.
>> Chris Angelico wrote:
>>> On Sat, Mar 26, 2016 at 8:28 AM, Thomas 'PointedEars' Lahn
>>> wrote:
Then enlighten me, please: How is “parameterization” or a
On Sat, Mar 26, 2016 at 9:25 AM, Thomas 'PointedEars' Lahn
wrote:
> Chris Angelico wrote:
>
>> On Sat, Mar 26, 2016 at 8:28 AM, Thomas 'PointedEars' Lahn
>> wrote:
>>> Chris Angelico wrote:
[…] Thomas 'PointedEars' Lahn […] wrote:
> Chris Angelico wrote:
>> […] Thomas 'PointedEars' L
Chris Angelico wrote:
> On Sat, Mar 26, 2016 at 8:28 AM, Thomas 'PointedEars' Lahn
> wrote:
>> Chris Angelico wrote:
>>> […] Thomas 'PointedEars' Lahn […] wrote:
Chris Angelico wrote:
> […] Thomas 'PointedEars' Lahn […] wrote:
>> Daniel Wilcox wrote:
>>> Cool thanks, highly recom
On Sat, Mar 26, 2016 at 8:28 AM, Thomas 'PointedEars' Lahn
wrote:
> Chris Angelico wrote:
>
>> […] Thomas 'PointedEars' Lahn […] wrote:
>>> Chris Angelico wrote:
[…] Thomas 'PointedEars' Lahn […] wrote:
> Daniel Wilcox wrote:
>> Cool thanks, highly recommended to use an ORM to deter e
Chris Angelico wrote:
> […] Thomas 'PointedEars' Lahn […] wrote:
>> Chris Angelico wrote:
>>> […] Thomas 'PointedEars' Lahn […] wrote:
Daniel Wilcox wrote:
> Cool thanks, highly recommended to use an ORM to deter easy SQL
> injections.
That is to crack a nut with a sledgehammer.
>
>
> +list
>>
>>
> You will be far more welcome here if you intersperse your replies or
> bottom post. Top posting is very heavily frowned upon. Thanks.
noted.
lol
--
https://mail.python.org/mailman/listinfo/python-list
I dare say I'm with Rick on this point -- keep it up, go learn stuff, put
things together and see how they break -- I think it's the best way to get
feel for how things fit together and, somewhat inevitably, fall over (when
the conditions they were designed in no longer apply).
*quick glance at so
Daniel Wilcox wrote:
> Cool thanks, highly recommended to use an ORM to deter easy SQL
> injections.
That is to crack a nut with a sledgehammer. SQL injection can be easily and
more efficiently prevented with prepared statements. While an Object-
Relational Mapper (ORM) can use those, and the
On 15 March 2016 at 20:56, Vinicius Mesel wrote:
> Hey guys,
>
> I'm a 16 year old Python Programmer that wanted to do something different.
> But, like we know, ideas are quite difficult to find.
> So I decided to develop a URL Shortener to help the Python community out and
> share my coding know
On 17/03/2016 22:34, Daniel Wilcox wrote:
+list
You will be far more welcome here if you intersperse your replies or
bottom post. Top posting is very heavily frowned upon. Thanks.
--
My fellow Pythonistas, ask not what our language can do for you, ask
what you can do for our language.
Ma
On Thursday, March 17, 2016 at 1:28:05 PM UTC-5, Thomas 'PointedEars' Lahn
wrote:
> BTW and JFTR, this thread has gone *way* off topic.
Who cares? Python-list is not a "strictly moderated group". So long as the
discussion is informative, or heck, even entertaining, no crime has been
committed.
Hi Chris,
Thanks for giving me the tip to reply to everyone in the list.
So, I'll be implementing the anti-injection code in this next version that is
going to come out.
The SQL Schema is going to be shown in the README.md when it gets ready I'll
tell to you.
Thanks for getting involved with t
Please use reply-all in the future so that the list sees your message.
On 17 March 2016 at 11:38, Vinicius wrote:
> Thanks for replying Chris,
>
> Enviado do meu iPad
>
>> Em 16 de mar de 2016, às 1:18 PM, Chris Warrick
>> escreveu:
>>
>>> On 15 March 2016 at 20:56, Vinicius Mesel wrote:
>>> H
+list
Cool thanks, highly recommended to use an ORM to deter easy SQL
injections. I heard django mentioned I'd vouch for that. BTW you can get
a free (like actually free--don't get me started) certificate for your
server from letsencrypt.org. I noticed you weren't using HTTPS.
Django would als
On Sun, Mar 20, 2016 at 1:00 AM, Thomas 'PointedEars' Lahn
wrote:
> Chris Angelico wrote:
>
>> On Fri, Mar 18, 2016 at 10:17 AM, Thomas 'PointedEars' Lahn
>> wrote:
>>> Daniel Wilcox wrote:
Cool thanks, highly recommended to use an ORM to deter easy SQL
injections.
