Hacker News: orian

New comment by orian in "Inside a Corporate Retreat That Went Very Badly Wrong"

orian — Tue, 07 Apr 2026 05:41:25 +0000

Drinking late at office also sounds awesome, but somewhat many people don’t like it.

New comment by orian in "France's aircraft carrier located in real time by Le Monde through fitness app"

orian — Fri, 20 Mar 2026 14:06:17 +0000

Maybe it was just an old stupid treason? Someone against the war and… hard to believe there are no rules about location.

New comment by orian in "China is quietly upstaging America with its open models (2025)"

orian — Sun, 08 Mar 2026 20:50:22 +0000

Is stealing from a thief a theft?

New comment by orian in "Ask HN: Why do purchased B2B email lists still have such poor deliverability?"

orian — Sun, 08 Feb 2026 00:20:55 +0000

Maybe because it’s literally a spam what you’re doing?

My email is on many such lists, I never ever would contact someone who spams. Just no.

I also have all tracking pixels blocked, so you would not know I’ve opened.

New comment by orian in "The lost art of XML"

orian — Sat, 24 Jan 2026 17:13:49 +0000

I’ve once got a contract to write tiny system that had to integrate with 20-30y old system, then written in some version of c# / Microsoft framework, it was only speaking xml. I had problem with timestamp, cause depending on some internal state, it was returned different way. I had to go and read over 100pages of date+time in xml spec and implement it. Also, found that a lib they were using had bugs, so my lib had to deal with it.

I hate xml.

New comment by orian in "The AI Bubble Is Not What You Think"

orian — Wed, 14 Jan 2026 09:23:04 +0000

1. They can squeeze a lot from current models.

2. Google can afford to push the frontier as long as it brings more money. They’ve been investing in AI way before others.

New comment by orian in "Ask HN: How are you LLM-coding in an established code base?"

orian — Sat, 20 Dec 2025 10:34:42 +0000

I use it when I know what and where need to be done, because the complexity of the system and that making mistakes can fail the whole app. I do research in codebase using Claude ultrathink.

Our system is pretty well tested, so this helps a lot.

I know most people at my company use it, and with pretty good results(?)

Personally, I stoped voluntarily reviewing code and caring about quality of code that I’m not responsible for. The AI slop is real and reviewing it is counter-career, instead of pushing product forward and getting praised you spend it fighting with AI. I just accepted that this is how the products looks these days.

New comment by orian in "The AI wildfire is coming. it's going to be painful and healthy"

orian — Mon, 08 Dec 2025 08:35:54 +0000

It is not, because SV people use shallow metaphors from areas they don’t understand, to gain publicity.

But that was the same thought for me. The other totally missed aspect: a fire kills all life in area.

New comment by orian in "Reselling tickets for profit to be outlawed in UK government crackdown"

orian — Tue, 18 Nov 2025 17:50:20 +0000

But why? If one may resell apartment for profit, why do we regulate tickets?

New comment by orian in "Context should go away for Go 2 (2017)"

orian — Tue, 21 Jan 2025 10:07:46 +0000

To not repeat other's (Python) mistakes ;-)

Ask HN: Database threat detection and response – will it fly?

orian — Fri, 08 Nov 2024 11:28:52 +0000

Having spent the last few years working with RDBMS, I recently started exploring an idea for a database-centric cybersecurity solution. Together with two friends, we’ve spent the past three months researching this space. We've conducted dozens of in-person interviews (following The Mom Test guidelines) with CISOs from various scale-ups and enterprises across Eastern Europe and India, zeroing in on insider access threats.

A recurring theme emerged: while organizations with sensitive or high-value databases are generally well-protected on the perimeter, most lack effective ways to monitor and respond to suspicious activity by already authorized users. The solutions that actually work (eg. DSBMs) are typically bundled, expensive, cause slow-downs, and drain resources. Among those we interviewed, only about 5% felt that they have this issue solved.

Based on these insights, we developed a PoC that, through a database gateway proxy, can already perform full packet inspection. For now, the behavioral analysis is mocked up, but once fully implemented, the tool will be able to detect anomalies in baseline database traffic and respond to incidents effectively and with no trade-offs. We’ve demoed it to a few companies, and initial traction has been promising. However, we worry that this positive feedback could be a fluke—perhaps due to our small sample size or a bias toward regions with maturing cybersecurity markets. To be candid, we’ve also had trouble reaching US CISOs, even with warm intros, which is concerning.

