Readit News logoReadit News
slackingoff2017 commented on So Close   hackernoon.com/so-close-8... · Posted by u/vkdelta
angel_j · 8 years ago
What a garbage post from a garbage project that wasted lots of time.

Locks keeps honest people honest, they don't stop a determined burglar. A digital, key-less system with new gears to move the same deadbolt, is providing zero innovation, b/c it's still just a little deadbolt securing all ~inch of door-perimeter to the frame (unless I missed something and they also re-invented the door hinge).

So much business BS in this post, too. Like claims of a new UX! As if the process of unlocking is the "experience" factor of importance! And the part about wanting to create an "addictive experience"! About a door lock! And the part about "we created a culture of innovation"!!! What inflated garbage!

slackingoff2017 · 8 years ago
I think the cost honestly killed them. If they would have just bolted a SoC and decent software onto a mostly existing lock, they could have sold the thing for $50 more than a regular lock and still made money.

Their desire to build everything from the ground up is stupid. The physical door lock has been optimized for thousands of years by countless companies. The only way you're gonna make it any better is with new technology, so take a regular lock and bolt ur magic sauce onto it!

slackingoff2017 commented on The mysterious case of the Linux Page Table Isolation patches   pythonsweetness.tumblr.co... · Posted by u/KirinDave
justincormack · 8 years ago
Looks like it is speculative execution based, and does not affect AMD

https://lkml.org/lkml/2017/12/27/2

AMD processors are not subject to the types of attacks that the kernel page table isolation feature protects against. The AMD microarchitecture does not allow memory references, including speculative references, that access higher privileged data when running in a lesser privileged mode when that access would result in a page fault.

Disable page table isolation by default on AMD processors by not setting the X86_BUG_CPU_INSECURE feature, which controls whether X86_FEATURE_PTI is set.

slackingoff2017 · 8 years ago
maybe it has to do with CR3 register? https://patchwork.kernel.org/patch/10138835/

Edit: switched to link without AD cancer

slackingoff2017 commented on The mysterious case of the Linux Page Table Isolation patches   pythonsweetness.tumblr.co... · Posted by u/KirinDave
empath75 · 8 years ago
If this guy can figure this out, anybody with the means and motivation to write such an exploit is already working on t.
slackingoff2017 · 8 years ago
All of the serious hackers with resources have a paid mole involved in the embargo discussion mailing list. The most dangerous people already know.

Embargo is simply a way to make sure the huge, rich cloud providers don't have their reputation tarnished at the expense of everyone else. "Stay with bigco, we fix things before everyone finds about it"

slackingoff2017 commented on REST is the new SOAP   medium.com/@pakaldeboncha... · Posted by u/sidcool
slackingoff2017 · 8 years ago
Grpc is the future, I'm amazed that nobody seems to be using it. Easy endpoint definitions and code generation in almost every popular language. Much faster than REST and zero boilerplate code. The client libraries even have http baked in so no "controllers" or route mapping to write. It's simply fantastic.

If you run into a language without grpc support you just standup a JSON proxy and pretend it's REST.

slackingoff2017 commented on Amazon's Fake Review Problem   brianbien.com/amazons-fak... · Posted by u/doglet
slackingoff2017 · 8 years ago
The problem is massive. Most people haven't noticed yet but it's only a matter of time. Eventually everyone gets burned at least once and Amazon becomes the new ebay.

They need to get a handle on their supply chain and stop outsourcing so much of their product listings to shady third party sellers. Shady third party sellers go hand-in-hand with fake reviews. Most reputable brands don't want to get their hands dirty with that stuff. It's guys making margin on reselling that have all the skin in the game and most of the incentive to manipulate the system.

I've never gotten a fake from any brick and mortar or online merchant that sells direct. Only places I've gotten fakes and been duped by rampant fake reviews are eBay and Amazon. Once a competitor gets their shit together (I'm betting on Walmart) and has an equally convenient online store, Amazon will be the Myspace of online sales.

People have loyatly to brands but not the company that sells them. If something better comes along I'll switch immediately just like I did years ago with ebay

slackingoff2017 commented on Opaque Types in Flow and TypeScript   codemix.com/opaque-types-... · Posted by u/phpnode
slackingoff2017 · 8 years ago
I don't see a ton of value in this. The main use case mentioned (preventing use of functions with wrong parameter order) can be worked around using the common 'options' object pattern that everyone uses for functions with a lot of parameters already

Still a neat feature I guess, but IMO it's not worth the additional mental overhead of implementing it.

A lot of problems in JS and it's typed derivatives go back to it's 'structural' type system where every object is a key-value collection and objects with the same keys and values are interchangeble.

I really wish the ES standard would just introduce a new variable type that has nominal typing and ditches the prototypical inheritence chain. You could only use it with new code but since transpilation is the norm these days that doesn't matter much

Deleted Comment

slackingoff2017 commented on My offer numbers from big companies   us.teamblind.com/article/... · Posted by u/non_sequitur
koevet · 8 years ago
These numbers should be taken with a grain of salt. I live in Zurich, Switzerland and I have a similar salary (~200K) but the high cost of living (which, I assume, is similar if not lower than the Bay Area) make my salary comparable to an "ok" salary in other European countries. Just to give you an idea: the overall cost of school + a nanny for 2 kids under 6 is around 70K year in Zurich.

As other have mentioned, the sign up bonus is quite awesome, but I assume is not the standard in the US either.

edited: nannies -> nanny

slackingoff2017 · 8 years ago
Unless the culture is wildly different than here in the US I don't think it's reasonable to consider private school and nannies as part of "cost of living"... Those are both unnecessary luxuries.
slackingoff2017 commented on Drone Maker D.J.I. May Be Sending Data to China, U.S. Officials Say   nytimes.com/2017/11/29/te... · Posted by u/nbmh
crappybird · 8 years ago
All android phone are definitely sending data to United States. Why is sending data to one country better than sending data to another?

For US citizens, this might be irrelevant (not so much if we go by the leaks). But for everyone living anywhere else on the globe, owning a smartphone means usually owning an endpoint for one of the giant corporate data sinks which its government can easily access.

I understand that it is the price I have to pay for a free (sic) OS and play services. But I use it because of a lack of viable libre and open alternative.

And I have about as much choice as someone in the market for a decent quadcopter unwilling to send data to China.

slackingoff2017 · 8 years ago
Android phones are not widely used for surveying critical infastructure unlike these drones. The fact that a Chinese product sends data to China is hardly surprising, but US intel is warning that such a thing is dangerous considering what these drones are frequently used for.

And those Android phones are made by companies around the world. Samsung phones send data to South Korea, Hauwei to China, etc... Some Android phones are sold without Google's apps and send nothing to their servers, so you're not really correct on that.

slackingoff2017 commented on Uber Paid Hackers to Delete Stolen Data on 57M People   bloomberg.com/news/articl... · Posted by u/coloneltcb
lhorie · 8 years ago
Github 2FA has been part of the first-day training/laptop setup for a while now (I joined in may) and there's security-related training in place as well. I was told there are also scanners in place now that check repos, gists, etc for secrets for exactly this type of mistake.

One snippet of the email the article didn't mention was that Sullivan's firing happened pretty much right after Dara learned of the breach and an investigation was conducted. It definitely inspires more confidence in leadership seeing that the CEO will not tolerate unethical behavior.

slackingoff2017 · 8 years ago
Found the newest marketing hire...
s

u/slackingoff2017

KarmaCake day1702April 30, 2017View Original