This article doesn’t define onion layering, I am none the wiser from reading it. There are near identical sentences within it, it gave me the sense I was reading AI generated content, or at least heavily AI post-processed content.
Onion layering is a non-scalable architecture which was immensely popular in the 00-10's due to how it interacts with OOP and it's somewhat crazy principles. It's based on seperating everything by interfaces in a structure which is a little similar to a MVC architecture. So you're going to organize your project(s) into a structure where you centralize everything with a seperation based on what "something" does. So you're going to put your OOP models in a specific place, your services in another and so on. As you can imagine it scaled horribly and today it's made completely obsolete by domain based architecture which is basically Onion Layering but both more reasonably organized and actually scalable.
A lot of CS academics still live in a world where OOP is the greatest thing ever. Where things like wrapping functions in classes are necessary and where things like the onion architecture is still "modern". So naturally a lot of inexperienced developers, or developers who've never had to work on large projects, still hail it as the holy grail.
He acted in the interests of everyone who doesn't like the US, you could justifiably say the same thing about him acting in China's best interest, or Iran.
Absolute codswallop that you can't hold a government to account else you are criticised for aiding their enemies. Does that mean we should just sit down and take it because it makes us look bad?
I'm the first in line to criticise my government (UK) but that doesn't mean I'm intentionally working in the interests of it's enemies.
Sod off with these bad faith attacks espousing an opinion that no reasonable person could possibly hold.
I mean, he literally had a show on, and was paid to do so by, the Russian state media. And then later on failed to publish a set of Russian documents that were leaked to him, and also coordinated with (not just received leaks from) someone who turned out to be GRU.
Reasonable minds can differ here, I don't think it's bad faith to suggest he might have been acting specifically towards Russian interests - if not originally, then later on.
Raging about these being inconsiderate people, when they were likely fictional personalities that were part of a long con seems to be a bit foolish to me.
It seems to me that people are very much exaggerating how "professional" this attack was. Yes, it doesn't look like the actions of a single bored teenager but I don't think the government of a country like the USA or China would deliberately permit their employees to get involved with crap like this. Any backdoor they try to insert would look exactly like an innocent bug. So my (uninformed) guess would be that this is done by criminals, something like a ransomware gang branching out a bit. Though North Korea sometimes sponsors activities that are indistinguishable from those of a criminal gang so it could come from there.
I'm just speculating, of course. I don't know anything really.
> I don't think the government of a country like the USA or China would deliberately permit their employees to get involved with crap like this.
Not the USA, but I can easily imagine this is China. Because, as of right now, this seems like the way China does business. The Chinese/the PLA fund a hacking complex of contractors, and when one gets caught, they simply deny involvement. [0],[1]
this is going to be impossible to prove or disprove, but given the state-sponsored nature of the attack (which seems fairly likely at this point)... I also wonder if maybe there wasn't some tips pushing Andreas Freund down the path of discovering it too.
like let's say you're the NSA and you know Russia (/china/etc) is trying to do this backdoor. maybe you send Freund an email through one of your cutouts and say hey, I've been looking at the ubuntu RCs and we noticed some performance regression in the postgres tests, etc... do it from some corpo email from a "friend" at some bigtech company that legitimately uses postgres/ubuntu and it's completely 100% deniable and innocuous.
it'd be interesting to see correspondence to/from Freund on his mailing lists too, see if there was anyone that (in retrospect) might have been tipping him down the path of discovery too.
(which is not to diminish in any way what he did... chasing a tiny perf regression in core library functionality back to root-cause is no mean feat. especially when it's code that is actively trying to evade detection - watching for debuggers, etc. Although that heisenbug nature might have also made it more compelling to these sorts of people ;)
I agree re. graph but I think the definition of "IT employment" is constantly broadening, rather than the opportunities growing. Every job is now apparently an IT job, but fewer and fewer require skilled workers.
I'd love to work in "a function language". You're correct that I might not enjoy Haskell, however it might not be worth even trying if there are no jobs.
I know F# and think Scala or Ocaml might be a better choice as the next language I learn.
Purescript also looks promising.
I could invest all the time in Haskell first but there is an opportunity cost that I'm trying to maximize.
I don't know how they know that they'd they'd love a job programming a functional programming language, if they were not passionate enough about Haskell to self-learn (not hard, there are books).
It seems so paradoxical.
It's a bit like someone saying, I'd love to be a hairdresser, do you think it's worth studying to be a hairdresser? There's something which blows up my brain to read that. If you love it, do it.
I like the idea of hairdressing, however I hear there are not many jobs in that field. Is it worth studying this, if my intention is to use it professionally?
There is no paradox in wanting get some meta information on a subject before investing in learning it.
Why do you think you need permission to learn? Try learning. If it sucks, hit the bricks. In school, that’s not allowed, but it’s how everything works outside of school.
Sounds like a bad fit - find something new. Learn in a new place and experience. If the pattern follows you around, maybe start to look inwardly at whether your bringing the same problems from place to place.
It's objective its just very widespread. Amazon is probably the greatest offender, but most of the platforms and BigTech is just dark patterns all the way down.
