<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: isclever</title><link>https://news.ycombinator.com/user?id=isclever</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Fri, 10 Jul 2026 10:26:13 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=isclever" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by isclever in "Towards HTTPS by Default"]]></title><description><![CDATA[
<p>You can buy a domain, put public NS servers on it for the only purpose of doing Letsencrypt DNS validation.  Hint: Create root and wildcard (eg domain.ca and *.domain.ca) so you aren't leaking internal DNS records (not that it matters much).<p>You run an internal DNS server (Pihole + unbound is my combo of choice) which becomes authoritative for your internal LAN.</p>
]]></description><pubDate>Wed, 16 Aug 2023 20:47:51 +0000</pubDate><link>https://news.ycombinator.com/item?id=37153577</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=37153577</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=37153577</guid></item><item><title><![CDATA[New comment by isclever in "So this guy is now S3. All of S3"]]></title><description><![CDATA[
<p>Maybe, but the admin commented it was intentional for that specific post, it was slowing down the entire site.</p>
]]></description><pubDate>Thu, 04 May 2023 19:46:12 +0000</pubDate><link>https://news.ycombinator.com/item?id=35821103</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=35821103</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=35821103</guid></item><item><title><![CDATA[New comment by isclever in "Mess with DNS"]]></title><description><![CDATA[
<p>At least for certificate issuance they can turn it off via a CAA record:<p><a href="https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization" rel="nofollow">https://en.wikipedia.org/wiki/DNS_Certification_Authority_Au...</a></p>
]]></description><pubDate>Wed, 15 Dec 2021 19:14:46 +0000</pubDate><link>https://news.ycombinator.com/item?id=29570338</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=29570338</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=29570338</guid></item><item><title><![CDATA[New comment by isclever in "DNS doesn't “propagate”"]]></title><description><![CDATA[
<p>Google and Cloudflare allow anybody to expire any record in their cache, handy to have to if you make a mistake that is affecting customers.<p>Google's 8.8.8.8: <a href="https://developers.google.com/speed/public-dns/cache" rel="nofollow">https://developers.google.com/speed/public-dns/cache</a><p>Cloudflare's 1.1.1.1: <a href="https://1.1.1.1/purge-cache/" rel="nofollow">https://1.1.1.1/purge-cache/</a></p>
]]></description><pubDate>Mon, 06 Dec 2021 19:50:52 +0000</pubDate><link>https://news.ycombinator.com/item?id=29464671</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=29464671</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=29464671</guid></item><item><title><![CDATA[New comment by isclever in "Btop++ is a power resource monitor for Linux"]]></title><description><![CDATA[
<p>This is why I have trust issues when github pulling or exploding a tar.</p>
]]></description><pubDate>Sat, 25 Sep 2021 19:22:43 +0000</pubDate><link>https://news.ycombinator.com/item?id=28655549</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=28655549</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=28655549</guid></item><item><title><![CDATA[New comment by isclever in "Serving Netflix Video at 400Gb/s on FreeBSD [pdf]"]]></title><description><![CDATA[
<p>Go to fast.com, open webdev tools on the network tab.  Run a speedtest, the hosts are the local caches (OpenConnect) that you would use to stream movies.<p>Note: I don't know for sure, but its the most likely.</p>
]]></description><pubDate>Sun, 19 Sep 2021 15:33:40 +0000</pubDate><link>https://news.ycombinator.com/item?id=28585122</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=28585122</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=28585122</guid></item><item><title><![CDATA[New comment by isclever in "Whistleblower: Ubiquiti Breach “Catastrophic”"]]></title><description><![CDATA[
<p>This boggles me when I see this option in any password manager (and I think every single one has this 'option').<p>Why do password managers let people store TOTP next to the password, this completely invalidates the 2FA of TOTP if your password manager get broken into.</p>
