|
If you are "the development manager in charge", I am surprised that spending half a day, as you told, chasing this bug was your responsibility. But then again, I know nothing about your company.
If this really was your coworkers code, I guess he should have looked at the warning pertaining to his code. If you think that "This is a big system, so neither I as the development manager in charge, nor the developers responsible for a specific module, need to read the warnings - we'll rather complain in network forums about how nasty such bugs are", then I think you got what you deserved.
I have been working on big systems, and I have been responsible for the processing of warnings and errors, suppressing those that are considered 'noise', reporting the significant ones to the developer. I would never, ever, have classified 'Unexpected empty statement' as insignificant noise. I am not familiar with SonarCloud/SonarSource (I just checked the Wikipedia article; that is my first encounter with them). If this system is not capable of drawing your attention to unexpected empty statements, but let it drown in 'a lot of warning generated from the environment, not necessarily a bad code', then I would consider other tools.
I have been working with Coverity; it looks to me as if SonarSource is in the same business. With Coverity, you can indicate for almost any warning that 'This is noise - don't bother me with it'. But you are explicitly presented with every issue at least once, until you say 'Don't bother me with that issue any more'. You may also tell Coverity: "Never bother me with such silly details as unexpected empty statements - they're probably perfectly fine, good code!" In either case: You asked for it. You got it.
Your story does not suggest that SonarSource is a viable alternative to Coverity.
|
|
|
|
|
|
I found myself (in the old days) putting periods at the end of
COBOL comments... but that was OK.
|
|
|
|
|
Hi,
The company I work for has changed to using a secure pin over passwords as part of the Windows Hello routine.
I for one think PIN over Password is dodgy, no longer can I use B008IeS! as a password (I didn't but shipped something where I forgot to change it, whole other story!). View from the informed is this to make smart phone users happy (I am using a proper PC with a Proper Keyboard) or something else??
Glenn
|
|
|
|
|
Good news: just under where you enter the PIN there is an option to enter a password or a PIN.
|
|
|
|
|
Yes, but the change came some time ago.
|
|
|
|
|
Have they just changed the log on procedure at all or just give the password a new set of clothes?
|
|
|
|
|
It's just an extra option which makes it slightly easier to login. I'm sure I've been using it for more than a year.
|
|
|
|
|
"It's just an extra option which makes it slightly easier to hack. I'm sure I've been using it for more than a year."
FTFY.
</cynicmode>
|
|
|
|
|
Given that the PC never leaves the house, who is going to hack it?
|
|
|
|
|
|
|
I will not entertain agents of Satan.
|
|
|
|
|
Now you really pissed off the cats. They will be paying a visit…soon!
modified 13-Apr-23 19:39pm.
|
|
|
|
|
My son already has one that hates me.
|
|
|
|
|
Richard MacCutchan wrote: Given that the PC never leaves the house, who is going to hack it?
Clearly you've never been burgled.
|
|
|
|
|
|
Not at all.
But I think you might be a little more worried knowing a thief could take your PC back home and start trying to guess a 4-digit pin at a leisurely pace.
|
|
|
|
|
Well even if he did, there is nothing in there that he would find useful.
|
|
|
|
|
I see, not worried because you have nothing to hide.
Carry on your merry way, citizen!
|
|
|
|
|
If you insist on carrying the computer around the house to random places it does make it easier to walk off with it.
Now mine is locked to my desk. So they are going to need to do some sawing through metal to get to it. Does slow down the get in get out quick case.
|
|
|
|
|
Win 10 started nagging me to switch to pin over pwd quite some time ago. They gave some whodeewhatsis about it somehow being more secure. My thought was, "How is 4 digits more secure than my much longer alphanumeric pwd?" But, then I discovered that I could set my pin to alphanumeric characters and more than 4. So I did. When I login now it shows a box to enter my PIN and I enter my longer alphanumeric value and I'm in.
So, I don't know if by using alphas when I set the PIN it just silently fell back to pwd or if I really am using their fancy new pin. It stopped nagging me so I stopped caring. To me it just looks and acts like a password.
To be honest, in my case I don't think it matters. My copy of windows is a virtualbox vm which is only started once or twice a week if and when I need it and closed when I'm done.
|
|
|
|
|
The pin is more secure because it's tied to your device, while your password isn't.
In other words, when hackers steal your password, they can break in to your Microsoft account, email, all your logged in devices, etc.
When they steal your pin they can only enter your PC (and then probably everything else by extension)
|
|
|
|
|
Ah, thank you. Tying it to a specific device makes sense. I'm sure that was explained to me when the switch to using a PIN was offered. I'd just forgotten.
|
|
|
|
|
Thanks for that reminder. I had forgotten MS's "explanation" for the PIN being somehow "more secure".
And it really isn't; in fact the bar is seriously lowered. Anyone looking over my shoulder could probably make a pretty good guess as to what my PIN is - not so with my password. Once logged in, I can access an awful lot of my data without ever being prompted for anything else.
Being tied to the device doesn't prevent anyone from using it where it is, unless MS thinks I'm going to start paying armed guards to stand at my door.
|
|
|
|