22 September 2021
Preview of 'The Framework is the most exciting laptop I've used'

The Framework is the most exciting laptop I've used

"Been extremely happy with mine the past couple months. The little modular port attachments seemed like a novelty at first, but now it feels absurd that you'd buy a laptop with a bunch of "hardcoded" ports that you can't ever change.The only real Linux related quirk I've run into so far is that you have to disable panel self refresh (it's on by default and causes stuttering). Other than that tiny thing I pretty much just installed my stuff and started using it.One little anecdote: I got a card in the mail from Framework saying that there was a problem with the cable for the touchpad, and it had instructions on how to fix it. Contrast that to my experience with Apple where they would delete forum threads for laptop problems and spend years denying issues until legal action forced them to acknowledge it.Anyway, I'm a fan. I'm really looking forward to when the marketplace opens up with some new parts. I really want my blank keyboard. I'm hoping 2021 will be the year I can own a laptop without a god damn windows logo emblazoned on the keys."

"The baseline, preassembled model starts at $1000. Windows 10 Home, quad-core i5, 8 GB RAM, 256 GB storage, a nice 2256x1504 display, thin and light (1.3kg, 11.7" x 9" x 0.6"). Compare that to your other thin and light options at this pricepoint.XPS 13, $1020* i5* 8 GB RAM* 256 GB storage* 1920 x 1200 display* 1.2 kg, 11.6" x 7.8" x 0.6"MacBook Pro: $1300* M1* 8 GB RAM* 256 GB storage* 2560 x 1600 display* 1.4kg, 12" x 8.7" x 0.6"It's almost a no-brainer, even without considering the repairability, unless you like macOS. Unfortunately, not many people see repairability as a feature yet due to the toxic status quo, but this could change. I think that after brand recognition is established, this laptop could legitimately be competitive in the laptop market, and not just appeal to hardcore techies."

"I just got one of these last weekend(I ordered it in early August) and so far it’s really great. The modular I/O and general mission of the company was what initially sold me on it, but now actually being hands on with it, I definitely feel secure in my decision to get one. I can’t overstate how good these modular ports are.I also really like that you can bring your own hardware in a lot of cases. For example I had an extra M.2 SSD laying around, so I ordered mine without one and installed it. You can also do this with the RAM, and even the wifi card.The only thing I’ve disliked about it so far is the arrow keys on the keyboard. Having full size keys for left and right but split keys for up and down feels weird, I would have preferred all full size arrow keys and a small right shift(because let’s be honest, when was the last time you used the right shift key?).For anyone curious about Linux on it, I’m running Arch and had basically 0 problems specific to the device. It’s my understanding there were some incompatibilities with certain kernel versions before so maybe some of these problems exist in distros like Debian with an older kernel, but I have had no issues.All in all, it’s just an exciting project and nice to see innovation in the space that isn’t just rounded corners or a sleeker edge or something where they take modularity or performance away for the sake of aesthetics."

Preview of 'I started SaaS companies in 2013 and 2021 – how things have changed'

I started SaaS companies in 2013 and 2021 – how things have changed

"My impression is that every SaaS that is successful on ProductHunt (PH) or HN gets copied dozens of times within a few months. That's especially true for technically simple products. A good example is maybe privacy-friendly web analytics: I think products like Fathom and Simple Analytics were the first to really go after this angle (undoubedtly there were others before them though), and in less than 6 months dozens (hundreds?) of copycats turned up with exactly the same USP and the exact same look & feel. And interestingly it isn't the first mover who seems to win that market but rather the company with the most agressive (and sometimes outright misleading) marketing. So being the first doesn't guarantee your success anymore, at least if you don't have enough time to grow undisturbed.Personally I'd avoid posting products on PH or HN for that reason and instead focus on growing organically in a niche market where you're not immediately discoverable by copycat founders. In general PH feels more and more phony to me and I think there's a lot of astroturfing going on."

"Ironically, the increase of SaaS businesses have made me more vary of actually using them.It seems like so many wants to have a successful semi-solo SaaS that pay their bills. They aren't longer a way to sell a product and a startup idea, but an attempt at a lifestyle. Some people throw up smooth landing pages for barely working products, and quickly move on to the next idea if it doesn't stick.How can I invest time and money in using a product if I'm afraid the founder will bail after a few months?"

"I'm a founder at heart; I've loved creating - and have a software background. I really resonate with the paraphrased vibe of way, way more SaaS companies. I've been looking outside of SaaS to potentially harder science companies rather than SaaS for future endeavors.It is too easy to: splash page, Wordpress, "rails new saas" for a product and then try to sell via SEO / outbound, etc that the field is quite saturated - and un-discovered niches are a lot harder than say 2013."

Preview of 'A Tunguska size burst destroyed Tall el-Hammam, Bronze Age city in Jordan Valley'

A Tunguska size burst destroyed Tall el-Hammam, Bronze Age city in Jordan Valley

"> Based on the distribution of human bones on the upper and lower tall, we propose that the force of a high-temperature, debris-laden, high-velocity blast wave from an airburst/impact (i) incinerated and flayed their exposed flesh, (ii) decapitated and dismembered some individuals, (iii) shattered many bones into mostly cm-sized fragments, (iv) scattered their bones across several meters, (v) buried the bones in the destruction layer, and (vi) charred or disintegrated any bones that were still exposed.What a way to go"

"I like the theory that this event is what inspired the biblical story of Sodom. It reminds me of how paleontologists use the ancient art and stories of Native Australians to figure out what Pleistocene animals looked like and how they may have behaved.In the story, Lot and his family were one of the few people to escape the city before its destruction. God told his family to not look back at the city as it was being destroyed. Lot's wife looked back and turned into "a pillar of salt". Maybe this is a metaphor for the people who went back to the site and couldn't grow food there due to the hypersaline that was spread across the region by the airburst."

"Another major explosion theorized to be caused by bolides is the 1626 Wanggongchang Explosion[1] in Beijing which is considered one of the major causes of the fall of the Chinese Ming dynasty.Although having its epicenter in the middle of a gunpowder factory would of course also heavily imply a gunpowder explosion (or maybe both).[1] https://en.wikipedia.org/wiki/Wanggongchang_Explosion"

Preview of 'More Casio Watch Mods (2017)'

More Casio Watch Mods (2017)

"I've been wearing a Casio F-91W for a number of years now and it really is a joy. It's always there, and it always works.I've gone down the rabbit hole with expensive time pieces but they become a burden / obligation rather than a tool - especially as the prices of certain pieces in the secondary market have gone so high - so over time I've reverted back to much cheaper watches and find myself getting more joy out of the cheaper & much better value for money brands.Very occasionally I'll take it off in favour of a dress watch for a special event but otherwise I just wear it all the time, knowing that if it finally fails I'm looking at $10 to replace."

"I got a Casio watch from Amazon about five years ago, there was a deal on and it was about CAD$20. A budgetary driven decision, for sure!But it's been fascinating to see, over the years, how many times I've been approached (in a coffee shop or some other public place) by serious Casio enthusiasts, keen to ask about my watch and to show theirs. There's so many variations, colours, limited-runs editions... I seem to have accidentally stumbled into a niche with lots of passionate hobbyists - I'm sort of glad I had to replace the awful strap, which snapped, so I actually have something to contribute to the conversation. I had no idea Casio watches were such a big thing, but now I'm not at all surprised there are modding projects like this."

"Also a Casio fan, having picked up a GWM5600BC Radio Controlled/Solar model in 2010. I'm wearing it to this day, having never changed the battery, taken out through all manner of wet and cold situations. I did sometimes have the problem of the battery running low in winter but switched off the wrist-flick light feature which constantly misfired under-sleeve and haven't had it since. Atomic clock updates daily are the cherry on top. Here's to the next decade!"

Preview of 'iOS 15'

iOS 15

"Apple continues to support OS updates on the iPhone 6s, a device released almost 6 years ago. Nor is it reserved for their flagship models - the 2016 iPhone SE also gets the latest and greatest.Meanwhile, my flagship android phone from 2018, the Samsung Galaxy S9, is stuck on the last version of Android. At least it still gets security updates, some manufacturers don't even go that far."

"For anyone wondering, this was supposed to be the release where Apple could scan your photos for child abuse. This was delayed for this release: https://www.techradar.com/news/apple-delays-child-abuse-phot..."

"Apple Maps is so close to being a fantastic app, but is sorely missing “search along route” that Google has. Right now, you can press the “coffee” or “gas” button but there’s no way to say, search for a CVS on the way back home from work. I really wish Apple added this instead of just suggesting searches that might be useful."

Preview of 'Spy tech that followed kids home for remote learning'

Spy tech that followed kids home for remote learning

"It's funny how every society has its own way of mistreating children, yet never considers it a problem at the time. We look at the ways children were harmed and exploited throughout history and shake our heads at how our morally underdeveloped forebears could be so cruel and misguided. Then we turn around and declare that our children have no right whatsoever to privacy, and that everything they read and write should be surveilled 24/7 by teams of strangers, for their "own good".I firmly believe that a hundred years, people will look back on practices like this and shake their heads at the appalling attitudes their primitive ancestors had towards children. But I imagine that's little comfort to the kids subject to this kind of abuse."

"I wonder how much harm the constant surveillance does.We are training kids that someone is always watching. That they have to censor their thoughts and hold in their feelings rather than talk about them with others for fear of it being determined to be 'wrong'. How many of these kids will be suspended, expelled, medicated, etc for things that were harmless? I think this surveillance will cause these kids to be less independent and delay their maturation because it's safer to do what you're told, not explore questions you have, and suppress your opinions.The number of conversations I had in school that would have gotten me I'm trouble today would be a lot. I would guess they would have expelled me for some of it, even though it was totally harmless.Where is the cost benefit analysis? Or is this just another 'common sense' solution because 'think of the children'?"

"This is pretty outrageous. This constant need to fully control and monitor everything your kids are doing is getting out of hand and will by itself lead to severe problems and mental issues for the future generations.I mean, who didnt share or look at some porn when they were 10 years old? Would it be worth it for a whole army of teachers and consultants to descend on you and file an “incident report” and a “follow up” and “de brief” for this? What a colossal waste of resources and money. The $300k for the software could be better spent elsewhere.And yes, one suicide was apparently prevented, but then here we are again at the same argument, its like the one in the current apple/child porn case.Should we all get monitored just because of one positive but disproportionately small outcome?"

Preview of 'TikTokers Are Trading Stocks by Copying What Members of Congress Do'

TikTokers Are Trading Stocks by Copying What Members of Congress Do

"This is unlikely to work because of the timing delay. Suppose a member of Congress has access to inside information and trades on it. They have 45 days to disclose the trade. By the time the trade is disclosed, the market has already moved: if Pelosi or McConnell or whoever bought low so they could sell high, a month later the increase is probably already baked in."

"https://www.cnbc.com/id/218.htmlThis reminds me of a study which showed that even if you bought the same stocks a month after Buffett and his holding company Berkshire Hathaway disclosed their own purchases, you'd still be way ahead of the game."The market ... appears to under-react to the news of a Berkshire stock investment since a hypothetical portfolio that mimics Berkshire's investments created the month after they are publicly disclosed earns positive abnormal returns of 14.26% per year."But Buffett is a long term investor. I am not sure how long the Pelosis hold their stocks...But yes, insider trades :("

"This is a bit like a popular hedge fund strategy known as alpha capture. In the alpha capture strategy, funds look at the buy/sell recommendations made by analysts (for example those at the major banks). Applying a systematic approach means that they can measure the accuracy of each individual analyst and choose whether or not to follow along by trading the advice from that person. The best analysts eventually get hired into funds for their picks to be exclusive.I built something (DueDilly) that works in a similar way by monitoring the performance of Reddit user's stock recommendation and tracking how each idea performs and which users do well. You can choose to trade alongside them based on their track records.My site: https://duedilly.io/Previous Discussion in my Show HN: https://news.ycombinator.com/item?id=28244744There are various academic papers that also discuss it like: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=3873884"

Preview of 'Paradise lost: The rise and ruin of Couchsurfing.com'

Paradise lost: The rise and ruin of Couchsurfing.com

"The social proof that a couch surfing reference brought was second to none. Each one boils down to this "I, a stranger, stayed for a few nights in this other strangers home for free, and they were good human beings". That social proof carried to any part of the globe you visited.I cannot think of an internet app that brought people together in a more meaningful and wholesome way at scale.It was great while it lasted."

"Airbnb ruined Couchsurfing because it changed social expectations around hosting strangers at your house. Before Airbnb, no one really even thought people would pay for the privilege to sleep on your couch or your spare bedroom. But once Airbnb started getting popular, I think a lot of hosts on CS were thinking well, this is neat, but I could get paid doing this. And a lot of CS guests became refugees from Airbnb thinking "well, if Airbnb wants me to pay for this, why do I go to CS and get it for free?"I CS'd only once, in Ghana in 2011. It was great, but I was too late for the trend, it died pretty shortly after."

"A few developers from different HospEx (hospitality exchange) platforms (Trustroots, WarmShowers Android app devs, BeWelcome) started an attempt to federate the HospEx world.Mariha (@mariha:matrix.org) was contributing for Warm Showers Android App and with https://warmshowers.bike/ happening she kind of kick-started the whole project.We got funding recently from https://ngi.eu and with that we start to work for the next generation internet.We would love to revive the spirit of early Couchsurfing and Warm Showershttps://openhospitality.network"

Preview of 'While posting to Tumblr, E and W keys just stopped working'

While posting to Tumblr, E and W keys just stopped working

"True story: One day, Windows wouldn't let me type the letter p.I was trying to log back in from the Windows lock screen. Typed my password, got it wrong. Typed it again, got it wrong. Eventually got locked out of my account, despite being extremely careful to type my password correctly. Went to IT and had them unlock my account...Went back to my PC and tried to log in again. Typed my password very carefully, letter by letter, watching each letter come up on screen as I went. When I went to type the letter p, nothing happened. I hit p repeatedly, nothing.I figured the switch for the p key on my keyboard had died or something, so I went to IT and got a new keyboard. Unplugged the old, plugged in the new. Still no p. OK, this is getting ridiculous. Clicked on accessibility tools and tried to use the on-screen keyboard to type in my password. _Still couldn't type the letter p, even with the on-screen keyboard._Ended up having to hard reset the machine, and then everything was fine and dandy. Still have no idea what could have happened. It ended up being the last straw that pushed me to Ubuntu, and I've never looked back."

"I don't know how many Polish people who owned a Radeon card in the 2000s are there on HN but I'm sure they can all relate :-) as the card software would overwrite the key combination used to type the letter "ć" and open the Catalyst Control Center instead. Argh!"

"My personal pet peeve is what every Squarespace-powered site on the internet (many millions!) does to the esc key.Example: https://www.folioeast.com/I never realized how often I use the esc key until I started getting routed to Squarespace logins all over the place."

Preview of 'Watch an election being stolen in realtime'

Watch an election being stolen in realtime

"This could be the last time we see these funny videos. In this elections they “defeated” all opposition candidates with electronic ballot. Before electronic ballot results, even with all election fraud you see on camera, 90% of opposition candidates were winning in Moscow and Saint-Petersburg. Electronic ballot results were delayed by a few hours and when they released it turned out that opposition lost everywhere. This means next time they won’t even bother with a fraud in camera, they just put the numbers they need in a computer and declare a victory."

"I had a discussion with some friends about how impressive it is that Putin can do so many outrageous things and the world doesn’t stop him. Clear election fraud, assassinating foreigners, invading Crimea, etc. there are very few other countries that get free passes like Putin does."

"From the high score but low placement on the HN page, I’m guessing this is being heavily flagged."

21 September 2021
Preview of 'Show HN: 40k HN comments mentioning books, extracted using deep learning'

Show HN: 40k HN comments mentioning books, extracted using deep learning

"Hi HN!I built this small app in my spare time to aggregate books recommended on Hacker News. I personally find books recommended on HN to be super helpful, so I think this is the way that I can contribute back.This book aggregation idea is not new. A bunch of sites have done similar things [1, 2, 3].Yet one common limitation of those sites is that they have limited recall (i.e. not able to get a comprehensive set of book mentions), and thus don't paint an accurate picture of what the top books are. They're all based on insufficient rules, e.g., looking for Amazon Links. As you can see from my app, people often do not include Amazon links when recommending a book.I wondered, why can't we just match book names? Well, not so easy. Some books have pretty short names, e.g. Meditations [4], or Steve Jobs [5]. Some book name might as well be the name of a movie, e.g. Ready Player One [6]. Simply matching the names of the books would produce a whole lot of irrelevant results.This is where Deep Learning comes into play. Recent advances in large NLP models (transformers and BERT in particular) have made machine language understanding unprecedentedly accurate. It enables me to fine-tune a BERT model on a couple thousand labeled HN comments and predict accurately whether each word in a comment is part of a book or not - a task commonly termed as Named Entity Recognition (NER).As a result, my app is able to present a whole lot more results while maintaining desirable accuracy. For example, NER works pretty well on the tough examples I mentioned ([4, 5, 6]). Compared to prior sites, my app captures 9-50X more mentions and thus presents a much more complete picture of what books are recommended on HN.Furthermore, I've made sure that the comments are presented well in the UI because the recommendations are just as useful as the books. I highlighted the mentioned book name, and used a custom NLP-based ranking function to sort the comments. These are non-trivial improvements over prior sites, which I hope you can find useful.Nevertheless, this app is not without limitations: 1) matching book names would fail when two books have the same or similar names; 2) although not often, this approach would wrongly classify some short stop-word names [7] and 3) sometimes NER fails to see that the commenter actually hates the book. These problems can be alleviated with more Deep Learning. For 1), one can use BERT to learn the authors mentioned which can be used as a filtering criteria. 2) and 3) should be fixable with more training data (currently there are only ~4,000 hand-labeled HN comments).Lastly, I'd like to especially thank my gf who helped me label ~1,000 comments, which boosted the model accuracy by 5 percent! I also want to thank the people who create and maintain the HackerNews big query dataset [8]. And of course, thank everyone on HN who recommends books to others.Hope you enjoy this app! Feedback and suggestions are welcome :)[1] https://news.ycombinator.com/item?id=15169611[2] https://news.ycombinator.com/item?id=10924741[3] https://news.ycombinator.com/item?id=12365693[4] https://hacker-recommended-books.vercel.app/category/0/all-t...[5] https://hacker-recommended-books.vercel.app/category/1/all-t...[6] https://hacker-recommended-books.vercel.app/category/0/all-t...[7] https://hacker-recommended-books.vercel.app/category/12/past...[8] https://news.ycombinator.com/item?id=19304326P.s. The amazon links are NOT sponsored. This app is free of monetization."