]]></description><pubDate>Tue, 30 Mar 2021 19:06:08 +0000</pubDate><link>https://news.ycombinator.com/item?id=26638919</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=26638919</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=26638919</guid></item><item><title><![CDATA[New comment by isclever in "This electrical transmission tower has a problem"]]></title><description><![CDATA[
<p>Try this: <a href="https://threadreaderapp.com/thread/1306359385656946688.html" rel="nofollow">https://threadreaderapp.com/thread/1306359385656946688.html</a></p>
]]></description><pubDate>Thu, 17 Sep 2020 03:13:45 +0000</pubDate><link>https://news.ycombinator.com/item?id=24500810</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=24500810</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=24500810</guid></item><item><title><![CDATA[New comment by isclever in "IBM Cloud was down, as well as their status page"]]></title><description><![CDATA[
<p>It happens a lot, when you have so much infrastructure and redundancy you think it is too big to fail.  Then you lose S3 in US-East1 and break everything.<p><a href="https://www.theregister.com/2017/03/01/aws_s3_outage/" rel="nofollow">https://www.theregister.com/2017/03/01/aws_s3_outage/</a></p>
]]></description><pubDate>Tue, 09 Jun 2020 23:44:11 +0000</pubDate><link>https://news.ycombinator.com/item?id=23472247</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=23472247</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=23472247</guid></item><item><title><![CDATA[New comment by isclever in "Netflix urged by EU to slow streaming to save internet"]]></title><description><![CDATA[
<p>Netflix is open to any peering, some ISPs are not: <a href="https://techcrunch.com/2014/07/29/netflix-and-att-sign-peering-agreement/" rel="nofollow">https://techcrunch.com/2014/07/29/netflix-and-att-sign-peeri...</a></p>
]]></description><pubDate>Thu, 19 Mar 2020 15:03:39 +0000</pubDate><link>https://news.ycombinator.com/item?id=22628137</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=22628137</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=22628137</guid></item><item><title><![CDATA[New comment by isclever in "A man launched a new ISP from his garage (2018) [video]"]]></title><description><![CDATA[
<p>For Canada, specifically Bell, they both an eye ball network and a transit provider.  Bell has no incentive to peer at local IXs and "give away" part of their service (the eyes, as that is the lucrative part) when they can sell on the fact they are a large national network AND you can get access to their end customers as well.<p>Edit: clarification on the part that is more valuable.</p>
]]></description><pubDate>Sun, 08 Mar 2020 13:15:43 +0000</pubDate><link>https://news.ycombinator.com/item?id=22517855</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=22517855</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=22517855</guid></item><item><title><![CDATA[New comment by isclever in "Cloudflare silently deleted my DNS records"]]></title><description><![CDATA[
<p>A domain registered at a provider (but not DNS) can be down with no impact to your domain, so long as the domain is still in the TLD root servers, everything will keep going.</p>
]]></description><pubDate>Mon, 24 Feb 2020 20:42:22 +0000</pubDate><link>https://news.ycombinator.com/item?id=22408221</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=22408221</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=22408221</guid></item><item><title><![CDATA[New comment by isclever in "Cloudflare silently deleted my DNS records"]]></title><description><![CDATA[
<p>Here is a good list: <a href="https://github.com/n1trux/awesome-sysadmin#monitoring" rel="nofollow">https://github.com/n1trux/awesome-sysadmin#monitoring</a><p>Maybe one fits what you are looking for.</p>
]]></description><pubDate>Mon, 24 Feb 2020 19:53:39 +0000</pubDate><link>https://news.ycombinator.com/item?id=22407730</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=22407730</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=22407730</guid></item><item><title><![CDATA[New comment by isclever in "Cloudflare silently deleted my DNS records"]]></title><description><![CDATA[
