HackerTrans
TopNewTrendsCommentsPastAskShowJobs

daave

354 karmajoined vor 15 Jahren
Aussie in Seattle. Dad. Network/Storage/API geek.

Engineer at Snowflake. Co-founder at Radiopaper, PerfectSchedule. Ex-Google. Ex-Mixpanel. Ex-Stripe.

Views here are my own.

Submissions

Show HN: EvenKeel – a free financial planning chatbot

evenkeel.c6e.me
6 points·by daave·vor 7 Tagen·0 comments

Show HN: LORE - LOGO-to-Python transpiler for the EdisonV3 educational robot

github.com
2 points·by daave·vor 5 Monaten·0 comments

Snowflake’s migration to Envoy for traffic management

medium.com
3 points·by daave·vor 3 Jahren·0 comments

comments

daave
·vor 9 Monaten·discuss
HackerNews - aka local news for residents of the Bay Area, Seattle & NYC

I wonder what percentage of the world’s software engineers live in these 3 cities?
daave
·vor 3 Jahren·discuss
You're certainly more of an authority on it than I, so I trust when you say most schemes don't keep long-term keypairs around; but of the two companies I've worked at that use SSH CAs: one used Teleport, and the other had long-lived keypairs, but fairly-short-lived certificates -- you had to get your public key re-signed each day. They used Yubikeys to store (or maybe just unwrap?) the private key material during the SSH handshake; much as a TPM or the Secure Enclave could be used to do this.
daave
·vor 3 Jahren·discuss
This is a non-sequitur, even if you use SSH certificates you still need a public/private keypair, hosts just authorize the key by checking the signature from a trusted CA on the public half of the user key. The OP is about a way to store the private key part of the user key that can't be extracted even with physical access to the machine. So, this is an equivalent/alternative to using a YubiKey, that is conveniently built in to a popular piece of hardware; not something orthogonal to using SSH certificates.
daave
·vor 4 Jahren·discuss
Re caching:

I had a look into it, and it seems we set the following headers when retrieving user images:

> cache-control: public, max-age=3600

So I believe your browser _should_ be caching these.
daave
·vor 4 Jahren·discuss
Done - https://radiopaper.com/Stavros

Being able to change your email address is a known gap, sorry about that. For now if you want to use a different email you'll need to make a second account. We plan to make account merging possible in the future.

A short-sighted technical decision on my part: we use the Firebase Auth UIDs as our internal user IDs, but Firebase Auth does not allow you to have multiple email auth-providers on a single account. So we need to add a layer of indirection in our data model.
daave
·vor 4 Jahren·discuss
Yes! They will receive an email with the message, and some boilerplate explaining that it was sent from Radiopaper and that if they reply to the email the message will be published. They'll also receive a link to view the post on the site if they prefer.
daave
·vor 4 Jahren·discuss
https://radiopaper.com/about

It's helpful feedback that this isn't as discoverable as it should be. If you hover your cursor towards the bottom of the explore page, some links show up.
daave
·vor 4 Jahren·discuss
We don't have usernames!

You can log in with OAuth, or by Email.

You can change your _display name_ on your profile page, and that's what appears publicly on the site (your email doesn't appear publicly, even if you log in by address!).

Today to get a custom profile URL like radiopaper.com/Dave, you just need to ask and we'll create an alias for you. There isn't a self-serve alias mechanism available today, but we're thinking about how to provide one. Any profile can be linked by the URL radiopaper.com/uid, for instnace my profile can be reached at https://radiopaper.com/user/AwQLwnOgQFdyDfNoYfNCSSsVdx43, "Dave" is just an alias.

Clearly having separate concepts of login method vs display name vs profile URL is all a bit confusing, this is helpful feedback!
daave
·vor 4 Jahren·discuss
Adding a feature to block specific accounts is on our short-term roadmap.

We'll also endeavor to block accounts from the platform that violate our policies (https://radiopaper.com/policies).
daave
·vor 4 Jahren·discuss
Hacker News has definitely pushed us out of the free tier for today, but these services are still impressively cheap. We may have a $5 cloud bill this month.
daave
·vor 4 Jahren·discuss
The ability of the OP to accept or ignore replies is in addition to, not instead of, regular spam filtering techniques. Certainly we'll want to automatically block bots and other bad actors that violate our policies to reduce the burden on users.
daave
·vor 4 Jahren·discuss
Thanks for the feedback!

1. We're certainly looking into this, and other approaches to content discovery.

2. You can already add bios! Go to to your user page (link in the top-right), and it should be clear how to add a bio.

3. Thanks for the suggestion, we'll definitely think about this more.
daave
·vor 4 Jahren·discuss
Michael,

So glad that you're excited to use the platform.

Would you like a custom alias (radiopaper.com/MichaelLeonhard or similar)? At the moment we provision those manually, on-demand.

We saw your message to Socrates, I'm afraid he's not around to reply today, so it'll likely remain unpublished.
daave
·vor 4 Jahren·discuss
Thanks for taking a look! For now there are two ways to find an interlocutor:

1. Send a message to someone you already know, using their email address.

2. Comment on or start a conversation with someone whose post you find interesting.

We expect to add more features around discovering both users and conversations in the future.
daave
·vor 5 Jahren·discuss
Fellow Seattle-worker here

As a counterpoint- I take express bus 545 from Redmond to Seattle between 8 and 9am on weekdays, and there’s typically less than a half dozen people on the bus. I get from my home to the office in 30-40mins. The slowest part is the tiny stretch of I-5 with no bus lane.

I don’t think public transit has failed to keep up, it’s under-utilized, in part due to anxiety about COVID. These same routes were jam packed in 2019.
daave
·vor 5 Jahren·discuss
I use LastPass’s Emergency Access feature for this.

You can designate people who can access your Vault, after a certain waiting period. If they request access prematurely, I can revoke it during the waiting period.

There are written instructions for my next of kin on what to look for in the Vault.

The main difficulty is if my next of kin forget their LastPass master password.

I’ve been thinking of distributing a key via a set of USB stick using Shamir’s secret sharing, with written instructions to use them to recover a backup of the Vault kept offline… but have not gotten around to this.
daave
·vor 5 Jahren·discuss
You could achieve this with CSS by using “vw” units for everything, including font sizes
daave
·vor 5 Jahren·discuss
It's not pointless, but I do think it's reasonable to question whether this is the best thing one can do to have an impact.

Could the time spent taking the neighbors trash away be spent doing something even more impactful?

Is the interaction with these neighbors caring and educative, or antagonistic? In the latter case they're unlikely to emulate it or pass on the idea to others.
daave
·vor 6 Jahren·discuss
If you're paying off every month, why does APR matter?

Agree with finding good rewards and I'd substitute low APR for low/no annual fee.
daave
·vor 6 Jahren·discuss
I take it the author is not a fan of w3schools.com, a web site that's been around for a very long time and is highly ranked for many html-related queries.

Personally I find most of their content to be pretty decent, so I wouldn't filter it out as a rule.