"Nice. The Hacker News archive contains a wealth of great information. I've previously performed similar extractions like OP but with grep and SQL. I've also looked for people who have accurately predicted the stock market (I did identify one pro investor. He's now into NFTs). I've found so much cool stuff, spending whole nights looking for interesting users and reading their entire post histories and being blown away by many insightful posts. I've been considering making a blog consisting entirely of insightful HN posts that I come across."

"You mention the Amazon links are not affiliate links. As a default, that's a nice move, but I believe you are within your rights to add a toggle to enable affiliate links. The money probably isn't the point but it's nice to make enough to buy even a single beer or coffee from a side project, and honestly I believe just about everyone would toggle the option if they found the tool useful."

Preview of 'If I could bring one thing back to the internet it would be blogs (2020)'

If I could bring one thing back to the internet it would be blogs (2020)

"As a minor counterpoint: I've come to dread blogs and newsletters because so many of them are written by grind culture freaks who only write faux-insightful SEO'd content as a way to build an audience to sell snake oil to. These days the only blogs I trust are the ones I see on the top of HN or lobsters, which is unfortunate because I have interests beyond tech and I find it very, very difficult to find good blogs I can read about those interests.I think that shows there is a problem with blogging that goes beyond just the medium. Consider that blogging is a decentralised ecosystem, so you have no central place for discovery outside of Google specifically and search generally. Being on the top of Google is an attractive proposition because it means many eyeballs and lots of ad revenue. Therefore it is natural that many new blogs exist to game the search engine, hence the term "blogspam".Some of the same incentives exist with large social media sites as well, but on Twitter and the like if you mute/block enough big people and follow only those you care about, your feed will eventually become clean enough to look at every day. So I think it is much more important to solve the discovery problem with blogs if you want them to get more traction."

"Yeah blogs are still here, BUT: (like email (sob) and telephone-calling (hooray)) a lot of people that once did blog don't anymore.Not in the "I had kids so my blog went dark for a few years" sense, but in the sense of "ooh twitter was invented and now I just emit a halfassed one-sentence brainfart or 5-second tiktok cellphone video and get way more dopamine hits".I've been reading blogs and perusing my self-curated NetNewsWire RSS feeds for 20+ years, and blogs never went away, RSS never died, Google Reader getting googled didn't really matter, etc.And there are probably technically more blogs now than ever before.But still, the blog kinda died, in the sense that it would be a lot more surprising to learn your friend's 80-year-old grandma has a blog today than it would have been in 2011.It went from an increasingly-mainstream thing to a decreasingly-mainstream thing."

"Well, blogs are still very much there. I began blogging in 2006 and I still continue to write blog posts, mostly to take notes, share my thoughts, etc. I still follow my favourite bloggers via RSS feeds. I don't think the culture of blogging ever went away. The blogosphere along with its tag clouds are still very much there.I think what has changed in the last two decades or so is that a lot of new users have come on the Internet and this new generation of users spend most of their time in walled gardens thereby making the bloggers look like a small minority."

Preview of 'Home Price to Income Ratio'

Home Price to Income Ratio

"A more relevant metric to consider - monthly mortgage payment to monthly income ratio.Average interest rates in 2007 were 6.34% vs ~2.80% today. [1]* 6.34% / $2,000 monthly payment / 20% down (~$65k) >> $328,319 price of home* 2.80% / $2,000 monthly payment / 20% down (~$98k) >> $489,794 price of homeHomebuyers will make purchasing decision based on their monthly mortgage payments, instead of the home price.When interest rates fall, the home's price goes up but the monthly payment can stay the same. Therefore, increases in home (and other asset, since lower bowering costs can drive institutional investment in assets higher and non-linearly) prices can be driven higher without any change in supply / demand dynamics.Some hypotheticals to consider:* as rates approach and touch 0, what will drive up home prices then?* what happens when rates go up?[1] http://www.freddiemac.com/pmms/pmms30.html"

"While it doesn't directly affect the average person's purchasing power, the same dramatic increase is happening in other asset values as well. [0] One interesting thing to note is that 2019 EV / EBITDA values were already "high," before the coronavirus was spreading.I suspect these two phenomena have different causes overall, but low interest rates are a common factor that cause all asset prices to increase.On the housing side, I suspect consumers purchase the house that their cashflow can comfortably support, not necessarily the one where they believe it is correctly valued, because the assumption that house values only increase means purchasing a well constructed house is almost never a "bad deal."I'm not sure what the "solution," is, but knowing that voters hate when their home values fall does not give me confidence that prices will decrease in the long term.[0] https://www.statista.com/statistics/953641/sandp-500-ev-to-e..."

"I never learn anything in these threads. It seems like everyone is just talking past each other with their pet theories and no particular way to tell which if any are correct or useful."

Preview of 'ClickHouse, Inc.'

ClickHouse, Inc.

"I'd like to thank the creators of ClickHouse as i hope they are reading here. We've been using it since 2019 in a single server setup with billions of rows. No problems at all. And query speeds that seem unreal compared to MySQL and pg.As we did not want to go into the HA/backup/restore details at that time we created a solution that can be quickly recreated from data in other databases.Interesting presentation from Alexey about Features and Roadmap from May 2021:https://www.youtube.com/watch?v=t7mA1aOx3tM"

"Haven't used any of these yet, but how does ClickHouse compare to Postgres extensions like TimescaleDB and Citus (which recently launched a columnar feature)? I remember reading in the ClickHouse docs some time ago that it does not have DELETE functionality. Does this pose any problems with GDPR and data deletion requests?"

"These some really great technology coming out of Russia in the information retrieval/database world: ClickHouse, a bunch of Postgres stuff that Yandex is working on, 2gis.ru (a super detailed vector map on a completely different stack to Google/MapBox), etc."

Preview of 'Show HN: I built four eight-foot-long handwriting robots'

Show HN: I built four eight-foot-long handwriting robots

"I live in Austin TX and got one of the mailers last year. I was wondering how you pulled it off.The handwriting on the outside does make it look personal but, once you open it, it is obviously computer generated due to the consistency of the writing. If anything, I'd say the writing in inside undermined the message because nobody is going to handwrite a letter to solicit that business. You should test only doing the signature only and see if impacts your response rate.We also got a couple of 'we want to buy your home' mailings. It does feel like it impacts our open rate but I can't tell if it is just due to novelty.I think the main reason it 'works' as a business proposition is that the City is doing blanket increases and relying on protests to catch their mistakes. They do this (in part) because they are forbidden from using actual MLS data. It costs me 3-4 hours to do a protest so outsourcing it makes sense if your time is valuable. But when it came down to it, I wasn't willing to let them represent me -- something about it felt off -- and I wound up just accepting the increase.The system doesn't feel broken -- just wasteful. How else are you going to do a property tax? I do wonder if this goes the way of medical billing (overcharge at first because you know you are going to lose some to protests) or it creates a watchdog effect that make the City limit the increases to an amount that is not likely to draw protests."

"Really impressive and fun to build I'm sure. I bought an Axidraw last year to play around with making fake signatures of fake people and as well we were getting a ton of Etsy orders and we always write a hand written note, but we couldn't keep up at Christmas time and my wife's wrist was breaking, so it saved our bacon when we had to write like 600 notes in 6 weeks.The fact that you have to keep replacing the sheet and realigning is definitely a drag, but we made a system that worked well enough for us. Making the SVG letters is a pain and we are working on designing our own font from my wife's handwriting, but you can at least SVGize a picture of your writing and then touch it up in an editor.Gives a good excuse to buy lots of different fun pens and paper, but yeah it's annoying when a pen stops writing half a letter and I'm not sure if it's just an ink thing or a pressure thing.We've gotten positive reviews that mention our handwritten notes at least and lots of comments on great service and such, so we think it makes a difference."

"The Autopen AF is a commercial product for this.[1] There's also MAXWriter and RealPen. All have paper feeders, so they can turn out page after page, unattended.In China, some kids use automatic writing machines to do their homework.[1] https://youtu.be/3FHGO2i0bL4"

Preview of 'Google Docs in a clean-room browser'

Google Docs in a clean-room browser

"> seems to compare the Firefox version number with 65 ... I’ve no idea what the purpose of this isI previously worked on JS infra at Google. Google uses a lot of shared JS libraries that date back over a decade, and those libraries have accumulated lots of workarounds for browsers that nobody cares about anymore. (One especially crazy seeming one from today's perspective is that there's a separate implementation of event propagation, I believe because because it dates back to browsers that only implemented one half of event bubbling/capture!)It's very difficult to remove an old workaround because1. it's hard to be completely sure nobody actually depends on the workaround (especially given the wide variety of apps and environments Google supports -- Firefox aside, Google JS runs on a lot of abandonware TVs), and2. it's hard to prioritize doing such work, because it's low value (a few less bytes of JS) and nonzero risk (see point 1) without meaningfully moving any metrics you care about.In all, how to eliminate accumulated cruft like is a fascinating problem to me in that I can't see how it ever gets done. And it's not a Google thing. Even the newer cooler startup I now work at has similar "work around old Safari bug, not sure if it's safe to remove" codepaths that I can imagine will stick around forever, for similar reasons."

"Technically, color me impressed.Business-wise, I'm skeptical:- Alternative browser engines have always fallen behind, eventually.- Open-source is a huge win for most embedded applications.- Having a big company backing something is a huge win too, since something like Webkit ain't going away.I think one possible outcome here might be an acquisition. Microsoft was forced to eat crow with Edge adopting Google's engine. This would be an opportunity for Apple, Microsoft, or Amazon to leapfrog Google. A GPU or multicore-accelerated browser could make the iPhone/Macbook/etc. much more responsive than Chrome.Another might be some open-source strategy, but I don't quite know what it might be."

"*Closed source browser.Flow is yet another project pulling on open source resources, and the browser market created from open browsers, and trying to privatize it. Imagine if google could just make whatever internal changes to chromium and nobody knew about it."

Preview of 'FBI says seized fortune was criminals’ loot—owners say: Where’s the proof?'

FBI says seized fortune was criminals’ loot—owners say: Where’s the proof?

"https://web.archive.org/web/20210919234653/https://www.latim...https://archive.is/bLH4W"

"Not directly relevant to the article, but it's probably a public service to have this here: If you're in the U.S., do not consent to a search! Ever!If the police ask permission to search you, your car, or your house, say "I do not consent to a search". Followed by, "Am I being detained?" If the answer is "No, you are not being detained." then leave immediately (unless at your house, in which case go inside and lock the door).Police are good at making you feel as if you have to consent. They might say, "We're going to search your car now." Makes it seem like you don't have a choice and it's happening one way or another, yeah? Well it's not the case. That was your cue to say, "I do not consent to a search". Saying "I do not consent to a search" might prevent a search or make evidence obtained during that [illegal] search inadmissible. Or it might be found that the police had probable cause or other reason to make the search legal, in which case you lost nothing.Record + immediately upload such an interaction if you can.As an aside, I appreciate like 90% of the work the police do."

"This was so much worse than I imagined. It was a physical dragnet at a private safe deposit box business and the FBI is trying to claim all the customer's belongings under civil asset forfeiture because a dog smelled marijuana. Meanwhile two legitimate businesses who cannot legally transact with banks were customers and the boxes were not airtightThis is brazen overreach and needs to be reigned in"

Preview of 'There are six internet links on my office on wheels—seven when Starlink arrives'

There are six internet links on my office on wheels—seven when Starlink arrives

"Just to share my own setup, I've been living in a van for the past year. I develop mostly via SSH and RDP so I found that any connection was important and total bandwidth wasn't the highest priority. Also in the US, way better coverage of 4g. Because of that invested fully in 4g and not at all in 5g.* 11 in 1 Panorama External Antenna (LG-IN2447) around $500. 4 internal cradlepoint antennas, see photo below. In retrospect would not have invested so heavily in wifi antennas and bought more 4g. I also added a little antenna lifter to make sure it has line of site of all cell towers, I wanted it to be the highest point on my sprinter van roof.* Cradlepoint IBR1700 1200M-B around $900 on ebay. Runs on 12 volt, a ton of antenna ports has 1 internal modem that supports big US carriers, came with an additional modem that does the same for carrier aggregation. A bunch of different ways to configure the router to aggregate links, mostly I switch back and forth manually, I found that if there was an issue it would be obvious and I could just switch the link. Cradlepoint software wouldn't handle issues and signal strength that well. Honestly one carrier has been plenty good for me though and between ATT and Verizon, I only have issues in the national parks where there are cell dead zones.* Verizon and ATT 4g cell plans. I added 1 line on my family plan for Verizon and the same with a friends family plan with ATT for $20 a month each. Took some phone calls into support to get it to work but after some escalations in the support chain I have unlimited 4g data. Total bill is around $50 a month.* Still room to add more sim cards and more antennas. It honestly works great though, get 20-150 mbps basically everywhere.Photo of my antenna and cradlepoint router/modem: https://imgur.com/a/MOdJkT8"

"This is a pretty impressive setup. Recently I lived in an RV for a year and my setup was much more janky than this...Basically consisted of a gl.inet router that I plugged in a old Moto X4. This allowed me to get wifi from whichever campsite we stayed at (always garbage) and then I would pay for 100GB from Cricket and T-Mobile. I would swap sims when I would run out of data about half way through the month.Then I discovered I could get unlimited data on Cricket with a regular phone plan if I changed the TTL on the router. Ended up being the most stable option for the last few months."

"I lived and worked remotely from a van in Australia for a year... in 2008. It was pretty different back then. We kitted the van out with a solar panel and batteries. There was some 3G service available near roads, and something like CDMA a little more widely. But at times we'd end up driving miles of dirt track to try to find high ground to pick up a signal. My gf would hold the 3G receiver up and look for signal. During one of these treks, trying to turn around on a narrow dirt track way outside of Tenant Creek, the side of the road collapsed like a sand dome under one wheel of the van and we began listing to the side. I had to hold it up with my shoulder so the whole van wouldn't fall over on its side. My gf got out, causing it to tip even more, and started throwing herself against the back of it, while I tried to rock it out of the ditch. It was at this point that I noticed that what I had thought was a tree branch (odd, since there were no trees around), was actually a 4-5 foot long black snake that was moving rather quickly toward us up the road. I guess that gave us the adrenaline burst we needed, because we miraculously heaved the van free and jumped inside just in time. I started it and unceremoniously drove right over the snake.Another funny story... One night camping off a road, not in a campsite, we heard a ruckus outside the van where we had our table and cooking stuff set up under a tarp. It was pitch black out. We kept a katana under the platform bed for protection. So I opened the rear door and jumped out in my boxers and sandals, holding this sword, and found myself looking at a large kangaroo that was rifling through our cookware. I got back in the van and said, forget it, I'm not fighting that thing... we'll just have to clean it up in the morning."

Preview of 'As a solo developer, I decided to offer phone support (2017)'

As a solo developer, I decided to offer phone support (2017)

"I offer phone support for a niche accounting app (https://quailhq.com), and everything in this article rings 112% true to me -- but especially this:> ...all sorts of people call you, and I’ve really learned a lot by talking with users directly on the phone.Sometimes users call me because they want to report a bug, or they've forgotten their email address. Sometimes they want business advice (!), or they have a niche feature they want to request.> This may be a virtue of the Japanese, but, basically, everyone who calls is civil and polite.Hahahaha. Haha. Hah. Ahem. The biggest surprise to me when I started offering support (first email, and then later by phone) is how _aggressive_ people can be. My app has two classes of users -- one free, one paid -- and the paying users are almost invariably polite and efficient while the free users can be really quite...hard to help. "YOUR SHITS BROKE FIX ASAP" is my favorite password reset request, etc.All of my users are American (or Australian), which might have something to do with it. Happily, once you break through that aggressive exterior and people realize you're just a person trying to help them out they almost invariably do a 180 and become helpful and polite, and we get whatever it was straightened out together.It's almost like there's something cultural happening in America that's making everyone assume the worst when interacting with people they don't know..."

"I would abstract this topic to: talking to your users is important, and phone is a high-bandwidth medium.In particular, it seems like this developer recognized that phone connects them to their less technically savvy users, who - by being most different from the dev himself - can give him the most valuable outside perspective. Depending on your market, if you're trying to sell into non-techies this could provide hugely valuable insights.In general, the closer you are to the development side of things, the more you have a very specific (and I guess "correct") model of how your system works. By default, all of your documentation/support forms/etc implicitly reflect this model. But if your users model the thing in their brain differently, then your help/form aren't the most helpful in educating them or eliciting their true feedback/problem.One final thing - I have seen 'magic' where developers who chafed at tickets coming in from support staff (withdrawn, user error) would all of a sudden get excited about rebuilding something when the user themselves or even the support person, just explained in a higher-bandwidth way why the problem is real. It's easy to read a ticket and go "oh that's dumb, they should just do X" but on the phone/in person you go more into like "oh, this is a really reasonable/nice/smart person who's trying to use my system to do something important, and it's not letting them."Gets a totally different type of results."

