Tldr; for this article: when you’ve to use docker to deploy something it means that something is much more complex than it needs to be, so complex that in fact not even the guy who make it can document the process to get it running properly. You should never use that piece of software as it is guaranteed to be bloat and since nobody actually understands it nobody can keep it secure.
Why Bloat Is Still Software’s Biggest Vulnerability
Submitted 10 months ago by mfigueiredo@lemmy.world to programming@programming.dev
https://spectrum.ieee.org/lean-software-development
Comments
TCB13@lemmy.world 10 months ago
ChubakPDP11@programming.dev 10 months ago
I kinda like that I am as far away from the web world as possible. The only time I deal with anything web-related making a static blog software for myself. As Alan Kay puts it, web is ill, because it has been a hack from day -1. Every time you make a web application, you are using a mule to carry a city worth of cargo on its back.
Web was created for static pages. Use it for static pages. The only website that does not do this and I use is Youtube. I only then visit HackerNoon and Lemmy instances, both of which come out of Web’s tube of shit proud.
i wish I could post my conversation (barely a conversation, what do I have to converse with someone who’s worked with magnetic core, I just agreed) with Alan Kay on Quora, but I tried to login, and it was so bloated, I could not find the conversation.
I apologize if this hurts your feelings that your 'lil protocol sucks. Read about Dough Englebert’s NLS.
Thanks.
MadhuGururajan@programming.dev 10 months ago
It takes time to implement features. Execs and managers don’t want to implement the wheel and developer time costs a lot more money than security vulns.
agressivelyPassive@feddit.de 10 months ago
On the other hand, reinventing the wheel isn’t really great, either.
Part of the reason for bloat is the fact that frameworks and libraries became huge, a basic Spring Boot webserver is already gigantic.
otl@hachyderm.io 10 months ago
@agressivelyPassive
> Part of the reason for bloat is the fact that frameworks and libraries became huge
Absolutely. What I find funny is that the inverse is kinda true, too. Tiny dependencies (as seen in the Javascript world) are also to blame. They’re so small, I’ve noticed some devs say “well it’s so small, what’s the harm of one more?”. Bloat by a thousand deps.
@programming
onlinepersona@programming.dev 10 months ago
IMO, some things will require obligatory security checks. They will have to be legally binding too. Then businesses might be forced to care.
Without any consequences, nobody will care until something happens.
CC BY-NC-SA 4.0