Hacker News: dadrianhttps://news.ycombinator.com/user?id=dadrianHacker News RSShttps://hnrss.org/hnrss v2.1.1Thu, 09 Apr 2026 09:36:23 +0000<![CDATA[New comment by dadrian in "Cloudflare targets 2029 for full post-quantum security"]]>I will bring this up at the next meeting of the secret cryptographer cabal where we decide what information to reveal to non-cryptographers.

]]>Tue, 07 Apr 2026 18:07:17 +0000https://news.ycombinator.com/item?id=47679090dadrianhttps://news.ycombinator.com/item?id=47679090https://news.ycombinator.com/item?id=47679090<![CDATA[New comment by dadrian in "The cult of vibe coding is insane"]]>Except for the part where it's constantly having quality and reliability issues, even independent of the server-side infrastructure (OOMs on long running tasks, etc).

]]>Mon, 06 Apr 2026 20:51:26 +0000https://news.ycombinator.com/item?id=47666894dadrianhttps://news.ycombinator.com/item?id=47666894https://news.ycombinator.com/item?id=47666894<![CDATA[New comment by dadrian in "Astral to Join OpenAI"]]>As opposed to Pip, which is obviously free and sustainable forever.

]]>Thu, 19 Mar 2026 17:14:20 +0000https://news.ycombinator.com/item?id=47442664dadrianhttps://news.ycombinator.com/item?id=47442664https://news.ycombinator.com/item?id=47442664<![CDATA[New comment by dadrian in "DJB's Cryptographic Odyssey: From Code Hero to Standards Gadfly"]]>The person with the most HN karma of anyone on this site, currently thinks djb's actions are wrong.

]]>Sun, 22 Feb 2026 01:54:43 +0000https://news.ycombinator.com/item?id=47107290dadrianhttps://news.ycombinator.com/item?id=47107290https://news.ycombinator.com/item?id=47107290<![CDATA[New comment by dadrian in "Be wary of Bluesky"]]>For someone to come in and buy Bluesky and then hold everyone’s data hostage, then Bluesky would actually have to have enough value that someone would want to buy it.

]]>Sat, 21 Feb 2026 22:25:37 +0000https://news.ycombinator.com/item?id=47105482dadrianhttps://news.ycombinator.com/item?id=47105482https://news.ycombinator.com/item?id=47105482<![CDATA[New comment by dadrian in "DJB's Cryptographic Odyssey: From Code Hero to Standards Gadfly"]]>RMS has, at minimum, showed that he swayed by parrots, spider plants, and free plane tickets and guest lodgings.

]]>Sat, 21 Feb 2026 17:43:31 +0000https://news.ycombinator.com/item?id=47102914dadrianhttps://news.ycombinator.com/item?id=47102914https://news.ycombinator.com/item?id=47102914<![CDATA[New comment by dadrian in "What Is OAuth?"]]>> SAML is arguably the worst cryptographic standard ever created

The PGP packet has entered the chat.

]]>Sat, 21 Feb 2026 17:40:52 +0000https://news.ycombinator.com/item?id=47102883dadrianhttps://news.ycombinator.com/item?id=47102883https://news.ycombinator.com/item?id=47102883<![CDATA[New comment by dadrian in "I want to wash my car. The car wash is 50 meters away. Should I walk or drive?"]]>GOT ‘EM

]]>Mon, 16 Feb 2026 17:07:06 +0000https://news.ycombinator.com/item?id=47037484dadrianhttps://news.ycombinator.com/item?id=47037484https://news.ycombinator.com/item?id=47037484<![CDATA[New comment by dadrian in "The Startup Graveyard"]]>Some of them also aren't really dead.

]]>Tue, 20 Jan 2026 18:45:51 +0000https://news.ycombinator.com/item?id=46696051dadrianhttps://news.ycombinator.com/item?id=46696051https://news.ycombinator.com/item?id=46696051<![CDATA[New comment by dadrian in "We found cryptography bugs in the elliptic library using Wycheproof"]]>The 90-day disclosure window is an arbitrary courtesy, not a binding contract about the behavior of either party. They probably had other things to do.

