Readit News logoReadit News
hoffs commented on Okta – Username Above 52 Characters Security Advisory   trust.okta.com/security-a... · Posted by u/lopkeny12ko
Forbo · 10 months ago
I'm really sick of companies disclosing this shit late Friday afternoon.

Go fuck yourselves.

Sincerely, Everyone in the industry

hoffs · 10 months ago
geee, nobody is targeting you
hoffs commented on Keyhole – Forge own Windows Store licenses   massgrave.dev/blog/keyhol... · Posted by u/tuxuser
thot_experiment · a year ago
Yup, 100%. My golden rule of computers is:

If it's working right now, an update can only cause it to break. The best case scenario is that it still works. Why would your roll the dice?

hoffs · a year ago
Golden rule to get exploited
hoffs commented on How Uber tests payments in production   news.alvaroduran.com/p/cr... · Posted by u/ohduran
andrewl-hn · a year ago
Isn't it what's everybody does in the industry?!

Every single place that I ever worked at in a past 20 years tests payments using real cards and real API endpoints. Yes, refunds cost a few pennies and sometimes can't be automated, but most payment providers simply do not offer testing APIs of a sufficient quality.

Situations when a testing endpoint has one set of bugs not found on production and vice versa used to be so ubiquitous in mid-2000 to mid-2010s, that many teams make a choice agains using testing endpoints altogether - it's too much work to work around bugs unique to the environment that no real customers actually hit. And now the whole generation of developers grew in a world of bad testing APIs of PayPal, Authorize.net, BrainTree, BalancedPayments (remember them?), early Stripe, etc. So, now it became an institutional knowledge: "do not use testing endpoints for payments".

To be exact, people often start using testing endpoints for early stages of development when you don't have any payment code at all, but before the product launch things get switched to production endpoints and from that point on testing endpoints aren't used at all. Even for local development people usually use corporate cards if necessary.

I have a suspicion that things may be different in the US, with many payment providers' testing environments simulate a typical domestic US scenario: credit cards and not debit, no 3d-secure, no strict payment jurisdiction restrictions, etc.

hoffs · a year ago
Doing penny testing yourself is different from letting a chunk of your user base test it
hoffs commented on Global IT outage shows dangers of cashless society, campaigners say   theguardian.com/technolog... · Posted by u/rntn
1_1xdev1 · a year ago
It’s way more private than all of your transaction history rolled up by your card issuer.

Does some central authority have access to and the compute power to correlate all of the data available in those video feeds? No

hoffs · a year ago
You only need to know where the person was or when crime was committed,
hoffs commented on Global IT outage shows dangers of cashless society, campaigners say   theguardian.com/technolog... · Posted by u/rntn
zoobab · a year ago
No fines, no prison.
hoffs · a year ago
It's up to the customersthat were affected, they could sue for damages, but doubt many will do
hoffs commented on WHO says talc is 'probably' cancer-causing   medicalxpress.com/news/20... · Posted by u/geox
shric · a year ago
There was a recent (August 2023) The Studies Show episode[1] on WHO's cancer list. It goes in to why these lists are incredibly misleading.

My own mother died of Ovarian Cancer at age 40 and used talc. I'm not confidence for a second there is sufficient evidence to even hint at causality.

[1] https://www.thestudiesshowpod.com/p/episode-3-aspartame

hoffs · a year ago
So why is it misleading? Don't think anyone is going to listen to a podcast just for that.
hoffs commented on What's Coming Next for ESLint   eslint.org/blog/2024/07/w... · Posted by u/soheilpro
jerrygoyal · a year ago
wish if it could support eslint plugins
hoffs · a year ago
Ironic
hoffs commented on PostgreSQL and UUID as Primary Key   maciejwalkowiak.com/blog/... · Posted by u/taubek
mixmastamyk · a year ago
You're saving storage space but potentially leaking details. Is that ok for your application? No one can answer but your org.
hoffs · a year ago
The details part is so miniscule that I doubt it even matters. You'd have difficult time trying to enumerate uuidv7s anyways.
hoffs commented on Ask HN: How does Alexa avoid interrupting itself when saying its own name?    · Posted by u/dumbest
ma2rten · a year ago
This is the same problem as echo cancellation on calls. This is something that built into a lot of software and hardware.
hoffs · a year ago
Yeah, just like having a Google meet with speakers and microphone that's built in, when someone is speaking it gets cancelled out
hoffs commented on Mercedes EQXX Record Drive: Riyadh to Dubai Single Charge 1000+ km Range [video]   youtube.com/watch?v=7bP-W... · Posted by u/teleforce
superkuh · a year ago
Notice has nearly all electric and self driving car demonstrations are in places which have no cold temperatures and no inclimate weather.
hoffs · a year ago
Yes, it's well known and established that cold climates has negative effect on batteries. Of course if you're trying to get the best result you optimize the conditions. Just look how most sports records and times are set with best conditions available.

u/hoffs

KarmaCake day252June 7, 2017View Original