"When I ran my own business I had a product in the thousands of dollars price range. Phone support for this product would almost always be an interesting conversation where I learned a lot about customer needs.I also had a $25 PDF tool with a trial version. For that product a lot of the callers had no clue what the product actually did or tried to get a $5 discount or some other nonsense. I quickly stopped taking calls for that product because it was so unpleasant.My lesson was to offer phone support only for high price, low volume items. Phone support for cheap things attracts a lot of unpleasant people."

Preview of 'Advice to New Managers: Don't Joke About Firing People (2020)'

Advice to New Managers: Don't Joke About Firing People (2020)

"That's excellent advice that many have learned the hard way...Honestly even as a non-manager it's a very bad idea. When I was a junior one of my colleagues was called to the manager's office. I assumed it would be for some mundane project scheduling or whatever, so I jokingly said "you're getting fired" as he was going there. And he was.This is one of these memories that come back to haunt you late at night when you're trying to sleep..."

"As a more general advice - person in position of power should not joke about causing harm. Whether is is manager joking about firing employee, stronger person joking about beating up weaker one or parent joking about throwing child out of house when they misbehave. This kind of humor works only when it is coming from weaker position and even then only in certain situations."

"No one told me this prior to becoming a manager, and I did make this mistake once and immediately regretted it.It seems like obvious advice, but the circumstances where this sort of thing could happen are described very well in the article.I revert to humour in awkward situations, like a lot of people, but I quickly realised that there are some things that you can’t joke about when in this position.Thankfully I don’t think the team member took any offence by it (although how would I know) - we had a good rapport and relationship, but I immediately realised my “joke” could be taken so many different (wrong) ways that I made a conscious decision to be much more careful after that.Like many things in life, it seems blindingly obvious in retrospect but not necessarily when you’re caught up in the moment."

20 September 2021
Preview of 'Serving Netflix Video at 400Gb/s on FreeBSD [pdf]'

Serving Netflix Video at 400Gb/s on FreeBSD [pdf]

"These are the slides from my EuroBSDCon presentation. AMA"

"There is no video for this available yet AFAIK, but for those interested there is a 2019 EuroBSDcon presentation online from the same speaker that focuses on the TLS offloading: https://www.youtube.com/watch?v=p9fbofDUUr4The slides here look great. I'm looking forward to watching the recording."

"If this is one server, I can't imagine how much bandwidth Netflix pushes out of a single PoP - does anyone have those numbers, or at least estimates?"

Preview of 'Amazon says it’s permanently banned 600 Chinese brands for review fraud'

Amazon says it’s permanently banned 600 Chinese brands for review fraud

"Amazon is filled with cheap junk nowadays. I don't trust them for anything important. Case in point: I recently purchased an air purifier but was worried that I would get a fake product since they are notorious for co-mingling. I ended up buying one from Target online which also has free two day shipping now. For anyone who is looking for an alternative to Amazon, it seems like the big retailers (Walmart, Target, Best Buy) have finally caught up with their online offerings. I don't think I'll ever buy anything important from Amazon again until they fix their trash problem."

"Amazon used to be awesome and Prime felt so worth it, you could just get stuff sent to you and skip a trip to the store.Now we call it Scamazon and you spend like 30 minutes weeding through crap, scammy duplicate looking listings and fake reviews for any signs that a single item is worth buying before you give up and go to Walmart.It's so sad that it's gotten to the point where I think Walmart has better quality and prices than Amazon.We see dollar store stuff on Amazon for like $27 all the time.It's like they let their brand erode to pure garbage."

"One of the upsetting things about this crackdown is that some of the brands mentioned in the article actually produced good products. I'd have much rathered people purchase products from Ravpower and Aukey than DiHines, AINOPE, Ailun, yootech, SMALLElectric, TT&C, or Amoner, all of which appear on the first page of results for "USB C charger".Besides the review misconduct, I do think a lot of people's issues with Amazon stem from purchasing no-name products from unknown sellers, an action that is made horrendously easy by Amazon's UI. I've purchased tens of thousands of dollars worth of items from Amazon, and I have had a perfect experience by following two rules: (1) always buy from Amazon (not a marketplace seller), and (2) always buy a reputable brand.Others have mentioned the issue of co-mingling inventory, and while I believe it's an issue, I've never come across a purchase from Amazon that looked anything less than legitimate."

Preview of 'Freenet is a peer-to-peer platform for censorship-resistant communication'

Freenet is a peer-to-peer platform for censorship-resistant communication

"I've run Freenet twice in the last twenty years. Maybe 2006, 2012? Each time CSAM was surprisingly visible. Maybe these days it's kicked off to a corner but back then it was pretty much a click away.I'm going to have to say if that's the basic motivation for censorship resistant communication in the USA, I am disappointed and sad.Wonder if it's actually useful in places where you actually have censorship, or if it's just a nice beacon for the ISP to send the rubber hose men to visit.Not to mention random links purporting to be terrorist manuals, normal porn, incoherent blogs and the other usual detritus."

"You have to go out of your way to find abusive media on freenet. There are many top lists of freesites and they are censored of abusive media.I recommend FMS the freenet messaging system which uses web of trust successfully to moderate messages in a Usenet forum."

"I like the fact that I can expose a machine using tor. Its .onion address becomes something analog to a public ip address[0]. It even works behind a nat, so I can ssh to a machine of mine from anywhere in the world. The problem: the other point must support tor to access it.Anyone knows a way using these overlay networks, tor, i2p, freenet, to expose a service on a machine behind a NAT to be accessed through the internet without the need of clients needing special software?[0] https://golb.hplar.ch/2019/01/expose-server-tor.html"

Preview of 'Show HN: Fully-searchable Library Genesis on IPFS'

Show HN: Fully-searchable Library Genesis on IPFS

"Tech details from the Getting Started guide:> How does this work?> SQLite compiled into WebAssembly fetches pages of the database hosted on IPFS through HTTP range requests using sql.js-httpvfs layer, and then evaluates your query in your browser.The same guide, https://libgen-crypto.ipns.dweb.link/, also explains how you can also download the page to search locally without constant internet access.sql.js-httpvs was previously discussed on HN here: Hosting SQLite databases on GitHub Pages or any static file hoster (1812 points) https://news.ycombinator.com/item?id=27016630"

"This is great! I've been half-barely-following IPFS development for a few years now but I think this is a salient use case that I could actually see myself using.I think also with IPFS i can share files with peers pretty easily? It's nicer than uploading to a filesharing site, and easier than setting up a torrent.So, what's next @sixtyfourbits? Is there a read-only wikipedia on ipfs yet?edit: found it, but I think it's not searchable https://en.wikipedia-on-ipfs.org/wiki/"

"This is cool, but more centralized than it needs to be. The update check resolves libgen.crypto using @unstoppabledomains/resolution[0] with its default Ethereum provider, Infura[1]. That means that if Infura disables the default API key, goes down, or starts censoring responses, the update check will fail and users will be stuck on an older version of the site. Using the .crypto domain for updates is unnecessary, a simple IPNS[2] lookup (Not to be confused with DNSLink[3]) would've sufficed.[0]: https://www.npmjs.com/package/@unstoppabledomains/resolution[1]: https://github.com/unstoppabledomains/resolution/blob/HEAD/R...[2]: https://docs.ipfs.io/concepts/ipns/[3]: https://docs.ipfs.io/concepts/dnslink/"

Preview of 'Bye YouTube, Hello PeerTube [video]'

Bye YouTube, Hello PeerTube [video]

"I don't understand the economics of this at all. Video distribution is bandwidth heavy. If you're running your own peer tube instance the server costs are surely going to outstrip any revenue you make from it. if users have to carry that load and seed your stuff they'll have to waste their own storage. What is the incentive for anyone to do this? Exacerbated by the fact that the entire thing mostly seems to attract people who get banned from anything else so the content isn't even going to attract advertisers."

"The channel in this post has 20 YouTube subscribers and no more than a couple thousand total YouTube views.The trending page on PeerTube shows a list of videos with at most a few dozen views.Is PeerTube supremely unpopular (seems to have been launched several years ago: en.wikipedia.org/wiki/PeerTube), or am I missing something? Does it really have an order of magnitude more Github stars (https://github.com/Chocobozzz/PeerTube) than daily viewers?"

"One thing I really dislike about Fediverse services is that their landing pages are always about joining/signing up. For Twitter-like applications this might be ok. But for something like YouTube, I definitely want to browse the content a bit before signing up."

Preview of 'Excision's CRISPR HIV therapy is heading into human testing after FDA clearance'

Excision's CRISPR HIV therapy is heading into human testing after FDA clearance

"This body of research is expanding far quicker than I would have imagined pre-pandemic. A true silver lining, I have to say. mRNA vaccine breakthroughs are occurring in cancer research, too. Human trials happening soon! https://www.futuretimeline.net/blog/2021/09/13-mrna-future-c..."

"There's several more in their pipeline: https://www.excision.bio/technology"

"Isn't CRISPR known to cause random unintended edits along intended edits?"

Preview of 'Renting a car will be a pain until at least 2022'

Renting a car will be a pain until at least 2022

"http://web.archive.org/web/20210917073652/https://www.latime...https://archive.is/RHW1J"

"As a systems guy, I find this situation quite interesting in the way in which it exposed interlocks in the car rental pipeline that were previously not visible.What I hadn't appreciated was that Car Rental companies had constructed a model where they bought new cars, rented them for a couple of years, and then resold them. The car would depreciate of course but as a bulk car buyer they got the cars at a discount on dealer cost because, well they bought more than the average dealer did. So when they depreciated they didn't lose as much value as you and I might experience if we bought a car, held it for two years, and resold it to a dealer (worst case) or another buyer (best case).So the rental agency simply tracked how much the car would "lose" in value over its working lifetime, plus the cost of needed maintenance (generally relatively low), and offset that with income of renting it out. So the math was something like (making up numbers here) $5,000 of depreciation loss against say 400 rental days at $50/day or $20,000 of rental income. Say $1000 for maintenance during those 2 years and you've got $14,000 of "gross income" into the company, per car to pay employees and operating costs etc.Now this makes sense and it is a fine business model, but an interesting quirk is that revenue is directly proportional to the number of 'working' cars you have out there bringing in the bucks. More cars, more income. And if you buy the car on credit there is an interest expense sure but you don't use up working capital to bulk up your fleet and boost your income.As a result, car rental companies were carrying a HUGE amount of debt pre-pandemic which was all in car investments.Then BOOM, the black swan of a pandemic hit and air travel stopped for all intents and purposes and now rental car companies are sitting on fleets of cars where they have to make the monthly payment on the debt but those cars aren't earning any income. This burns money in a hurry! So they did the only thing they could do, and sold off their fleets for the most part so that they could retire all that debt. Some, like Hertz, were already in Chapter 11 bankruptcy when they did that. Late 2020 was an excellent time to buy a car from one of the rental companies because they were really motivated to get them off their balance sheets.And this then is the fun part. So the pandemic also put a huge blip in the supply chain. And since every single car company had switched to "just in time" manufacturing where they don't stock parts to make cars, they expect a smooth flow of those parts from the supply chain to feed their assembly lines, had to stop making cars. They had no parts. What is more, the humans in the pipeline like truck drivers, container crane operators, container ship crews, freight forwarding staff, Etc. were quarantining or not working because of the pandemic risk and those are jobs you cannot do "remotely" no matter how much you might want to. So the supply of new cars dried up, and won't untwist until the entire chain is back up and running at capacity again.So now the pandemic is "less scary" because smart people have vaccinated themselves and they start traveling again. And those people want to rent cars. Which is great for rental car companies, except they cannot rebuild their fleets because there aren't any cars to buy.And this adds the second fun twist, if you bought a car new in 2019 (as I did), and it is the kind of car rental companies might rent (which mine is), you get letters from the dealer in 2021 offering to buy it back from you for more than you paid for it!What is more, when you see all those cars that are going to be 'totalled' by the insurance company because they were under water in the southern part of the US or on the east coast, those cars used to be sold for pennies on the dollar in "salvage sales" in which salvage dealers would recover parts and/or do enough repairs to resell them with a salvage title. The bidding for those cars is much more intense given the demand by rental car companies for stock, any stock, to boost their fleets.It is a remarkable example of a system where the parts are interconnected in non-obvious ways that has a non-intuitive response to shocks to the system. As with most "emergent" systems like this one though, sending a shock through it does two things; it illuminates these previously unseen inter dependencies, and it tends to kill off weak players."

"City-dweller here. I was on the public transport bandwagon. Then summer 2020 came and I realized the buses were at limited capacity, Uber and Lyft drivers were practically non-existent, and the big 3 car rentals were liquidating their inventory. So I bought a used car, just in time too.I still hate car ownership: the parking fees, maintenance, shocking price of gas, insurance, etc. It's costing me $20/day to sit mostly in a garage. I was saving up for a BEV. But realized air travel is out of commission and a BEV might not be practical for road trip vacations, at least not right now."

Preview of 'AirGuard: Protect yourself from being tracked by AirTags and Find My accessories'

AirGuard: Protect yourself from being tracked by AirTags and Find My accessories

"> With the app you can play a sound on AirTags and find it easily.I wonder how it does that. Unauthenticated BLE characteristic? This would imply anyone could force an arbitrary AirTag to make a sound. Obvious application: force all AirTags nearby to keep making sounds."

"Pretty cool but why does it have to be limited to AirTag or any specific devices? It would be easy to expand it to keep track of any nearby Bluetooth device and a corresponding whitelist. (Or do AirTag devices rotate Bluetooth MACs?)Airtags are just one implementation of a Bluetooth transmitter and a long life battery but anyone could probably build a similar device dedicated to tracking with off the shelf parts."

"> Our goal is to protect privacy and to find out how many people are opposed to tracking.Asking how many ppl are opposed to tracking is a silly question that won’t get you anywhere — it’s answer in a vacuum doesn’t make sense as it needs to be contextualized. “Are you ok with google seeing your IP so they can sell you ads to give you free YouTube” is an example of context where people see trade offs. Most people won’t understand the full spectrum of what’s going on, and if it all in the end results in just ads, many are fine with that as long as they’re getting free stuff with it.The bigger questions on societal level trade offs shouldn’t be answered by lay people but rather regulation in the name of public interest."

Preview of 'Berlin buys thousands of apartments from corporate landlords'

Berlin buys thousands of apartments from corporate landlords

"Not sure how much of a real change this will make, but man, what a bad deal for taxpayers. They shouldn’t have allowed rampant corporate ownership in the first place, but now they’re going and spending public money on overpriced real estate."

"As another commenter notes, housing is unaffordable because marginal demand is greater than marginal supply. We can either decrease demand, or increase supply.Housing demand is pretty sticky, so that leaves us with one option."

"Instead of buying what they sold two decades ago for practically nothing, they should have built more supply.Open Google Maps and check Kreuzberg, a district of Berlin. South of it is Tempelhofer Feld, 355 hectares (a third of Kreuzberg), a discontinued airport next to the city only used for people to bike and do barbecues. It's an old airport so it looks bland and there are smaller parks right next to it offering the space to do barbecues and play with your dog. It's been a decade that this airport is not being used yet it's still in that state.Paris' housing crisis is mostly due to the road surrounding it (le Périph') but Berlin doest not have that yet housing is getting more expensive extremely fast, faster than in Paris actually."

Preview of 'Can You See the Republic of Ireland from England?'

Can You See the Republic of Ireland from England?

"Loving the inclusion of a image from an Ordinance Survey (OS) map. For those who haven’t heard of them, maybe the younger members on here or anyone from outside the U.K., OS maps were the U.K. standard before GPS and Google Maps et al. We were even taught how to read them as kids at school and youth centres (eg scouts). In the days before ubiquitous GPS, it was considered an important life skill to read maps, understand grid references and all the various different markings on an OS map. To this day I still find OS maps to be the best around for clarity and information density. Though I won’t deny I also have a little nostalgia for their stylings too.https://en.m.wikipedia.org/wiki/Ordnance_Survey"

"Atmospheric refraction is a thing. From where I live I have a 45 mile view to a city. And a telescope.The view varies a lot, and not just because of haze.When the seeing is clear and the light is good it's just about possible to make out tall buildings. Some days they're clearly visible above the horizon. Other days they seem partially obscured. Every once in a while they seem to float above the horizon rather than on it.Clearly there's some refraction happening. And if there was anything behind the city - there isn't, for about a hundred miles or so - I might be able to see that too.There have been a few times where I've wondered if I can, but at that distance it's impossible to be sure."