]]>Thu, 08 Jan 2026 17:42:57 +0000https://news.ycombinator.com/item?id=46543978dadrianhttps://news.ycombinator.com/item?id=46543978https://news.ycombinator.com/item?id=46543978<![CDATA[New comment by dadrian in "Comparing AI agents to cybersecurity professionals in real-world pen testing"]]>Taken both in name and role, more or less.

]]>Wed, 07 Jan 2026 02:27:12 +0000https://news.ycombinator.com/item?id=46521786dadrianhttps://news.ycombinator.com/item?id=46521786https://news.ycombinator.com/item?id=46521786<![CDATA[New comment by dadrian in "Private equity is killing private ownership: first it was housing, now it's PCs"]]>PE didn’t kill housing. Private equity owns 2-3% of homes.

]]>Mon, 29 Dec 2025 01:58:38 +0000https://news.ycombinator.com/item?id=46416599dadrianhttps://news.ycombinator.com/item?id=46416599https://news.ycombinator.com/item?id=46416599<![CDATA[New comment by dadrian in "Ask HN: Why is Hacker News red? Christmas?"]]>It's not red! You're just colorblind.

]]>Thu, 25 Dec 2025 03:12:40 +0000https://news.ycombinator.com/item?id=46381744dadrianhttps://news.ycombinator.com/item?id=46381744https://news.ycombinator.com/item?id=46381744<![CDATA[New comment by dadrian in "Stop Breaking TLS"]]>Network DLP is also not bulletproof so I'm not sure what the argument is there. These things are all best effort.

> if you have DLP at work, open the integrated browser in VS Code and notice how you can send protected test strings without anything chirping you.

I recognize it's not instrumented, but how are protected strings getting there in the first place?

]]>Thu, 11 Dec 2025 18:28:50 +0000https://news.ycombinator.com/item?id=46235064dadrianhttps://news.ycombinator.com/item?id=46235064https://news.ycombinator.com/item?id=46235064<![CDATA[New comment by dadrian in "Stop Breaking TLS"]]>That is not true, you can run DLP on an endpoint directly and inside a browser directly (e.g. via an extension or direct integration hooks).

You can also try to stop the situation where the CC numbers are in the clear anywhere in the first place, so that you can't copy/paste them around. What happens if someone writes the CC number down on a piece of paper?

]]>Thu, 11 Dec 2025 17:55:12 +0000https://news.ycombinator.com/item?id=46234666dadrianhttps://news.ycombinator.com/item?id=46234666https://news.ycombinator.com/item?id=46234666<![CDATA[New comment by dadrian in "Stop Hacklore – An Open Letter"]]>This is good advice, and there's good people on the signature list, but why is this is an open letter? This feels navel-gazey and straight out of 2017.

]]>Mon, 01 Dec 2025 02:31:33 +0000https://news.ycombinator.com/item?id=46102849dadrianhttps://news.ycombinator.com/item?id=46102849https://news.ycombinator.com/item?id=46102849<![CDATA[New comment by dadrian in "HTTPS by default"]]>A MITM could replace the redirect with malicious content, as described in the blog.

]]>Wed, 29 Oct 2025 03:39:43 +0000https://news.ycombinator.com/item?id=45742354dadrianhttps://news.ycombinator.com/item?id=45742354https://news.ycombinator.com/item?id=45742354<![CDATA[New comment by dadrian in "HTTPS by default"]]>Yes, it started that way, but complaining about the current auto-update behavior of the software (not the ACME protocol), is completely unrelated to Let's Encrypt and is instead an arbitrary design decision by someone at EFF.

]]>Tue, 28 Oct 2025 20:51:42 +0000https://news.ycombinator.com/item?id=45738994dadrianhttps://news.ycombinator.com/item?id=45738994https://news.ycombinator.com/item?id=45738994<![CDATA[New comment by dadrian in "HTTPS by default"]]>Add a /, e.g. `shortname/`

]]>Tue, 28 Oct 2025 20:10:32 +0000https://news.ycombinator.com/item?id=45738444dadrianhttps://news.ycombinator.com/item?id=45738444https://news.ycombinator.com/item?id=45738444<![CDATA[New comment by dadrian in "HTTPS by default"]]>Let's Encrypt does not write or maintain certbot

]]>Tue, 28 Oct 2025 20:09:04 +0000https://news.ycombinator.com/item?id=45738431dadrianhttps://news.ycombinator.com/item?id=45738431https://news.ycombinator.com/item?id=45738431