>>>
>>> That is to cr
Chris Angelico wrote:
> On Fri, Mar 18, 2016 at 10:17 AM, Thomas 'PointedEars' Lahn
> wrote:
>> Daniel Wilcox wrote:
>>> Cool thanks, highly recommended to use an ORM to deter easy SQL
>>> injections.
>>
>> That is to crack a nut with a sledgehammer. SQL injection can be easily
>> and more effic
Chris Angelico wrote:
> In some cases, the correct solution would be a short URL at a domain
> that the provider controls. But that's no different from running your
> own shortener service - it still has the extra indirection and
> consequent risks. So for a lot of people, a public shortener is ju
Rick Johnson wrote:
> On Thursday, March 17, 2016 at 4:15:37 PM UTC-5, Thomas 'PointedEars' Lahn
> wrote:
>> Get a life, *please*.
>
> Well, you see *Thomas*, the problem is, this *IS* my life! I couldn't
> remove myself from this life anymore than you could apply a Bézier curve
> to your upper a
On Fri, Mar 18, 2016 at 10:17 AM, Thomas 'PointedEars' Lahn
wrote:
> Daniel Wilcox wrote:
>
>> Cool thanks, highly recommended to use an ORM to deter easy SQL
>> injections.
>
> That is to crack a nut with a sledgehammer. SQL injection can be easily and
> more efficiently prevented with prepared
Rick Johnson wrote:
> On Thursday, March 17, 2016 at 1:28:05 PM UTC-5, Thomas 'PointedEars' Lahn
> wrote:
>
>> BTW and JFTR, this thread has gone *way* off topic.
> Who cares? Python-list is not a "strictly moderated group". [rant]
Get a life, *please*.
--
PointedEars
Twitter
On Thu, 17 Mar 2016 23:08:24 +1100, Chris Angelico wrote:
> So you would need to come up with a system that's distributed (such
> that one computer's inaccessibility doesn't bring everything down) and
> permanent (keep on circulating that information!). It could be a
> rather fun problem to tackle
=D
On Wed, Mar 16, 2016 at 11:16 AM, Rick Johnson wrote:
> On Wednesday, March 16, 2016 at 7:02:16 AM UTC-5, Daniel Wilcox wrote:
> > I dare say I'm with Rick on this point[...]
>
> Contrary to "pseudo popular belief", it's perfectly okay to
> agree with Rick (from time to time). Hey, even a sto
On Thursday, March 17, 2016 at 4:15:37 PM UTC-5, Thomas 'PointedEars' Lahn
wrote:
> Get a life, *please*.
Well, you see *Thomas*, the problem is, this *IS* my life! I couldn't remove
myself from this life anymore than you could apply a Bézier curve to your upper
auricles -- we just wouldn't b
(Bouncing back to the list)
On Thu, Mar 17, 2016 at 10:32 PM, Vinicius wrote:
> Sorry for my bad English guys.
Your English is fine. Don't stress about it. :)
>> Em 15 de mar de 2016, às 9:34 PM, Chris Angelico escreveu:
>>
>>> On Wed, Mar 16, 2016 at 11:31 AM, Erik wrote:
>>>
I often li
On Wednesday, March 16, 2016 at 7:02:16 AM UTC-5, Daniel Wilcox wrote:
> I dare say I'm with Rick on this point[...]
Contrary to "pseudo popular belief", it's perfectly okay to
agree with Rick (from time to time). Hey, even a stopped
clock is correct twice a day!
--
https://mail.python.org/mailma
On Wednesday 16 March 2016 10:38, Thomas 'PointedEars' Lahn wrote:
> Chris Angelico wrote:
>
>> On Wed, Mar 16, 2016 at 9:53 AM, Thomas 'PointedEars' Lahn
>> wrote:
>
> Attribution *line*, not attribution novel.
Chris' attribution is about 75,000 words short of even a small novel.
And it woul
On Wed, Mar 16, 2016 at 3:27 PM, Gregory Ewing
wrote:
> Chris Angelico wrote:
>>
>> There are many places where there are limits (hard or soft) on message
>> lengths. Some of us still use MUDs and 80-character line limits.
>> Business cards or other printed media need to be transcribed by hand.
>>
Chris Angelico wrote:
There are many places where there are limits (hard or soft) on message
lengths. Some of us still use MUDs and 80-character line limits.
Business cards or other printed media need to be transcribed by hand.
Dictation of URLs becomes virtually impossible when they're
arbitrari
On Tuesday, March 15, 2016 at 7:23:12 PM UTC-5, Thomas 'PointedEars' Lahn wrote:
(Note: i had to rearrange your paragraph to accommodate a more
intuitive response. I apologize for this, but i'm confident
i was able to maintain your original intent)
> You are giving bad advice to a junior develope
On Tuesday 15 March 2016 22:46:44 Thomas 'PointedEars' Lahn wrote:
> Gene Heskett wrote:
> > On Tuesday 15 March 2016 19:55:52 Chris Angelico wrote:
> >> On Wed, Mar 16, 2016 at 10:38 AM, Thomas 'PointedEars' Lahn
> >>
> >> > And as for second-level domains, consider for example “t.c”
> >> > inste
Gene Heskett wrote:
> On Tuesday 15 March 2016 19:55:52 Chris Angelico wrote:
>> On Wed, Mar 16, 2016 at 10:38 AM, Thomas 'PointedEars' Lahn
>> > And as for second-level domains, consider for example “t.c” instead
>> > of “twitter.com” as part of the short URI.
