HackerTrans
TopNewTrendsCommentsPastAskShowJobs

IntToDouble

no profile record

Submissions

Squarespace Domain Hijacking Retrospective

securityalliance.notion.site
2 points·by IntToDouble·2 tahun yang lalu·0 comments

comments

IntToDouble
·tahun lalu·discuss
Rate-limited Playground Only key? Lock to requests for said key to be only permitted from the exact referrer? Give me one free and then auth?

¯\_(ツ)_/¯

I just want to try before I buy, sir.
IntToDouble
·tahun lalu·discuss
The first rule of Show HN is, "don't give me a playground where it looks like I can push the button and then force me to auth when I actually do click the button, expecting magic on the other side."

The second rule of Show HN is, "YOU DO NOT FORCE USERS TO AUTHENTICATE AFTER THEY'VE CLICKED THE BUTTON."
IntToDouble
·2 tahun yang lalu·discuss
Direct link to the retrospective:

https://securityalliance.notion.site/A-Squarespace-Retrospec...
IntToDouble
·2 tahun yang lalu·discuss
In terms of the incubator, looks like it was replaced with Mozilla Ventures:

https://builders.mozilla.community/ https://builders.mozilla.community/old/alumni.html

With respect to Kanary, I have my entire family the platform and it's drastically reduced the amount of garbage (figurative) that comes through our door. Needed help with something non-standard the CEO personally took care of things while learning more about our specific use case.
IntToDouble
·2 tahun yang lalu·discuss
Puzzling they chose to partner with Onerep when Kanary was part of Mozilla's incubator and is just a fundamentally stellar service.
IntToDouble
·3 tahun yang lalu·discuss
The Laws of Human Nature by Robert Greene

48 Laws of Power by Robert Greene

BigCo shenanigans will never look the same!