Hacker News: anonymousjunior

New comment by anonymousjunior in "SuperShuttle is going out of business"

anonymousjunior — Fri, 13 Dec 2019 16:15:48 +0000

When did you try Uber at SFO? They changed the pickup process a few months ago and it's been a nightmare ever since. I've found the trick is to make the trek through the airport to the International terminal where they're still allowed to pick up curbside.

New comment by anonymousjunior in "Police conducted search in the Nginx office due to a copyright claim"

anonymousjunior — Thu, 12 Dec 2019 15:17:06 +0000

This is what's really concerning. If FSB was able to actually implement something and shell all nginx boxes (and thusly obtain SSL certs, intercept communications, etc..) imagine how much access they'd have.

New comment by anonymousjunior in "Show HN: Version Control for Databases"

anonymousjunior — Mon, 09 Dec 2019 21:11:47 +0000

Interesting utility. I can see a few really exciting use cases for this.

If I had one wish it'd be native support for syncing generated snapshots to S3 or Google Storage for easy transfers between authenticated systems and users. Maybe I'll take a look at building out a PR for that over the weekend if that's okay

New comment by anonymousjunior in "Federal Prosecutors Conducting Criminal Probe of Juul"

anonymousjunior — Mon, 23 Sep 2019 23:52:34 +0000

Why can't we ban ibuprofen?

Nicotine is an extremely complex molecule which has been proven to have positive effects in the treatment of autism, as well as mild cognitive impairment, such as Alzheimer disease. Blanket statements like this are harmful to the general nature of science and show a disregard for empirical evidence.

Nicotine can be utilized for positive measures at therapeutic levels and was in Phase III clinical trials with the FDA for such uses before the backing pharmaceutical firm ran out of money. I recommend you do some research on Nicotine as a compound and interactions with nicotinic receptors in the body, the pharmacology is actually fascinating.

New comment by anonymousjunior in "Segment Security Incident"

anonymousjunior — Thu, 05 Sep 2019 18:13:11 +0000

Segment write keys are technically public. Most sites have them published in the client facing JS

New comment by anonymousjunior in "Segment Security Incident"

anonymousjunior — Thu, 05 Sep 2019 15:47:41 +0000

Segment actually does a pretty fantastic job onboarding new personnel and funneling them through security training. Recently gave a great talk here at the Bay Area OWASP meetup about how they've gamified security awareness training with an internal leaderboard and random CTF challenges.

New comment by anonymousjunior in "Facebook Dating"

anonymousjunior — Thu, 05 Sep 2019 15:43:13 +0000

Does anyone actually have up to date interest data on FB these days? I can't remember the last time I "liked" an interest or artist page. All of the data in the system now is leftover from when I was like 15 using the platform (24 now and yes, actively dating).

Only thing I actively use FB for these days is messenger and fantasy football shit talking groups, which are all "private".

New comment by anonymousjunior in "Ask HN: Why do companies interview using Google Docs as a coding environment?"

anonymousjunior — Tue, 16 Jul 2019 00:26:08 +0000

That was my thought, but I got syntax complaints after my first tech screen with Google. Now Asana is asking me to do the same so I'm hesitant to even move forward.

New comment by anonymousjunior in "Ask HN: Why do companies interview using Google Docs as a coding environment?"

anonymousjunior — Tue, 16 Jul 2019 00:25:03 +0000

lol it's literally the initial tech screen for Google

New comment by anonymousjunior in "Ask HN: Why do companies interview using Google Docs as a coding environment?"

anonymousjunior — Mon, 15 Jul 2019 23:59:29 +0000

It's not though. They expect shit to run afterwards. As someone who primarily writes Python (whitespace matters) in Vim (it's universal), having to code in Google Docs is a horrifying experience

New comment by anonymousjunior in "Ask HN: Why do companies interview using Google Docs as a coding environment?"

anonymousjunior — Mon, 15 Jul 2019 23:57:45 +0000

My biggest issue is hitting spacebar 20 times in a row. I usually work in Python via Vim so Google Docs is a pure shitshow for me.

"Do you want tabs or spaces?"

> "Spaces please"

"Fuck... okay I guess..."

Ask HN: Why do companies interview using Google Docs as a coding environment?

anonymousjunior — Mon, 15 Jul 2019 22:55:18 +0000

Why do companies like Google and Asana push developers into writing "production quality" code in a non-IDE like Google Docs during tech screens?

Comments URL: https://news.ycombinator.com/item?id=20446065

Points: 7

# Comments: 19

New comment by anonymousjunior in "Twitter was down"

anonymousjunior — Thu, 11 Jul 2019 19:04:44 +0000

the internet is just falling apart these days

New comment by anonymousjunior in "A Security Issue in Intel’s Active Management Technology"

anonymousjunior — Fri, 12 Jan 2018 21:59:31 +0000

Am I the only one with IAM fatigue at this point, feels like we get a headline like this at a rate of one a week now

New comment by anonymousjunior in "Oh shit, git: Getting myself out of bad situations"

anonymousjunior — Mon, 18 Dec 2017 21:15:45 +0000

reminds me of https://github.com/blog/2019-how-to-undo-almost-anything-wit...

New comment by anonymousjunior in "Security.txt"

anonymousjunior — Sat, 07 Oct 2017 03:05:17 +0000

> One of them didn't care at all. They were transmitting usernames and passwords in plaintext and I actually showed one of their engineers this, live, in person, and he just shrugged.

Here, now that I've shown you that, let me show you the MITM I've been running during the conference! So far I've collected NNN credential sets

New comment by anonymousjunior in "Gas Pump Skimmers"

anonymousjunior — Tue, 19 Sep 2017 05:29:08 +0000

In the second image here [1] there's a security seal on the payment closure as a whole; I'd imagine a simple security seal along the side of the card scanner intake would thwart most would-be card skimmers, no?

At that point the employees could just make it part of the standard inspection and it'd be more obvious to customers if they were missing.

[1]: https://cdn.sparkfun.com/assets/learn_tutorials/6/9/4/Gas_Pu...

New comment by anonymousjunior in "Salesforce fires red team staffers who gave Defcon talk"

anonymousjunior — Thu, 10 Aug 2017 02:31:05 +0000

"random people" who with high probability may have undisclosed 0day exploits stockpiled on other devices.... yeah if I'm an APT author DEFCON attendees are (the hardest to exploit and most paranoid [read: likely to get caught by]) the ideal target for any nation-state. not to mention that the conference is often attended by multiple state agencies which makes the target even juicer. yes it's an extremely hard and dangerous group of people to attempt to exploit, but that doesn't detract from the potential value and payoff of a successful APT exploit on said group of people

New comment by anonymousjunior in "Show HN: Kite, copilot for programmers, available for Python"

anonymousjunior — Wed, 29 Mar 2017 03:37:05 +0000

You're alienating a huge portion of your market by not supporting Emacs and Vim

New comment by anonymousjunior in "Show HN: Kite, copilot for programmers, available for Python"

anonymousjunior — Wed, 29 Mar 2017 03:28:33 +0000

Yes, you are correct in that an inexperienced Git user can mess up, I won't deny that. My issue here is that Kite requires you to proactively place a .kiteignore, before even whitelisting a directory. It also doesn't alert you that it's about to start indexing the files in the directory tree or that you need to add a .kiteignore to protect sensitive files before you whitelist them. At a minimum they should be respecting the existing .gitignore, and realistically they just be scrubbing all strings before sending any data.

I can 'git add .' and commit my life away, but that requires much more intention and explicitness than clicking enable on a prompt and continuing your standard workflow (ie: a simple 'vi super_seceret_file.py')