不要自己造轮子……
在软件开发中,"不要自己实现加密"是一条广为人知的原则。然而作者观察到,许多开发者在网站设计中却经常重蹈覆辙:自定义页面滚动、链接导航、文本选择、右键菜单、复制粘贴、密码输入框和日期选择器等。这些自定义实现往往破坏了浏览器原生功能的稳定性和用户习惯,给用户带来困扰。作者呼吁开发者信任浏览器已有的成熟功能,停止这些不必要的"造轮子"行为。
相关报道
David Gasquez argues that "slop"—low-effort, AI-generated content—degrades online spaces and should be kept private. He criticizes the growing trend of publishing thoughtless AI outputs as public work, calling for higher standards and responsibility in content creation.
The article argues against the common security advice "don't roll your own crypto," showing how it's inconsistently applied. It demonstrates that many widely-used cryptographic systems do involve custom implementations, and that the real issue lies in avoiding known vulnerable constructs like ECB mode or weak random number generators, not in writing original code entirely from scratch.
Developers and non-technical coworkers often struggle to communicate because developers communicate through written instructions while others rely on conversation. The solution is to translate technical explanations into digestible, audience-appropriate language and to repeat information multiple times, as repetition helps people gradually understand complex concepts.
The article argues that the advice "don't roll your own" regarding cryptography is not about discouraging learning or hobbyist experimentation, but about cautioning against deploying self-made cryptographic systems in production environments where security vulnerabilities could have serious consequences.
This work explores the shift from individual responsibility to collective support systems, examining how communities and institutions can alleviate the burden of self-reliance in modern society.