Readit News logoReadit News
anxman commented on Dulce et Decorum Est (1921)   poetryfoundation.org/poem... · Posted by u/bikeshaving
kibibu · 10 days ago
It's a great song, but as a piece of poetry it's not even in the same league imo.

(This is my all time favourite poem though)

anxman · 10 days ago
Same. I had to write an essay about it which helped me appreciate it in a new way.
anxman commented on Your Supabase is public if you turn off RLS   skilldeliver.com/your-sup... · Posted by u/skilldeliver
MoonWalk · 3 months ago
To store application-specific data about users. The Supabase doc or examples show this. Where else would you put such data?

But what the docs don't cover is the provided Users table. Missing documentation is why I gave up on Supabase; and the Users table was one of the first problems I encountered. I could find no details on what to expect in each column at any given time.

Upon creating a new user, values get set in this table for no apparent reason. So if your application depends on knowing the verification status of a new user (for example), good luck... Supabase claimed every user was verified upon creation.

anxman · 3 months ago
https://supabase.com/docs/guides/auth/auth-hooks

These have gotten much less annoying to use now that it’s controlled through the config.toml.

anxman commented on Your Supabase is public if you turn off RLS   skilldeliver.com/your-sup... · Posted by u/skilldeliver
MoonWalk · 3 months ago
To store application-specific data about users. The Supabase doc or examples show this. Where else would you put such data?

But what the docs don't cover is the provided Users table. Missing documentation is why I gave up on Supabase; and the Users table was one of the first problems I encountered. I could find no details on what to expect in each column at any given time.

Upon creating a new user, values get set in this table for no apparent reason. So if your application depends on knowing the verification status of a new user (for example), good luck... Supabase claimed every user was verified upon creation.

anxman · 3 months ago
The auth schema is intentionally not exposed to the rest api for security reasons. You need to use an auth hook to put data where you need, or an RPC with appropriate privileges, and of course RLS on any tables.
anxman commented on Your Supabase is public if you turn off RLS   skilldeliver.com/your-sup... · Posted by u/skilldeliver
anxman · 3 months ago
Supabase doesn’t make a public users table by default. The user schema is in auth and secured. The problem is that unskilled developers bypass those controls out of convenience and put data into Public without RLS. Even the Supabase docs warn against this.
anxman commented on Ask HN: My mother was scammed out of all her savings. What should I do?    · Posted by u/scapbi
N_Lens · 3 months ago
I think this problem should be solved politically/legally first, technology can easily track money as you know.

How are scammers able to operate bank accounts without leaving any traces, and why don’t the police and banks have the power to reverse transactions that are obviously fraudulent.

anxman · 3 months ago
It's actually more complicated, but the draining of scam money at scale (ie: billions) is done with the help of collaboration of the Triads and Mexican cartels. IE: Chinese scammers rob the world of billions. They ultimately end up with tons of crypto but still need to launder it. They collaborate with the Mexican cartels to buy USD cash from them paid via crypto. Then the Triads re-launder that cash or sell it to other Chinese nationals in the USA.
anxman commented on Ask HN: My mother was scammed out of all her savings. What should I do?    · Posted by u/scapbi
N_Lens · 3 months ago
I think this problem should be solved politically/legally first, technology can easily track money as you know.

How are scammers able to operate bank accounts without leaving any traces, and why don’t the police and banks have the power to reverse transactions that are obviously fraudulent.

anxman · 3 months ago
Crypto
anxman commented on Microsoft won't let me pay a $24 bill, blocking thousands in Azure spending    · Posted by u/Javin007
rdtsc · 3 months ago
Do you have to use Azure? Maybe Azure is nice and signaling this way the state of the internals and how things will work from here on. So it's sneakily trying to help you move to somewhere else, before things become worse and you spend the thousands and then end up stuck.
anxman · 3 months ago
If you want to sign Windows binaries, Azure is the best way now.
anxman commented on PayPal/Braintree's new chargeback policy forces merchants to accept fraud <$1000   developer.paypal.com/brai... · Posted by u/benmorris
benmorris · 4 months ago
On Aug 27th 2025, Braintree (owned by PayPal) introduced a policy that forces merchants to accept pre-arbitrations for disputes under $1,000:

https://developer.paypal.com/braintree/articles/risk-and-sec...

I’ve been a PayPal/Braintree merchant for over 10 years, and this feels like a pretty big shift in risk.

For anyone not deep into disputes:

- A customer files a chargeback. - The merchant can submit evidence and may win that first round. - The customer can then file a second dispute, which goes into pre-arbitration. The merchant can again submit evidence and, historically, sometimes win.

If either side pushes further, it goes to arbitration, where there’s usually a few-hundred-dollar fee for the losing side.

Under this new policy, for transactions under $1,000, Braintree will automatically accept the pre-arbitration in favor of the customer. There’s no second chance to present your side as the merchant; the dispute is simply closed and refunded to the cardholder.

Practically, this means:

- A customer can lose the first dispute, - Immediately escalate, - And automatically win the pre-arbitration if the transaction is under $1,000.

I’ve already had multiple cases where bad-faith customers was awarded the full amount at pre-arbitration solely because of this rule. At that point, the only remaining recourse is to pursue the customer directly (legal action, collections, etc.), which is usually not realistic for sub-$1k orders.

For anyone running ecommerce on Braintree, this effectively creates a “free second shot” at a dispute for customers under $1k, with the merchant guaranteed to lose the second round by policy.

Has anyone else run into this yet?

anxman · 4 months ago
Use Stripe?
anxman commented on I have recordings proving Coinbase knew about breach months before disclosure   jonathanclark.com/posts/c... · Posted by u/jclarkcom
anxman · 4 months ago
Not sure if the op is reading, but I also detected the same Coinbase hack around the same timeline. From what I can tell, literally everything was compromised because even their Discord channel's api keys were compromised and were finally reset around April or May. This means their central secrets manager was likely compromised too.
anxman commented on Poker fraud used X-ray tables, high-tech glasses and NBA players   bbc.com/news/articles/cz6... · Posted by u/vegasbrianc
anxman · 5 months ago
https://www.markedcardsshop.com

This appears to be the / a source for the devices in question. It's worth reading over the technical details of how it all works. It's both terrifying and impressive. Cards can be identified using a barcode encoded on their thin edge from meters away.

a

u/anxman

KarmaCake day358July 23, 2007View Original