>> That'll work only for the ones th
On Tuesday 15 March 2016 19:55:52 Chris Angelico wrote:
> On Wed, Mar 16, 2016 at 10:38 AM, Thomas 'PointedEars' Lahn
>
> wrote:
> > Chris Angelico wrote:
> >> On Wed, Mar 16, 2016 at 9:53 AM, Thomas 'PointedEars' Lahn
> >>
> >> wrote:
> >>> […] I cannot be sure because I have not thought this t
Chris Angelico wrote:
> On Wed, Mar 16, 2016 at 10:38 AM, Thomas 'PointedEars' Lahn
> wrote:
>> Chris Angelico wrote:
>>> On Wed, Mar 16, 2016 at 9:53 AM, Thomas 'PointedEars' Lahn
>>> wrote:
[…] I cannot be sure because I have not thought this through, but with
>>
On Wed, Mar 16, 2016 at 11:31 AM, Erik wrote:
>
>> I often like to make a small
>> change when I reimplement, though - something that I thought was
>> ill-designed in the original,
>
>
> OK, so maybe the idea for Vinicius (if he's still reading) to pursue is that
> it should be something that can
Hi Chris,
On 15/03/16 23:48, Chris Angelico wrote:
I agree, it's a risk. Any indirection adds that. So the benefit has to
be weighed against this inherent cost.
True, so it's not URL shorteners that I disagree with on principle, it's
the _inappropriate_ use of URL shorteners ;) If one uses th
Rick Johnson wrote:
> On Tuesday, March 15, 2016 at 5:54:46 PM UTC-5, Thomas 'PointedEars' Lahn
> wrote:
>> Vinicius Mesel wrote:
>> > I'm a 16 year old Python Programmer that wanted to do
>> > something different. But, like we know, ideas are quite
>> > difficult to find. So I decided to develop
On Wed, Mar 16, 2016 at 10:38 AM, Thomas 'PointedEars' Lahn
wrote:
> Chris Angelico wrote:
>
>> On Wed, Mar 16, 2016 at 9:53 AM, Thomas 'PointedEars' Lahn
>> wrote:
>
>>> […] I cannot be sure because I have not thought this through, but with
> ^
On Wed, Mar 16, 2016 at 10:40 AM, Erik wrote:
> Hi Chris,
>
> On 15/03/16 23:16, Chris Angelico wrote:
>>
>> So URL shorteners are invaluable tools.
>
>
> Perhaps, and in the specific - transient - use-cases you describe that's
> fine. The problem I have with them is that they are a level of indir
Hi Chris,
On 15/03/16 23:16, Chris Angelico wrote:
So URL shorteners are invaluable tools.
Perhaps, and in the specific - transient - use-cases you describe that's
fine. The problem I have with them is that they are a level of
indirection controlled by a third party. If the source (let's say
Chris Angelico wrote:
> On Wed, Mar 16, 2016 at 9:53 AM, Thomas 'PointedEars' Lahn
> wrote:
Attribution *line*, _not_ attribution novel.
>> […] I cannot be sure because I have not thought this through, but with
^^^
>> aliases for commo
On Tuesday, March 15, 2016 at 5:54:46 PM UTC-5, Thomas 'PointedEars' Lahn wrote:
> Vinicius Mesel wrote:
> > I'm a 16 year old Python Programmer that wanted to do
> > something different. But, like we know, ideas are quite
> > difficult to find. So I decided to develop a URL
> > Shortener to help t
On Wed, Mar 16, 2016 at 9:53 AM, Thomas 'PointedEars' Lahn
wrote:
> Vinicius Mesel wrote:
>
>> I'm a 16 year old Python Programmer that wanted to do something different.
>> But, like we know, ideas are quite difficult to find.
>> So I decided to develop a URL Shortener to help the Python community
On 15/03/16 22:53, Thomas 'PointedEars' Lahn wrote:
A few
less bytes there do not count.
You mean "Fewer bytes there do not count".
E.
(But on the whole, yes, I do agree with your position in this instance.
Kudos to Vinicius for doing something productive with his time though -
I'm sure a lo
Vinicius Mesel wrote:
> I'm a 16 year old Python Programmer that wanted to do something different.
> But, like we know, ideas are quite difficult to find.
> So I decided to develop a URL Shortener to help the Python community out
> and share my coding knowledge, and today the project was launched
Hey guys,
I'm a 16 year old Python Programmer that wanted to do something different.
But, like we know, ideas are quite difficult to find.
So I decided to develop a URL Shortener to help the Python community out and
share my coding knowledge, and today the project was launched with its first
sta
48 matches
Mail list logo
