Readit News logoReadit News

Deleted Comment

bink commented on We pwned X, Vercel, Cursor, and Discord through a supply-chain attack   gist.github.com/hackermon... · Posted by u/hackermondev
Illniyar · 5 hours ago
Nice discovery and writeup. Let alone for a 16 yo!.

I've never heard an XSS vulnerability described as a supply-chain attack before though, usually that one is reserved for package managers malicious scripts or companies putting backdoors in hardware.

bink · 4 hours ago
I think that's misuse of the term as well, but like you said they are only 16.
bink commented on We pwned X, Vercel, Cursor, and Discord through a supply-chain attack   gist.github.com/hackermon... · Posted by u/hackermondev
0xbadcafebee · 4 hours ago
How these companies don't hire kids like Daniel for pennies on the dollar and have him attack their stacks on a loop baffles me. Pay the kid $50k/yr (part time, he still needs to go to school) to constantly probe your crappy stacks. Within a year or two you'll have the most goddamn secure company on the internet - and no public vulns to embarrass you.
bink · 4 hours ago
It's not quite that simple. I don't think most bug bounty participants want a full-time job. But even more-so in my experience they are not security generalists. You can hire one person who is good at finding obscure XSS vulns, another that's good at exploiting cloud privilege escalation in IAM role definitions, another that's good at shell or archive exploits. If you look at profiles on H1 you'll see most good hackers specialize in specific types of findings.
bink commented on Ford kills the All-Electric F-150   wired.com/story/ford-kill... · Posted by u/sacred-rat
tracker1 · 3 days ago
Significant portions of the body and interior were not shared with general F-150 models... At least those parts most likely to be damaged in minor accidents... imagine having your work truck in the shop for 2-3 months for want of a corner light fixture.
bink · 3 days ago
Yeah, that's definitely a no-go. I think you'd see that with any new model, however. I once had a Ducati in the shop for 4-5 months just waiting on a wheel because it was a new model.
bink commented on Ford kills the All-Electric F-150   wired.com/story/ford-kill... · Posted by u/sacred-rat
oconnore · 3 days ago
I was considering getting a Rivian and decided that in fact I would probably not allow the 24 year old dude at my local construction supply co to use a skid steer to drop a load of gravel into the bed of my $75k+ electric vehicle.

So instead I got a used Ford F150 (gas) and when the skid steer guy drops gravel into the bed I feel fine.

bink · 3 days ago
There's always a chance the new Scout will fit that model. I'm not getting my hopes up though. It seems every company that releases an EV truck says they'll sell it for $30-40k and then suddenly it's $80k+.
bink commented on Ford kills the All-Electric F-150   wired.com/story/ford-kill... · Posted by u/sacred-rat
LUmBULtERA · 3 days ago
I hope that Rivian does fine, but they still aren't profitable are they?
bink · 3 days ago
They turned a gross profit, but they've only been selling vehicles for three years. It'll be several more before they are a profitable company. No company can build out two manufacturing hubs (hundreds of millions each) and turn a profit so quickly.
bink commented on Ford kills the All-Electric F-150   wired.com/story/ford-kill... · Posted by u/sacred-rat
exabrial · 3 days ago
I expected the "T word" to come out in the article, however this fails to address any of the practical reasons it isn't a good replacement for the value-engineered F-150:

* The price isn't right for small businesses. These trucks are quite expensive

* They're difficult to repair. A regular F-150 is designed to be repaired; these things are designed like iPhones to be disposable.

* Parts availability is scarce, contrasted with a regular F-150 (even junkyards are full of spare parts, that aren't software constrained)

* They're loaded with useless/barely-functional interior electronics that are poor copies of Tesla

* They're bloated with parts that don't need to exist (excessive exterior accent lighting, badges, over-complicated blinkers)

Oddly enough, single-charge range issues are pretty much non-existent (for non-towing applications).

bink · 3 days ago
> The price isn't right for small businesses. These trucks are quite expensive

They definitely aimed for the luxury market, like Rivian. Who knows how successful they would've been if they aimed for mid-range like Scout. That's the market they claimed to be entering when they started taking reservations. They also could've offered a fleet ready version without the luxury features, but must've decided not to.

> They're difficult to repair

How so? They are far simpler to maintain than a normal F-150. They're new so they do have parts issues for the electronic components, I'm sure, but I think that's a fair trade-off. In any case, I don't think offering a hybrid version makes the vehicles easier to maintain or repair. If anything it's the opposite.

> Parts availability is scarce, contrasted with a regular F-150 (even junkyards are full of spare parts, that aren't software constrained)

I thought one of the advantages of the F-150 was that most parts were shared with the standard F-150? The battery and motors, maybe not.

bink commented on US Tech Force   techforce.gov/... · Posted by u/purple_ferret
kulahan · 3 days ago
A gov-backed retirement plan actually is nice. You don’t have to worry about losing your Chrysler pension because they went out of business.
bink · 3 days ago
Amusingly, there's actually a government agency that takes over pension plans from failed companies. PBGC.
bink commented on Carrier Landing in Top Gun for the NES   relaxing.run/blag/posts/t... · Posted by u/todsacerdoti
thinkingtoilet · 3 days ago
Was most of Battletoads tough, or just the sewers part? It's been so so long.
bink · 3 days ago
Everything after the first level was tough. Those damn speeder bikes.
bink commented on Carrier Landing in Top Gun for the NES   relaxing.run/blag/posts/t... · Posted by u/todsacerdoti
ckozlowski · 3 days ago
I didn't either!

Granted, I wasn't good at video games in general. And this one infuriated me, because I loved it. I could easily beat the first level, but then I crashed on carrier landing. This happened for years. I only ever saw the first level of this game.

Then one day, while staying at my elementary afterschool sitter's house, one of the kids there told me he played Top Gun as well. He could land, but wasn't very good at the rest of the game.

A plan was formed.

The next day, I brought the cartridge over, and we settled in. I'd play the level, then hand him the controller at which point he'd plant it on the deck. Rinse and Repeat. Top Gun and Top Gun: The Second Mission didn't have too many levels, (6 maybe?) and I don't think it took us too long to beat. Neither one of us had seen much of the game. But working together, we beat both in a matter of hours.

I still look back on that as one of the few NES games I finished without codes or a Game Genie, just the help of a friend. =D

bink · 3 days ago
The blog says that failing to land on the carrier didn't actually fail the mission. Maybe you're misremembering? I just remember this game being so frustrating that I never replayed it.
b

u/bink

KarmaCake day2292August 27, 2016View Original