<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: bill_mcgonigle</title><link>https://news.ycombinator.com/user?id=bill_mcgonigle</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Thu, 02 Jul 2026 07:54:15 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=bill_mcgonigle" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by bill_mcgonigle in "Apple 'Hide My Email' vulnerability reveals peoples' real email addresses"]]></title><description><![CDATA[
<p>Hopefully nobody in the criminal underworld has figured it out on their own.<p>Do you believe the mitigation would be difficult to engineer?  If, say somebody else, publicly disclosed the unmasking technique how long would you guess it would take Apple to implement a verifiable fix?</p>
]]></description><pubDate>Thu, 02 Jul 2026 01:47:09 +0000</pubDate><link>https://news.ycombinator.com/item?id=48755441</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48755441</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48755441</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Chasing the OPNsense RCE: The Story Behind My First CVEs"]]></title><description><![CDATA[
<p>For those wondering this gives full system compromise to an authenticated user with permissions to edit the firewall, AIUI.<p>Nasty but I was expecting a remote unauthenticated attack at 9.9. Hopefully you don't allow admin on WAN!<p>Thanks for finding the bugs and writing about the design pattern problem, HackerAsk.</p>
]]></description><pubDate>Thu, 02 Jul 2026 01:27:12 +0000</pubDate><link>https://news.ycombinator.com/item?id=48755299</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48755299</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48755299</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Trying to Manufacture Permission"]]></title><description><![CDATA[
<p>I was always fascinated by the visual effects you didn't know were there. The obligatorily twenty minute CG battle at the climax of a Marvel movie bores me but when Ellie hears the signal from Vega and is racing her truck back to the office past the giant radio telescopes the mountains in the background aren't real.  Why?  Because Art, that's why.<p>I think this is why AI Slop is so pervasive.  If the tool were used properly you wouldn't even know it was there. It's possible some curl bug report was discovered with responsible use of ML but now such reports are disallowed, and for good reason. Though if used responsibly who would know?<p>There was always that kid whose book report was obviously from reading the back cover; today he's in a corporation trying to get someone else to do his work with an LLM. Not a new strategy, unfortunately.</p>
]]></description><pubDate>Wed, 01 Jul 2026 12:54:49 +0000</pubDate><link>https://news.ycombinator.com/item?id=48745935</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48745935</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48745935</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Xsnow "protestware" in Debian"]]></title><description><![CDATA[
<p>I haven't heard of this package personally and it's not on my desktops so it must not be pulled in by any of the task- desktop environment metapackages I use. So you probably have to go looking for it.<p>I really don't care about this package or protest but what might be more interesting to consider is what if this were in a default package and what if the affected locales were different?<p>If I make a list of all the countries who have recently been at war or are currently engaged in hostilities or have ethnic animus towards each other and just choose to taunt them all, that would really be a dick move and it's probably OK for Debian to drop the package. FWIW I'd rather see them adopt a kindhearted fork than override an author/ maintainer when possible.<p>If there's no special pleading for the ru/ua conflict then it's not too concerning.</p>
]]></description><pubDate>Tue, 30 Jun 2026 19:54:49 +0000</pubDate><link>https://news.ycombinator.com/item?id=48738353</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48738353</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48738353</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Why can't I type and scroll at the same time?"]]></title><description><![CDATA[
<p>This is a neat idea! We are way too ossified in some of our interface paradigms while also having thrown out science-based best practices hard-won in the '90's.<p>The scenario you describe is already a disaster, though!  Who let that slip through?  Replying to a message should create an idempotent context that can't run away from you. "What a mess!" as the kids say.<p>I'm not a user of smart earphones but lots of things like that should be on the table.  Decades ago we were waiting for small cheap cameras and CV to do focus-follows-gaze and just kinda forgot about it when the stack arrived.<p>There are more "pinch to zoom" type revolutions available to those with a studious HCI methodology. Even Academia seems to be chasing "latest craze" development now, not fundamentals.<p>I hope your experiment succeeds!</p>
]]></description><pubDate>Mon, 29 Jun 2026 12:47:34 +0000</pubDate><link>https://news.ycombinator.com/item?id=48718580</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48718580</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48718580</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "I have an operating system kernel that I wrote myself; it's called ValiantCore"]]></title><description><![CDATA[
<p>We welcome the Nordics with peace and brotherly love.</p>
]]></description><pubDate>Mon, 29 Jun 2026 12:35:58 +0000</pubDate><link>https://news.ycombinator.com/item?id=48718455</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48718455</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48718455</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "The CEO of Mullvad is the main financer of the Swedish Örebro party"]]></title><description><![CDATA[
