Readit News logoReadit News
busrf commented on The HK19 manual – A crowdsourced protest guide   docs.google.com/document/... · Posted by u/lawrenceyan
centimeter · 5 years ago
(For context, I lived in Hong Kong from 2014 to late 2020)

I'm not sure why protestors would take tips from the HK protestors. After all, they were not at all successful.

I attribute this problem to two things:

1) Hong Kongers are culturally mostly British.

2) Modern British culture has no martial tradition whatsoever, and therefore no practical ability to mount a successful resistance to any kind of even moderately-equipped state actor that is willing to use force.

If you're dealing with a polite government that's strictly constrained by voter approval, then the HK strategy might work.

busrf · 5 years ago
How is “martial tradition” related to protest effectiveness? You know there’s more to building long lived protest movements than street fighting, right? The doc itself lists many forms of effective action that had nothing to do with “martial tradition”.
_e21c commented on About the March 8 and 9, 2021 Verkada camera hack   blog.cloudflare.com/about... · Posted by u/jgrahamc
ggreer · 5 years ago
Related HN threads: https://news.ycombinator.com/item?id=26406969 https://news.ycombinator.com/item?id=26405056

Cloudflare's post doesn't mention it, but the Twitter account that claimed credit for the hack (and made all kinds of ridiculous boasts like "we could have owned half the internet") has been suspended.[1] Before that the owner of the account posted plenty of personal information, including selfies.[2] A Mastodon instance is where they're posting stuff now.[3]

It really seems like this person is mentally ill and it's only a matter of time before they get in trouble with law enforcement. I mean, it's standard opsec to avoid posting your mailing address on your l33t h4x0r account.[4] I realize the address is a PO box, but this is practically begging the authorities to intervene.

1. https://twitter.com/nyancrimew

2. https://archive.is/8IJ8G

3. https://notbird.site/@deletescape

4. https://notbird.site/@deletescape/105548475573915843

_e21c · 5 years ago
While I agree that the opsec here is bad if nyancrimew doesn’t want to get arrested, I think you should disclose here, as you do in your twitter bio, that you work at Okta. Accusing the person who just breached your company of having a mental illness is not great form.
busrf commented on Hackers Break into Security Cameras, Exposing Tesla, Jails, Hospitals   bloomberg.com/news/articl... · Posted by u/opaque
bellyfullofbac · 5 years ago
If they wanted to end "surveillance capitalism", helping the company that supply these systems secure them better would not help their goal.

Or maybe they can collect the millions, and publish the compromising material anyway? Although if they had given you money, they'd have your law-enforcement compatible personal information.

Edit: ah I thought he was^W^W they were being anonymous, his^W their twitter point to his^W their website...

busrf · 5 years ago
Just use “they” without any of that nonsense. Show some basic respect to the hacker who popped root shells inside Cloudflare and Tesla networks, without leveraging it to enrich themselves in any way.
_e21c commented on Compensation as a Reflection of Values   oxide.computer/blog/compe... · Posted by u/timf
_e21c · 5 years ago
It would be nice to have a bit more detail about the equity part of the total compensation, since it does seem like, from reading the paragraph describing how equity fits into this, that the amount of equity granted to employees is not equal.
busrf commented on Gab has been hacked and 70GB of data leaked   arstechnica.com/informati... · Posted by u/daenney
asabjorn · 5 years ago
Thats a good point. And because of this they are limited in their mitigation strategies.
busrf · 5 years ago
I just looked it up and the history is that they did it so that users could access the site using fediverse clients, because their own clients were getting pulled from app stores.

https://www.theverge.com/2019/7/12/20691957/mastodon-decentr...

ofc there is that whole discussion about whether open sourcing actually affects application security, having your security model assume that attackers already have access to the source code, etc. Not to mention it looks like they did make quite extensive modifications on top of the mastodon code. Some of the code that people have discovered lying around in the gab codebase is really embarrassing.

_e21c commented on Gab has been hacked and 70GB of data leaked   arstechnica.com/informati... · Posted by u/daenney
asabjorn · 5 years ago
As much as I love open source, Gab should have never been open source. It seems very unwise to make a highly targeted free speech social media platform available for easy backend code analysis. No wonder they were hacked.

https://git.rip/gab/gab-social

_e21c · 5 years ago
I believe they had to release their source code in order to comply with the AGPL, because they forked off mastodon right? I’m not sure if they decided to go with mastodon as the basis for their codebase in the beginning or if that was a later decision.
busrf commented on Gab has been hacked and 70GB of data leaked   arstechnica.com/informati... · Posted by u/daenney
busrf · 5 years ago
Look at this very secure code written by their CTO: https://archive.vn/oxbck
busrf commented on 3 years ago, remote top paying gigs were hard to find. Today they are the norm   twitter.com/southpolestev... · Posted by u/luu
giantandroids · 5 years ago
It's always been a no brainer for my team to hire remote and we were majority remote before COVID. There is simple reason for this; The hiring pool is much much wider when you remove geographical restrictions. Trying to hire within the criteria of someone being able to physically transport themselves to a certain location limits greatly your ability to find and recruit talent. Even more so for niche areas where skills are even more in demand (Security Engineering in my case).

