HackerTrans
TopNewTrendsCommentsPastAskShowJobs

Kocrachon

no profile record

comments

Kocrachon
·5 वर्ष पहले·discuss
I understand NDAs are a thing, but I still don't think I'm too comfortable with the idea of letting a bunch of third-party people look at a bunch of my internal information. And I understand this is targeting startups a lot more than large established companies. But to me that's even more concerning because as a startup you're really trying to move fast and hoping someone doesn't beat you to the punch, and you're handing a bunch of people you don't know how much of your secret internal information, and hope that they don't go talking to other people about it.
Kocrachon
·5 वर्ष पहले·discuss
Can someone explain to me why python uses try/except so often? I see that promoted as a solution instead of;

if 'bar' in input['foo'].keys(): val = input['foo']['bar']

Generally, exceptions cause code to run slower and I feel like in any other language is considered bad practices.

I never understood why Python promotes EAFP vs LBYL. Both performance and accuracy wise, checking before doing is safer and faster performance.
Kocrachon
·5 वर्ष पहले·discuss
I find the attitude here from many people interesting. When I look at a bunch of rust communities, like the rust reddit or the rust discord, they are all cheering about this. But there seems to be so much hatred for AWS here that people would rather just use this as another chance to take swipes at AWS.

Ignoring the fact AWS contributes code/development to the project, they are also helping fund/finance parts of it and basically offer a bunch of free hosting to the Rust team.

https://imgur.com/w6udBdU
Kocrachon
·5 वर्ष पहले·discuss
Eh, I think it varies. All of the FAANG are such a huge gap of eachother.

About 6 years ago, Netflix and Google offered me far and away the most. Facebook Was Closer to them but still lower. Apple and Amazon were on par with the lower end of the spectrum.

I recently moved to Austin and started interviewing again, so far, AWS offered better wages than Apple and Oracle, especially for the area (was comparable to Seattle wage even), and Netflix and Google basically demanded I move (Netflix to Cali, Google to NYC). And Facebook I don't know because I refuse to work there.

So I think mileage may vary. AWS seems to pay a "Flat Rate" across the board, so if you live somewhere other than NYC, Seattle, or SF, your pay will likely be better than the adjusted wages other companies factor in for smaller cities.

Although I ended up taking an offer for Salesforce because they blew everyone else away pay wise.
Kocrachon
·5 वर्ष पहले·discuss
This is the big reason I still use Go for a few of my projects. I would prefer to use Rust but the lack or an SDK has me waiting.
Kocrachon
·5 वर्ष पहले·discuss
Because a bunch of people don't understand how the market work.

like all these people who think they're buying GME stock is going to save GameStop, cuz they somehow think that GameStop get some of the money from their stock purchases... So yeah I really don't know what the heck is going on in people's minds right now.
Kocrachon
·5 वर्ष पहले·discuss
And? Thats not because "AWS" was like "OMG so smart", AWS is already well aware of this issue but lays the blame on "Shared Responsibility" and are likely annoyed that Salesforce, a partner of AWS< released this without communication.

Honestly, my guess is there was a lapse in Salesforce somewhere, where either legal or PR didn't check this because this likely goes against Salesforce and AWS NDA for their partnership. I worked as an AWS partner before, there are requirements that go into place before you can release stuff like this to the public. Plus, having worked with Salesforce as well, I assume they have a PR policy to not use the word "hacking" in tool names or description, especially in regards to partners. My company has similar rules for OSS stuff.

This was more of a bad PR / Legal issue. AWS is well aware that people misconfigure permissions...

And again... better tools and more popular tools already existed... This is not new

https://rhinosecuritylabs.com/aws/pacu-open-source-aws-explo...
Kocrachon
·5 वर्ष पहले·discuss
Not to sound like a jerk but why do you think this would be some "OMG" response from AWS? This is not some sort of "hacking", this is a tool that is being used to detect whether you misconfigured API access to be overly permissive. The tools job is to find them and them "abuse" them. Its not like AWS is not aware of user misconfigurations. The issue is AWS does not provide tools to detect these very well. Tools like CloudAware also exist because of things AWS don't provide. Not like AWS isn't aware of the ability to make such tools, considering these are just crawling and attempting to use a series of already existing AWS calls.

The tool is great as a free tool and very helpful, but its also not like AWS doesn't already have the people smart enough to make something just as good, if not better. It just obviously not AWS's priority. They can just leave the blame on the user for not properly managing IAM permissions.
Kocrachon
·6 वर्ष पहले·discuss
Not sure how I feel about my medical information being handled by PHP...