Who carries a separate work cell phone?
People who are serious about a wall between work and personal business.
Readit Newshamburglar commented on Developer sentenced to prison for activating “kill switch” to avenge his firing arstechnica.com/tech-poli... · Posted by u/Volundr
I agree it's hard to draw a bright line, but I'm personally comfortable erring heavily on the side of defect for security issues.
I'd be willing to agree that certain security issues might not constitute a manufacturing or design defect. If a thought-to-be-secure encryption was cracked tomorrow, that doesn't make products using it defective at the time of manufacture.
The point is, it doesn’t matter. The only thing that matters is how consumers feel about whether the company’s reaction makes them feel like they want to trust that company with their next purchase.
As far as I'm concerned, security issues (outside of very niche situations) in a product mean that the product was defective. If you sell a defective product, you should be on the hook to correct the defect.
There’s no bright line that defines “defect” and makes this determination. What Hyundai should be considering here is whether consumers will decide that buying a car from a company that doesn’t fully own their security mistakes isn’t worth it.
hamburglar commented on Hiding secret codes in light protects against fake videos news.cornell.edu/stories/... · Posted by u/CharlesW
That still doesn't help, because the flashes are independent of the content of the video. To illustrate:
echo "This comment was posted at 18:21 UTC" | sha256sum
4f51109e71ec4df85a52affec59a9104837664be3008d1bd70cb8b4fbe163862 -
From the paper:
“ rather than encoding a specific message, this watermark encodes an image of the unmanipulated scene as it would appear lit only by the coded illumination”
They are including scene data, presumably cryptographically signed, in the watermark, which allows for a consistency check that is not easily faked.
hamburglar commented on Microsoft Flight Simulator 2024: WebAssembly SDK docs.flightsimulator.com/... · Posted by u/breve
I am not sure I am following. The game runs on windows, why not compile the add-in code directly for the single target?
Is it for future proofing it in case MS wants to release the game in a different platform that is not windows ?
Isn’t there ARM windows too? Not sure if flight sim targets that platform or not, but if so, making the extensions more portable is a win.
I've literally never heard of a company demanding you give up shares in another company as a precondition of being hired, for an engineering role.
At the executive level they may not want you holding shares in a direct competitor because it presents a conflict of interest. But even then you generally have a period to divest.
Can nobody explain what the actual demand was here? What did Google offer vs. what did they demand, and why? And why would Google be buying your shares...? None of this makes any sense the way it's been presented.
How would they even know if you were still holding those shares in another company? This scenario is pure fantasy.
This is some old school style bare bones C. popen with a big old pipe chain is pretty quick n dirty. I’d have gone digging around in proc for the active connections. Cool stuff though. I like that it’s so straightforward to read.
hamburglar commented on Ask HN: What Pocket alternatives did you move to? · Posted by u/ahmedfromtunis
Wallabag. I switched from Pocket to Wallabag years ago because I didn't like sponsored content and ads in Pocket. I originally started paying for it as a subscription directly from wallabag.it, but then I started self-hosting it. Wallabag has an option to import all of your articles from Pocket too. It's a fantastic service.
I also use wallabag
hamburglar commented on The FIPS 140-3 Go Cryptographic Module go.dev/blog/fips140... · Posted by u/FiloSottile
This is huge. I’ve spent years jumping through hoops to get Go projects signed off for FIPS-140 and I always worried that something was going to go wrong and we’d have a compliance nightmare on our hands. They just made it super easy.
hamburglar commented on FP8 is ~100 tflops faster when the kernel name has "cutlass" in it twitter.com/cis_female/st... · Posted by u/limoce
To avoid doxxing myself: In a deep call stack it’s possible to end up sanitizing inputs multiple times and in different ways.
A frequent example I’ve encountered is web frameworks that have to keep checking for escaped text because they didn’t write it in horizontal layers where you know for sure that all inputs have been scrubbed when they reach this function but not that one. So the same functions get called with data that comes from your team and from customers. Reuse is tricky.
“Checking for escaped text” is the sort of nonsense that tells you you’re dealing with amateur developers.