I remember just before COVID a large content streaming platform (the biggest one there is) were trying to hire security team members, it caught my interest and I was more than experience enough, but they had a caveat that hires were only available for those that can travel to Los Gatos, California. Suffice to say, being in the UK with children settled into school and liking my life here, it was a showstopper. edit: I just checked and they still have the same hiring conditions on their job board.

COVID has proven the case of 'necessity is the mother of all invention' and these companies are finally understanding that you can run remote engineering teams perfectly ok. Even though it's not like for like, open source projects have been operating this way for years and had set the blueprint on remote collaboration. Some of the folks on my team used to be office based (even though we worked together virtually, they liked the social aspect), however they have pivoted now. Firstly they love how they can spend a good 4-5 hour chunk of uninterrupted thought at pure unadulterated programming without someone wondering over in the middle of them debugging to say 'he, did you see the email I sent you'.

busrf · 5 years ago
Unfortunately the CEO of the large streaming company based in Los Gatos has strongly negative feelings about remote work even after COVID: https://www.wsj.com/articles/netflixs-reed-hastings-deems-re...
_e21c commented on Silicon Valley’s Safe Space   nytimes.com/2021/02/13/te... · Posted by u/implying
vinceguidry · 5 years ago
Having followed SSC for a number of years in the mid-2010s, I eventually just started drifting away. The so-called Grey Tribe is really just toxicity that's managed to talk itself into self-unawareness. Case in point, quoted from the article:

> The main reason computer scientists, mathematicians and other groups were predominantly male was not that the industries were sexist, he argued, but that women were simply less interested in joining.

This is exactly the sort of thing you manage to convince yourself of when you don't want to be a part of the people calling themselves the good guys, but also don't want to throw in with the sorts of people comfortable with being called the bad guys. Everybody in the Blue Tribe is going to precisely see the toxic nature of this statement. Women aren't interested in joining because of the sexist nature of the industries. Reversing the order of the causation is making excuses for sexism and is itself sexist.

The New York Times does not have to explain this to its audience. They already know. All they really have to do is list the cavalcade of toxicity that the community produced and everybody who has been in the Blue Tribe for years will know the score, and people like me who were actually a part of it and drifted away from the Grey Tribe to join the Blue Tribe are nodding their heads.

Now, this is Hacker News, this community is very close to the SSC one, so I know a lot of people aren't going to take this well. But the Grey Tribe really isn't a nice place to be, and the sooner you can realize this, the sooner you can find actual political heft in the world.

Contrarian logic sucks. Rationalism isn't all it's cracked up to be. It sucks all the life out of the air for minorities. When you state a contrarian opinion like it's fact, like it should be considered because you're the one saying it, and the reason you're stating it is none other than you don't like all those nasty SJWs, you're denying the lived experience of all the people out there who spent their lives being one of those oppressed minorities. All of those girls who hide their gender from their gaming pals. All those Black Americans who discover that the tech landscape doesn't reward knowledge and talent as much as it does the right race and skin color.

It may be a little better in the tech industry than it might be, say, in the construction industry, but to pretend these things don't exist or aren't as important as what your mind sees as bigger is, well, toxic. And it's the cornerstone of the Grey Tribe mindset.

_e21c · 5 years ago
The number and variety of knots “rationalists” will tie themselves into when trying to explain away the existence of discrimination and organized structures for enforcing that discrimination is really funny, and sad, and absurd.
busrf commented on Me and ADHD   linkedin.com/pulse/adhd-m... · Posted by u/rbanffy
0xb0565e486 · 5 years ago
Am I the only one who feels a bit discredited when someone blames their ADHD for their shortcomings?

To me, all the ADHD symptoms listed in this article sounds like nothing more but normal human traits.

Also, author hasn't been diagnosed with ADHD, and the tips can be helpful to everyone.

busrf · 5 years ago
Frequency and severity of those symptoms are considered for the diagnosis. Everyone shows symptoms of depression sometimes; not everyone has depression.
b

u/busrf

KarmaCake day254April 11, 2018
About
diaosi
View Original