• Log InLog In
  • Register
Liquid`
Team Liquid Liquipedia
EDT 05:03
CEST 11:03
KST 18:03
  • Home
  • Forum
  • Calendar
  • Streams
  • Liquipedia
  • Features
  • Store
  • EPT
  • TL+
  • StarCraft 2
  • Brood War
  • Smash
  • Heroes
  • Counter-Strike
  • Overwatch
  • Liquibet
  • Fantasy StarCraft
  • TLPD
  • StarCraft 2
  • Brood War
  • Blogs
Forum Sidebar
Events/Features
News
Featured News
Serral wins Maestros of the Game 226ByuL, and the Limitations of Standard Play3Team Liquid Map Contest #22: Results and Winners7Code S Season 2 (2026): RO4 and Finals Preview12TL.net Map Contest #22 - Voting & Ladder Map Selection7
Community News
MC vs IdrA, Boxer vs Nal_rA to be Legacy Matches @ BlizzCon385.0.16 Hotfix (June 30) - Balance + Bug Fixes38Weekly Cups (June 22-28): Zergs thrive in new patch5[TLMC] Summer 2026 Ladder Map Rotation05.0.16 patch for SC2 goes live (8 worker start)102
StarCraft 2
General
MC vs IdrA, Boxer vs Nal_rA to be Legacy Matches @ BlizzCon Is the larve respawn broken? 5.0.16 patch for SC2 goes live (8 worker start) Weekly Cups (June 29-July 5): Solar Doubles Serral wins Maestros of the Game 2
Tourneys
HomeStory Cup 29 GSL CK #5 race war RSL Revival: Season 6 - Qualifiers and Main Event Vespene Cup #1 — $300+ USD, July 10 Douyu Cup 2026: $20,000 Legends Event (June 26-28)
Strategy
[G] Having the right mentality to improve
Custom Maps
New Map Maker - Looking for Advice - Love or Hate Work In Progress Melee Maps [D]RTS in all its shapes and glory <3
External Content
Mutation # 533 Die Together The PondCast: SC2 News & Results Mutation # 532 Nuclear Family Mutation # 531 Experimental Artillery
Brood War
General
ASL 22 Proposed Map Pool Snow On New ASL S22 Map, Zerg Nerf BW General Discussion Farewell Beloved Starcraft (Youtube Videos) BGH Auto Balance -> http://bghmmr.eu/
Tourneys
CSLAN 4 is Coming! Escore Tournament StarCraft Season 2 The Casual Games of the Week Thread [Megathread] Daily Proleagues
Strategy
Simple Questions, Simple Answers Creating a full chart of Zerg builds Relatively freeroll strategies Why doesn't anyone use restoration?
Other Games
General Games
Dawn of War IV Stormgate/Frost Giant Megathread Summer Games Done Quick 2026! Nintendo Switch Thread ZeroSpace at Steam NextFest - Last free demo
Dota 2
Looking for a Dota Mentor Official 'what is Dota anymore' discussion
League of Legends
Heroes of the Storm
Simple Questions, Simple Answers Heroes of the Storm 2.0
Hearthstone
Deck construction bug
TL Mafia
Five o'clock TL Mafia NeO.D_StephenKing vs This Guy From 1 Million Dance TL Mafia Community Thread TL Mafia Power Rank Vanilla Mini Mafia
Community
General
US Politics Mega-thread Russo-Ukrainian War Thread YouTube Thread Canadian Politics Mega-thread The Games Industry And ATVI
Fan Clubs
The HerO Fan Club!
Media & Entertainment
Movie Discussion! Series you have seen recently... [Req][Books] Good Fantasy/SciFi books [TV/BOOK] *SPOILERS* Game of Thrones Discussion
Sports
2024 - 2026 Football Thread Formula 1 Discussion McBoner: A hockey love story TeamLiquid Health and Fitness Initiative For 2023 Cricket [SPORT]
World Cup 2022
Tech Support
How to clean a TTe Thermaltake keyboard? Computer Build, Upgrade & Buying Resource Thread
TL Community
The Automated Ban List
Blogs
Major Shifts in the Gaming I…
TrAiDoS
An Exploration of th…
waywardstrategy
I'm an arrogant trash talke…
FlaShFTW
Gauntlet SC2: A Retrospectiv…
Ctone23
ramps on octagon
StaticNine
Funny Nicknames
LUCKY_NOOB
Customize Sidebar...