<p>My takeaway:<p>1. Setup up monitoring on your critical domains.  UptimeRobot and Hetrixtools are good starters with generous free tier.  You should know when your website/email/dns isn't working.<p>2. Don't tie your domain registration with your DNS provider.  You lose everything if something goes wrong with your account.<p>3. Be able to jump ship easily, have backups of your zone, already know where you will transfer to.</p>
]]></description><pubDate>Mon, 24 Feb 2020 18:36:00 +0000</pubDate><link>https://news.ycombinator.com/item?id=22406897</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=22406897</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=22406897</guid></item><item><title><![CDATA[New comment by isclever in "Apple Edge Cache"]]></title><description><![CDATA[
<p>There is also <a href="https://qwilt.com/" rel="nofollow">https://qwilt.com/</a> which is more of an open(?) local cache servers for ISPs.</p>
]]></description><pubDate>Fri, 14 Feb 2020 19:14:29 +0000</pubDate><link>https://news.ycombinator.com/item?id=22329354</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=22329354</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=22329354</guid></item><item><title><![CDATA[New comment by isclever in "Netgear Signed TLS Cert Private Key Disclosure"]]></title><description><![CDATA[
<p>mini-app.funjsq.com is revoked (<a href="https://decoder.link/result/418b8d20793d3f4daa4153752e45e78b87e8e293" rel="nofollow">https://decoder.link/result/418b8d20793d3f4daa4153752e45e78b...</a>), can't check routerlogin.net/com as they didn't paste the public cert.</p>
]]></description><pubDate>Mon, 20 Jan 2020 14:14:56 +0000</pubDate><link>https://news.ycombinator.com/item?id=22098902</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=22098902</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=22098902</guid></item><item><title><![CDATA[New comment by isclever in "Mail a Letter Online"]]></title><description><![CDATA[
<p>You need to get on the HTTPS bandwagon as well <a href="https://doesmysiteneedhttps.com/" rel="nofollow">https://doesmysiteneedhttps.com/</a></p>
]]></description><pubDate>Mon, 29 Apr 2019 16:25:33 +0000</pubDate><link>https://news.ycombinator.com/item?id=19779806</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=19779806</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=19779806</guid></item><item><title><![CDATA[New comment by isclever in "Warren Buffett's Annual Letter to Berkshire Hathaway Shareholders [pdf]"]]></title><description><![CDATA[
<p>My personal view of using Wealthsimple is a stepping stone, I've realise that I've throw away money to the banks with higher then needed MERs and Wealthsimple provide a easy way of transferring my money in and saving money now.  When my portfolio is larger and I'm seeing a higher cost with them VS doing it myself I'll look into buying ETFs myself.<p>The lowest bank mutual fund in Canada that I've seen in from Tangerine at ~1% MER, are there ones lower?</p>
]]></description><pubDate>Sat, 25 Feb 2017 15:29:33 +0000</pubDate><link>https://news.ycombinator.com/item?id=13731938</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=13731938</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=13731938</guid></item><item><title><![CDATA[New comment by isclever in "Warren Buffett's Annual Letter to Berkshire Hathaway Shareholders [pdf]"]]></title><description><![CDATA[
<p>Not only do you get on average better returns, you can do better even when they perform poorly since those funds (in Canada) can charge you anywhere from 1.5% to 3% of your portfolio in fees (MER), while an index fund could charge as low as 0.1%.<p><a href="https://www.wealthsimple.com/" rel="nofollow">https://www.wealthsimple.com/</a> (I'm a customer) has recently expanded into the US from Canada and are one of a group of what is being called Roboinvestors which take these index funds and let you easily invest in them.<p>Wealthsimple adds on 0.5% fee which is still lower then active funds, my portfolio has a weighted MER of 0.64%.</p>
]]></description><pubDate>Sat, 25 Feb 2017 14:50:40 +0000</pubDate><link>https://news.ycombinator.com/item?id=13731780</link><dc:creator>isclever</dc:creator><comments>https://news.ycombinator.com/item?id=13731780</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=13731780</guid></item></channel></rss>