"Here is an easy way to confirm if it's truly Ireland: this is a site that I absolutely LOVE: it has a 3D model of the earth's surface, can simulate the horizon visible from any point on the planet, and can automatically identify the farthest peaks visible: https://www.udeuschle.de/panoramas/makepanoramas.htmHere are the horizons it computed from the author's location, annotated by myself to align them with the pictures from the blog post: https://imgur.com/a/AlGiDi4 (open that on desktop—imgur serves low-resolution images to mobile browsers)...and unfortunately, what the author believes to be Ireland is actually Anglesey. What he believes to be Anglesey is actually Great Orme. What he believes to be Great Orme is actually Little Orme. Essentially all the peaks he identified are in reality shifted by 1 peak to the north. And the outline of the peaks in his pictures match the outlines of the simulated horizon so there is no doubt: he saw Anglesey (70 miles) and not Ireland (~150 miles).Here are the parameters I used to generate the first rendering (after filling them in, click "Panorama anzeigen"—direct link: https://www.udeuschle.de/panoramas/panqueryfull.aspx?mode=ne... ):Breite (°): 53.63638 Länge (°): -2.53707 (these are the GPS coordinates that correspond to the layby where the author parked and made his binocular observations)Blickrichtung (°): 248 (azimuth, or direction of observation)Blickfeld (°): 7 (field of view)Zoomfaktor: 10 (zoom)And for the second rendering, just change these params (direct link: https://www.udeuschle.de/panoramas/panqueryfull.aspx?mode=ne... ):Blickrichtung (°): 251.5Blickfeld (°): 3Zoomfaktor: 30When I was a teenager I realized one morning I could see what could be Mont Blanc from my town, but very rarely only on specific mornings when the sun would rise right behind it. But I could never confirm because I saw it of my own eyes, without binoculars, and the right meteorological conditions only reoccured twice in my lifetime to see it. About 20 years later, when I found the udeuschle.de panorama site, I checked and was absolutely delighted when the site confirmed the shape of the peak that I remember so well matched exactly the generated horizon :-) It was at a distance of 130 miles...EDIT: in order to see Ireland from the blog post author's location, you have to raise the camera at an altitude of about 1400m above ground (set the altitude in the Kamerahöhe field): https://www.udeuschle.de/panoramas/panqueryfull.aspx?mode=ne... (screenshot: https://imgur.com/a/AT0BAnm ) The Irish peak visible is mount Kippure, next to the red mark "Max Dist" which is 159 miles away). It's a site made for desktop browsers. You can hover the mouse pointer over any peak label and it will show the distance to it. If you click it, Google Maps opens to the given peak, etc. A really neat way to explore the Earth. By the way in the above rendering at altitude 1400m you can still recognize Little Orme and Great Orme (at about one third from the image from left). The high-altitude perspective gives an idea of how much farther Ireland is behind these peaks.EDIT 2: at only about 900m above ground, the author could see Slieve Donard 143 miles away in Ireland (well, Northern Ireland, not the Republic of Ireland): https://www.udeuschle.de/panoramas/panqueryfull.aspx?mode=ne..."

19 September 2021
Preview of 'Transforming OpenStreetMap into thick roads and intersections'

Transforming OpenStreetMap into thick roads and intersections

"I am a professional traffic engineer and I build micro-simulation models for most of the projects I am involved with. I can say that compared to software that is used in industry (PTV Vissim, PTV Vistro, and Trafficware Synchro) it looks like A/B is a reasonable toy model that can get pretty close to the real thing. I think it is great that software exists at a level for individuals without huge budgets to be able to build and play around with traffic networks. Automating the intersection setup goes a long way toward this type of tool being accessible to the lay person. All that being said, I think the limitations of any model are important to understand when interpreting the outputs. I can take any model and make traffic flow or decrease the delay per vehicle, that doesn't mean my results are realistic.Keep up the work, this is an awesome tool and I hope it can get to the point where it can easily help inform people about traffic design and simulation."

"A/B Street is an open-source traffic simulator that lets you edit roads and intersections, based on OpenStreetMap data. But to even do that, first we have to geometrically represent the transportation network in great detail. This is a second deep-dive into how things work."

"You can play it right in your browser: http://play.abstreet.org/0.2.58/abstreet.html What a cool project!"

Preview of 'Belgian ISP under 250 Gbps DDoS for days on end'

Belgian ISP under 250 Gbps DDoS for days on end

"I got hit with a ~40Gbps DDoS last week. These attacks are on the rise. Some responses to folks above: Success working with upstreams is quite varied. Some care, some don't, and it can be difficult to get to folks that can help- even if their networks are impacted as well. Some carriers immediately turn this into a sales opp. - buy more bandwidth, buy more services.In our case it was based on DNS reflection from a large number of hosts. I've contacted the top sources (ISPs hosting the largest number of attackers) and provided IPs and timestamps. I've received zero responses.Geo-based approaches yielded no helpful reduction in source traffic.Also, during this event we discovered an upstream of ours had misconfigured our realtime blackhole capability. As a result, I'm going to add recurring testing for this capability and burn a couple IPs to make sure upstreams are listening to our rtbh announcements.Very concerned about the recent microtik CVE, as that is going to make for some very large botnets.Personally this all is very disappointing because it creates an incentive to centralize / de-distribute applications to a few extremely large infrastructure providers who can survive an attack of these magnitudes."

"Since this is HN, it’s 2021 and DDoS’es are still a thing: why are they still a thing? Is there some fundamental “anonymity” to the Internet that makes it impossible to structurally prevent DDoS attacks? Apart from CloudFlare-like approaches, are there any R&D in the pipeline that may kill this type of attack once and for all?To me it’s incredibly infuriating to see the damage that still happens with these extremely simple techniques. Will it ever end?Edit: to elaborate, I know that there are tons of insecure Internet devices and whatnot. I’m more interested in standards, and core protocol improvements that can fundamentally rid the world of these types of attacks."

"I'm very much not a network engineer, but I'd like to understand the magnitude of this issue because my intuition is wrong:250 Gbps seems like it would definitely be a lot for a server or website but it also seem like a drop in the bucket for an ISP providing broadband for many customers.Clearly I'm wrong because it is an issue here. I'd like to understand why I'm wrong, and I hope that here, on HN, that's taken in the spirit of curiosity intended and not negativism.So, what am I missing? Maybe Belgian broadband is lower capacity than what I'm used to in a US metropolitan area? Maybe this particular ISP served a population too small to have a... um... "fat pipe"? I'd like to understand."

Preview of 'How to rapidly improve at any programming language (2016)'

How to rapidly improve at any programming language (2016)

"This seems great for language/library knowledge. As an experienced polyglot, the languages are not where I'm hitting the wall these days though. It's the tooling. I can learn new language basics faster than I can figure out the ecosystem/tooling.For example, my current conundrum is how to deploy an Elixir Phoenix/MQTT app. Writing the app was a fun curve to climb. And I could use techniques like described here to learn from others in the actual programming. But how to build an executable I can wrap in a systemd process running on a different machine? Those are actions people do, not expressed so much in code I can look at. The few blogs I can find on the subject are mired in deep CI toolchains.I want the blog that discusses the secret sauce to learn to acquire the knowledge to work the raft of ever evolving tools we have to work with now days. The "materials" (the languages) are the easy part now days. It's the massively automated complicated machinery we've built around the language of ideas that are my personal pain point of entry."

"Hey, author here. Surprised to see this on the front page of HN since I wrote it 5 years ago.I've always been fascinated with talent acquisition and skill development and would probably different recommendations today after having more experience and reading Ultralearning by Scott Young."

"Two things I did and always do: Code things that solve real problems you want to solve. The harder the problem, the better you'll get in the language and as a programmer in general.Second, look at existing open source, well written code that, again, solves a problem you're interested in. I always emphasize this: Things you're passionate about. That way you can master any language/framework. By master here, I mean you can code anything you want in the technology efficiently. Your final app will be: Easy to modify/enhance, easy to understand in terms of code. Memory and CPU efficient in terms of runtime."

Preview of 'Headscale: Open-source implementation of the Tailscale control server'

Headscale: Open-source implementation of the Tailscale control server

"Another similar project to Tailscale, for those in the market:https://github.com/slackhq/nebulaCrazy simple, fully open source, trivial to self-host. Maybe not as featureful as Tailscale, but imo that can be a feature unto itself."

"The ZeroTier ecosystem has a number of open source self-hosted controller projects for those who want unlimited members/networks/admins.- https://github.com/key-networks/ztncui (the most popular one, GUI)- https://github.com/dec0dOS/zero-ui (GUI)- https://github.com/thedunston/bash_cli_zt (CLI)"

"Not sure what I think about this.I don't use Tailscale because I don't trust their key distribution, and this open source project would solve that, but it might undermine Tailscale's sustainability.This would be a shame because Tailscale is working well with the open source community: open source clients, working well with distros, working well with Linux DNS stack, supporting a more P2P secure Internet, and documenting their well through it."

Preview of 'Every engineer should do a stint in consulting'

Every engineer should do a stint in consulting

"Here in Mexico we have an opposite view of this: The majority of developers have spent their professional life doing "consulting" jobs in outsourcing firms. Few devs have experience developing a product and taking care of it 2 or 3 years later.The difference shows in the type of code they do, the "ownership" and engagement they have: Those with a consulting mind will do something and then have the notion that once its "done" they don't have to care about it. Those that have been bitten by their own code from the past have a better notion on how to write maintainable code."

"I completely disagree.Consulting is not for everyone and like everything you get out what you put in.Why I went into consulting - I was working hard as ever, it’s my nature and I love what I do. - My pay was average - My projects looked amazing but in reality sucked and were driven by people in ivory towersMy concerns with consulting - we had a newborn and worried about health insurance. In the US this is highly coupled with your jobThe outcome - I am still busy as ever and love it. - I am a seasoned 14 year dev with a lot to offer. - health insurance because of Obama care is amazing. We pay about $150 more per month but it’s actually better health insurance. - here is the kicker, last month I made 50k profit. Consulting is extremely lucrative and makes me feel like I was wasting my time as an employee before.Will I go back to working for someone? Oh yeah in a heartbeat. But I must be valued according and can enrich the company as I do now with consulting for my clients.What’s sucks about consulting - billing / payroll for other devs that help me as 1099 when needed.Take away - consult for the right reasons. You will learn a lot but you can learn a lot as an employee as well. Let it happen naturally. Don’t force yourself to consult. You may be a completely happy employee and don’t let anyone tell you different and anyone worth being a human won’t discriminate against you for it."

"I spent more than half my career in digital consulting for mid-size (500-5000 people) that did full service product development (strategy, design, tech, marketing). Eventually working my way up to director level that meant doing sales and writing contracts.We did some crazy stuff. Delivered some gigantic ambitious projects with pure chutzpah. Dove into tech we didn't know anything about. Go sell a project to an airline, read everything about the airline business, then walk in like experts. It felt like fraud at times but we pulled it off so well you just start to feel invincible. It was a meat grinder but also thrilling. The kind of stuff I feel privileged to have been part of but never want to do again."

Preview of 'Seed – A Rust front-end framework for creating fast and reliable web apps'

Seed – A Rust front-end framework for creating fast and reliable web apps

"Seed creator here. For some context, I now code all my websites in HTML, CSS, and targeted JS (ie no frameworks or dependencies). Writing this was a great way to learn the ins and outs of DOM manipulation!Overall, I'm happy with the way the Seed API turned out, but could never get the performance or package size to a good place.That said, I love coding in Rust, and use it all the time for embedded!"

"Kudos to the author for making this framework.I am using this for my personal project: https://www.biblemaze.com which is a Bible trivia game.Here are some things I like about Seed:1. The Elm architecture seems to flow nicely in Rust.2. The way of defining the elements on the page is more Rust like rather than html like. I initially tried Yew which is another similar framework, but since I am a more backend developer, I found writing in a more Rust style more comfortable than writing in a more html-like dsl. Other with different experiences may be more comfortable with more html-like syntax.3. Very easy to perform REST API calls. I am using Actix for the backend, and I have a shared library that declares the types which both the backend and frontend use. This is one big advantage for using Rust for both backend and frontend, in that you never have to worry about your types getting out of sync.4. In general as to why Rust for the front end, apart for being able to share types, for more complex algorithms, for me, having a compiled language with an emphasis on safety and that tries to ensure correctness as much as compile time (and especially pattern matching) makes writing complex code more enjoyable for me.5. Excellent documentation on the Seed website. There are lots of examples and walkthroughs of basics as well as examples of how to do stuff like integrate with Javascript libraries.Anyway, thanks again to the authors for making and supporting such an awesome library."

"My most sincere thanks to the author(s) for “Why Not” section. This level of self awareness and transparency makes me so happy; it takes so much guess work and unnecessary back and forth out of the discourse. Again - kudos!"

Preview of 'Sysz – An fzf terminal UI for systemctl'

Sysz – An fzf terminal UI for systemctl

"The crazy thing about this is how simple the code is. _sysz_list_units | fzf \ --exact \ --multi \ --ansi \ --reverse \ --no-sort \ --history="$SYSZ_HISTORY" \ --prompt="Units: " \ --bind "ctrl-v:preview('${BASH_SOURCE[0]}' _fzf_cat {})" \ --preview="'${BASH_SOURCE[0]}' _fzf_preview {}" \ --preview-window=70% | readarray -t PICKS This is the whole UI. Just give it a list of things to search through, a prompt, and a command for previewing the thing and fzf handles literally all the rest of the UI for you."

"Does anyone know of a way or how to go about making a way to get <tab> and <tab><tab> to bash autocomplete "systemctl status " with service names? It seems like remembering where the service name has dashes, matches the package name, has a "d" at the end, and so on is half the battle for me when working with systemctl.This achieves something similar but it also does a whole lot more than just help complete the name.Edit: Helps to have bash-completion working properly for the user :)."

"With fzf-tab [1], you can use fzf wherever your zsh completion is. Here is a screencast showing it[2].[1] https://github.com/Aloxaf/fzf-tab[2] https://asciinema.org/a/KhDMhtZ3J8ppO7B8L6jFSE1co"

Preview of 'Why Authorization Is Hard'

Why Authorization Is Hard

"Disclaimer: I'm a founder of Authzed (YC W21), a productized form of ZanzibarI'd like to reiterate that Policy Engines and Zanzibar-like systems are orthogonal and can be used together very successfully. However, the article claims that ABAC cannot be done with ReBAC systems which is false[0] and it claims that Zanzibar systems do not support the concept of "public", when the system at Google does[1]. The availability of Zanzibar-like systems outside of Google is still relatively new, so the user experience can be greatly improved. For example, the Authzed Schema Language[2] is a vast improvement over Zanzibar's raw userset rewrites.That being said, I think the Oso UX is quite nice in comparison to many products in the space, but architects should always spend the time to figure out what's best for their requirements. If you're just starting to explore AuthZ, this article is a pretty good primer for the problems in the space and why you're unlikely to design something great on the first go if you build it yourself. It's really hard to write about this subject in a digestible fashion, so props to the team!I especially liked the quote "[...] authorization is a topic as cool as moving to Kubernetes!". Considering almost all of our team is ex-CoreOS and has deep ties to Kubernetes, we truly believe authorization is cool enough to stop working on Kubernetes ;)[0]: https://link.springer.com/chapter/10.1007/978-3-662-43936-4_...[1]: https://www.youtube.com/watch?v=mstZT431AeQ[2]: https://play.authzed.com"

"I've never used it in prod, but have heard great things from former Intercom coworkers about how easy it was to rewrite the whole auth layer in Oso. Never heard someone describe being "blown away" building an auth layer but here we are.Congrats to the Oso team for building a great product :)"

"We have been enjoying Casbin (ABAC):- technically: embedded in your DB, so not another infra problem + can stay in-DB for hotpath queries (ex: view all). As db-native RLS etc keeps maturing, my bet is this is where a lot will end up anyways. This is orthogonal to their discussion of service vs monolith - it enables working at the data tier vs app tier.- governance: our app does not depend on an outside companyAt the same time, it was surprisingly slim pickings for such a core thing, so more diversity the better!Edit: For context, we have been thinking a lot about authorization recently and investing here, so a recent post on 'The Sharing Paradox' on how we view it as an important way to grow successful team use, esp with modern features like friendly ABAC UIs: https://www.graphistry.com/blog/100x-sharing-paradox"

Preview of 'GM tells some Bolt owners to park 50 feet away from other cars'

GM tells some Bolt owners to park 50 feet away from other cars

"Maybe lithium-ion batteries in mass-market vehicles aren't such a good idea. We may need a battery technology that can survive poor maintenance less than perfect battery construction, and low-cost vehicle designs. Tesla had to put a titanium plate under their battery. That's not a mass-market solution.BYD is converting over to lithium iron phosphate, which is much better behaved when damaged. Toyota is working on solid state batteries, which hopefully don't catch fire.The NYFD reports over 55 electric bike and scooter fires so far this year.[1] Two deaths, 60 injuries, including 18 firefighters. Fires destroying electric bike shops are a thing, with one fire expanding to all the batteries around. All we need now is for a cascade auto battery fire in a parking lot. Or, worst case, a garage under a building.Boosted skateboards used to use lithium iron phosphate, but were just too expensive.[1] https://www.nydailynews.com/new-york/nyc-crime/ny-e-bike-sco..."

"> The automaker told Bolt owners to limit the charge to 90 percent, plug in more frequently and avoid depleting the battery to below about 70 miles of remaining range.Tesla's approach here would be to issue an OTA update that told your car to treat 90% as 100% and 25% as 0. I can't decide if I like that better or worse."

"That's insane. For (probably) a majority of owners it makes the car unusable if you adhere to that restriction.If I had one then I would have nowhere to park it. Certainly not at work. And at home with once car in the driveway and another in front of the house they couldn't be 50 feet apart. In tightly packed houses even one driveway to the next isn't 50 feet apart.If you went shopping and we're lucky enough to manage to find a space 50 feet away, there's no guarantee someone wouldn't park closer, though I can't even think of a place I go where finding such a spot in the first place is at all likely."

Preview of 'The first webcam was invented to keep an eye on a coffee pot'

The first webcam was invented to keep an eye on a coffee pot

"One of the earliest webcams is still around at MIT Media Lab! When I was there, I would use it to give away free food. It's installed in a corner of the lab facing down so you can place free objects under it. I would place free food under the webcam and press the broadcast button. It would send an image to various IRC channels and other subscribers. Within minutes, hungry lab folks would rush in to grab the food. Probably my favorite memory of being at the lab."

"World's longest lab experiment still going strong, via webcamIn 1927, a physics professor named Thomas Parnell launched an experiment on viscous liquids. 85 years later, we're still waiting for his results. It all began with a funnel, a beaker, and some melted tar pitch. Parnell, a professor at the University of Queensland in Australia, was hoping to demonstrate that brittle tar pitch actually behaves as a liquid when kept at room temperature. To prove this, he melted some tar pitch, let it cool for three years, and placed it within the funnel, held over the beaker. The first drop rolled down the funnel eight years later. The second came nine years after that. By the time the third rolled around, Parnell had already passed away.https://www.engadget.com/2012-01-27-worlds-longest-lab-exper..."