<p>Left/right doesn't matter much for a no-logs VPN.<p>Up/Down (authoritarian/libertarian) is what matters there.<p>If he has high allegiance to the extant power structure then promises should be questioned.<p>If he is for radical decentralization and antiwar then I'm more likely to trust promises made about privacy and autonomy.<p>Then there's international confusion about left/right. Scandinavia is known as a good place to run a business because businesses regulation is much lighter than places like the US which are heavily regulated. In the US business regulation is "left wing" in Scandinavia it's "right wing".<p>We'd use a 14-dimensional vector for political positioning if we wanted to be studious but most folks are just looking for a friend/enemy distinction.  Even many of the comments here looking to dump a well-regarded service if either "tastes great" or "less filling" is confirmed. The false dialectic as means of control and all that jazz.</p>
]]></description><pubDate>Mon, 29 Jun 2026 11:44:21 +0000</pubDate><link>https://news.ycombinator.com/item?id=48717995</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48717995</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48717995</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Tell HN: Delete Google"]]></title><description><![CDATA[
<p>It's in its awkward teenage years stage now.<p>Pretty soon the AI will tell your father things that are more difficult to disprove and it will be done the same way "news" and Wikipedia do it - telling you how to feel before telling you what happened, reporting only part of the story, and not covering most happenings at all.<p>Now is the time to teach your circle psyop avoidance skills. Or build an honest competitor (if it were allowed to exist - Marc says only three will be permitted to exist).</p>
]]></description><pubDate>Mon, 29 Jun 2026 11:31:16 +0000</pubDate><link>https://news.ycombinator.com/item?id=48717883</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48717883</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48717883</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Man's Search for Meaning"]]></title><description><![CDATA[
<p>Pay attention to these warning signs. The Prussian System puts tremendous social pressure on many girls. Outcomes can be tragic. Those girls often do well in different schools. Boys mostly fail to learn and get punished under the Prussian System but they tend to suffer less social pressure. If a book about prison makes you think of your school something is very wrong.</p>
]]></description><pubDate>Fri, 26 Jun 2026 13:57:52 +0000</pubDate><link>https://news.ycombinator.com/item?id=48686721</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48686721</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48686721</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Captcha proves you're human. HATCHA proves you're not"]]></title><description><![CDATA[
<p>The potential power here is a quick, invisible bot check that loads the content meant for humans for humans and current news stories about humans opposing the AI Surveillance Police State for bots. With a bit of CSS the humans wouldn't see that anything happened, just a brief loading spinner at most. If anybody prototypes something like this please post about it.</p>
]]></description><pubDate>Fri, 26 Jun 2026 13:31:50 +0000</pubDate><link>https://news.ycombinator.com/item?id=48686449</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48686449</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48686449</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "I shipped code I don't understand – and I was proud of it"]]></title><description><![CDATA[
<p>I sure hope nobody is doing this with pacemakers or flight control software.<p>And why does this essay's type style change dozens of times? Who is that helping?  It's like a cut and pasted ransom note.</p>
]]></description><pubDate>Thu, 25 Jun 2026 20:25:21 +0000</pubDate><link>https://news.ycombinator.com/item?id=48678750</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48678750</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48678750</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Ex-OpenAI researcher returns to India to build super-intelligence"]]></title><description><![CDATA[
<p>Not sure if he'll succeed but it seems really positive that he feels the business environment there is strong enough to give it a try. Kudos for the implicit thought leadership here. Distributed success is where we're going.</p>
]]></description><pubDate>Mon, 22 Jun 2026 13:33:01 +0000</pubDate><link>https://news.ycombinator.com/item?id=48629902</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48629902</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48629902</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Medical provider might be recording your mental health care visits"]]></title><description><![CDATA[
<p>I had a brief conversation with a family member's provider about this recently.  She hadn't considered that fly-by-night SAAS providers often have atrocious infosec and she had thought of it all as upside; her company had asked her to do it (with consent). The opt out was easy but no other patients had declined before. On the other hand, another provider's after-visit notes are always full of mistakes and need correction, which is fairly important in tracking longitudinal progression of degenerative conditions. We didn't even get into data backup SOP's, obviously, but on my systems I would need to take special care to ensure that production data wasn't restorable to a snapshot for at least two years, and it's hard to imagine folks who don't secure their S3 buckets are doing this right. "It's complicated."  Third-party certification is likely needed.</p>
