Why would Aramark try any harder, they have no competition.
There is competition, they took over the contract from Deleware North in 2014 IIRC.
Readit Newsstenius commented on Yosemite embodies the long war over US national park privatization theconversation.com/yosem... · Posted by u/rntn
You can blacklist whole domains (or subdomains) as well as upranking or downranking specific sites.
This lets you avoid the seo spam (particularly bad for programming sites).
For example. Say I want to know more about python’s built in sum() functions. A google search for “Python sum function” produces results on the first page from:
- w3school
- GeeksforGeeks
- real python
- programiz
- code academy
And only after do I get the official python docs.
On Kagi I have blacklisted all of those garbage sites and the official docs at the top result.
Here's some stats that kagi publishes on how people are using their blocking and a great place to great started with it as well.
This is the most mealy mouthed disclosure ever. Shame on them.
How can an employees 2FA misconfiguration lead to someone else accessing these repos? 2FA setups are supposed to prevent this sort of thing. If I had to guess it was someone on the “devops/sre/infra” team that usually has god mode access that were setting up some integration and disabled 2FA for testing or something for a test account … but it would have had to be disabled for a while for the attacker to get access.
What kind of customer data were they storing in their repository? Were they storing raw webhook data/API responses in github gists or something (wouldn’t put it past them).
As a sidenote, Ive worked with folks from zapier and Im not impressed with their engineering. Their integrations are super fucking brittle, its like it was designed by toddlers. I would not depend on them for any kind of business critical functionality.
I know lots of people that have their 2 factor auth setups on the same computer they are using to login. If you can compromise that computer, there's no additional "2fa" needed.
All it takes is some engineer that needs admin access for their job installing something.
Deleted Comment
stenius commented on Summary of Major Changes Between Python Versions nicholashairs.com/posts/m... · Posted by u/nickcw
It's incredible to see how much stuff has been added over the last couple of years.
I've missed a lot of these that I'm going to take advantage of!
stenius commented on I am using AI to drop hats outside my window onto New Yorkers dropofahat.zone/... · Posted by u/jimhi
You're asking why dropping things out of a window in midtown Manhattan might be illegal?
It's a boring question anyway; this is HN.
The prop on the hat acts as a para-shoot slowing down the hat via auto rotation.
It's the same behavior that a helicopter would have if it was doing an emergency landing as well.
stenius commented on Ask HN: Nobody interested in an open hardware iPod Nano? · Posted by u/sandreas
Well, I think it's as simple as you say. Phones have completely taken over the market. The majority of people don't find any value in having another device that's only differentiating factor is that it isn't their phone. (You didn't mention headphone jacks).
It's just like portable GPS devices, electronic organizers (https://www.youtube.com/watch?v=qdeE_kiG5Co), electronic translators/dictionaries, calculators, alarm clocks, ...
stenius commented on DiskClick: Ever wanted to hear old hard drive sounds deervo.itch.io/diskclick... · Posted by u/zdw
I could tell what phase my desktop was in the boot process by listening to the HDD. Being familiar with autoexec.bat and config.sys, I could even isolate which command was being run. And then Windows begun loading and everything was just a blur of clicks for a while.
I don't know if I was that attuned to my system, but I really miss having an audible way of knowing when a process was blocked by disk access.
European here. What kind of legal structure is tribe in this context?
> “We, as the Ute Mountain Ute tribe, had been a fossil fuel tribe with oil and gas for a long time, probably over 50 years. Today, with the changes in legislation, global warming, and climate change, you can see the impact of what's happening to our world.
I think I only ever heard tribe used to describe a group or maybe 10-30 hunter-gatherers, or perhaps the descendants of such a group, but this is clearly not that. It sounds more like it might be a municipality with jurisdiction over some city+-sized plot of land? Or is it like a church type of structure where anyone in the area can sign up to be a member? Or something completely different?
I've tried looking up tribe but the definition I get is this
> A unit of sociopolitical organization consisting of a number of families, clans, or other groups who share a common ancestry and culture and among whom leadership is typically neither formalized nor permanent.
That doesn't sound like the type of structure to have a billion USD to invest. There's three definitions given but none of them fit the context here
stenius commented on Ask HN: What can a IoT company do to deliver a user first product · Posted by u/stenius
Use MQTT for all interop, and allow config to be changed via captive on-device portal. Put OTA keys in escrow if you insist on restricting firmware updates, so keys can get freed if SHTF.
I was actually thinking about MQTT after I posted this.
I'm leaning towards just allowing the mqtt server you connect to to be changed, so that you can point it at whatever in the future, and all messages are plain text and documented.