Website Feedback

Closed Threads



Active: 7619 users

The Big Programming Thread - Page 914

Forum Index > General Forum
Post a Reply
Prev 1 912 913 914 915 916 1032 Next
Thread Rules
1. This is not a "do my homework for me" thread. If you have specific questions, ask, but don't post an assignment or homework problem and expect an exact solution.
2. No recruiting for your cockamamie projects (you won't replace facebook with 3 dudes you found on the internet and $20)
3. If you can't articulate why a language is bad, don't start slinging shit about it. Just remember that nothing is worse than making CSS IE6 compatible.
4. Use [code] tags to format code blocks.
sc-darkness
Profile Joined August 2017
856 Posts
Last Edited: 2017-10-29 23:55:07
October 29 2017 23:54 GMT
#18261
If you have client and server which use AES, how do you exchange the key? I've read about Diffie–Hellman method, but people say it's vulnerable to man-in-the-middle attack. Is SSL the only secure way to exchange keys?
Hanh
Profile Joined June 2016
146 Posts
Last Edited: 2017-10-30 01:57:39
October 30 2017 01:26 GMT
#18262
Use DH but embed the public key in the client. MITM attacks come from impersonating the server by sending a fake PK to the client. Btw, SSL l uses DH (among other methods).
phar
Profile Joined August 2011
United States1080 Posts
Last Edited: 2017-10-31 01:47:42
October 31 2017 01:36 GMT
#18263
On October 30 2017 08:23 WarSame wrote:
Show nested quote +
On October 30 2017 01:23 phar wrote:

And again a plea to not hook this up for real to anyone's actual money (just doing it as a test thing is fine). Don't roll your own crypto, probably don't roll your own security.

But how?!? If I could get away without doing this, and also make it more secure I would love to do that. Or are you talking about just hiring someone for the security side of things?

OAuth, what I said a few days back in my first reply to you. Use Google or Facebook or whatever other existing auth scheme, and just OAuth on top of that.

Right even at large company X, essentially every single team will use an existing auth scheme, rather than inventing their own. Because even at a company like Google or Facebook or whatever, you'd only trust a few teams to actually get it right. Everybody else would fuck up in some way (forget one of the small details you need to have really hardened auth scheme), and bad shit would ensue.

The only difference is that for you doing a throwaway toy project, "bad shit" translates to "temporary embarrassment, maybe having to shut down the project", whereas "bad shit" of this nature (completely failed auth scheme) at Google would translate into like literally billions of dollars being flushed down the toilet.


On October 30 2017 03:12 Acrofales wrote:

Is my app secure? I store the passwords in plain text in MySQL database.

This is true. I do exactly that. But security is far far far less important than being able to tell 12-yo kids what password they used to register. And resetting 5-10 passwords every class would just take way too much time.


I mean I don't know your code, but probably not. It depends on the threat model. If your threat model includes ever having a single vulnerability in your auth db such that a third party ever get access to it, then you would join the list of places which have had plaintext password dumps stolen (just search around for some examples).

Read e.g. https://stackoverflow.com/questions/1197417/why-are-plain-text-passwords-bad-and-how-do-i-convince-my-boss-that-his-treasur


Again for small throwaway test projects, this isn't that big of a problem. This is under the assumption that you're fine with setting the thing on fire if shit hits the fan, and then walking away.
Who after all is today speaking about the destruction of the Armenians?
WarSame
Profile Blog Joined February 2010
Canada1950 Posts
October 31 2017 03:21 GMT
#18264
Ah, sorry, I didn't connect the username. Alright, that would have saved me a lot of effort doing DB stuff and encryption, anyway. Why do most places have OAuth as well as a regular sign in option? Flexibility? Would it be that unusual to have an app that had no local way to sign in?
Can it be I stayed away too long? Did you miss these rhymes while I was gone?
Acrofales
Profile Joined August 2010
Spain18350 Posts
October 31 2017 11:33 GMT
#18265
On October 31 2017 10:36 phar wrote:
Show nested quote +
On October 30 2017 03:12 Acrofales wrote:

Is my app secure? I store the passwords in plain text in MySQL database.

This is true. I do exactly that. But security is far far far less important than being able to tell 12-yo kids what password they used to register. And resetting 5-10 passwords every class would just take way too much time.


I mean I don't know your code, but probably not. It depends on the threat model. If your threat model includes ever having a single vulnerability in your auth db such that a third party ever get access to it, then you would join the list of places which have had plaintext password dumps stolen (just search around for some examples).

Read e.g. https://stackoverflow.com/questions/1197417/why-are-plain-text-passwords-bad-and-how-do-i-convince-my-boss-that-his-treasur


Again for small throwaway test projects, this isn't that big of a problem. This is under the assumption that you're fine with setting the thing on fire if shit hits the fan, and then walking away.


