File APIs for Java Developers
Manipulate DOC, XLS, PPT, PDF and many others from your application.
The moose likes Meaningless Drivel and the fly likes xkcd Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of Java Interview Guide this week in the Jobs Discussion forum!
JavaRanch » Java Forums » Other » Meaningless Drivel
Bookmark "xkcd" Watch "xkcd" New topic


Saurabh Pillai
Ranch Hand

Joined: Sep 12, 2008
Posts: 524
Bert Bates

Joined: Oct 14, 2002
Posts: 8898
sweetest cartoon ever!

Spot false dilemmas now, ask me how!
(If you're not on the edge, you're taking up too much room.)
Wouter Oet
Saloon Keeper

Joined: Oct 25, 2008
Posts: 2700


"Any fool can write code that a computer can understand. Good programmers write code that humans can understand." --- Martin Fowler
Please correct my English.
Jesper de Jong
Java Cowboy
Saloon Keeper

Joined: Aug 16, 2005
Posts: 15101

The secret with XKCD is that you have to read the text in the tooltip that appears when you hold the mouse over the image (only works on the XKCD website itself) - it often contains the point of the joke, or an extra joke.

Java Beginners FAQ - JavaRanch SCJP FAQ - The Java Tutorial - Java SE 8 API documentation
fred rosenberger
lowercase baba

Joined: Oct 02, 2003
Posts: 11957

Bobby Tables will always be my favorite.

There are only two hard things in computer science: cache invalidation, naming things, and off-by-one errors
Ryan McGuire
Ranch Hand

Joined: Feb 18, 2005
Posts: 1046
fred rosenberger wrote:Bobby Tables will always be my favorite.

I've passed out that exact strip to contractors that left us open to just that type of problem. Of course the inputs were only coming from internal (employee) users, so we were a little less worried about malicious SQL hacking. Nonetheless, the guy didn't qualify as "done with the project" until he used parameterized SQL at the very least.

  • Best: Stored Procs
  • Better: Parameterized dynamic SQL
  • Good: Relying on each new programmer to parse the input to catch possible attacks.
  • Bad: none of the above.

  • OF COURSE, other factors can make the, say, "Better" option above more attractive for certain projects. You have to look at it on a case-by-case basis.
    I agree. Here's the link:
    subject: xkcd
    It's not a secret anymore!