I once signed up to a service (privately run VPN thing) run by a university club that required confirming a real university student email address without having such an address. So, you needed to click a confirm link sent to "[email protected]".
Then, mostly as a goof, I tried signing up with an address like "[email protected]@example.com" where I controlled the second domain. Lo and behold, the confirmation email showed up in my catchall inbox on that domain.
Pretty sure the only check the site did was .contains("@uni.tld") and assumed it was good enough. (or whoever wrote it put it in as a backdoor) Really regret not reporting that bug to them.
I'm more into the juxtapositions of interactions between idiots vs experts, specialists vs generalists, startup-billionaire vs unemployed-drug-addict-hacker, and the level of insight that can be gained from these conversations.
I believe that the civility, and desire for unfettered conversation (avoiding ad-hominem, flame-wars. etc···) are more of an instrumental-goal of this process, than the true goal.
I don't really know why the comments on hn are the way they are, and I doubt anyone ever will. But that's what keeps me coming back here.
It's the only place on the internet I can get this kind of thing, whatever it is.
I do have to say, there's something special and unique here. Like the userbases of wikipedia, stack overflow, 4chan, or twitter, there's something here that's impossible to recreate and worth preserving.
Is there a list of devices anywhere for which this doesn't work?
It's worked in anything I've tried (haven't tried latest iphones) with only a momentary power switch on it.
I was under the impression it was some kind of legal requirement somewhere, and that's why it was so standard.
It's one additional resistor, I think. The first lot of raspberry pi 4s had that same problem, and I've seen it in other hardware that uses type-c to charge.
Cosmic rays can come from any angle, and even pass through the entire earth without impacting anything. (millions of them are zipping through you and your RAM, right now! electrons barely dodging out of the way in time.)
I think (but have no reference) that the amount of cosmic rays the planet blocks by being in the way is dwarfed by the effects of the magnetosphere and solar rays.
Are there any details on who's providing this app, who's running the site, and what they'll do with collected data?
The ToS and privacy policy are identical, and only refer to an app called "velo" and a company called "copilot LLC", and that their method of contact is "Joe Blau."
This seems very strange to me. (unless this is a "move fast, break things, collect GDPR fines" sort of thing)
I don't think my original comment was clear about how I view the ToS as a hammer Apple made for themselves to wield. Not for the good of anyone, but apple.
Their goal here being to cover their ass and have a rule, that you already "agreed" to follow, to point at when they want to get rid of your app.
Apple's legal tech has always been years ahead of their electronic tech, I'm honestly curious to see if epic's got some sort of counter to apple's usual legal shenanigans.
Using a blowtorch as a heat-source is common in extreme overclocking, to heat up VRMs and memory modules up enough to boot the machine, and keep it working.
liquid helium might get into the device itself and cause other problems. (e.g. iphones stop working in the presence of helium)
Apple's iOS ToS specifically forbids downloading and executing code by the app. (with a definition of "code", and "execute" somewhere in the document)
While you could technically hide this from them during the review stage, apple can stop any app from functioning on any iOS device connected to the internet by revoking the certificate, if they discover it at a later stage.
Are there noteworthy apps that break this term in the wild?
> I'm more drawn to the fact that the American government can greenlight this, even though it has global implications.
They only need to greenlight the launch, and radio-transmissions over the US.
As far as I know, there is no central authority anywhere to stop you from putting/keeping a satellite in a certain orbit. (aside from someone else moving it out of that orbit by force)
Space border laws aren't super-well developed yet.
Does npm or whatever package manager is in vogue not have a hack to make a "package" out of a URL pointing to some javascript? (even if someone has to write some automation to package every version from github, as it comes out.)
Although, this point is moot as soon as someone packages it for whatever package manager you use. No matter how hackily they do it. e.g. if there were a npm package called "auto-import-arbitrary-or-versioned-file-from-git-repo-or-http-url" that consolidated _all_ of your random single-file imports, that'd count IMO.
> * Having a relatively big number of tabs (~600 in multiple tab groups)
I have found this extension[0] useful, for saving my machine when I leave too many tabs open.
Just make sure to whitelist things you don't want unloaded. Like infinite-scroll webpages.
The keyword here is "linking exception". It is a hack to sidestep the licensing problems caused by dynamic linking.
e.g. If I encase gcc in java, and release gcc.class under GPL3+, but use it extensively in a separate proprietary java program, does that infringe on the terms of the GPL? Does providing copies of the two together, with a single installer make a difference?
Then, mostly as a goof, I tried signing up with an address like "[email protected]@example.com" where I controlled the second domain. Lo and behold, the confirmation email showed up in my catchall inbox on that domain.
Pretty sure the only check the site did was .contains("@uni.tld") and assumed it was good enough. (or whoever wrote it put it in as a backdoor) Really regret not reporting that bug to them.