- Feature Articles
- CodeSOD
- Error'd
- 
                
                    Forums 
- 
                Other Articles
                - Random Article
- Other Series
- Alex's Soapbox
- Announcements
- Best of…
- Best of Email
- Best of the Sidebar
- Bring Your Own Code
- Coded Smorgasbord
- Mandatory Fun Day
- Off Topic
- Representative Line
- News Roundup
- Editor's Soapbox
- Software on the Rocks
- Souvenir Potpourri
- Sponsor Post
- Tales from the Interview
- The Daily WTF: Live
- Virtudyne
 
 
            
Admin
String comment = "<whatnumber>"; comment.replace("<whatnumber>","frist");
HR is the reason for all the resume stupidity. There is an equally asinine resume requirement for practically every job out there. I would not be shocked if HR even required new HR hires to have 5 years ACA (obamacare for the rightwingers) experience.
Admin
I have 15 years of experience writing comments on this site.
Admin
Is this site very slow today or is it just me?
Admin
Maybe he was already using it when Word was still the IDE.
Admin
Admin
Admin
String.Format({0} is {1} and he shouldn't {2}, "His code","great", "change it.")
Admin
Both.
Admin
TRWTF is that someone thought this was a front page WTF. Or am I missing something?
Admin
Admin
I love how he replaces <client> twice. Just in case the client name contains <client> so they can replace it again.
Admin
Admin
Of course this is a front page WTF. This developer has 15 years of experience! This is excusable for a new developer, somebody in college, or in their first couple of years in the industry. Even so, TRWTF is that this wasn't caught in a code review.
Admin
Not to get too off subject, but I thought it was ObamaCare for the LeftWingers. I just call it the PPACA.
Admin
TRWTF is how he had 15 years of experience in a language that's only 13 years old...
Admin
No... TRWTF is how he had 15 years of experience in a language that's only 13 years old...
Admin
Ok, this is not the most elegant way of formatting strings, but this is a bit... meh. Not a spectacular failure because of some spectacularly bad code.
Admin
Admin
Admin
I heard you like replacing stuff in the stuff you replaced, so I put <client> in the client's name so you could replace <client> from your <client>.
Admin
agreed - he should have used functional programming. It's always better because Google uses it and reasons.
Admin
Code reviews? What are those?
Admin
curious.... perversions.... in information technology....
four dots.... four... dots....
Admin
You can easily have X years of experience without understanding the underlying paradigma of a language or even its more obvious wtfs.
As a (junior) developer, probably the biggest problem is getting beyond the Dunning-Kruger-Threshold of knowledge. For this, a lot rests on the shop you work at - if your coworkers also don't know or just don't care about the code you write, it is pretty hard to overcome that first hurdle.
And of course you need to have the mentality - the basic syntax of OO and procedural languages is usually more or less the same (for, if etc) so you can get things to work in a new language pretty fast. However, to do things in a way that not only works but also is the right way in that language takes an active interest, learning and, of course, tasks beyond the merely trivial. And usually a bit more time, at least in the beginning.
Admin
Admin
2002 I applied for a job at a company that created web solutions with PHP and MySQL. They proclaimed they're having more than 25 years experience in this. Unfortunately their website (auerwebsolutions.at) is not available any more... (it really looked like designed in 1977)
Admin
That's combined experience from all the developers. So, if there are 10 developers, for the most part they only need 1 year of PHP and MySQL apiece.
Admin
Admin
CAPTCHA: tristique
Admin
Admin
It's not that uncommon for an experienced developer to stick to the feature subset of an old version of a language, since that is what he originally learned and where he got his experience, and it "works for him".
For that reason, it's often that newbies who have just learned with the latest version are used to a lot of new features that the experienced programmer never touches, and everyone wonders why the rookie knows more than the senior.
Admin
Admin
I must say I find interesting the idea of building a complex string like this by replacement, assuming this isn't in some performance critical inner loop.
It is self-documenting. The first line of the code nicely lays out what the rest of the code is building. Other solutions using more fancy formatting functions or string building can tend to obscure the intended string format under piles of implementation details. One could relegate this documentation function to a comment, but it would quickly become out-of-date.
The code isn't great, of course. The replacements should be done in the order the placeholders appear in the string (and not be duplicated, of course) and the date formatting should use best practices.
Admin
Had to look this up. Knew there was a reason all those terrible drivers think they are good ones. I, of course, really am a good driver.
Admin
Besides that C# appeared in 2000 and someone therefore cannot have "15 years of experience developing in C#", XLSX extensions weren't born before 2007. This code is at max a little over 6.5 years old. Something tells me this story is made up...
Admin
You wicked cynic. Every word on this site is true. Go away and don't come back until you have repented your evil ways.
Admin
There are five dots!
Admin
Y'know, this is such a sad realization, but code injection attacks will be with us for the remainder of the information age. In this example, with user supplied strings, that whole cascading replace thing could let a malicious user do whatever they wanted to the resultant data. Without getting too pedantic about the exact semantics of an attack, it's this kind of thoughtless design that creates these attack vectors, and it'll never stop. Parametrized queries are a good solution to SQL injection, yet the PHP / MySQL people are still persisting with this MySQLReallyGoodEscapeStringV2ThisOneReallyWorksIPromise() bullshit. There are a few strategies to mitigate CSS attacks, but they need to be followed meticulously and to the letter in order to work comprehensively.
Honestly, this guy may have invented a new malware vector without even thinking about it. But how many devs are there in the world doing exactly that, every day. Damn it, I'm gonna resign and move to Russia, drink vodka and steal all your internetz, easier than trying to stop it.
At least we've finally gotten close to the funeral of the buffer overflow exploit. Kids don't even know how to code C any more.
Admin
See this Monday's story for a more "embellished" but devoid-of-unicorns one.
Admin
They tried to hold a funeral for the buffer overflow exploit once. -2147483648 people attended.
Admin
The article does not say that he has 15 years of C# experience, only that his resume proclaims it. However, I assume the code dates back to before the year 1000, otherwise I find no logical explanation for this:
Admin
Admin
Admin
That's almost half the world's population if you're platform doesn't have signed types. So it really is dead </Delusion>
Admin
Admin
You do not want it. Trust me on this.
Admin
Admin
Regarding stated experience, I have found the following to be true more times than it is untrue:
X years experience usually really means...
ONE year experience, repeated X times.
Admin
Admin
I've had 8 years of professional work and 7 years of freelance, 15 years total experience...that just happened at the same time....