logo

blog

My website can't be that messy, right? git clone https://hacktivis.me/git/blog.git

software basic needs.shtml (6162B)

    

  1. <!DOCTYPE html>
  2. <html xmlns="http://www.w3.org/1999/xhtml">
  3. 	<head>
  4. <!--#include file="/templates/head.shtml" -->
  5. 		<title>Software basic requirements — lanodan’s cyber-home</title>
  6. 	</head>
  7. 	<body>
  8. <!--#include file="/templates/en/nav.shtml" -->
  9. 		<main>
  10. 			<h1>Software Basic Requirements</h1>
  11. 			<p>
  12. 				What a kind of software (or feature included in it) needs to have before it's deemed as something better than a proof of concept / prototype. This list is quite Unix-like oriented but is made to apply to any platform worth using.<br />
  13. 				A lot of software doesn't have half of how they should work, this is why I had to do this page which should never have existed in the first place outside of a book like "Programming/Design for Dummies" or laws.
  14. 			</p>
  16. 			<h2>All of them</h2>
  17. 			<ul>
  18. 				<li>Documentation of the formats and public interfaces</li>
  19. 				<li>An official contact method: chatroom, email, mailing-list/forum/newsgroup, …</li>
  20. 				<li>A documented way to report security issues</li>
  21. 				<li>Detailed changelog</li>
  22. 				<li>Screenshot or other preview method</li>
  23. 				<li>Consider each dependencies (including indirect ones) as a liability, they must pick direct dependencies lightly</li>
  24. 				<li>Consistent design, for example: Either integrates into the platform like a native app or doesn't like most games</li>
  25. 				<li>No automatic updates and <em>absolutely</em> no automatic remote code execution</li>
  26. 				<li>Doesn't saves any data on the disk without user's consent</li>
  27. 				<li>Doesn't crashes down when the environment it's in returns an error or refuses an action</li>
  28. 				<li>Goes towards enhancing the rights and self-control of the legitmate users (so Fuck <abbr title="Digital Restriction Management">DRM</abbr>)</li>
  29. 				<li>Treats unknown <code>text/</code> MIME-types as plain text (looking at you web browsers)</li>
  30. 			</ul>
  31. 			<p>User content: Explicit and informed, default answer is refusing, can be changed at any point in time</p>
  33. 			<h2>Open-Source Software</h2>
  34. 			<ul>
  35. 				<li>License that is approuved by the <abbr title="Open Source Initiative">OSI</abbr>/<abbr title="Free Software Foundation">FSF</abbr> or at least compatible with the <a href="https://opensource.org/osd">Open Source Definition</a></li>
  36. 				<li>Public developer discussion space (can be shared with the rest of the community)</li>
  37. 				<li>Public version control system</li>
  38. 				<li>Ability to send patches, better if an account isn't required (ie. via email instead of a forge)</li>
  39. 			</ul>
  40. 			<p><a href="https://en.wikipedia.org/wiki/Shared-source">Shared-source</a> is one example of something which isn't Open-Source as a release/workflow model yet can have some licences be <abbr title="Open Source Initiative">OSI</abbr>/<abbr title="Free Software Foundation">FSF</abbr> approuved. The idea of open-source is to develop everything in the open by default, the idea of shared-source is to only share selected bits of code (<a href="https://en.wikipedia.org/wiki/Open-core_model">Open-Core</a> is a similar thing).</p>
  42. 			<h2>Security critical software</h2>
  43. 			<p>Security-critial software <em>must</em> be open-source and evident as secure. Which means that it has to be minimalist and readable.</p>
  45. 			<h2>Audio/Video Player</h2>
  46. 			<ul>
  47. 				<li>Formats: MKV, AU/.snd, MP3, Vorbis & Theora, WEBM, SRT (+ ASS)</li>
  48. 				<li>seeking + progress</li>
  49. 				<li>download progress</li>
  50. 				<li>volume control (not just mute/unmute)</li>
  51. 				<li>play/pause/stop</li>
  52. 				<li>subtitles/lyrics</li>
  53. 				<li>track selection (video, audio, subtitles)</li>
  54. 				<li>speed control</li>
  55. 				<li>playlist support</li>
  56. 			</ul>
  57. 			<p>Good examples: <a href="https://mpv.io/">mpv</a></p>
  59. 			<h2>Image Viewer</h2>
  60. 			<ul>
  61. 				<li>Formats: PNG, JPEG, TGA, GIF, (CBZ)</li>
  62. 				<li>Zoom in/out, reset to 100%, fit window/horizontaly/verticaly</li>
  63. 				<li>previous/next in a list of images, with configurable auto-play</li>
  64. 			</ul>
  65. 			<p>Good examples: <a href="https://feh.finalrewind.org/">feh</a></p>
  67. 			<h2>Document Viewer</h2>
  68. 			<ul>
  69. 				<li>Formats: plain text (ASCII/Unicode control characters), PDF/A, epub</li>
  70. 				<li>Text selection and clipboard support</li>
  71. 				<li>Page Jumps</li>
  72. 				<li>Zoom in/out, reset to 100%, fit window/horizontaly/verticaly</li>
  73. 				<li>Setting the fonts family/name+size and color palette/scheme</li>
  74. 			</ul>
  75. 			<p>Good examples: None so far ☹</p>
  77. 			<h2>Text Editor</h2>
  78. 			<ul>
  79. 				<li>Unicode support</li>
  80. 				<li>Text selection and clipboard support</li>
  81. 				<li>search and replace with regex support</li>
  82. 				<li>Support for bigger-than-ram files</li>
  83. 				<li>jump to line</li>
  84. 			</ul>
  85. 			<p>Good examples: ed, ex, vi, sam, acme, <a href="https://github.com/martanne/vis">vis</a></p>
  87. 			<h2>Networked software</h2>
  88. 			<ul>
  89. 				<li>Doesn't do any requests without the user consent (must show where it goes and what it sends)</li>
  90. 			</ul>
  92. 			<h2>Web Browser</h2>
  93. 			<ul>
  94. 				<li>Complete (not just the hostname) current URL displayed at all times</li>
  95. 				<li>Saving any requested data or link destination</li>
  96. 				<li>Developer tools (viewing each request, javascript console, …)</li>
  97. 				<li>Can control JavaScript and Images loading</li>
  98. 				<li>Audio/Video only plays with the user's consent</li>
  99. 				<li>Doesn't gives permission to devices without user's consent</li>
  100. 				<li>Doesn't gives hardware information or leaks it via fingerprinting</li>
  101. 				<li>Bookmarks</li>
  102. 				<li>UserScripts: JavaScript hooks to URL patterns written by the user (extensions are sadly vendor-locked)</li>
  103. 			</ul>
  104. 			<p>As it's networked software it needs to also have a controllable way to deny extra requests (aka AdBlocker)</p>
  105. 			<p>Good examples: lynx, elinks</p>
  106. 			<p>Worst examples: Mozilla Firefox, Anything Blink-based</p>
  108. 			<h2>See Also</h2>
  109. 			<ul>
  110. 				<li><a href="/notes/phone-required-features">Phone Required Features</a></li>
  111. 				<li><a href="/decreases%20of%20usability">Decreases of usability</a></li>
  112. 				<li><a href="http://www.catb.org/esr/writings/taoup/">The Art of Unix Programming</a></li>
  113. 			</ul>
  114. 		</main>
  115. <!--#include file="/templates/en/footer.shtml" -->
  116. 	</body>
  117. </html>