Out of curiosity. Where does the metadata for the books come from?
Readit NewsMeleagris commented on How I bypassed Amazon's Kindle web DRM blog.pixelmelt.dev/kindle... · Posted by u/pixelmelt
It's a little less user friendly but I really like my Boox tablet because it's a full android device.
I run Storyteller app on it and have my ebooks & audiobooks synced up perfectly like whispersync but better.
+1 for Storyteller. It is beyond fantastic to have my progress seamlessly synced between my ebooks and audiobooks.
I’m paying for BookFusion, to have synced cross-platform reading. It’s expensive, but seems to be one of the few cross-platform synced readers that supports the EPUB Media Overlays from Storyteller.
Have you experienced ghosting with your Boox tablet? I’d like to get one, but I know that ghosting would bother me.
Perhaps there’s a B2C offering to be made here. An SMS proxy, forwarding 2FA codes to people without SMS.
It would require a lot of trust.
Similar and related discussions on this post:
Meleagris commented on Why are banks still getting authentication so wrong? jamal.haba.sh/its-2025-wh... · Posted by u/kamikazee
This past weekend I was struggling to teach my 97-year old neighbor how to login to his RBC Bank account. It was an 11 step process!!! The state of technology in the Canadian banking system is abysmal.
Combine that with our cell providers, and it's a real problem. There's some cell providers like Public Mobile where you can't even opt into roaming. So SMS 2FA is never an option. [1]
[1] https://productioncommunity.publicmobile.ca/t5/Get-Support/T...
My go-to example of a whole mesh of "accountability sinks" is... cybersecurity. In the real world, this field is really not about the tech and math and crypto - almost all of it is about distributing and dispersing liability through contractual means.
That's why you install endpoint security tools. That's why you're forced to fulfill all kinds of requirements, some of them nonsensical or counterproductive, but necessary to check boxes on a compliance checklist. That's why you have external auditors come to check whether you really check those boxes. It's all that so, when something happens - because something will eventually happen - you can point back to all these measures, and say: "we've implemented all best practices, contracted out the hard parts to world-renowned experts, and had third party audits to verify that - there was nothing more we could do, therefore it's not our fault".
With that in mind, look at the world from the perspective of some corporations, B2B companies selling to those corporations, other suppliers, etc.; notice how e.g. smaller companies are forced to adhere to certain standards of practice to even be considered by the larger ones, etc. It all creates a mesh, through which liability for anything is dispersed, so that ultimately no one is to blame, everyone provably did their best, and the only thing that happens is that some corporate insurance policies get liquidated, and affected customers get a complimentary free credit check or some other nonsense.
I'm not even saying this is bad, per se - there are plenty of situations where discharging all liability through insurance is the best thing to do; see e.g. how maritime shipping handles accidents at sea. It's just that understanding this explains a lot of paradoxes of cybersecurity as a field. It all makes much more sense when you realize it's primarily about liability management, not about hat-wearing hackers fighting other hackers with differently colored hats.
We should really define a new term for such work.
Perhaps "Risk Compliance Security" or "Security Compliance Engineering"
Where "Security Compliance Engineering" is the practice of designing, implementing, and maintaining security controls that satisfy regulatory frameworks, contractual obligations, and insurance requirements. Its primary objective is not to prevent cyberattacks, but to ensure that organizations can demonstrate due diligence, minimize liability, and maintain audit readiness in the event of a security incident.
Key goals:
- Pass external audits and internal reviews - Align with standards like ISO 27001, SOC 2, or NIST
- Mitigate organizational risk through documentation and attestation
- Enable business continuity via legal defensibility and insurability
In contrast…
Cybersecurity is focused on actively detecting, preventing, and responding to cyber threats. It’s concerned with protecting systems and data, not accountability sinks.
Meleagris commented on Show HN: I built a modern Goodreads alternative kaguya.io/... · Posted by u/vasanthk1125
I was looking into this space the other day, and the number of options has been growing. By my record there is:
I was actually trying to determine the best free source of metadata for books. I was hoping for something like MusicBrainz.
The best I could find seemed to be https://openlibrary.org. There is https://isbndb.com, but it is paid.
https://storyteller-platform.gitlab.io/storyteller/
https://codeberg.org/richwaters/StoryAlign