It was obviously tongue-in-cheek. They don't even have to steal the database. I've printed out the passwords on a handy piece of paper! :p
phar
Profile Joined August 2011
United States1080 Posts
Last Edited: 2017-10-31 19:21:01
October 31 2017 19:20 GMT
#18266
On October 31 2017 12:21 WarSame wrote:
Ah, sorry, I didn't connect the username. Alright, that would have saved me a lot of effort doing DB stuff and encryption, anyway. Why do most places have OAuth as well as a regular sign in option? Flexibility? Would it be that unusual to have an app that had no local way to sign in?

I mean even just using OAuth doesn't solve all your problems, see e.g. warning here: https://oauth.net/articles/authentication/

As for why more places don't use oauth in place of their own stuff? Idk. Generally security practices across the entire industry are complete shit. Why did linkedin leak 6m (100m?) emails and passwords in 2012, despite being a big well-established company? Stuff ain't easy.

One reason why places insist on local sign-in is that it allows people who don't have accounts with any of your supported oauth providers to still use your stuff.

See here for an example of google messing up auth flow (actually a good read from the red team side of things if you want to see some ways that people will try to break your stuff): https://medium.com/@alex.birsan/messing-with-the-google-buganizer-system-for-15-600-in-bounties-58f86cc9f9a5

On October 31 2017 20:33 Acrofales wrote:
It was obviously tongue-in-cheek. They don't even have to steal the database. I've printed out the passwords on a handy piece of paper! :p

Ah ha ok, carry on
Who after all is today speaking about the destruction of the Armenians?
Programmer2
Profile Joined November 2017
9 Posts
Last Edited: 2017-11-01 22:10:13
November 01 2017 22:09 GMT
#18267
Hello everyone.

I am fascinated with programming.

Has anyone have any experience with Visual Studio 2015? If anyone does, how do I make it so an image doesn't move after clicking it but after clicking the image, a blue print of it appears for you to place anywhere? Like how on The Sims you can place objects in your house.

How would the code look? If I want the left click on the mouse button to do it, I assume I go to the "events" and click on "mousedown" but I have no idea what the code will be to get it to work.

I am coding in C*
WolfintheSheep
Profile Joined June 2011
Canada14127 Posts
November 01 2017 22:40 GMT
#18268
On November 02 2017 07:09 Programmer2 wrote:
Hello everyone.

I am fascinated with programming.

Has anyone have any experience with Visual Studio 2015? If anyone does, how do I make it so an image doesn't move after clicking it but after clicking the image, a blue print of it appears for you to place anywhere? Like how on The Sims you can place objects in your house.

How would the code look? If I want the left click on the mouse button to do it, I assume I go to the "events" and click on "mousedown" but I have no idea what the code will be to get it to work.

I am coding in C*

I think, if I understand properly, you'll basically want the following...

1) You'll have a blank area on the interface where images can be placed.

2) On mouse click, a "copy" of the image will be made. It either replaces your mouse cursor, or has a trigger on mouse movement to copy the mouse movement.

3) If you have an image selected (can use a boolean flag or something to check this), and you click on the blank area, the image from step 1 will have its x/y position locked. (Or if you went with a mouse cursor replace, a new image element will be placed where you clicked, and mouse will go back to default).

There's a lot of finagling you can do to make it the whole process look better, flashier, etc.
Average means I'm better than half of you.
Manit0u
Profile Blog Joined August 2004
Poland17783 Posts
November 01 2017 22:50 GMT
#18269
On November 02 2017 07:09 Programmer2 wrote:
Visual Studio 2015?

image doesn't move after clicking it but after clicking the image

I am coding in C*


Whoa! Not to discourage you but you're mentioning some weird stuff in conjunction with each other...

If you are coding in C, you don't need VS (kind of overkill unless your project is really big).
By "image doesn't move" do you mean VS templates for GUI or stuff in some game engine?

In other words. What are you working on and what is your exact problem? (Being able to define what your problem really is is probably the most crucial skill to attain when learning programming)

On October 31 2017 12:21 WarSame wrote:
Why do most places have OAuth as well as a regular sign in option?
Would it be that unusual to have an app that had no local way to sign in?


Not having OAuth as your only source of user info might indicate 2 things:
1) Possibility of signing up users who do not have accounts at other providers (most commonly Google, Facebook and Twitter, but in enterprise world this extends to Okta and other custom identity providers).
2) Need to consolidate OAuth accounts (there's no real way to tell if WarSame@Google is the same as WarSame@Facebook unless you have some other - sometimes virtual - local user account that you can link with other providers).

