Hacker News: frenchman99

New comment by frenchman99 in "Xapian: Open source search engine library"

frenchman99 — Sat, 17 Aug 2024 13:24:08 +0000

Yes, exactly that.

New comment by frenchman99 in "Xapian: Open source search engine library"

frenchman99 — Sat, 17 Aug 2024 12:54:09 +0000

You can always build a small search webservice that you open source and that your proprietary software calls out too, removing the need to open source everything.

Linux is GPL too, didn't hinder companies making trillions on top of it.

New comment by frenchman99 in "Our audit of Homebrew"

frenchman99 — Wed, 31 Jul 2024 15:19:12 +0000

Surprised too, if that is the fix. Wouldnt a whitelist be better than a blacklist?

New comment by frenchman99 in "Proton launches its own version of Google Docs"

frenchman99 — Thu, 04 Jul 2024 22:02:51 +0000

In the spam protection settings, you can choose a protection level of off, standard, aggressive or custom. I choose custom.

Then, I send everything with a score of 5 or more to spam.

I don't delete any spam.

And I mark it all as read.

That cuts down on spam drastically in my inbox while still retaining it all in the spam folder should any legit email end up there.

New comment by frenchman99 in "Proton launches its own version of Google Docs"

frenchman99 — Thu, 04 Jul 2024 21:59:10 +0000

This reddit comment makes me thinks it reasonable. Who knows what's true though.

https://www.reddit.com/r/fastmail/comments/1do3ede/comment/l...

New comment by frenchman99 in "Proton launches its own version of Google Docs"

frenchman99 — Wed, 03 Jul 2024 15:43:54 +0000

I'm even more convinced that me being a Fastmail customer is a good thing. Fastmail has been rock solid for years.

Their email, calendar and contacts solutions work well with iOS and android (using the DAVx app).

WebApps work flawlessly on Firefox. They have all sorts of customisation for spam filtering, catch all email addresses, etc.

They don't do all the things (vpn, passwords, drive, what have you). But what they do, they do very well.

New comment by frenchman99 in "Mako – fast, production-grade web bundler based on Rust"

frenchman99 — Tue, 02 Jul 2024 13:00:23 +0000

That's what happens when you give your project a common name as a name.

New comment by frenchman99 in "Don't microservice, do module"

frenchman99 — Fri, 24 May 2024 13:51:11 +0000

I agree with you. And at the same time, I often feel like it is more difficult being heard when being nuanced. It seems like what gets discussed most are strong opinions.

New comment by frenchman99 in "Sam and Greg's response to OpenAI Safety researcher claims"

frenchman99 — Sun, 19 May 2024 06:29:15 +0000

Open AI not being open means it will be used in ways that will benefit shareholders, not humanity as they initially planned it, unless it so happens that humanity's goals are aligned with shareholders', but I've rarely seen this happen with the big four.

New comment by frenchman99 in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

frenchman99 — Sat, 30 Mar 2024 09:00:20 +0000

You say yourself that the time data could be tampered. It's trivial to change commit dates in git. So this analysis means nothing by itself, unfortunately.

New comment by frenchman99 in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

frenchman99 — Sat, 30 Mar 2024 08:40:17 +0000

Not at all. For instance, I don't know what the next steps are, but I run SSH servers behind Wireguard, exactly to prevent them being accessible in the case of such events. Wireguard is simple to setup, even if I lack the expertise to understand exactly how to go forward.

New comment by frenchman99 in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

frenchman99 — Sat, 30 Mar 2024 08:37:21 +0000

I was thinking about reinstalling, because I'm on Manjaro Linux, which has the version in question.

But it's unclear if earlier versions are also vulnerable.

And if it did nasty things to your machine, how do you make sure that the backups you have do not include ways for the backdoor to reinstate itself?

New comment by frenchman99 in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

frenchman99 — Sat, 30 Mar 2024 08:28:14 +0000

Totally agree. With things like Dependabot encouraged by GitHub, people now get automated pull requests for dependency updates, increasing the speed of propagation of such vulnerabilities.

New comment by frenchman99 in "Backdoor in upstream xz/liblzma leading to SSH server compromise"

frenchman99 — Sat, 30 Mar 2024 08:11:12 +0000

Going forward this will require more than a citizens investigation. Law enforcement will surely be granted access. Also, tarballs are still available in package managers if you really want to dig into the code.

New comment by frenchman99 in "Switching from S3 to Tigris on Fly.io"

frenchman99 — Tue, 13 Feb 2024 19:34:17 +0000

> Tigris paid me a small amount to try their beta and write about it, but they didn’t have a say in the content.

Yes, right. People pay for negative reviews all the time. The article can still have merit. But that disclaimer is manipulative. Better just say "Tigris paid me for this content" and nothing else. Also, a "small amount" can be anything, it's all relative to what the author thinks is small.

New comment by frenchman99 in "Rebuilding Netflix's video processing pipeline with microservices"

frenchman99 — Fri, 09 Feb 2024 21:36:39 +0000

Why would you assume that?

New comment by frenchman99 in "Finance worker pays out $25M after video call call with deepfake CFO"

frenchman99 — Sun, 04 Feb 2024 09:34:06 +0000

This should like bad company processes all around. For a sum this high, you need more than just a video call. Get an email (if the tech team setup DMARC correctly, sending phishing from company-domain is near impossible). Talk through company chat (Slack, Teams, etc). Call a couple high ranking on their cell.

New comment by frenchman99 in "Gitlab password reset bug leaves more than 5.3K servers up for grabs"

frenchman99 — Sat, 27 Jan 2024 22:48:58 +0000

Good reminder to always run internal services such as Gitlab behind a VPN which only trusted users have access to.

New comment by frenchman99 in "Tesla owners in deep freeze discover the cold, hard truth about EVs"

frenchman99 — Tue, 16 Jan 2024 18:20:38 +0000

But dirtier during construction. More difficult to repair most of the time too. Pros and cons. If you keep an EV for a long time, than it is cleaner. But a lot of EVs are thrown out instead of being repaired. The real solution is to share cars and, ride a bicycle, walk or use public transport when possible.

New comment by frenchman99 in "Tesla owners in deep freeze discover the cold, hard truth about EVs"

frenchman99 — Tue, 16 Jan 2024 18:18:25 +0000

With "an" EV? Like all EVs have the same carbon footprint? That's definitely not true. Furthermore, even an EV has a carbon footprint and its far from 0. The real solution to be greener is to walk, ride a bicycle, or use public transport instead of a private car. And if you use a private car, then try to use car sharing so as to split the carbon footprint of the car's construction between all its users.