"Breakrooms also have a dark side:https://en.wikipedia.org/wiki/Peryton_(astronomy)https://www.theguardian.com/science/2015/may/05/microwave-ov..."

18 September 2021
Preview of 'Google, Apple remove Navalny app from stores as Russian elections begin'

Google, Apple remove Navalny app from stores as Russian elections begin

"Reuters doesn't report this, but the government officials threatened the companies (Apple and Google) with jail time for their employees yesterday. After that the companies finally conceded. There's a short video fragment from the meeting of the government officials and the companies representatives. It's worth watching, especially if you come from a democratic nation.Letting your Russian employees be persecuted don't amount to "doing the right thing"."

"Apple’s acquiescence to the Russian government’s demand to remove this app was predicted when it first came to light. Exactly at the same time as Apple was assuring world+dog that it would never acquiesce to governmental pressure to extend and expand the scope of its CSAM scanning tool on user’s devices."

"From Tim Cook’s twitter bio[1]:> “Life's most persistent and urgent question is, 'What are you doing for others?'” - MLKConsidering this, HKmap.live[2], and Telegram[3], he seems to be mighty confused about who “others” refers to in that quote.[1]: https://twitter.com/tim_cook[2]: https://en.wikipedia.org/wiki/HKmap.live[3]: https://www.iphoneincanada.ca/news/apple-telegram-belarus/"

Preview of 'Gitlab S-1'

Gitlab S-1

"Gitlab is one of the pioneers of "remote-first" [0] and "building in public" [1], to the extent of sometimes even live-streaming CEO meetings [2] and sales pitches [3]Gitlab, I believe, informs the common strategy behind most other source-available ycombinator enterprise startups: the buyer-based open-core model [4]Congratulations Gitlab. You're far from a copycat and deserve all the success for relentless execution and radical transparency, if nothing else [5][0] https://www.youtube-nocookie.com/embed/gOp4lKSCulI[1] https://www.youtube-nocookie.com/embed/vCiLMLC2Rhs[2] https://www.youtube-nocookie.com/embed/uUwmlJfim6U[3] https://www.youtube-nocookie.com/embed/XcqloQezOUg[4] https://www.heavybit.com/library/video/commercial-open-sourc...[5] https://about.gitlab.com/handbook/values/"

"I'm grateful to GitLab for providing an alternative to GitHub, and an open source one. It's an open core product with the community edition providing a lot of value. Here are some community hosted instances: https://wiki.p2pfoundation.net/List_of_Community-Hosted_GitL...The CI system is quite powerful, and Travis CI's struggles before and after acquisition has shown that it's hard to host a major CI platform.I hope the company and the open source product will continue to thrive."

"I haven't personally had a compelling enough reason to move from GitHub to GitLab, so I mostly just use it to mirror a couple of my repos there in case people prefer to browse various open source projects via GitLab. Regardless, I think competition in the space is a great thing.GitLab has come a long way and there are certain things I really like about the company. For example, I love how they tend to do everything "in the open" and have most of their development work and business documents public. It's a great resource for aspiring entrepreneurs. I have been a bit concerned about some of the architecture of GitLab lately, with quite a few security fixes resulting in unusual edge-case bugs. My only other complaint is that they tend have a very wide but shallow pool of products. They have ambitious goals with their platform, but I hope they are able to build real value and add features to the existing core products.Congrats to everyone on the GitLab team. Keep doing good work."

Preview of 'Mailchimp insiders react to employees getting no equity from Intuit sale'

Mailchimp insiders react to employees getting no equity from Intuit sale

"https://archive.is/U7KvJ"

"I worked at MailChimp for a few years. I most recently worked at a company that went through an IPO that I had equity in. When deciding to join my recent company, equity was the largest factor in my move.MC’s benefits are great and at the time were top-tier in Atlanta. They are cash/401k heavy and offer great profit sharing incentives. They also make it abundantly clear that they don’t offer equity and when I negotiated my non-MC offer that I ended up accepting, they were clear that they could not match my equity. They even acknowledged that if I was willing to take a risk with the equity it would likely be the advantageous move to make.Nonetheless, during my time at MC Ben/Dan repeatedly boasted about turning down offers to sell and repeated they were never intending to go that (or the publicly traded) route. This ultimately factored into my decision to leave, as it never appeared I would have a personal stake in the company. I hope other employees interpreted this in a similar manner and I do believe everyone had abundant opportunities to do so.In the end and in hindsight, I’m happy with my decision to leave and it did pay out. Nonetheless, I do still believe MC is a great company and despite the founders somewhat selling an incorrect vision, are still acting in good faith. I don’t believe they “withheld equity” as they made it explicitly clear it was never offered, or was ever going to be, but I do see how the boasting of never selling out could be interpreted poorly now in hindsight."

"Honestly it could be worse, I worked at a company that gave equity and years later it came out that the founders never intended to sell or take VC money. In that case employees “took below market salaries” thinking the stock is worth something but in reality it’s worthless. At least in this Mailchimp situation if you’re not getting equity I assume you’re happy with your cash comp, I’d you’re not, that doesn’t make sense."

Preview of 'Video of Tesla FSD almost hitting pedestrian receives DMCA takedown'

Video of Tesla FSD almost hitting pedestrian receives DMCA takedown

"Maximise the video and watch the left hand HUD pane from 0:10 to 0:11.The dotted black line coming from the front of the car (which I am assuming is the intended route) quickly snaps from straight ahead, to a hair pin right, to a normal right turn.Ignoring the fact that the right turn happened to be into a pedestrian crossing with people on it - what was the car even trying to do? The sat-nav shows it should have just continued forwards.I am astounded that software capable of these outputs is allowed on the roads. When could crossing a junction then taking a hairpin right back across it, ever be the correct thing to do?"

"Interestingly, the original creator of the video has since made it private. FSD beta testers are carefully handpicked — a lot of the Tesla “influencers” are given access for some free marketing. I wonder how many FSD bad driving videos are not uploaded to YouTube at all because they don’t want to say anything negative about Tesla and possibly lose influence/ad revenue.This is on top of Tesla classifying FSD as level 2 system (while promoting as “level 5 soon”) so they don’t have to share data with CA DMV. Only reason not to be transparent like the others is if you’re not confident in your system."

"This is near the infamous monorail where previous versions of FSD would kamikaze into the giant concrete pillars. Presumably in response to the monorail failure Tesla updated their obstacle avoidance to handle unclassified objects.https://twitter.com/elonmusk/status/1437322712339423237?s=21From the nav you can see the car is trying to go straight but swerves around some invisible obstacle. I wouldn’t be surprised if this was a failure in their new “voxel based” collision avoidance."

Preview of 'Building apps in minutes, not months'

Building apps in minutes, not months

"Let me share a small fun story (of making an application in an hour, not months).At one large insurance company in my role as an architect I have tried to convince people we need Elasticsearch to speed up free-form queries to our database containing information about hundreds of millions of people and their contracts. That database was Oracle and so not really amenable to completely arbitrary queries.I was immediately shot down that the project will take huge amount of time and effort to complete and so is completely off the table.So I came up with fun plan. I set up an hour-long meeting which was supposed to be my last chance to pitch the project.Rather than present slides and extol virtues of Elasticsearch, I decided to WRITE THE APPLICATION DURING THE MEETING, FROM SCRATCH.And that's what I did. I came to the meeting, set my laptop, connected projector, put some music on, and I wrote the entire service from scratch and had time to spare to present how it works.I cheated a little bit, of course. That 1h meeting was well rehearsed. I spent entire week preparing, finding better ways to do stuff and retrying entire process dozens of times.I used JHipster to generate 90% of the service and the rest was just tiny bit of well thought glue code.Unfortunately, this did not sit well with couple of people whom I made complete mockery of. I had to leave soon after."

"There's an excellent talk by Rich Hickey (I believe it's this one[1]) where he points out an obsession with how quick something is to understand immediately and be productive in—he gives the example of building websites in a single day, and contrasts it to musicians learning and mastering instruments over much longer periods of time.While it's very intuitive to see the appeal in low barrier to entry, there's something to be said about tools that optimize for the long-term. Instruments aren't made for beginners, they're made for people who know how to play them.[1] https://www.youtube.com/watch?v=MCZ3YgeEUPg"

"This is a UI prototyping tool, and a potentially good one at that. It does not develop what a HN audience would call production ready applications. That being said, "Production Ready" as used by this author is very different than what "production ready" as used by the HN audience means, a look at the end of the linked video where he claims a checklist with drag and drop support and cookie-derived sessions next to is "Production Ready" should sufficiently demonstrate that.And that's okay! It doesn't need to have replaced the entire Web Developer career field, it can just be a cool UI prototyping tool. But I might suggest to the author to reduce the scope of their claims a touch, as it would engender more positive discussion."

Preview of 'Life-size camel sculptures in Saudi Arabia are older than Stonehenge, pyramids'

Life-size camel sculptures in Saudi Arabia are older than Stonehenge, pyramids

"I was about to say they have a powerful imagination to see camels in that eroded rock... however after a quick search, there are better photos online: https://www.haaretz.com/archaeology/MAGAZINE-2-000-year-old-..."

"Once again, an article all about something visual with neigh a proper visualisation in it, let alone a photo of a greater scope, and no original design trace out proposal or recreation. Both of the provided examples essentially look like weather-exposed rocks."

"The linked initial (2018) find article has more convincing photos, in my opinion: https://www.nytimes.com/2018/02/15/science/camels-sculptures...Submission from the time, not really discussed (just to save you the search): https://news.ycombinator.com/item?id=16391610"

Preview of 'The Crime of Curiosity'

The Crime of Curiosity

"I don't understand this social platforms.Covid stuff and fake news aside, I reported maybe 20 times obvious scam videos, or posts with extreme hatred and threats of violence against a group of people and similar stuff where 99.99999% of us would agree that it should be removed without question, and only once they did remove it. All the other times I get a message that they reviewed my complaint, that it does not go against their standards/tos/bla bla, and that I can block the video/post/channel for myself.And taking into account how many random stuff they ban proactively, it just does not compute in my logic board in the brain."

"The author conflates two things. The right to biohack at home and Youtube's alleged obligation to let him broadcast his material.The first one is okay, as long as we're not talking about experiments that may be dangerous to the public. (which he seems to categorically reject for some reason, while home made bioterrorism is a real threat), the second one just doesn't follow at all.Youtube has no realistic way to tell whether someone producing home-made science on youtube is a phd ex-nasa biohacker who follows best practices or just a complete quack who tries to sell dangerous fake remedies to vulnerable people. In practice the incentive to promote the latter probably far outweighs the former in number given the huge, generic audience on Youtube.77% of the Youtube audience in the US are 17-25 years old, it's not some niche forum for engineers and the notion that they can read scientific papers and weed out legitimate science created at home from misinformation is absurd. The correct platform for something like this is a separate forum or community where enthusiasts meet with some barrier to entry, not the mass media.I immediately question the motive of someone who promotes individual science or 'hacking' and seeks the largest mass media audience. I think the motive is much more straight forward. The author has a company that sells genetic engineering kits to people and by banning him from Youtube that impacts him financially. I personally think Biohacking and eccentric science is cool, but the appropriate audience for the kind of things he did, like treat himself with CRISPR or replace his entire microbiome to treat IBS is probably a community more self-selected than HN, not Youtube, which is mainstream television for young adults."

""Democratizing genetic engineering won’t suddenly unleash bioterrorism upon the world."How sure is he of that, and why? As a comparison, nuclear power has been of great utility for many countries, but I sure would not want to see it "democratized"."

Preview of 'iOS on QEMU'

iOS on QEMU

"This would be interesting to see, I'm guessing the implications are being able to build iOS projects without requiring a Mac at any stage of the development process."

"Repo looks a little stale to me? I wonder how similar this is to the Xcode Cloud beta QEMU used by Apple someone spotted https://twitter.com/khaost/status/1410332951963869185?lang=e..."

"Previous thread from 18 months ago: https://news.ycombinator.com/item?id=22870905Latest blog post: https://alephsecurity.com/2020/07/19/xnu-qemu-kvm/"

Preview of 'Women are nearly half of new gun buyers, study finds'

Women are nearly half of new gun buyers, study finds

"https://archive.md/6qh7F"

"i live in the american south, where everybody owns guns. i own a gun for hunting. but for self defense, i have pepper spray and bear spray instead of guns because i don't want to kill somebody regardless of their intentions. i'd be curious to see the stats of self-defense/firearms, because it seems like self-defense gun owners are LARPing over imagined intruder situations. they're definitely not about to take up arms against the state, and if they think they would do that, then they're certainly LARPing and live in a fantasy world.exceptions to this rule, especially in the american south, are civil rights leaders and similar political activists. Martin Luther King preached non-violent protest but owned guns for protecting his home against the very real threat of violent racists. (there's some interesting writing about this if you look it up. google something like "martin luther king guns malcolm x")the bigger risk is accidentally killing somebody with a gun, like an "intruder" that is actually somebody you know. or a kid accidentally firing the gun and killing themselves or somebody else, or somebody intentionally killing themselves.edit: added "but" in front of dependent clause "for self defense""

"Excellent. There's no reason defensive gun buyers should be demographically different from the general population. It's understandable that gun sales for hunting or other activities might show differences, but we all have the same personal security needs.Side note: I'm one of the people here with a large collection of firearms. One thing to realize when you see the statistic that the US has more firearms than people is that only a percentage of them are really combat worthy/capable. Most of my collection, for example, are collectable historic pieces, or dedicated target/sporting firearms. Some of these could feasibly be pressed into service if you had absolutely nothing else, but they would be extremely sub-optimal for the task."

Preview of 'How much faster is Java 17?'

How much faster is Java 17?

"Considering tons of folks are still on Java 8, I would have liked to also see comparison between that and Java 17. Based on the improvements shown from Java 11 to 17, one could expect even larger improvements from Java 8."

"Our Spring Boot showcase application https://github.com/porscheinformatik/angular-spring-heroes starts ~ 10% faster on Java 17 compared to Java 11 (compiled with target 11)."

"It looks like majority of this gains are related to memory management and garbage collector or am I missing something?JDK 8 -> JDK 11 gains were huge thanks to String optimisations (e.g. GC could dedup strings and store one char as byte in many cases)."

17 September 2021
Preview of 'A search engine that favors text-heavy sites and punishes modern web design'

A search engine that favors text-heavy sites and punishes modern web design

"Wow, that's awesome. Great work!For a simple test, I searched "fall of the roman empire". In your search engine, I got wikipedia, followed by academic talks, chapters of books, and long-form blogs. All extremely useful resources.When I search on google, I get wikipedia, followed by a listicle "8 Reasons Why Rome Fell", then the imdb page for a movie by the same name, and then two Amazon book links, which are totally useless."

"Yeah so this is my project. It's very much a work in progress, but occasionally I think it works remarkably well for something I cobbled together alone out of consumer hardware and home-made code :-)"

"I tried a few searches.<<javascript pipe syntax>>: none of the search results appeared to have anything to do with Javascript pipe syntax. (Which doesn't exist yet, but it's under discussion.) Google gives a bunch of highly-relevant results.<<hans reichenbach relativity>>: first result is a list of books about relativity, one of which is Reichenbach's "Philosophy of space and time"; good, but there's no real information there. Second is about Reichenbach but nothing to do with relativity or even, really, philosophy of science. Third is about philosophy of science and mentions some of Reichenbach's work but not related to relativity. Fourth mentions Reichenbach's "Philosophy of space and time" as part of a list of books relevant to a seminar on "time and eternity". None of this is bad, but it's not great either. Google gives a couple of online philosophy encyclopaedia entries, then a journal article on "Hans Reichenbach's relativity of geometry", then the Wikipedia article on Reichenbach ... much more informative.<<luna lovegood actress>>: I thought this would be an easy one. It was easy for Google, which gave me her name in large friendly letters at the top, then her IMDB entry, and a bunch of other relevant things. Literally nothing in the Marginalia results was relevant to the query.I guess maybe popular culture is just too monetizable, so no one is going to write about it on the sites that Marginalia crawls? Let's try some slightly less popular culture.<<wilde "a handbag">>: First result is kinda-relevant but weird: it's about a musical adaptation of The Importance of Being Earnest. It doesn't mention that famous line from the play, but one of the numbers in the musical has the words "a handbag" in the title. Second result is a review of a CD of musicals, including the same work. Third is a bunch of short reviews of theatrical items from the Buxton Festival Fringe, one of which is a three-man adaptation of TIOBE. Next four are 100% irrelevant. Next is a list of names of plays. Last one is actually relevant; it's an article about "Lady Bracknell through the decades". Google puts that one first (after, sigh, a bunch of YouTube videos which look as if they might actually be relevant).I really like the idea of this, and many of the things it turns up look like they might be interesting, but it isn't doing very well at producing results that are actually relevant to the thing being searched for."

Preview of 'Sir Clive Sinclair has died'

Sir Clive Sinclair has died

"RIP Sir.I was gifted the 48K when I was 6 yrs old - it changed my life. I am here because Sir Sinclair built a machine whose setup instructions said:Now that you have set up the computer, you will want to use it. The rest of this booklet tells you how to do that; but in your impatience you will probably already have started pressing the keys on the keyboard, and discovered that this removes the copyright message. This is good; _you cannot harm the computer in this way._ Be bold. Experiment. If you get stuck, remember that you can always reset the computer to the original picture with the copyright message by taking out the '9V DC IN' plug and putting it back again. This should be the last resort because you lose all the information in the computer."You cannot harm the computer in this way."That single sentence started a life long journey. I doubt I would have been bold enough at that age to mess around with one of our most valuable possessions."