That's from my experience. Technically, you should have a different account for each provider but sometimes business requirements have you to allow the same user to be able to log on from different providers to the same account (I guess that's because most people don't realize how hard can it be to actually implement).

Time is precious. Waste it wisely.
Programmer2
Profile Joined November 2017
9 Posts
November 01 2017 23:47 GMT
#18270
On November 02 2017 07:50 Manit0u wrote:
Show nested quote +
On November 02 2017 07:09 Programmer2 wrote:
Visual Studio 2015?

image doesn't move after clicking it but after clicking the image

I am coding in C*


Whoa! Not to discourage you but you're mentioning some weird stuff in conjunction with each other...

If you are coding in C, you don't need VS (kind of overkill unless your project is really big).
By "image doesn't move" do you mean VS templates for GUI or stuff in some game engine?

In other words. What are you working on and what is your exact problem? (Being able to define what your problem really is is probably the most crucial skill to attain when learning programming)





I don't know how to quote more than one person in the same post but the person above you explained it wonderfully.
Manit0u
Profile Blog Joined August 2004
Poland17783 Posts
November 02 2017 00:56 GMT
#18271
On November 02 2017 08:47 Programmer2 wrote:
Show nested quote +
On November 02 2017 07:50 Manit0u wrote:
On November 02 2017 07:09 Programmer2 wrote:
Visual Studio 2015?

image doesn't move after clicking it but after clicking the image

I am coding in C*


Whoa! Not to discourage you but you're mentioning some weird stuff in conjunction with each other...

If you are coding in C, you don't need VS (kind of overkill unless your project is really big).
By "image doesn't move" do you mean VS templates for GUI or stuff in some game engine?

In other words. What are you working on and what is your exact problem? (Being able to define what your problem really is is probably the most crucial skill to attain when learning programming)


I don't know how to quote more than one person in the same post but the person above you explained it wonderfully.


Hah, I haven't seen the answer at the time of my posting (must've been posting it at the same time)

Glad someone knew the problem you're facing and was able to shed some light on it.
Time is precious. Waste it wisely.
bo1b
Profile Blog Joined August 2012
Australia12814 Posts
November 02 2017 01:34 GMT
#18272
Going all in on rust, wish me a lot of luck getting a job, cause there is no going back now. This language is amazing (I feel like a televangelist).

Also, intellij is providing support to it now, and more importantly they're working on support for the windows subsystem. All I need now is microsoft to finally fix it's i/o speed and I'll be one happy man.

For anyone newish to low level languages but knows enough basics to understand functions, strings etc a good project is literally anything simple which has a gui - one of the best things I ever did was learn how to use qt to make a sine wave generator which used mouse position in a window to select the output frequency.
Hanh
Profile Joined June 2016
146 Posts
November 02 2017 04:11 GMT
#18273
What io performance issues are you referring to?
bo1b
Profile Blog Joined August 2012
Australia12814 Posts
November 02 2017 05:20 GMT
#18274
Windows subsystem file i/o is really quite slow in comparison to normal linux, can be quite painful sometimes.
Hanh
Profile Joined June 2016
146 Posts
November 02 2017 08:22 GMT
#18275
On November 02 2017 14:20 bo1b wrote:
Windows subsystem file i/o is really quite slow in comparison to normal linux, can be quite painful sometimes.


Do you have an objective speed comparison study or is it your opinion?
bo1b
Profile Blog Joined August 2012
Australia12814 Posts
November 02 2017 10:31 GMT
#18276
The objective speed can be found in pictures from sometime last year, and perhaps more obviously in the filesystem that's actually used (ntfs on windows vs ext4 on linux).

https://www.phoronix.com/scan.php?page=article&item=windows-10-lxcore&num=4

Here was a benchmark from a while ago, it's definitely somewhat better now but compiling things is still a pain in the ass on wsl in comparison to linux.
Silvanel
Profile Blog Joined March 2003
Poland4768 Posts
November 02 2017 11:03 GMT
#18277
Those tests are about native linux vs ubuntu environment running on windows 10.
Pathetic Greta hater.
bo1b
Profile Blog Joined August 2012
Australia12814 Posts
November 02 2017 11:07 GMT
#18278
On November 02 2017 20:03 Silvanel wrote:
Those tests are about native linux vs ubuntu environment running on windows 10.