So, before moving forward, we figured we’d try to broaden this research, and we’d appreciate any input from CISOs out there:

1. Do you consider insider data access a risk to your organization’s databases?

2. Have you already tried addressing this risk (if so, how), or is it a high priority on your to-do list (if not, why)?

3. Which solutions are you familiar with, and what budget would you consider for tackling this issue?

Comments URL: https://news.ycombinator.com/item?id=42086007

Points: 2

# Comments: 0

New comment by orian in "EU Parliament Civil Liberties Committee adopts position on CSAR"

orian — Tue, 14 Nov 2023 11:05:10 +0000

It's not that simple. If the country introduces a legislation, every company operating in it's border must comply.

If EU would introduce such legislation, it could potentially make software doing end2end encryption illegal. In such case, google would be removing it from EU Play Stores, and this would be more/less end of such messaging apps unless they comply. :-)

This is why it's important to have a reasonable legislature and laws.

New comment by orian in "EU Parliament Civil Liberties Committee adopts position on CSAR"

orian — Tue, 14 Nov 2023 10:17:35 +0000

From the source:

> Chat control - one of the worst EU plans that is also being described as a surveillance monster - must be stopped. And the EU Parliament has just decided to do so! In a historic agreement on the EU Commission's Child Sexual Abuse Regulation (CSAR) the European Parliament wants to remove chat control requirements and safeguard secure encryption. The decision came after extensive backlash against the original proposal from technology and security experts, to international scientists and to citizens across Europe. This is a great win for our right to privacy and for upholding our democratic values in Europe, but the fight continues!

What did the EU Parliament decide?

Breyer writes on his website that internet services and apps must be "secure by design and default". The EU Parliament has agreed to:

    "safeguard the digital secrecy of correspondence and remove the plans for blanket chat control, which violate fundamental rights and stand no chance in court. The current voluntary chat control of private messages (not social networks) by US internet companies is being phased out. Targeted telecommunication surveillance and searches will only be permitted with a judicial warrant and only limited to persons or groups of persons suspected of being linked to child sexual abuse material."

A huge win for our privacy rights is also that the EU Parliament has decided to "clearly exclude so-called client-side scanning".

In contrast to the original chat control proposal, the version of the EU Parliament wants that a new EU Child Protection Centre proactively searches publicly accessible parts of the internet for child sexual abuse material with automatic crawling, which can also take place in darknet and would be much more efficient than private surveillance measures by providers. Found abuse material must be reported and taken down by the provider. Fight is not over

While the EU Parliament's decision is a huge win, the fight is not over. It is expected that the EU Commission will continue to push for general surveillance chat control measures. Now is the time for each and everyone of us to join this fight!

EU Parliament Civil Liberties Committee adopts position on CSAR

orian — Tue, 14 Nov 2023 10:17:35 +0000

Article URL: https://www.europarl.europa.eu/news/en/press-room/20231110IPR10118/child-sexual-abuse-online-effective-measures-no-mass-surveillance

Comments URL: https://news.ycombinator.com/item?id=38261415

Points: 560

# Comments: 214

New comment by orian in "The Go Programming Language and Environment"

orian — Tue, 31 May 2022 09:38:55 +0000

Original article [source]: https://cacm.acm.org/magazines/2022/5/260357-the-go-programm...

New comment by orian in "Ask HN: Who's not sucky to work for?"

orian — Wed, 03 Nov 2021 21:23:44 +0000

Eric was great CEO and TGIFs were the thing ;-)

New comment by orian in "Ask HN: What are the biggest problems in your life?"

orian — Tue, 05 Oct 2021 05:58:04 +0000

too much work :P not enough time with family and friends

New comment by orian in "16% of Gen Z Believe Hitting a Router Improves UK Broadband"

orian — Thu, 02 Sep 2021 11:37:05 +0000

About 50% of Gen Z has below average IQ. No big deal.

New comment by orian in "ZeroVer: 0-Based Versioning"

orian — Thu, 12 Aug 2021 13:03:02 +0000

minor/major makes sense for, when a company plans to support a major for longer period of time, if the development is continuous, the date sounds good

New comment by orian in "Ask HN: Has Google search been worse at finding information lately?"

orian — Sun, 14 Mar 2021 22:36:10 +0000

It happen to me few times. Apparently no one ever has the same problem as me before. This happen super rarely and I'm proud of it.

Did you receive your 'search not found' badge?