HackerTrans
TopNewTrendsCommentsPastAskShowJobs

textman

no profile record

Submissions

Ask HN: What is your offline license activation system?

2 points·by textman·3 tahun yang lalu·2 comments

[untitled]

1 points·by textman·3 tahun yang lalu·0 comments

Did you get a code signing cert from Ksoftware recently?

ksoftware.net
1 points·by textman·3 tahun yang lalu·1 comments

Ask HN: Code Signing or No Installer?

1 points·by textman·3 tahun yang lalu·9 comments

Stripe Elements why does the vendor have exposure to PCI compliance?

stripe.com
2 points·by textman·3 tahun yang lalu·5 comments

Ask HN: Should customers get free upgrades of my software forever?

2 points·by textman·4 tahun yang lalu·4 comments

comments

textman
·2 tahun yang lalu·discuss
https://www.timeanddate.com just about everything you want to know about sun and moon data for any location. Also a world clock, time zones, timers, calculators, even weather.

https://filezilla-project.org/ FileZilla FTP client

https://adionsoft.net/fastimageresize/ What the name says and super fast, super small output. supports multiple image formats.

https://www.xponentsoftware.com/xml-editor.aspx for fast loading huge XML files. editing not very full-featured and search is slow, but xml schema validation is fast.

https://afdc.energy.gov/stations#/find/nearest Alternative energy locations with map. USA, Canada. electric/charging type, CNG, LNG, Hydrogen, propane, biodiesel, ethanol. route selection.

https://fire.airnow.gov/ Fire and smoke map. USA, Canada.
textman
·3 tahun yang lalu·discuss
Dont need code, just looking for overall strategy. while I never liked the idea of hardware locked activation, I dont see a viable alternative but would be great if there is one.
textman
·3 tahun yang lalu·discuss
The article says you dont have to wait for June 1. Has anyone implemented this? What the process like.
textman
·3 tahun yang lalu·discuss
I emailed their support recently with a question which they have not answered. All I got was an auto-reply with a ticket number.

I am thinking I should just order directly from Comodo/Sectigo.

Do you have recent information about ksoftware?
textman
·3 tahun yang lalu·discuss
The current release of my product is code signed, both installer and .exe inside it, but my 5 year cert expired (Comodo) and am evaluating the cost benefit of renewing, which is same as getting a new one, at least with Comodo they start you over from scratch. I am in USA and am incorporated in my state, so Comodo required a copy of my registration which has both company and my name and phone. They telephoned me with a couple basic questions. They also required I list my business a free online yellowpages business directory. That was it. Not too bad, but they stretched out their processing time line and were initially a bit misleading: at first they implied I had to go the dunn and bradstreet route, which is pricey, but when I objected they backed off.

What documents were you referring to regaring identity verification?
textman
·3 tahun yang lalu·discuss
I should have mentioned that while purchased by some big companies, there is usually just one user so would not be worthwhile to set it up for remote installation. It is a very niche, specialized program.
textman
·3 tahun yang lalu·discuss
So what does it take to get IT to approve software, particularly if no code signed installer? I was always a dev contractor so was never part of those decisions/policies.
textman
·3 tahun yang lalu·discuss
OP here. think what happens is stripe embeds the payment element in a cross-domain Iframe which means it is impossible for me(my server code) to access that data. And that seems to be the whole issue with PCI compliance, namely, my website is not in fact collecting CC data. From there I infer that stripe got certified PCI Service Provider Level 1 which allows them to handle just about all of the PCI processing and the vendor(me) just has to click an approval button annually to be PCI compliant. Does all this seem correct?
textman
·3 tahun yang lalu·discuss
No, user is redirected to fastspring.com. I guess it depends on whether my server code can access the CC data. I somehow got the impression that it cannot. So how is the payment element actually connected to stripe?
textman
·3 tahun yang lalu·discuss
From the stripe website: "a payment field that originates directly from our PCI DSS–validated servers. With safer card acceptance methods like these, we’ll populate the PCI form (SAQ) in the Stripe Dashboard, making PCI validation as easy as clicking a button."

Since the credit card payment data never touches my server, why is PCI compliance a part of the conversation? With Fastpring I don't deal with PCI because credit card payment is done on their server and it sounds like that is equally true with Stripe Elements. So what am I missing here?
textman
·3 tahun yang lalu·discuss
I am in US and have an idependent insurance agent that offers healthcare plans for every insurance company licensed in our state. They compared my plan with all the others, taking into account the types of service I use, what is covered when travelling, etc. Anytime I need a specialist I call the agent for a list of in-network doctors.
textman
·3 tahun yang lalu·discuss
A good insurance agent should do most of 1-4, but your service should make their job easier. So I see this as more for them than for a consumer. And also because after a plan is selected, copays and deductibles are essentially fixed so consumer would have no need to price shop.
textman
·4 tahun yang lalu·discuss
https://archive.ph/hfkkY
textman
·4 tahun yang lalu·discuss
I read both the Doctorov and Stoller articles but did not seen any proof that Booz-Allen receives the addon fees. Has an audit of their books revealed this?
textman
·4 tahun yang lalu·discuss
Good ideas. Easy to add something to the download page when they first purchase.
textman
·4 tahun yang lalu·discuss
Cannot disagree in concept, but the reality and logistics of doing that can get complicated. Going back a few versions, there were issues with the installation and also online license activation which I was always able to resolve without changing anything at my end, but it was considerable time on my part so really do not want to deal with that for free. Not to mention I would have to spend additional time reading the support logs to refresh my mind how I did it. Also, it is a .NET 2.0 program and I had to help a few customers that had not enabled .NET 2 when they installed Windows 10, so that could be yet another support issue to handle.