"The Spectrum and ZX81 are (rightly) the computers for which Clive Sinclair is remembered. But it was his unsuccessful follow-up, the QL, which inspired a certain Linus Torvalds to write Linux:https://en.wikipedia.org/wiki/Sinclair_QL#Legacy"

"The excellent Micro Men docudrama (https://en.wikipedia.org/wiki/Micro_Men) has somehow been on Youtube since 2013:https://www.youtube.com/watch?v=XXBxV6-zamM (1h24m)Micro Men, working title Syntax Era, is a 2009 one-off BBC drama television programme set in the late 1970s and the early-mid 1980s, about the rise of the British home computer market. It focuses on the rivalry between Sir Clive Sinclair (played by Alexander Armstrong), who developed the ZX Spectrum, and Chris Curry (played by Martin Freeman), the man behind the BBC Micro.(Sinclair didn't exactly like it though.)"

Preview of 'Atlassian fired me while I was taking care of my wife who is fighting cancer'

Atlassian fired me while I was taking care of my wife who is fighting cancer

"I worked at a company that had unlimted PTO when suddenly one day they revoked the policy because they said some people were abusing it. The new policy was still very generous (6 weeks PTO per year) so no one complained. Fast forward a year later and we were hearing things from executives and managers like, "you know you don't have to use all you're PTO, right?". I'd ask, oh, it will rollover to next year? The reply: "No, it won't. But that's really the wrong way to think about it."So it turns out people were taking much more time off now than when PTO was unlimited. They started denying request and making up trivial rules, like 2/3 of your team must be available at any time (regardless of the team size), oh, and those rules weren't in the official policy. Good luck trying to get specifics in writing.Eventually they changed back to an unlimited policy but secretly told managers they should start denying requests after x number of days have been used. I think it was five weeks, which again is still generous but it bothers me because the intent is to hide that number in hopes that people will use less. I also get no tracking for how many days I've already taken unless I go through my requests and count the approved ones myself.The unlimited policy is definitely a scam at many companies. Most of my team has been denied requests for reasons that don't exist in the written policy, like, "you recently had PTO already." Honestly I'd rather have a policy that only allowed 3 or 4 weeks with a minimum mandatory that each employee is required to take at least two weeks off per year."

"I'll accept that what the author posted is the truth. Atlassian did not give him what he wanted or needed. And now this battle is public, he will never get anything else from them. The proverbial glove has been thrown down and they will fight you on all fronts.To everyone else, If this happens to you, I implore you to get legal counsel ASAP, and keep it quiet. Find out all your options and strike a quiet deal with your employer. That is the best you'll ever get.Almost any large company has much deeper pockets than you do and their reputation is more valuable that their ethics. You'll rarely win in the court of public opinion and you'll probably never get hired anywhere again. I say this even if you were 100% in the right."

"Recent ex-Atlassian employee here. No part of this article matches with my experience. It's one of the better companies I've worked for. I usually took 3-4 weeks of PTO a year, it wasn't a big deal. We didn't even have to register our time off in a payroll system or anything like that. Yeah you couldn't take 6 months off and expect to keep your job, but I felt like 3-5 weeks of PTO was the norm there. I also had female managers who took 3-4 months of maternity leave. It wasn't a big deal. This article complains about being at a job for 2 years without a promotion. That's the mark of an entitled person. P4 is still a great position with solid pay."

Preview of 'Please stop closing forums and moving people to Discord'

Please stop closing forums and moving people to Discord

"I'm longing for the return of the mailing lists.Sure, the format is slow and somewhat complex, but then it seems like all the places are devoid of non-immediate conversations.Companies are moving to the Slack, informal groups to the Discord. I've been using IRC for years and I still love it but with recent adoption of Slack it seems everyone wants to push all the communication there and I don't think it works. It's hard to search for stuff (usually it takes me 3-4 queries to find thing _I know_ is there) and then it's in lengthy conversational format that takes a bit of time to replay. You might lose window of opportunity to provide important info just because you aren't present at the moment and since Slack is perceived as a low impact tool, those conversations can happen in late evening hours.And yet all the places that (in my opinion) were better to have more fruitful, thoughtful and searchable conversations are slowly winding down. Newsgroup are long dead, mailing lists are perceived as archaic, forums are closing down one by one. It might be me, but I start to get feeling that even on StackOverflow conversations aren't what they used to be. Only e-mail is left - in some places at least, because some organization start to have "why send an e-mail while you could send Slack message". Thankfully those organization usually bless users with capability of installing Slack on their private phones /sToo bad Google Wave didn't pick up."

"I hate that everyone is using Discord not just because of searchability but also because it's difficult to have multiple identities with Discord. It's frustrating to be looking for help with using some library and seeing in the readme a link to join their Discord server. I don't want to join those with the same identity I use in gaming Discord servers so I usually just give up at that point."

"Maybe it's just me (30-something year old male, big into gaming), but I love when I see forums on Discord. I think it's way better to use a system I am already signed up for. I don't want to sign up again for a million different forums like the old days. I also love the new threads feature by Discord to keep convos more concise and isolated. That has helped forums on Discord a ton. It's also nice that I can join a server, get my answer, then leave that server with no lingering email sign up for some one-off forum that I'll never visit again, and then I get bombed with emails after I'm done. And when I leave, it's worth noting my comments/questions are still on the server for those to find via search if they join after I'm gone [1].I know a lot of people in the comments seem to hate Discord for this, but I personally love it. I guess I'm just saying this as a reminder that there are always others that do enjoy the other side. ¯\_(ツ)_/¯[1] It's worth noting that I guess this is a Discord server specific setting, so that could vary I suppose."

Preview of 'Lumber crash leads to 'blowout' sales as prices crater'

Lumber crash leads to 'blowout' sales as prices crater

""If high prices held you back from building, you are in luck, as the tables have now turned"Except... many builders will find some other reason/excuse where prices are high to keep prices high. We were looking at building a house - talked to builder last November and... looking at $470-$480k range (ballpark estimate). Lumber was going higher, but we'd reduced the house plan size. Lumber kept going up... and up... Then... no parts were available (IIRC certain trusses were unavailable for months, that's just one that stuck out).We regrouped a bit later. House was now going to be min $620k, but... no guarantee it would be $650k or $700k. Builder has been working on spec homes in the $700k-$900k range last few months, whereas exact same size houses 1 block away they were building and selling in the mid-$400s 14 months ago.Before we cancelled the project, we asked why we couldn't build something smaller and target a time in a few months, as lumber was coming way down to where it was 18 months ago. "Everything else has skyrocketed..." which... I know things have gone up some in the last 18 months, but I think there's simply some "get high prices while you can".When talking to some home finance folks, they're all saying "watch out for HELOCs in 18-24 months - people will be clamoring for HELOCs as they won't be able to sell these $700k houses they're buying, because they won't have appreciated at all, and the homeowners will be trapped".There may be 'blowout' prices on lumber itself, but around here I'm not seeing any 'blowout' prices on new construction in the short term."

"I’ve been following these prices closely for most of the year and what’s striking to me is just how wrong nearly all the industry experts were throughout the year. I don’t recall reading a single opinion that was anything other than “prices will remain very high for the foreseeable future.”"

"I don't think prices are "cratering" so much as just returning to normal rather than price gouging.Now if I could just buy a GPU for a normal price..."

Preview of 'Home Assistant – open-source home automation'

Home Assistant – open-source home automation

"Founder Home Assistant here.Home Assistant is turning 8 years this week. To celebrate we have launched crowdfunding campaign for Home Assistant Amber, a device for both beginners and home automation enthusiasts and the easiest way to get started with Home Assistant.For more info see https://www.crowdsupply.com/nabu-casa/home-assistant-amber"

"The UniFi Protect integration is awesome. Turn on outdoor lights on motion, disable loud doorbell ding when the dog is sleeping, change privacy zones, send critical notifications to bypass silent mode on iOS devices when a person is detected while away… really amazing stuff.The HomeKit Controller integration is also neat. All kinds of HomeKit compatible devices can just work with Home Assistant. Honeywell Lyric is the best example: PIR sensors with local push for lighting automation or special alerts when gates open to prevent the dog from escaping the backyard.Edit: More useful things!I have my washer and dryer in a garage. Can’t hear the machines inside. The Z-Wave light switches around my house have status LEDs, so one LED is dedicated to the washer and dryer status based on power draw from the outlet. Works really well. The same status LEDs are shared for all light switches around the house, so it’s a good ambient notification.The Mac app can provide webcam or mic status as a sensor, which turns on a key light when I join video calls and turns on an LED on the light switch outside my office to signal when I’m on a call.I also get a push notification on my computer and a LED light on the light switches when the Roomba is full. It fills up a few times during its typical run while I’m working.I also have the door status (open/closed/locked) from the Lyric as LEDs on the light switches. Very easy to tell if something is unlocked or open at a glance while walking around the house."

"Nice to see HA getting some love on HN. A colleague recommended it to me about 3 years ago as an alternative to Domoticz. I've migrated back than and haven't looked back since. I consider myself a real Home Assistant enthousiast. I've contributed some small amounts to the project, created and maintain my own add-ons and love to share my configuration with others.Although most of the things currently just work, especially with the (migrated) UI integrations. Some things still feel very unfinished, like blueprints. Which was a terrific idea, but maintaining and keeping those up to date is an absolute nightmare and you will have to that yourself [1]. Same with battery powered devices. When they work, it's all great, but having to watch their battery level is just a hassle. You can create your own automation to do that for you, but it seems unnecessary.For me the community also sometimes feels very hostile. For instance, you can have a Portainer add-on, but installing other Docker images makes your system 'unsupported'. Same with some blacklisted images [2], which break Home Assistant Supervisor. Or when the maintainer of one of the add-ons completely ignores a breaking issue after a day [3].1. https://community.home-assistant.io/t/reload-automations-aut...2. https://github.com/home-assistant/supervisor/blob/main/super...3. https://github.com/hassio-addons/addon-adguard-home/issues/1..."

Preview of 'The new warrant: how US police mine Google for your location and search history'

The new warrant: how US police mine Google for your location and search history

"I remember that story about Zachary McCoy. This whole thing continues to get worse quick and will continue to get worse. I know people say we need legislation and regulation on data privacy and tech companies which we do. But before that gets taken seriously (at least in the US) it's going to take something real scandalous done by tech companies and actually affect the common folk where they actually start to care.Right now the average user does not care at all about security and privacy except the small niche groups of us on HN, Reddit and other tech/Geek forums. The regular average user will continue to still use Facebook, Twitter, Google, Apple etc. As long as the average user keeps using their services and vote with their data and wallets I doubt much will change anytime soon.Until we get some real data privacy laws and regulation we just have to matters into our own hands. I don't use Google search unless I need to, and always have my VPN on (Mullvad).Edit: Then again, once we did get data privacy laws and regulation could we actually trust the companies and politicians and LE. Probably not. That's why I also feel the laws and regulation needed for tech is more of like a "The public thinks we did something" type of situation. There will still and always will be under the table deals.If the regular user can realize eventually how they feed these companies with their data and what happens with their data it could also hinder or start to hinder data collection at the government level (NSA, GCHQ, Project Raven and so on)."

"Related past threads. Others?Google says geofence warrants make up one-quarter of all US demands - https://news.ycombinator.com/item?id=28266650 - Aug 2021 (259 comments)New Federal Court Rulings Find Geofence Warrants Unconstitutional - https://news.ycombinator.com/item?id=24342049 - Sept 2020 (29 comments)Google Gives Feds 1,500 Phone Locations in Unprecedented ‘Geofence’ Search - https://news.ycombinator.com/item?id=21773543 - Dec 2019 (269 comments)"

"Is there a self hosted app to track your location? I use Google maps to keep granular history so I can use it later for whatever. But if I could self host that’d be better."

Preview of 'The ownership and future of Mullvad VPN'

The ownership and future of Mullvad VPN

"mullvad has a long history of proving itself as being a good faith actor in the space. it's also first to step into new technology and infrastructure because they are truly interested and ideologically invested in what they are doing.they don't use accounts or collect email addresses.they accept cash in the mailno matter what you think about crypto they were probably one of if not the first companies in the world to start accepting bitcoin in 2010 and have always self hosted their infrastructure, not offloading it to bitpay or whatever other company that just funnels right into chain analysis companies. back then bitcoin was on the super fringe and the only people interested and involved in it where people that were ideologically aligned with it's vision.They started funding wireguard before it was cool and before anyone else gave a shit about wireguard.They are the backbone for mozilla's vpn.You can never REALLY be sure, but from what I can tell mullvad is the most honest and sincere vpn company in the space and I wouldn't even consider going anywhere else."

"I’ve been a Mullvad user for a while now and it’s a really great service. Good speeds, good apps for mobile and desktop, and the flexibility to use wireguard yourself if needed.I stopped using privateinternetaccess when their ownership stuff became really sketchy. I’d highly recommend Mullvad to anyone else looking for a good VPN provider.Side note, Mozilla VPN uses Mullvad’s network under the hood."

"> Mullvad VPN is here to stay, and we are not interested in ever selling itYeah we don't want another Kape Technologies acquisition[0]. Kape already own Cyberghost, PrivateInternetAccess and Zenmate. If they bought Mullvad, I would immediately stop using Mullvad since Kape is Israeli and could possibly be tapped by Mossad (I keep an open mind about that however).[0] https://www.cnet.com/tech/services-and-software/kape-technol..."

Preview of 'The Perils of an .xyz Domain'

The Perils of an .xyz Domain

"> One surprising side effect of having a .xyz domain is that the mere inclusion of .xyz inside of a text message will result in a silent delivery failure for many providers.This is wild to me. Tested it out myself and I couldn't send an SMS with a spot.xyz link to/from Google Voice <-> T-Mobile. And no "failed delivery" notice either, just a silent failure. And yet I still get so many texts that are obviously spam or phishing attempts."

"Whoa. I use an xyz domain daily. This thread is eye-opening. Here's the reply from a SpamAssassin validator.My domain is almost marked as spam solely on TLD grounds. What's the point of a TLD if it isn't a first-party domain on the internet? SpamAssassin Score: -0.599 Message is NOT marked as spam Points breakdown: -5.0 RCVD_IN_DNSWL_HI RBL: Sender listed at https://www.dnswl.org/, high trust [***.***.***.*** listed in list.dnswl.org] 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: ***.xyz] -0.0 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2) [***.***.***.*** listed in wl.mailspike.net] 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record 2.0 PDS_OTHER_BAD_TLD Untrustworthy TLDs [URI: ***.xyz (xyz)] 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 2.0 FROM_SUSPICIOUS_NTLD_FP From abused NTLD 0.5 FROM_SUSPICIOUS_NTLD From abused NTLD 0.0 TVD_SPACE_RATIO No description available."

"I was pretty excited when ICANN opened up a bunch of new domain extensions, but it does sometimes feel like "all these extensions are great if you don't plan on using them".It was pretty cool that I managed to buy a bunch of domains like <my last name>.<new-tld>, but to be honest I really don't see myself using my .blackfriday domain for anything. For that matter, I think that (somewhat ironically) `my-last-name.email` would not be taken very seriously for a primary email address.I use a `.app` domain for my personal email, which has its issues, but if I owned a business, there is no way on earth that I would be using anything but .com."

Preview of 'Windows 11: Just say no'

Windows 11: Just say no

"Windows 11 is half-baked.But it isn't just half-baked because it was rushed out while ignoring all the feedback (although it absolutely was). It is also half-baked because Microsoft's management has no particular strategy or plan for what they want Windows to be.So Windows 11 just feels like an "and kitchen sink" where someone picked up an iPad, noted down a bunch of random features without rhyme or reason and then told the people below them to shove them into Windows for some reason.Then you step back and realize that very "101" features on Windows are still incomplete like the migration to Settings, Windows Search being objectively worse than the Power Toys Run (let alone Google Desktop Search RIP or FileLocator Pro), and UI elements that haven't been updated since Windows 2K.As cliché as this sounds, Microsoft needs someone with a vision for Windows at the helm, someone they trust enough to go hands off and let them materialize that vision. Regardless of what that vision is, at least then Windows would be a something, rather than a whole host of competing ideas and contradictions i.e. a mess.PS - Ironically the "Windows 11 PC Health Check" app symbolizes Windows 11's problems: Released in a half-complete state, pulled, then re-released as a "Preview" also in a half-complete state. The app to check if you're ready for Windows 11 is a "preview" less than 30 days before the FULL retail release of Windows 11... It is almost too perfect."

"I have to agree, even though I have plenty of pro-Windows comments.To me Windows 11 feels like Vista, and to everyone that got burned with the rewrites on the WinRT side, just using plain Win32/MFC/Forms/WPF feels liberating.Multiple teams are fighting UI politics over WinUI, MAUI on top of WinUI, React Native with WinUI, and classical UWP is not going away (Windows 11 Store is written in it), then ASP.NET team is pushing Blazor everywhere including on Web Widgets.I will just wait for Windows 12, whenever it comes up, the UI war will be settled by then."

"Ive been using win 11 on my laptop for a couple months now.I like the new UI, it feels simpler and less gaudy. The drop down menu expansion thing is fine. I also prefer the redesign of the settings app. I find casting my screen and bluetooth works better. Windows has been missing something decent window snapping features forever and although it's a bit clunky I appreciate that it's there.The only thing that has annoys me is the taskbar not disappearing when its supposed to, leading to it covering the bottom of maximized applications. Most of the time its not there but sometimes it'll just stick after coming up.I didn't know about the android apps feature but I might give it a shot when I go home. Widgets I just haven't used at all despite being aware of them.I still have win10 on my desktop. I don't remember the switch being painful when I went to the rolling release windows insider on my laptop. Frankly win10 is fine too, so unless there's an android app I want to play around with I wouldn't bother switching."

