Message from @Eirshy
Discord ID: 602208886266789918
>it just works.
Just importing libs is the 'Python' way
"Eh, someone's already wrote it"
Okay Todd Howard.
It's super lazy
And I had to go digging for a lot of the shit.
Deepest arcane depths I've gone was figuring out what the fuck the W meant at the end of a function imported from AdvAPI32.dll
If I had just used the code I found I'd have had a bad memory leak and an even worse security risk due to keeping multiple user credentials in memory long past their logout.
Reason I hate using other people's code tbh
Unless it's from a known competent
If I'm doing anything involving security, then I'm probably going to look for other peoples, open source code
or someone I'm already implicitly trusting
Writing security related code, generally isn't a good thing
Writing your own crypto isn't a good thing. Your own security-related stuff isn't a problem so long as you actually do the legwork
When chances are, there's an opensource library which has been vetted and checked for 2+ years out there
It depends on the scenario I suppose
But then I've gone pretty deep on that end of things as well and have an idea of what to look for when it comes to even timing attacks.
Yeah, experience comes through actually doing the thing
You'll never learn if you don't do it I suppose
Agreed
That is the one thing I don't care how experienced you are
Since it's so easy to mess up..
Open Source ONLY on crypto
You can *contribute* to said open source
but do not ever write it yourself by yourself
and definitely don't come up with your own algorithm
Yeah agreed
I'm just trying to git gud tbh
advancing my career, etc
<:pot_of_kek:544849795433496586>
area 51-chan is rather flat owo
"Statistically speaking, I WON'T leave you as easily as Tyrone would, so our kids are less likely to become criminals than they would be if you were to marry Tyrone"