]]></description><pubDate>Mon, 22 Jun 2026 13:28:33 +0000</pubDate><link>https://news.ycombinator.com/item?id=48629848</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=48629848</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48629848</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "F-Droid build servers can't build modern Android apps due to outdated CPUs"]]></title><description><![CDATA[
<p>Well if you wanted to compromise F-Droid you could target their build server's ME or a cloud vm's hypervisor.<p>To do a supply-chain attack on Google's SDK would be much more expensive and less likely to succeed. Google isn't going to be the attacker.<p>The recent attack on AMI/Gigabyte's ME shows how a zero-day can bootkit a UEFI server quite easily.<p>There are newer Coreboot boards than Opteron, though. Some embedded-oriented BIOS'es let you fuse out the ME. You are warned this is permanent and irreversible.<p>F-Droid likely has upgrade options even in the all-open scenario.</p>
]]></description><pubDate>Wed, 13 Aug 2025 13:52:01 +0000</pubDate><link>https://news.ycombinator.com/item?id=44888464</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=44888464</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=44888464</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Bill Atkinson has died"]]></title><description><![CDATA[
<p>People today take the WIMP interface for granted and forget about the pioneers who invented it.<p>It's really sad to see desktop apps adopt hamburger menus and things that make sense on mobile but make life harder on a desktop built for WIMP.<p>Thank you, Bill!  Some days I'd rather be using your interface.</p>
]]></description><pubDate>Sat, 07 Jun 2025 19:14:38 +0000</pubDate><link>https://news.ycombinator.com/item?id=44211888</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=44211888</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=44211888</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Root shell on a credit card terminal"]]></title><description><![CDATA[
<p>What a nice writeup! Just curious - what kind of wire do you use to solder on the pins - enameled?<p>I wonder if they offer their customers source to keep the Busybox folks happy?</p>
]]></description><pubDate>Sun, 01 Jun 2025 17:13:45 +0000</pubDate><link>https://news.ycombinator.com/item?id=44152323</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=44152323</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=44152323</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Ask HN: Why are banks charging so many fees for accounts and cards?"]]></title><description><![CDATA[
<p>I was a kid in the 80's and would regularly see $5 interest credits on my meager savings, free ATM, free phone banking (don't laugh) and they even set it up for me that if I went below $20 in my checking the system would pull $50 from my savings. 1986 or so - overdraft fees hadn't been invented.
After the dot-boom/bust The Fed "aggressively pursued ZIRP (zero interest rate) policies".  Mortgages got much cheaper but fees replaced the interest income.
Somebody is paying either way. It used to be the loan holders. I even remember my local bank having a stack of a hundred toaster ovens to give to anybody who opened an account.  They wanted your business so you would do your loans with them.
I quite preferred that America though it might be possible to argue that getting nickel-and-dimed everywhere is overall cheaper. But that was at the height of Americans' real purchasing power from wages and I'm disappointed that my kids had to grow up in the opposite environment. Maybe this will change before they will be shopping for a home. I read recently that real wages (purchasing power) were actually higher during the Great Depression. Soaring highs on the Dow don't matter much to people when all the productivity gains during that period have been transfered to financialized everything to make that NGU. The system needs to be stable for us to all benefit.  "The Gini Coefficient is too damn high" as they say.</p>
]]></description><pubDate>Sat, 25 Jan 2025 20:38:37 +0000</pubDate><link>https://news.ycombinator.com/item?id=42824643</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=42824643</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=42824643</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "Almost all searches on my independent search engine are now from SEO spam bots"]]></title><description><![CDATA[
<p>Check out your DNS stats too. Mine are up 500% YoY for no human reason.</p>
]]></description><pubDate>Tue, 17 May 2022 11:21:33 +0000</pubDate><link>https://news.ycombinator.com/item?id=31408806</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=31408806</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=31408806</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "The Dirty Pipe Vulnerability"]]></title><description><![CDATA[
<p>Others, note that the new archive name is 'stable-security'. You might need to update your pins if you upgraded from Buster and you're not seeing the update now. I put in a pull request to add it to the release notes.</p>
]]></description><pubDate>Tue, 08 Mar 2022 19:22:02 +0000</pubDate><link>https://news.ycombinator.com/item?id=30605005</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=30605005</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=30605005</guid></item><item><title><![CDATA[New comment by bill_mcgonigle in "The Dirty Pipe Vulnerability"]]></title><description><![CDATA[
<p>Thank you for not selling this to the "industry"!</p>
]]></description><pubDate>Tue, 08 Mar 2022 17:14:11 +0000</pubDate><link>https://news.ycombinator.com/item?id=30602463</link><dc:creator>bill_mcgonigle</dc:creator><comments>https://news.ycombinator.com/item?id=30602463</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=30602463</guid></item></channel></rss>