Hackerone (where cURL hosted their bounty program) tracks the reputation of bounty hunters. I don't understand why they are not taking advantage of this. Make a private program, invite only hackers who have proved themselves by submitting relevant reports.
Readit Newsmemesarecool commented on cURL removes bug bounties etn.se/index.php/nyheter/... · Posted by u/jnord
memesarecool commented on Exploiting the IKKO Activebuds “AI powered” earbuds (2024) blog.mgdproductions.com/i... · Posted by u/ajdude
> Overall simple security design flaws but it's good to see a company that cares to fix them, even if they didn't take security seriously from the start.
It depends on what you mean by simple security design flaws. I'd rather frame it as, neglect or incompetence.
That isn't the same as malice, of course, and they deserve credits for their relatively professional response as you already pointed out.
But, come on, it reeks of people not understanding what they're doing. Not appreciating the context of a complicated device and delivering a high end service.
If they're not up to it, they should not be doing this.
Yes I meant simple as in "amateur mistakes". From the mistakes (and their excitement and response to the report) they are clueless about security. Which of course is bad. Hopefully they will take security more seriously on the future.
memesarecool commented on Exploiting the IKKO Activebuds “AI powered” earbuds (2024) blog.mgdproductions.com/i... · Posted by u/ajdude
Cool post. One thing that rubbed me the wrong way: Their response was better than 98% of other companies when it comes to reporting vulnerabilities. Very welcoming and most of all they showed interest and addressed the issues. OP however seemed to show disdain and even combativeness towards them... which is a shame. And of course the usual sinophobia (e.g. everything Chinese is spying on you).
Overall simple security design flaws but it's good to see a company that cares to fix them, even if they didn't take security seriously from the start.
Edit: typo
memesarecool commented on Ask HN: Employees of Tesla and SpaceX, how do you feel after the inauguration? · Posted by u/josefresco
Apologies since I am not an employee but I wanted to share this story because I had this exact question back in 22: I went to DEFCON two years ago and visited the Aerospace Village where they had a handful of SpaceX employees running some sort of challenge and generally discussing what things SpaceX is working on (Starlink etc.)
Keep in mind in 22, the software dev community was just starting to wake up to the kind of person Musk was post Twitter, people in the automotive/space industry were screaming about him for years prior(anyone from /r/realtesla?)
Nevertheless I was determined to confront these employees and figure out why they continue to work for this guy. The pay actually sucks all things considered and the hours are long and brutal. We occasionally see that even if you are successful it is still not enough and he tosses employees out the door after they have worked so hard(just look at the recent firing of Rebecca Tinucci and her team).
They were very clear, its all about being a part of a team that is executing at a level no other company is doing. If you are a naturally exceptional performer, you want to be working with other exceptional people. Too many companies are just compromising at some level in the bureaucracy whether its poor management or tolerating poor performers or making decisions that kneecap the best people in the org.
As they were making this point, they showed me the teardown of the Starlink antenna, its a very nice looking design very impressive what they came up with in such a short timeframe. To them, this drive for excellence tops all. Maybe everyone has their own red line but you have to consider what you are giving up if you leave the Musk universe in favor of some principle: the loss of being on such a fast moving high performing team.
I do recall that they were uneasy talking about this subject but that could have just been because they dont know who I am at a hacker conference. Observing the Tesla fanboys over a decade, they have a built in paranoia and trauma from years of. watching the musk companies teeter on the brink and dealing with short sellers. In the past when covering Tesla from afar, ive observed this with the employees as well. (this is just my observation, I could be wrong)
We see the results: no one is even close to SpaceX, all the other satellite providers don't hold a candle to StarLink, while there are competitors to NeuraLink, he is blazing forward everything else be damned. Tesla still sits near the top of the technology stack when it comes to EV innovation only to potentially be outdone by the Chinese but if you are an American, you have few companies in the US operating at that level (probably Tesla, Rivian and Lucid to be honest). I am reminded of this every time I end up at an EVGo or Electrify America station only to curse off the company for not fixing their junk equipment.
This reminds me of my teenage years, when I was considering going into aerospace engineering to work on military aircraft. But I was immensely conflicted between the feelings of "This is where all the coolest tech is" and "I would be building murdering machines".
The pacifist side won and decades later I feel good about the decision. I managed to find other work that stimulated my curiosity without having to be part of immense suffering.
That is a roman salute, yes. And a swastika is also a buddhist symbol.
memesarecool commented on Ask HN: Employees of Tesla and SpaceX, how do you feel after the inauguration? · Posted by u/josefresco
Also curious to hear about their thoughts, specially from those employees who have a firm anti-fascist belief. I would 100% be considering my resignation if I were in their position.
OP: I just submitted a similar question, with a neutral title. While I think your topic is valid, the biased headline probably contributed to the flags.
Just to clarify: I'm OP of the post asking the question being discussed; I did not submit this question about censorship.
That's absolutely the kind of thing I would flag and I'm very much a left winger. The posting guidelines⁰ explicitly say: "If they'd cover it on TV news, it's probably off-topic." You don't need a conspiracy to account for this kind of thing disappearing swiftly.
I'm not a left winger just anti-fascist; and I posted the question because I am curious about the thoughts of the employees. I don't want to discuss the gesture. There's a lot of discussion here about work environment and career decisions and this is what I was asking about. I think it was a valid question and a shame it got self-censored by part of the community.
edit: this was the OP btw https://news.ycombinator.com/item?id=42781509
You can see some recent mod commentary on this. It's more or less how HN works and is supposed to work:
https://news.ycombinator.com/item?id=42777298
https://news.ycombinator.com/item?id=42775648
There's a lot of discussion here about work environment and startup culture and I thought it was a valid question to current SpaceX and Tesla employees. I am genuinely curious and thought HN would be the best place to ask this and get some genuine answers.