HackerTrans
TopNewTrendsCommentsPastAskShowJobs

jjguy

no profile record

Submissions

What caused the large AWS outage?

newsletter.pragmaticengineer.com
8 points·by jjguy·vor 9 Monaten·1 comments

Supply-Chain Firewall: Protecting Developers from Malicious Open Source Packages

securitylabs.datadoghq.com
5 points·by jjguy·vor 2 Jahren·0 comments

iPhone Mirroring at work may expose employees’ personal information

sevcosecurity.com
58 points·by jjguy·vor 2 Jahren·73 comments

Don't use iPhone Screen Mirroring on a work computer

sevcosecurity.com
5 points·by jjguy·vor 2 Jahren·1 comments

comments

jjguy
·vor 2 Jahren·discuss
I didn’t personally know your dad, but like many others here depended on his work with QModem during the late 80s and early 90s. The fact we are all on Hacker News is evidence of how it impacted our lives - and the relevance of the community here.

Thank you for posting - I’ve enjoyed reading the outpouring of history and stories and hope it brings you the same sense of wonder it has me. Godspeed to you and your family.

Similar to all the rest of you HN lurkers, especially the grey beards - thanks for being here and thank for keeping the “hacker” in “hacker news” alive.
jjguy
·vor 2 Jahren·discuss
Hey look on the bright side. If this is legit, then it will inevitably become a reference in the bill to overhaul the DMCA when it (finally) gets introduced!

The beginning of the end, the moment when thr DMCA jumped the shark (for the broader world, not us tech geeks)
jjguy
·vor 2 Jahren·discuss
Based on how well CrowdStrike has managed their response to date, this is a plausible scenario.
jjguy
·vor 2 Jahren·discuss
All this, but there is also some negative PR getting funded, presumably by the incumbent car manufacturers threatened by Tesla.

Remember that NYT article came out in 2018 that painted such a terrible picture of Elon (1)? A year later it showed up on my Facebook feed as a paid advertisement. Who pays to promote a year-old news article?
jjguy
·vor 8 Jahren·discuss
Graph databases are the NoSQL of this half decade. Move cautiously. Just because you conceptualize it in your mental model does not mean you need a graph database. Further, recognize most (all?) implementations are not yet as performant or scalable as traditional data storage solutions.

Design your data schema first, then design your queries and finally your data lifecycle pipeline. Run some estimates on the order of magnitude for inserts, query rates, query types and storage sizes - then compare those numbers to the real-world perf of the various graphdb solutions. In general, compared to more typical solutions, you have more expensive inserts, query costs and storage sizes in exchange for more expressive queries. There aren't many application where those cost tradeoffs make sense.

Source: Twice now (2012 and 2018) I've reviewed available graphdbs for storage of enterprise security data when doing the initial platform technology selection. Both times the team fell back onto more traditional approaches.
jjguy
·vor 17 Jahren·discuss
oh! That's even more interesting. The security community spins lots of FUD talking about the "insider threat," but there's very little real data to back up the threat.

"Credible data describing the scope and impact of unwelcome insider actions are hard to come by..."

Shari Lawrence Pfleeger, Salvatore J. Stolfo, "Addressing the Insider Threat," IEEE Security and Privacy, vol. 7, no. 6, pp. 10-13, Nov./Dec. 2009, doi:10.1109/MSP.2009.146 http://www.computer.org/portal/web/csdl/doi/10.1109/MSP.2009...
jjguy
·vor 17 Jahren·discuss
10 bucks on 0day.