HackerTrans
TopNewTrendsCommentsPastAskShowJobs

washingupliquid

no profile record

Submissions

Latvian government collapses amid dispute over breaches by Ukrainian drones

washingtonpost.com
9 points·by washingupliquid·2 bulan yang lalu·2 comments

A Tribute to the Windows 3.1 "Hot Dog Stand" Color Scheme (2005)

blog.codinghorror.com
14 points·by washingupliquid·2 bulan yang lalu·5 comments

There is a problem with users abusing flagging on HN (2025)

twitter.com
3 points·by washingupliquid·2 bulan yang lalu·0 comments

comments

washingupliquid
·2 bulan yang lalu·discuss
Mikrotik bros in panic mode rn
washingupliquid
·2 bulan yang lalu·discuss
No need to distinguish ports when you can remove them all instead.
washingupliquid
·2 bulan yang lalu·discuss
Windows has been showing popup USB speed warnings since at least Windows XP.... so 25 years?

Let's not use this cope to mislead anyone into thinking this is a unique Mac innovation (it isn't) that trumps this abomination of human factors (it doesn't).
washingupliquid
·2 bulan yang lalu·discuss
[flagged]
washingupliquid
·2 bulan yang lalu·discuss
$150 netbooks solved this by labeling the ports "SS" or using blue USB-A inserts, but those are matters inferior PC users have to deal with.
washingupliquid
·2 bulan yang lalu·discuss
[flagged]
washingupliquid
·2 bulan yang lalu·discuss
[flagged]
washingupliquid
·2 bulan yang lalu·discuss
> One is security updates and bug fixes.

That's where you're wrong. They're not one and the same.

Debian stable often defers non-security bug fixes for up to two years by playing this game.

I'm not interested in new features unless they make things actually work.

Debian stable time and again favors broken over new. Broken kernels, broken packages. At least they're stable in their brokenness.

Hence my complaint.
washingupliquid
·2 bulan yang lalu·discuss
[flagged]
washingupliquid
·2 bulan yang lalu·discuss
> What it's about is, newer versions change things. A newer version of OpenSSH disables GSSAPI by default when an older version had it enabled.

Debian patches defaults in OpenSSH code so it behaves differently than upstream.

They shouldn't legally be allowed to call it OpenSSH, let alone lecture people about it.

Let them call their fork DebSSH, like they have to do with "IceWeasel" and all the other nonsense they mire themselves into.

When you break software to the point you change how it behaves you shouldn't be allowed to use the same name.
washingupliquid
·2 bulan yang lalu·discuss
Maybe this is the kick in the ass Debian needs to upgrade the embarrassingly ancient dnsmasq in "stable" because while I can't think of any new features, the latest versions contain many non-CVE bug fixes.

But I doubt it, they will lazily backport these patches to create some frankenstein one-off version and be done with it.

Before anyone says "tHaT's wHaT sTaBlE iS fOr": they have literally shipped straight-up broken packages before, because fixing it would somehow make it not "stable". They would rather ship useless, broken code than something too new. It's crazy.
washingupliquid
·2 bulan yang lalu·discuss
I'm fairly certain (an earlier iteration of) that came out in Windows Vista which is nearly 20 years ago. It was called Aero Snap.
washingupliquid
·2 bulan yang lalu·discuss
It's a good thing this software isn't used in millions of devices which almost never receive updates.
washingupliquid
·2 bulan yang lalu·discuss
I have a feeling videos documenting how to disable the vehicle's modem are about to get real popular:

https://www.youtube.com/watch?v=fW4Q7NNSBME
washingupliquid
·2 bulan yang lalu·discuss
> This sort of worked when the opinionated manager was Steve Jobs.

Steve indirectly had a hand in this, by emphasizing the humanities. That, unfortunately, backfired as a sort of positive feedback loop.

Someone hired a few underemployed artists onto the team, and the artists invited all their friends and soon took over the department.

People that in an alternate timeline would be smoking weed whilst sculpting wood in a derelict loft somewhere are now the lead designers, using our software as the canvas of a perpetual avant-garde art piece.

They also need to look productive to justify their jobs, so the need to change things is constant.

That's why in 2026 you could have a PhD in CS and still need to watch a YouTube video to learn how to change the volume.

Can anyone name a single substantive UI improvement in the last 20 years? They're simply hiding or moving stuff around at this point while no one has even touched accessibility.
washingupliquid
·2 bulan yang lalu·discuss
> Too many developers nowadays don't know this.

Guess they've never been on the phone with an elderly relative in tears because she can't figure out basic tasks on an iPad anymore after years of learning how.

That's when you realize you, as a highly-skilled technical person, can't either, because they've moved, hidden, or otherwise obfuscated them.

Yesterday I learned there are two icons in the Files app called "..."

Yes, two.

Incidentally I was looking for how to delete a file, which is now deliberately missing from the object's context menu, and intentionally hidden under one of these.
washingupliquid
·2 bulan yang lalu·discuss
A public key is useless without the private key. Which the attacker in this unlikely scenario doesn't have.

So you login the first time and they either match, or they don't. If they don't you start over. The end.

Ignore the fact that most people will probably use the box to host a poorly coded vulnerable service anyway.
washingupliquid
·2 bulan yang lalu·discuss
Public keys go over untrusted channels. That's why they're public.

I'm not confident you understand how crypto works.

You do realize the entire threat model here is a house of cards perched atop someone else's software hosted on someone else's hardware all of which you implicitly trust and discard in favor of some unlikely cloak and dagger interception scheme.
washingupliquid
·2 bulan yang lalu·discuss
I'm supposed to believe MitM with the same exact keypair is somehow possible? Private keys are never exchanged. Did everybody forget how crypto works?

Yes you implicitly trust the public key on first login.... then just... immediately compare it with what's on your box?

Might as well seal your doors with duct tape to prevent ghosts from entering your home because this is equally effective.
washingupliquid
·2 bulan yang lalu·discuss
Didn't Steve Gibson do this like 25 years ago? AFAIK his "Shields Up" site is written in Win32 assembly.