Thats what the windows subsystem is. wsl stands for windows subsystem for linux.
Silvanel
Profile Blog Joined March 2003
Poland4768 Posts
November 02 2017 11:11 GMT
#18279
Uhm. Didnt notice that was topic of discussion. Lol@me.
Pathetic Greta hater.
bo1b
Profile Blog Joined August 2012
Australia12814 Posts
November 02 2017 11:19 GMT
#18280
Happens to everyone

On another note, I thoroughly recommend using wsl + vscode if you use a lowlevel language on windows at all, it's really quite good.
Prev 1 912 913 914 915 916 1032 Next
Please log in or register to reply.
Live Events Refresh
Next event in 1h 57m
[ Submit Event ]
Live Streams
Refresh
StarCraft 2
ProTech123
StarCraft: Brood War
Britney 25325
Rain 2068
Zeus 1339
Shuttle 426
Hyuk 425
Leta 317
Larva 236
actioN 111
Killer 73
ToSsGirL 71
[ Show more ]
soO 65
sSak 52
Noble 39
Movie 30
910 24
sorry 22
Hm[arnc] 22
Bale 21
Sharp 19
NotJumperer 19
ZergMaN 15
ajuk12(nOOB) 11
JulyZerg 8
Terrorterran 1
Mini 0
League of Legends
Doublelift6598
JimRising 492
Counter-Strike
olofmeister1052
Super Smash Bros
Mew2King115
Other Games
ceh9735
RuFF_SC219
Organizations
Other Games
gamesdonequick25522
StarCraft: Brood War
UltimateBattle 56
StarCraft 2
Blizzard YouTube
StarCraft: Brood War
BSLTrovo
[ Show 17 non-featured ]
StarCraft 2
• LUISG 16
• Kozan
• sooper7s
• Migwel
• AfreecaTV YouTube
• intothetv
• LaughNgamezSOOP
• IndyKCrew
StarCraft: Brood War
• iopq 4
• STPLYoutube
• ZZZeroYoutube
• BSLYoutube
Dota 2
• lizZardDota2151
League of Legends
• Lourlo1802
• Stunt1079
• Rush1078
Other Games
• WagamamaTV90
Upcoming Events
WardiTV Weekly
1h 57m
PiGosaur Cup
14h 57m
The PondCast
1d
Replay Cast
1d 23h
CrankTV Team League
2 days
OSC
2 days
Replay Cast
2 days
Replay Cast
2 days
CrankTV Team League
3 days
OSC
3 days
[ Show More ]
Replay Cast
3 days
RSL Revival
3 days
Serral vs Bunny
ByuN vs GgMaChine
CranKy Ducklings
4 days
Afreeca Starleague
4 days
Snow vs Jaedong
YSC vs hero
RSL Revival
4 days
Solar vs Rogue
Maru vs NightMare
Sparkling Tuna Cup
5 days
GSL
6 days
Replay Cast
6 days
Liquipedia Results

Completed

CSL Season 21: Qualifier 2
HSC XXIX
Eternal Conflict S2 E1

Ongoing

IPSL Spring 2026
Acropolis #4
YSL S3
CSL 2026 Summer (S21)
SCTL 2026 Spring
XSE Pro League 2026
IEM Cologne Major 2026
Stake Ranked Episode 2
CS Asia Championships 2026
Asian Champions League 2026
IEM Atlanta 2026
PGL Astana 2026
BLAST Rivals Spring 2026

Upcoming

Escore Tournament S3: W2
ASL Season 22: Wild Card Qualifier
CSLAN 4
Blizzard Classic Cup 2026
SC4ALL II: StarCraft II
Kung Fu Cup 2026 Grand Finals
RSL Revival: Season 6
CranK Gathers Season 4: BW vs SC2 Team League
Light Tournament 2026
Eternal Conflict S2 Finale
Eternal Conflict S2 E3
Eternal Conflict S2 E2
Heroes Pulsing #3
Logitech G Connect 2026
StarSeries Fall 2026
FISSURE Playground #5
BLAST Open Fall 2026
Esports World Cup 2026
BLAST Bounty Summer 2026
BLAST Bounty Summer Qual
Stake Ranked Episode 3
TLPD

1. ByuN
2. TY
3. Dark
4. Solar
5. Stats
6. Nerchio
7. sOs
8. soO
9. INnoVation
10. Elazer
1. Rain
2. Flash
3. EffOrt
4. Last
5. Bisu
6. Soulkey
7. Mini
8. Sharp
Sidebar Settings...

Advertising | Privacy Policy | Terms Of Use | Contact Us

Original banner artwork: Jim Warren
The contents of this webpage are copyright © 2026 TLnet. All Rights Reserved.