r3wp [groups: 83 posts: 189283]
  • Home
  • Script library
  • AltME Archive
  • Mailing list
  • Articles Index
  • Site search
 

World: r3wp

[!REBOL3]

Nicolas
10-Apr-2011
[7940]
I was looking for more of a long term outlook
Kaj
10-Apr-2011
[7941x2]
Yes, and an extensive specification for Red/System
The roadmap is in the original announcement
Nicolas
10-Apr-2011
[7943x2]
Thanks. How does the community communicate?
google groups or altme?
Kaj
10-Apr-2011
[7945]
Here in the Red group, to the chagrin of the creator. :-) Better 
switch to that
Dockimbel
11-Apr-2011
[7946]
:-)
BrianH
11-Apr-2011
[7947x3]
Ladislav, the two most popular desktop OSes in use today are Windows 
XP and 2000. Both will be and have to be supported by R3, and neither 
is secure enough for a regular person to run without antimalware 
software. We don't want R3 flagged as malware *again* (it already 
happened with one of the early alphas). That is why we are putting 
effort into making R3 more secure.
The R3 process needs to be able to save the %user.r file with the 
current user's permissions in order to allow the user to save their 
preferences. And we don't have a safe place to store the checksum 
of that file to compare against, without also making that checksum 
writeable by the user. That means that the checksum security can't 
be used for %user.r.
It makes me a little sad to realize that in order to keep a copy 
of that early alpha I have to keep it in a passworded compressed 
archive, so antimalware software doesn't delete it. I no longer recommend 
AVG because they refused to remove the false positive from their 
list (they refuse all requests from users of their free products, 
regardless of merit, so you have to buy their paid products to appeal).
Ladislav
12-Apr-2011
[7950]
The R3 process needs to be able to save the %user.r file with the 
current user's permissions in order to allow the user to save their 
preferences.

 - this is the only one I find relevant as far as security concerns 
 are considered. Nevertheless, this does not contradict what I said 
 in any way I can imagine.
BrianH
12-Apr-2011
[7951]
How can any program be secure, if it runs in an insecure environment?

 - by adding its own security constraints, beyond those provided by 
 the environment. We have to support running in an insecure environment 
 since WinXP is such an environment. Oh well.
Ladislav
12-Apr-2011
[7952]
No matter how well you pretend you are able to run securely in a 
compromised environment, it is not true.
BrianH
12-Apr-2011
[7953]
Agreed. You can run more or less securely, but it is really a matter 
of degree. We just don't want to make the extremely common bad decision 
to run WinXP any worse, or else they might blame us for their mistake. 
This has already happened once, so we don't want it to happen again.
Ladislav
12-Apr-2011
[7954]
Do I understand correctly, that there was somebody catching a virus 
and blaming RT for it?
BrianH
12-Apr-2011
[7955x2]
Yup. The last non-public alpha of R3 was flagged as malware. To this 
day, AVG still refuses to remove the (hopefully) false positive from 
its list.
No wait, it was the first public alpha, not the last non-public one.
GrahamC
12-Apr-2011
[7957]
if r3 is a virus, it's not spreading very effectively!
BrianH
12-Apr-2011
[7958x2]
Agreed :(
I'm really hoping to get the SECURE function working again before 
the current version gets flagged as well. SECURE has been turned 
off since a108.
GrahamC
12-Apr-2011
[7960x2]
Unfortunately R3 is not async
Carl's absence continues to block
Ladislav
12-Apr-2011
[7962x2]
Are you serious the SECURE function working may be the difference 
between the R3 being flagged or not?
That looks like a joke to me.
BrianH
12-Apr-2011
[7964x2]
Not really, but then I haven't gotten a straight answer about why 
2.99.4 was flagged either. If you still have a copy of 2.99.4, put 
it in a password-protected compressed archive or else many antimalware 
products will delete it without asking you.
I wish I could find more humor in this though. SECURE not working 
really does bother me a lot; even though I joke about it getting 
R3 flagged as malware, if it actually happened for that reason I 
couldn't argue against that.
GrahamC
14-Apr-2011
[7966]
Dunno if anyone has the time for a demo contest http://synapse-ehr.com/forums/showthread.php?389-Demo-Competition
Oldes
19-Apr-2011
[7967]
Is there any reason why line breaks are allowed inside tag datatype?
>> load {<a^/>}
== <a
>
onetom
19-Apr-2011
[7968x2]
html specs allow it. whats wrong w that?
especially in xml u might have a lot of attributes.. makes sense 
to break them into lines, doesn't it?
Oldes
19-Apr-2011
[7970]
Ah, ok then.
Janko
19-Apr-2011
[7971]
I am not totally frequent here but I have the sense I haven't seen 
any signal from Carl for a long.. am I wrong or did he really go 
silent?
Henrik
19-Apr-2011
[7972]
he went silent, yes.
Janko
19-Apr-2011
[7973]
anyone has any idea why or when he will return?
Henrik
19-Apr-2011
[7974]
He's probably working on support projects. The last word was that 
it was Linux related. No word on when he will return. He has asked 
us to post the most important bugs in curecode to fix for A112.
Janko
19-Apr-2011
[7975]
aha ok, at least it's a "controlled disapearance"
Henrik
19-Apr-2011
[7976]
It usually is. It does seem disconcerting, but last time it lasted 
longer. The result was unicode support in R3. :-)
Janko
19-Apr-2011
[7977]
I was just afraid he stopped communicating and nobody knows what's 
going on
Henrik
19-Apr-2011
[7978]
he does that often.
Pekr
19-Apr-2011
[7979]
Not sure this one is controlled. This time we are nearing almost 
6-7 months of silence. Carl simply has a day job,not a supporting 
project imo.
Henrik
19-Apr-2011
[7980]
Pekr, that is not correct. Last writing was April 1st, 19 days ago.
Pekr
19-Apr-2011
[7981x2]
Janko - Henrik is not right - Unicode "silence" lasted for 3 months. 
Unicode, Parse - those were controlled disappearances, yes. Not this 
one though.
Henrik - last writing where?
Henrik
19-Apr-2011
[7983]
RM Asset private world.
Ladislav
19-Apr-2011
[7984x2]
I am still not happy with this:

    not none ; == true


, which means, that NOT handles NONE as a logic value. At the same 
time, it is not a logic value for other logic operators/functions:

    none or none

** Script error: or does not allow none! for its value2 argument


, and am tempted to put it to the CureCode. Am I the only one disliking 
this?
To be more precise: I dislike the incompatibility between logic functions, 
not any specific variant of the behaviour.
Geomol
19-Apr-2011
[7986]
I can follow that and agree. But it's probably this way, because 
much code will make more sense? Functions returning none in case 
of no more data or the like. Then you can check against none, and 
if the function return ok, you have not none. Or?
Maxim
19-Apr-2011
[7987]
I agree, when I look at AND help it states input types as:

(logic! integer! char! tuple! binary! bitset! typeset! datatype!)


none! should be added there and be considered 0 when scalar bitwise 
ANDind is done.
Ladislav
19-Apr-2011
[7988]
Hmm, Max, that would not help, in fact, keeping the incompatibility 
anyway.
Geomol
19-Apr-2011
[7989]
>> if none [42]
== none

>> if not none [42]
== 42