16 September 2021
Preview of 'Apple blocked the FlickType Watch keyboard then announced a clone of it'

Apple blocked the FlickType Watch keyboard then announced a clone of it

"Very typical of Apple, using opaque approval procedures. They're acting like bullies because they didn't get what they wanted and because they have the money/power to do so. Apple wanted to buy FlickType but they didn't agree on the price or Eleftheriou didn't want to sell (I doubt it), and so from then onwards started the downhill ride. I fully support Eleftheriou on this just for the principle, but if I were in his place I would have agreed at a very large sum from Apple (even lower from what I had in mind) just so that we could all be happy right now ;-)"

"Meh. The problem is FlickType requires network access during use. The App store licensing is ok with keyboards, it's not ok with keyboards that get network access. This, Apple perceives as a major privacy issue-- one for the possibility of keylogging, but also for the broader possibility of the always-on logging that the weather apps are infamous for.edit: Sorry, I didn't include the source, the Developer License Agreement. Here's a link (relevant section on page 23) -- https://developer.apple.com/support/downloads/terms/apple-de..."

"Aptly put by the author: See you in court @Applehttps://twitter.com/keleftheriou/status/1437845736951992321"

Preview of 'Three ex-US intelligence officers admit hacking for UAE'

Three ex-US intelligence officers admit hacking for UAE

"There is an incredibly well produced podcast episode on these ex-NSA engineers working for the UAE that came out a couple of years ago. Check out Darknet Diaries Ep47: Project Raven [1].Synopsis is that the UAE hires ex-NSA employees as "penetration testers" and when they enter the country for cybersecurity work, some are pulled aside to be briefed to an opportunity called "Project Raven" to assist Emirati intelligence with targeting, allegedly in the interest of counter-terrorism. The thing is, only Emiratis have "hands on keyboard" while the US engineers sit beside them and guide them, which supposedly dodges any legal concerns. Those who Jack interviewed decided to leave Project Raven when it became clear they were targeting dissidents, human rights activists, and later, Americans. As you might imagine, ex-NSA employees who target US citizens for a foreign government are breaking the law. I do wonder if it's these ex-Project Raven engineers that have led prosecutors down the road to where we are now.[1] https://darknetdiaries.com/episode/47/"

"More interesting to me is that one of the named persons, Daniel Gericke, is the CIO of ExpressVPN [1] which sold yesterday, the same day that the DoJ came to this prosecution agreement (!), for just under $1 billion. [2][1]: https://www.cnet.com/tech/services-and-software/expressvpn-c... [2]: https://www.techradar.com/news/expressvpn-to-join-kape-in-la..."

"I'm confused. Isn't this considered treason??They get no jail time? They get to buy their way out?!> “Hackers-for-hire and those who otherwise support such activities in violation of U.S. law should fully expect to be prosecuted for their criminal conduct.”I know they lose their clearances and pay a bunch of money, but this seems like it merits a lot more punishment than that."

Preview of 'Show HN: Time travel debugger for web development'

Show HN: Time travel debugger for web development

"Co-founder here. It feels incredible to be sharing Replay with all of you. It's been a labor of love the past five years!Replay started off as a simple experiment in what would happen if we added a step back button and rewind button to the Debugger. We quickly realized two things. First, nobody uses breakpoints. Second, being able to share is so much more powerful than being able to rewind.Here’s how Replay works today. Somebody on the team records a bug with the Replay Browser and shares the replay url with the team. From there, developers jump in and add print statements. The logs appear in the Console immediately so you don’t need to refresh and reproduce a thing.Over the past year we’ve talked to hundreds of users, recorded 2.5 million replays, and worked incredibly hard to ensure Replay would be fast, secure, and robust from the get go.Want to check it out? You can download Replay today. Can’t wait to hear what you think!Interested in learning more, here is our announcement blog post https://medium.com/replay-io/launching-replay-the-time-trave..."

"For those who are looking to similar tooling in back end space, check- https://undo.io/ (It can also support Golang https://docs.undo.io/GoDelve.html)- Mozilla RR https://rr-project.org/- GDB https://www.gnu.org/software/gdb/news/reversible.htmlUnfortunately, works only in Linux.https://en.wikipedia.org/wiki/Time_travel_debugging"

"I am a JavaScript framework author, and was one of those fortunate to get early access and honestly it is the most useful tool I've ever used in the debugging space.Sometimes things are complicated. Often there is a need to do digging to uncover the issue. Being able to move forward and backwards and even jumping between seemingly disjoint parts of the timeline are all at your disposal with Replay.Replay has saved me hours of time. And that isn't hyperbolee. On a couple occasions due to laziness and familiarity I'd do stuff the traditional way and be stuck still after hours (sometimes days) on the same bug. With Replay I was able to shorten that time to about an hour on even the trickiest of bugs.So stoked to now have Replay available to others to help record reproductions of their bugs."

Preview of 'Prefer the British Style of Quotation Mark Punctuation over the American'

Prefer the British Style of Quotation Mark Punctuation over the American

"As a programmer, I’d prefer a combination of the two:Dr Johnson kicked a large rock and said, as his foot rebounded, “I refute it thus.”.as I think it’s weird that a punctuation mark inside a quote can end the sentence that contains the quote.I’d argue like this: in the above case there are two sentences, the quote and the sentence that contains the quote. Both need to be terminated with a period."

"Hackers tend to use quotes as balanced delimiters like parentheses, much to the dismay of American editors. Thus, if “Jim is going” is a phrase, and so are “Bill runs” and “Spock groks”, then hackers generally prefer to write: “Jim is going”, “Bill runs”, and “Spock groks”. This is incorrect according to standard American usage (which would put the continuation commas and the final period inside the string quotes); however, it is counter-intuitive to hackers to mutilate literal strings with characters that don't belong in them. Given the sorts of examples that can come up in discussions of programming, American-style quoting can even be grossly misleading. When communicating command lines or small pieces of code, extra characters can be a real pain in the neck.— http://www.catb.org/~esr/jargon/html/writing-style.html"

"I got in a heated debate about this with a technical writing instructor. Namely, I was ending a question with a quote along the lines of> Why did Jake believe the AI was “going to kill us all”?The instructor wanted me to put the question mark of the outer sentence within the quotation marks despite the quoted text not containing a question mark.> Why did Jake believe the AI was “going to kill us all?”I felt like doing so changed the meaning of the quote, and it felt like a misrepresentation. This being the “correct” way to do it has always irritated me.I ended up rewording the sentence so it wouldn’t end with the quotation, and have just actively avoided ending sentences in quotes ever since."

Preview of 'Anonymous Hacks Epik'

Anonymous Hacks Epik

">NOTORIOUS "HACKERS ON ESTRADIOL" PRESENT GRAND REVEALI love how this is a tongue-in-cheek reference to the "hackers on steroids" piece from 2007 https://www.youtube.com/watch?v=DNO6G4ApJQY"

"Anonymous strikes again, this time with a well known web registration company with a decade of data. This is a blatant example how poor security management leads to the hardship of thousands if not millions of regular people. Now their private details have a risk of being public and fully open to scrutiny. And its not just some simple data breach they allegedly stole domain purchases and transfers, account credentials of pretty much all their clients. Unacceptable. Embarrassing. They should be held accountable for all this if it comes out to be true."

"Eventually the cloud is going to burst and everyone’s data will be public. The motive will be similar to this one, where a huge blast radius of collateral damage is accepted in the name of harming bad people. Seeing people eagerly download this data that surely includes countless amounts of personal info of non-Nazis shows this clearly."

Preview of 'Scientists create matter from pure light, proving the Breit-Wheeler effect'

Scientists create matter from pure light, proving the Breit-Wheeler effect

"It looks like one of the authors is on HN with us. Can you offer any insight into the cause of the confusing language in the "Science News" piece? It reads like it was written by a bot not a human.In the sentence "With the theory physicists Gregory Breit and John Wheeler were able to prove that when two high-energy photons collide, a positron and an electron arise, i.e. matter is formed" shouldn't the word be "predict" not "prove"?A more flagrant example of a strange word choice for a human science writer to make is "A direct conversion would require a laser that emits gamma-ray photons in a highly concentrated steel." Shouldn't the word "steel" instead be "beam"? This seems like the sort of thing an uncomprehending bot might do, conflate those two words.Are my the nits I've picked, above, unfounded? Does the author of the original paper have any information which might suggest that an actual human wrote the "Science News" piece?If not I would suggest that we've got a bot on the loose! Eeek!Further, I think I'm seeing rather a lot of "content" floating around recently which smacks of machine origins.Also, to Daniel... Great paper. Amazing stuff!"

"I was surprised because I thought the Breit-Wheeler Effect has been demonstrated already. It just looks like what they mean here is single photon (or really, two photon), not the so-called strong field Breit-Wheeler that was demonstrated at SLAC and with powerful lasers for decades now."

"I have had this mental question about 'what time is it when photons collide'. Given that a photon could have been travelling for a million years colliding with one that has only been travelling for a microsecond, and from the photon perspective there is no passage of time and no distance.I then kept reading things that tell me photons don't interact, which saddened me because I like the question. This now appears to not be the case, is there a specific condition under which photons can interact like this?"

Preview of 'Username ending with MIME type format is not allowed'

Username ending with MIME type format is not allowed

"I'm a little confused about the issue description, because "mov" is not a MIME type.Examples of MIME types: "text/plain", "text/html", "image/png" "application/pdf", "video/quicktime", ...If I was prevented from using the username "wcoenentext/html", then I wouldn't really be bothered by that. (Although I might question the design decisions that would necessitate such a restriction.)"

"This seems on par with the general GitLab-style. Is anybody else getting a bit frustrated with them?They keep on having high-severity security bugs being fixed every month (e.g. auth checks not being done everywhere). Then there's all these odd edge case bugs everywhere.As an outsider, it just seems to me that GitLab isn't being engineered in a principled way: on sound abstractions and with separation of concerns (e.g. auth should be some universal middleware, not ad-hoc per call). Just really basic stuff."

"GitLab team member here. I'd like to add some additional context to my previous comments [1][2].Due to a security concern in which a profile containing a file extension would not load [3], we do not allow usernames that end with file extensions (ex: .mov). As noted by many folks here, these are associated with a MIME type but are not MIME types themselves. It is not related to preventing an injection or any such attack vector.The error message for this check incorrectly included MIME type rather than file extension. This has been updated [4].Additionally, there was an issue with how the actual check as it did not include the leading dot. The leading dot was added to the check in a subsequent MR [5].Thanks for all the feedback.1 - https://news.ycombinator.com/item?id=285357392 - https://news.ycombinator.com/item?id=285381663 - https://gitlab.com/gitlab-org/gitlab/-/issues/262954 - https://gitlab.com/gitlab-org/gitlab/-/merge_requests/70374/...5 - https://gitlab.com/gitlab-org/gitlab/-/merge_requests/65954"

Preview of 'Designing Beautiful Shadows in CSS'

Designing Beautiful Shadows in CSS

"> One more quick tip: unlike box-shadow, the filter property is hardware-accelerated in Chrome, and possibly other browsers.In Firefox, everything is hardware-accelerated. And the `will-change` property is largely obsolete. (I personally wish they had stuck to the old translateZ(0) hack which was obviously a hack rather than defining will-change, since WebRender—what lets Firefox do all the rendering on the GPU—was already well underway and had demonstrated that something like will-change wasn’t necessary, though it was still a few more years before it was stabilised in Firefox.)"

"Wow, this is way beyond what I expected. Josh consistently illustrates and explains these concepts extremely well. I really enjoy it.I hadn’t considered the idea of colour matching to simulate raytracing. It looks great, but I’m not sure when I’d have a product to work on which would be complimented by this treatment. Maybe I work on boring stuff. Perhaps if it was done with enough subtlety I could get away with it.I also wonder if it could become troublesome if you had nested ColourWrapper components. I suppose the most recent wrapper would take precedence, or it could be designed as such. Maybe I’ll give it a shot."

"It's posts like this that remind me why I force myself not to do front end. I always end up tweaking the same 10 lines of CSS until they're juuuuust right and never get anything done.Great article!"

Preview of 'Effect size is significantly more important than statistical significance'

Effect size is significantly more important than statistical significance

"Speaking not to this study in particular necessarily, I strongly agree with the general point. Science has really been held back by an over-focusing on "significance". But I'm not really interested in a pile of hundreds of thousands of studies that establish a tiny effect with suspiciously-just-barely-significant results. I'm interested in studies that reveal robust results that are reliable enough to be built on to produce other results. Results of 3% variations with p=0.046 aren't. They're dead ends, because you can't put very many of those into the foundations of future papers before the probability of one of your foundations being incorrect is too large.To the extent that those are hard to come by... Yeah! They are! Science is hard. Nobody promised this would be easy. Science shouldn't be something where labs are cranking out easy 3%/p=0.046 papers all the time just to keep funding. It's just a waste of money and time of our smartest people. It should be harder than it is now.Too many proposals are obviously only going to be capable of turning up that result (insufficient statistical power is often obvious right in the proposal, if you take the time to work the math). I'd rather see more wood behind fewer arrows, and see fewer proposals chasing much more statistical power, than the chaff of garbage we get now.If I were King of Science, or at least, editor of a prestigious journal, I'd want to put word out that I'm looking for papers with at least one of some sort of significant effect, or a p value of something like p = 0.0001. Yeah. That's a high bar. I know. That's the point."But jerf, isn't it still valuable to map out all the little things like that?" No, it really isn't. We already have every reason in the world to believe the world is drenched in 1%/p=0.05 effects. "Everything's correlated to everything", so that's not some sort of amazing find, it's the totally expected output of living in our reality. Really, this sort of stuff is still just below the noise floor. Plus, the idea that we can remove such small, noisy confounding factors is just silly. We need to look for the things that stand out from that noise floor, not spending billions of dollars doing the equivalent of listening to our spirit guides communicate to us over white noise from the radio."

"From the article:Ernest Rutherford is famously quoted proclaiming “If your experiment needs statistics, you ought to have done a better experiment.”“Of course, there is an existential problem arguing for large effect sizes. If most effect sizes are small or zero, then most interventions are useless. And this forces us scientists to confront our cosmic impotence, which remains a humbling and frustrating experience.”"

"I think the weird thing is that a bunch of people in tech understand this well _with respect to tech_, but often fall into the same p-value trap when reading about science.If you're working with very large datasets generated from e.g. a huge number of interactions between users and your system, whether as a correlation after the fact, or as an A/B experiment, getting a statistically significant result is easy. Getting a meaningful improvement is rarer, and gets harder after a system has received a fair amount of work.But then people who work in these big-data contexts can read about a result outside their field (e.g. nutrition, psychology, whatever), where n=200 undergrads or something, and p=0.03 (yay!) and there's some pretty modest effect, and be taken in by whatever claim is being made."

Preview of 'Steve Jobs: Let's force Amazon to use our payment system (2010)'

Steve Jobs: Let's force Amazon to use our payment system (2010)

"The FTC has been asleep at the wheel with tech companies in the 21st century and consumers have suffered as a result. Apple's locking consumers into their platform, Google's steering traffic towards its sites, Amazon's forcing its merchants to give them preferential treatment. These companies have too much power and we need a government who's willing to take bold steps to curb them."

"Schiller comes across as needy and with a very low confidence in their own product. Some other company shows that their product works equally well on both Android and iPhone, and his response is that it's not fun to watch?Also, this should be shown to everyone that says they prefer the Apple ecosystem because "it just works". You really can't get more user hostile than this, where you care more about extracting money from transactions that you're not a part of than making life easier for your paying customers.Apple let Amazon sell books using their own payment system because Amazon sold a lot of books on their own Kindle platform that Apple wanted users to be able to read on iPhones, but as soon as Apple's platform was the biggest one they altered the deal to squeeze more money out of it. Like a monopoly would do."

"Want to do a mini PSA that you should (probably) read Steve Jobs' biography if you haven't, it makes posts like this much, much more interesting when you have a fuller background.I wasn't a Steve Jobs fan so I never read it till recently. Still not a huge fan, but you can still see the tendrils of his influence that still affect today's world (adobe flash EOL last year, this stuff by not allowing you to buy books on the kindle/amazon app on iphone, continuing to control hardware and software experience). And you can see how it's gone (4 different ipads, etc)"

15 September 2021
Preview of 'Facebook knows Instagram is toxic for teen girls, company documents show'

Facebook knows Instagram is toxic for teen girls, company documents show

"https://archive.is/egPlc“The research that we’ve seen is that using social apps to connect with other people can have positive mental-health benefits,” CEO Mark Zuckerberg said at a congressional hearing...“We make body image issues worse for one in three teen girls,” said one slide from 2019, summarizing research about teen girls who experience the issues. “Teens blame Instagram for increases in the rate of anxiety and depression,” said another slide. “This reaction was unprompted and consistent across all groups.”From what researchers said in a March 2020 slide presentation posted to Facebook’s internal message board."

"Is it Facebook / Instagram's fault or us as a culture? As a culture we adore beauty, wealth, power...Facebook seems to be just a platform where our natural desires can have a play. Facebook hasn't created this impossible beauty ideal, it was created long long ago by Hollywood and the fashion industry. Facebook just makes it super easy for people to become obsessed with something by "connecting" with it. It used to be that 40 years ago you watched some supermodel in a commercial for 20 seconds and she was gone. The novelty with the internet is that now you can follow this supermodel and get dozens of alerts a week about her. If it's not Facebook it's gonna be TikTok or something other platform."

