Hacker News: sarakayakomzin

New comment by sarakayakomzin in "My experience with sexual harassment in the Scala community"

sarakayakomzin — Tue, 27 Apr 2021 21:34:25 +0000

bring in the stallmanites!

I for one am glad there is someone to stand up for him - it makes it very easy to tell who wants to cherrypick and debate semantics due to their own biases.

New comment by sarakayakomzin in "Signald: Unofficial daemon for interacting with Signal"

sarakayakomzin — Mon, 26 Apr 2021 01:22:57 +0000

big difference between using the name Signal and writing a third party client.

New comment by sarakayakomzin in "Et Tu, Signal?"

sarakayakomzin — Wed, 07 Apr 2021 15:32:22 +0000

>2) MobileCoin Inc. intends to maintain an extreme minority of the coins once the dust settles.

In other words, cha-ching! then what?

New comment by sarakayakomzin in "Tell HN: Crypto Wallets Trust Wallet and Ledger appear to be compromised"

sarakayakomzin — Sat, 27 Mar 2021 01:35:16 +0000

>I cannot stress this enough. The seed words on paper were never exposed.

AND they were generated via secure hardware? or did he just spin up a new key on an already compromised machine?

New comment by sarakayakomzin in "Could a Peasant Defeat a Knight in Battle?"

sarakayakomzin — Tue, 10 Nov 2020 09:55:26 +0000

...and you continue to avoid naming a country where this is the case?

New comment by sarakayakomzin in "How much do we need the police?"

sarakayakomzin — Thu, 04 Jun 2020 08:22:30 +0000

>Somehow we lost all perspective and have come to expect that our officers, whose jobs regularly confront them with mortal danger and the darkest parts of human nature, will always display the same perfect virtues we carefully signal everyday on Facebook

I don't know about you but I don't have to "carefully" display not killing people who are on the ground unarmed. You're depicting people with 6 months of training as if they were in a fucking warzone every day.

New comment by sarakayakomzin in "Show HN: Link-lock – Distributed app to password-protect URLs"

sarakayakomzin — Thu, 21 May 2020 01:01:41 +0000

>it seems hard-coding an IV and giving the user the ability to disable randomization may unnecessarily make unwitting users vulnerable

Yes. There's not a great reason to disable the randomization here. You're safe if each link uses a new key, but if it was possible for a user to use the same key and IV for a different link, an attacker with access to the first link could now use it to access the second.

https://en.wikipedia.org/wiki/Stream_cipher_attacks#Chosen-I...

New comment by sarakayakomzin in "Don't Make Students Use Eclipse"

sarakayakomzin — Sun, 12 Apr 2020 00:24:20 +0000

>A lot of my peers in college were very bright and could write great code, but they were absolutely useless as developers

being a useless developer doesn't make it not computer science. not all of computer science is software development.

New comment by sarakayakomzin in "Zoom meetings aren’t end-to-end encrypted, despite marketing"

sarakayakomzin — Tue, 31 Mar 2020 12:29:02 +0000

a few problems:

>Clients negotiate end-to-end encryption session key between themselves the same way as a chat app would.

how are you doing this exactly? a 50 way diffie-hellman that renegotiates every time a user leaves or joins? How do you plan on doing that without any substantial lag?

>2. Each client sends the server two (or more) encrypted video streams, varying in bandwidth and keyframes per second

you have managed to double your egress for almost no value.

New comment by sarakayakomzin in "Online altruists making Reddit more accessible"

sarakayakomzin — Sun, 01 Mar 2020 04:18:12 +0000

not really something that applies to this kind of comment.

New comment by sarakayakomzin in "Yap: An ephemeral, Real-Time chat room with up to six participants"

sarakayakomzin — Tue, 11 Feb 2020 12:41:03 +0000

is it really an MVP if it isn't V?

New comment by sarakayakomzin in "Living without a SIM card"

sarakayakomzin — Sun, 09 Feb 2020 11:25:05 +0000

>It's called peace of mind

Is it? because from my perspective you've taken yourself out of a few databases (AT&T / Verizon / Telco) and plopped yourself into a few other databases (2nd Line, Grab) without having a whole lot of benefit.

New comment by sarakayakomzin in "Our first patent troll"

sarakayakomzin — Sat, 08 Feb 2020 12:20:19 +0000

>A method of using voice commands from a mobile device to remotely access and control a computer. The method includes receiving audio data from the mobile device at the computer. The audio data is decoded into a command. A software program that the command was provided for is determined. At least one process is executed at the computer in response to the command. Output data is generated at the computer in response to executing at least one process at the computer. The output data is transmitted to the mobile device.

this is revolutionary. are they taking investors?

New comment by sarakayakomzin in "How to Find New Music"

sarakayakomzin — Fri, 31 Jan 2020 01:11:18 +0000

I think this could be due to genre bias. There's a new xanax rapper every 60 seconds but fewer folk metal, and the like, partially due to required number of people and overall effort.

New comment by sarakayakomzin in "Ask HN: How do you currently solve authentication?"

sarakayakomzin — Mon, 27 Jan 2020 21:23:21 +0000

I'm certainly going to trust an authentication service with a bad certificate.

New comment by sarakayakomzin in "Show HN: Userbase – Add user accounts and persistence to your static site"

sarakayakomzin — Sun, 26 Jan 2020 01:33:32 +0000

the proper way for them to implement this would have been PAKE since they are customer facing for domains that may or may not even have a need for e2ee.

New comment by sarakayakomzin in "Show HN: Userbase – Add user accounts and persistence to your static site"

sarakayakomzin — Sat, 25 Jan 2020 20:45:30 +0000

https://blog.intothesymmetry.com/2020/01/the-curious-case-of...

seems like it'll break on firefox now.