HackerTrans
TopNewTrendsCommentsPastAskShowJobs

weddpros

953 karmajoined vor 13 Jahren
Currently working on https://SSLboard.com, https://SSLcalendar.com, https://QCready.com and https://CatchPhi.sh

Socials:

- linkedin.com/in/christophe-hartwig-ba228a5

Interests: Cybersecurity, Entrepreneurship, DevOps, Digital Nomading

---

Submissions

Show HN: Send Cloudflare Worker build events to Pushover

github.com
2 points·by weddpros·vor 2 Monaten·1 comments

Show HN: Throwaway – open-source disposable email checker and API

github.com
14 points·by weddpros·vor 2 Monaten·14 comments

[untitled]

1 points·by weddpros·vor 2 Monaten·0 comments

Ezs3.net to share S3 access in your team

ezs3.net
3 points·by weddpros·vor 5 Monaten·3 comments

The Good Hallucinations

chris-hartwig.com
2 points·by weddpros·vor 6 Monaten·2 comments

Scan PQC TLS for a whole domain, Free

qcready.com
1 points·by weddpros·vor 8 Monaten·0 comments

Ready for Post-Quantum Cryptography TLS?

qcready.com
1 points·by weddpros·vor 8 Monaten·0 comments

Show HN: SSL Certificate Expiration in Calendar App

sslcalendar.com
2 points·by weddpros·vor 9 Monaten·0 comments

comments

weddpros
·vorgestern·discuss
Just in case you missed this article https://www.washingtonpost.com/technology/interactive/2026/0... I hope we'll get updated stats on newer models eventually.
weddpros
·vor 21 Tagen·discuss
It amazes me how compartmented the mind of the West is: the "protector of Democracy" is barely conscient of its own lies... There is no democracy, barely an illusion of one.
weddpros
·letzten Monat·discuss
If adding something to the context doesn't help, it's only proves you're not adding the right stuff.

I'm adding pointers to specification documents, and it saves me from the /new dumb coding agent that sees your code base for the first time and knows nothing about architecture, concepts, code organisation, etc...

I'm using no cookie cutter directives though (except maybe "do not attempt to deploy, we're using CI CD to deploy" to avoid an automatic "wrangler deploy" to Cloudflare)
weddpros
·vor 2 Monaten·discuss
I really wanted to be notified of my Cloudflare builds in Pushover, since that's what I use for all my indie web apps events.

You can deploy it in minutes on your Cloudflare account.

- create an App in https://Pushover.net - click the Deploy on Cloudflare button on the Github Readme - configure the two Pushover secrets (User key and App token) in the form

Enjoy.
weddpros
·vor 2 Monaten·discuss
I've added support for an adhoc list in addition to the list I'm getting from the disposables... so now it's recognised as a throwaway address.
weddpros
·vor 2 Monaten·discuss
Well it's blocking the second one. You can't win them all.
weddpros
·vor 2 Monaten·discuss
As I've said in another comment, I'm offering a free cyber security assessment tool online and 22% of people use a disposable address, meaning they remain anonymous yet they have me scan the internet for vulnerabilities. They're not protecting themselves from me, they're protecting themselves from the consequences of their actions.

You could have asked me what reasonable use cases exist.

There are extremely valid use cases for anonymity in B2C, most likely none in B2B.
weddpros
·vor 2 Monaten·discuss
Let me explain: I'm operating a free cyber security service and 22% of users use a disposable emails. 22% of emails bouncing is not a TINY inconvenience. Hackers using my service incognito isn't a TINY inconvenience. If you're hiding your identity, I can't offer a safer internet to everyone.

I respect your disgust, and I feel the same towards your entitlement and presumptions.

I'll fix the percentage, it's 0.01%.
weddpros
·vor 2 Monaten·discuss
I'm now using https://github.com/disposable/disposable which should be a pretty decent option
weddpros
·vor 2 Monaten·discuss
Hi thank you! Can you share what domain it is? I'll add it to a regression test and make sure I find a more recent source of domains! I had found one, but it contained microsoft.com and google.com so...
weddpros
·vor 2 Monaten·discuss
It feels wrong to dump identifiers to save tokens: now they're devoid of semantics, and can't be grep'ed or mapped to concepts. CPUs are good with numbers, but LLMs are good with words.
weddpros
·vor 2 Monaten·discuss
TLS can already be setup to avoid store-now-decrypt-later PQC issues. That's available today, and should be implemented. Use https://sslboard.com to inventory all your external TLS infrastructure and check for PQC readiness (creator here).
weddpros
·vor 3 Monaten·discuss
Maybe code quality shouldn't be considered cybersecurity in the first place?

When things are tagged "cybersecurity", compliance/budget/manager/dashboard/education/certification are the usual response...

I don't think it would be an appropriate response for code quality issues, and it would likely escape the hands of the very people who can fix code quality issues, ie. developers.
weddpros
·vor 3 Monaten·discuss
eIDAS tends to hear "our European Sovereignty" when they hear Self-Sovereign.

You can't have a government issue a Self-Sovereign identity to you, it's an oxymoron. They can only issue credentials. But then they'd feel like they're losing control, so they pervert it. Now they call it SSI but it's just digital credentials.

The very title says it all: German implementation of eIDAS will require Google or Apple ID. That's not self-sovereign identity.

And that's why I find it lame.
weddpros
·vor 3 Monaten·discuss
I agree, and that government ID isn't your identity, it's just a piece of it.

I'm not arguing against government ID, I'm saying identity doesn't have to be that piece of paper, or that Google ID.

Analogy: if google ID is your primary key in your User table, then you're cooked. Instead use a uuid for the PK, and add Google ID as just another id. But the identity is the PK.
weddpros
·vor 3 Monaten·discuss
Self Sovereign Identity (aka SSI) is the only way out of those identity sovereignty issues. It shouldn't be acceptable that your identity depends on anything or anyone. It should just be your identity.

A paper or certificate can prove an entity trusts your identity to be <firstname, lastname, etc...> but that shouldn't be your identity.

You just are. Not your google Id, not your Apple Id either of course.

Governments are lame.
weddpros
·vor 5 Monaten·discuss
Hosted on Amazon and Digital Ocean from what I can tell
weddpros
·vor 5 Monaten·discuss
Hi! thanks for your feedback. Indeed the site fails to tell you what ezS3 does: it's not an alternative to Minio, it's not an S3 storage implementation. S3 is made for machines, ezS3.net "proxies" it for humans: it's a web-based S3 browser, and adds RBAC and sharing.
weddpros
·vor 6 Monaten·discuss
Trump could do it... to piss off SBF himself (second biggest donor to Biden/democrats behind Soros)
weddpros
·vor 6 Monaten·discuss
https://github.com/sslboard/SSLBoard-desktop for an OSS project I’m working on with those principles