"I don't blame Facebook (or Twitter, or any particular company) for this.We can only blame scale. Some things are much more scalable than others, and "beauty" scales. And the "occurrence of beauty" does, too.Before the advent of scale on almost every aspect of our lives, a local musician or theatre group found easy income.Now, since after the invention of gramophones, more people can listen to less and less musicians, i.e. numerically.One movie is seen across the world and then millions of times on streaming services, while your local theatre group starves.Just like that, before, some people were considered more beautiful than others as it is done now. But one beautiful girl could only make, say, 20 girls jealous and anxious.Now, with the advent of Instagram, and internet-driven scale in general, one beautiful girl makes 20,000 girls jealous. So the anxiety and jealousy is numeracally widespread. This is where beauty scales.Also, before, one average looking girl felt threatened by the beauty of one beautiful girl in her area. Now, there is the "feed", where she sees hundred girls more beautiful than her. This would not have been statistically possible in earlier times. This is where "occurrence of beauty" scales. Where, hundred years ago, a girl would see maybe 3-4 girls better looking than her, now she sees 300.____- I don't believe in a set standard of beauty. I don't believe that beauty is objective either. In this comment, I use "beauty", "beautiful", etc. as a short and logistically convenient way to represent "perceived beauty", "seemingly beautiful", etc. I hope this won't be an issue.- I am also aware of other sources of anxiety, one simply being money- money buys new clothes more frequently, and people in new clothes and/or makeup look more pretty. Cosmetic surgery is in similar line. Here what scales is display of wealth.- Filters, editing, etc. also might play a big part. People know this. Hence the popularity of the "Instagram vs. Real Life" meme format."

Preview of 'Steve Wozniak announces private space company to clean up space debris in orbit'

Steve Wozniak announces private space company to clean up space debris in orbit

"https://archive.is/9YLSb"

"So here's a potential business model for this: salvage rights.When ships sink, the owner generally still retains ownership of any property. Sometimes the location of the wreck is known. Sometimes it needs to be found. It can cost a lot of money to find a wreck and recover any property.So salvage rights are a principle of maritime law such that whoever does this is entitled to a reward commensurate with the value of the goods recovered (eg 10%).I imagine there are orbital slots that are essentially unusable because of space debris (eg Project West Ford [1]). If orbital slots are sufficiently scarce then these could have value. At some point it may become commercial to spend the effort cleaning up an orbit and making it available. Companies could then be compensated for the value they create this way.I do believe this will still require a dramatic decrease in launch costs, as in orders of magnitude more. But we'll see.My personal belief (and hope) is that the future of getting into orbit is orbital rings [2]. If so, that completely changes the game because cleaning up an orbit essentially becomes a problem of just holding up a giant "paddle" (for lack of a better word) that is fixed to a point on Earth (essentially) and just letting the debris hit it.[1]: https://en.wikipedia.org/wiki/Project_West_Ford[2]: https://www.youtube.com/watch?v=LMbI6sk-62E"

"I'm very skeptical of the technical challenges associated with this problem (business model and financing aside). The amount of delta-v required to perform maneuvers to repeatedly "dock" with different pieces of space junk, and then again to de-orbit is very high. You MIGHT be able to de-orbit on the order of magnitude of ~10 pieces of low-earth orbit debris per mission. Maybe. If you're really good. And low-earth orbit junk isn't the major issue since it will de-orbit naturally in a reasonable time-frame. Higher orbit junk is what really matters, and will require much more delta-v to reach, and then again to de-orbit after "docking".Allow me to blindly speculate here: a space-junk company is going to take one of the two following paths:1) Perform low-earth orbit missions to de-orbit a few pieces here and then there, use the good PR to drive funding (let's just assume they can make the finances work via getting governments to pay for it or something). It will technically work, but it will only deorbit pieces that would naturally decay anyways at a meaninglessly low-volume. But the PR will be good and regulatory capture will ensure their investors get paid. The real problem will remain.2) Go after the really big pieces in higher orbits. These pieces tend to be well-tracked and aren't really a large problem, but all the same outcomes in option 1 will occur. Investors will get paid, and of course, the real problem won't be solved.Maybe I'm being pessimistic, but I see space-junk removal companies largely relying on the general public's lack of knowledge on how orbits work to drive PR. Maybe Kerbal Space Program 2 will go viral enough to fix that problem? We can only hope"

Preview of 'Stripe banned us for payment disputes but we never had a single dispute'

Stripe banned us for payment disputes but we never had a single dispute

"(Stripe cofounder.)Ugh, apologies. Something very clearly went wrong here and we’re already investigating.Zooming out, a few broader comments:* Unlike most services, Stripe can easily lose very large amounts of money on individual accounts, and thousands of people try to do so every day. We are de facto running a big bug bounty/incentive program for evading our fraudulent user detection systems.* Errors like these happen, which we hate, and we take every single false rejection that we discover seriously, knowing that there’s another founder at the other end of the line. We try to make it easy to get in touch with the humans at Stripe, me included, to maximize the number that we discover and the speed with which we get to remedy them.* When these mistaken rejections happen, it’s usually because the business (inadvertently) clusters strongly with behavior that fraudulent users tend to engage in. Seeking to cloak spending and using virtual cards to mask activity is a common fraudulent pattern. Of course, there are very legitimate reasons to want to do this too (as this case demonstrates).* We actually have an ongoing project to reduce the occurrence of these mistaken rejections by 90% by the end of this year. I think we’ll succeed at it. (They’re already down 50% since earlier this year.)"

"Edwin from Stripe here. (OP, I've just sent you an email and we can talk more over there—I'm terribly sorry for the trouble.) I can't get into too many specifics about an individual business publicly, but unauthorized charges have high potential to be disputed in the near future—and while Stripe itself doesn't have a dispute threshold, the card networks require businesses to keep disputes low.Although that email in the post was admittedly a template, a human did review the transaction activity and actively sent the email. We're digging more into exactly what happened here to prevent the confusion from happening again. Over the past few weeks, we've been overhauling how we work with businesses in situations like these and are rolling out some meaningful improvements soon."

"I went through the same thing. Some ML algorithm at Stripe randomly classified my business (bog standard WooCommerce/WordPress e-Commerce store selling a single product in low volumes) as a risk and I found that the process for escalating it was Kafkaesque and slow.Switched to Pin Payments[1] shortly after that experience and have never looked back. Of course, we live in the 2021 century and algorithms will flag issues automatically (I ported my phone number and changed my bank account on the same day, which was fun!), but they've always made sure to contact me and resolve the issue within minutes instead of cutting access. The few times I've contacted them, a competent person has both understood the issue and responded to it appropriately and promptly.[1]https://pinpayments.com/"

Preview of 'Norm Macdonald has died'

Norm Macdonald has died

"I'm gutted on hearing this. I’ve been on one of my regular Norm YouTube binges, and was watching a ton of them just last night. His dedication to comedy was legendary, and his complexity was intriguing.Norm’s fake late gift to Conan for The Tonight Show, given after Conan was leaving, is a great example of his sort of expectation-bending humor.https://youtu.be/uarJj-K4XH4His appearances on The View are legendary examples of his ability to be uncontrolled and play the dumbest guy in the room at the same time while actually being the sharpest. His intentional subversion played off as uninformed is a seemingly one of a kind talent. There are videos of interviews where he describes some of the background to things he did on the show.https://youtu.be/a4ageUPHgnohttps://youtu.be/Z3PP_SWHUQQ“Not everything has a point” just gets me. It’s amazing how the hosts just want to jump from talking point to talking point and just refuse to let the guest actually talk, which Norm really plays off of.And lastly, the moth joke remains a shining example of his anti-jokes.https://youtu.be/jJN9mBRX3uoHis monologues at roasts, awards shows, and the correspondents dinner were examples of not being afraid of anything."

""If you die, the cancer also dies at exactly the same time. That to me isn't losing a battle, it is a draw."He was one of the funniest people ever and there is probably no one who was a more entertaining talk show guest. I can spend hours just watching whatever comes up after plugging "Norm Macdonald talk show" into Youtube."

"I literally gasped when I heard this. There is something uniquely sad when one's favorite comedian passes away.There were many things that made him special, but one thing stands out right now:I don't think I've ever seen a comedian pursue Truth so rigorously. So much of his comedy was him shining a light on a given topic and giving 100% unflinching attention toward it, even if everyone else wanted to ignore it or "move on". This often made the "joke" the audience, in that we found ourselves laughing when we thought we shouldn't be. But why shouldn't we be laughing? Why shouldn't we be discussing this? Wait, why is this uncomfortable in the first place? Have I thought about this enough?"

Preview of 'How percentile approximation works and why it's more useful than averages'

How percentile approximation works and why it's more useful than averages

"Awhile ago I wrote a Python library called LiveStats[1] that computed any percentile for any amount of data using a fixed amount of memory per percentile. It uses an algorithm I found in an old paper[2] called P^2. It uses a polynomial to find good approximations.The reason I made this was an old Amazon interview question. The question was basically, "Find the median of a huge data set without sorting it," and the "correct" answer was to have a fixed size sorted buffer and randomly evict items from it and then use the median of the buffer. However, a candidate I was interviewing had a really brilliant insight: if we estimate the median and move it a small amount for each new data point, it would be pretty close. I ended up doing some research on this and found P^2, which is a more sophisticated version of that insight.[1]: https://github.com/cxxr/LiveStats[2]: https://www.cs.wustl.edu/~jain/papers/ftp/psqr.pdf"

"One way to think about why we tend to use averages instead of medians is that it is related to a really deep theorem in probability: The Central Limit Theorem.But I think we can twist our heads and see in a way that this is backwards. Mathematically, the mean is much easier to work with because it is linear and we can do algebra with it. That's how we got the Central Limit Theorem. Percentiles and the median, except for symmetric distributions, are not as easy to work with. They involve solving for the inverse of the cumulative function.But in many ways, the median and percentiles are a more relevant and intuitive number to think about. Especially in contexts where linearity is inappropriate!"

"For some things, you can't even sensibly measure the mean. For example, if you're measuring the mean response time for a service, a single failure/timeout makes the mean response time infinite (because 100 years from now the response still hasn't been received)."Why Averages Suck and Percentiles are Great": https://www.dynatrace.com/news/blog/why-averages-suck-and-pe..."

Preview of 'Bespoke Synth 1.0 – open-source software modular synthesizer'

Bespoke Synth 1.0 – open-source software modular synthesizer

"Bought it based on the feature matrix, which is worth $15 for honesty\comedic value alone. Probably no time actually to use it"

"I'm a software developer right now but I've worked with DAWs as a producer for more than 5 years. You can't even imagine how frustrating is working with Digital Audio Workstation. One messy plug-in and you can lose hours and hours of work. Preset management is a nightmare, there are so many things that they could do to go forward, but the Sequencer market is stall and hasn't moved in years.Imagine if they applied something similar to a git versioning system to music projects.... I don't even know if the VST interface can be used or if it's licensed somehow from Steinberg.Also consider that there are no good audio drivers for Linux (like Asio for example) so you're almost forced to stay in windows or Mac...No plug-in or DAW has a CLI... I could go on for hours...I'm doing some digital audio processing for a startup idea and the only thing I've came up with is using sox trough a Python API."

"damn, the audio wave visualization on the wires in the thing that's like the Bitwig grid editor is just BRILLIANT.probably would be a bit much in a complex finished instrument but that's amazingly intuitive for the building phase, or for reading someone else's instrument.i wish there a way to translate old Reaktor library stuff into more modern synth GUIs. there's some amazing gold in there but it is nigh impossible to understand between Reaktor's uh... challenging UI and the total lack of documentation for the signal paths to try and explain them to a relative novice. you can very easily see _what's_ built, but god help you try to understand why on your own without adding a ton of scopes everywhere manually"

Preview of 'Social media influencer/model created from AI lands 100 sponsorships'

Social media influencer/model created from AI lands 100 sponsorships

"I love to see the cultural differences between korea/japan and the West on the matter of artificial stuff. Whereas in the West people would try to hide fakeness as much as possible, people in the far East have a much more candid view of it.In the West we do understand and like artificiality, but we really want to contain it to the realm of fiction. When some artificiality spills out in the “real” world we raise red flags: “tssk, this temple is not authentic, it burned down 80 years ago and they rebuilt it from scratch”In the East, there is a deep philosophical difference that I would like to understand better - if anyone can point to any reference on that matter? It’s like people have understood that fiction and artificiality are part of our lives, cause people embellish things all the time, and we humans are happy when we believe in things. So instead of being suspicious, they let themselves invaded by artificiality, not unlike the way Western people create emotional connection with novel characters, but in real world situations.And I mean why not? In the West, we get cartoon character-based advertising, we get actor-based advertising. How is AI-based influencer (that doesn’t hide the fact that it’s artificial) is any different? If Tony the Kellogg’s tiger had an instagram account, we’d find it totally normal. Here is the same, except that we just jumped over the uncanny valley.There is a lot to talk about on the subject and doesn’t fit in a hn comment :-)"

"Anyone with more knowledge know how much of this is BS?She has 60k followers on Instagram which (even if all real) isn't that much. Certainly not anywhere big enough to make 800k a year that the creator claims he plans on making.They say they have 100 sponsorships but this seems like a marketing statement...influencers all the time talk about how popular they are and I don't see why we should trust the creator of AI influencer more.I don't see any major brands on her Instagram though I'm not South Korean so maybe I'm missing something - but more likely explanation seems to be that he has partnered with a few companies for a pittance and is overhyping his creation to get more money in."

"AI seems to be used as a buzzword here, I think this is just a (well-done) 3d model, seeing that they're created by an art studio: http://locusanimation.com/"

Preview of 'Why doesn’t natural immunity count in the US?'

Why doesn’t natural immunity count in the US?

"https://archive.is/2Jden"

"Because it's a terrible policy prescription. If natural immunity is acceptable, what proportion of the unvaccinated-uninfected population will just take the risk? Half? More?Millions of people will just (continue to) take the risk, get sick, go to hospital, and die (in decreasing proportions), incurring substantial personal and social costs along the way.Accepting only vaccination as evidence of protection reduces the size of that risk-taking population, and the concomitant social costs.Should there be a third policy option - accepting test-verified infection and recovery as of _now_ as evidence of protection, but discounting future recoveries? Based on the observational studies cited all over this thread , probably yes. Seems like associated costs would be higher though, and the only benefit would be less gnashing of teeth here and elsewhere, so its understandable the CDC isn't rushing to implement it.Should those people just be allowed to assume the risk? Not while the costs are predominantly social. Insurance (or tax-payers) pay the financial costs, healthcare workers bear the burden of treating a preventable illness, and we all assume the risk that healthcare resources will be stretched to the point of unavailability. While risk-takers do pay into the same system, their premiums don't yet reflect the increased expected costs of their personal choice. While ICUs often run close to or at capacity in one hospital, rarely do they run close at every hospital in a region, as is happening in the south and will happen elsewhere. While it would be nice if there were more doctors, nurses and facilities able to treat patients, we're at war with the army we've got."

"The answer is pretty simple - the moment authorities start saying "well, natural immunity is probably just as good as vaccination, we'll accept that as equal to vaccination for passport purposes", a huge segment of the population who's on the fence about getting the vaccine might just opt to wait until they're infected naturally, or, even worse, get infected purposefully (EG, chicken pox parties). Which leads to more deaths and outbreaks.In a perfect world, everyone would understand that getting the vaccine is the appropriate choice of action and we could accept natural immunity from people who were infected before vaccines were available - but unfortunately we're forced into playing these weird games where authorities have to try to incentivize people who aren't behaving rationally - which in turn leads to further distrust from people on the fence."

Preview of 'Intel is reducing server chip pricing in attempt to stem the AMD tide'

Intel is reducing server chip pricing in attempt to stem the AMD tide

"It's amazing how far Intel has fallen.The 10nm debacle exposed how far they've fallen behind on fabs to the point that they're outsourcing to TSMC. Like, how humiliating must that be?Intel completely missed the mobile revolution. They had a stake in that race but sold it (ie XScale).Intel's product segmentation is bewildering. They've also kept features "enterprise" only to prop up high server chip prices to the detriment to computing as a whole, most notably ECC support.And on the server front, which I'm sure is what's keeping them in business now, they face an existential threat in the form of ARM.Intel had clearly shifted to a strategy of extracting as much money as possible from their captive market. I'm not sure price cuts here are necessarily about AMD but more than their previously captive market now has more options in general.How the mighty have fallen."

"Have been with Intel for almost two decades, I finally moved to AMD for the very first time recently and I'm glad I did. Intel is being called "Toothpaste Company" for a reason. It has deliberately slowed down its innovation since gained performance advantage over AMD with CORE, for over a decade now. Between each iteration, there was not many changes but kept adding fancy instruction sets such as AVX512 useless to most if not all ordinary users. It's a shame that I bought it actually. But over time I gradually realized that the only occasions I used those fancy stuffs were benching marking new systems. So those fancy things mean nothing to me other than showing off to friends."

"Intel is NOT competing against AMD only. In the past couple of years, we’ve seen a number of big tech companies developing their own chips. Focusing on AMD would be quite myopic from a strategic pov. This market is only getting more competitive. Either you compete on performance or price."

Preview of 'Firefox Browser: best for a free web'

Firefox Browser: best for a free web

"It makes me sad that FF browser share has continued to decline steadily. The past couple years of releases have been some its the best in terms of my own UX, since perhaps the Phoenix era.It's pretty fast these days, the UI is good, has a lot of great extensions and privacy features.I use Brave at work to have a better chrome-based experience with gsuite. It's also a fast, excellent browser with good privacy features, built-in ad/tracker blocking and for the time being seems to be user-not-revenue-first.But using a non-free browser feels like a trap to me. Just as what happened with Internet Explorer, Chrome, and Netscape before, being the middle man between the user and the rest of the internet is just too tempting for any company not to try to leverage for their own advantage.FF hasn't been always perfect, but for 20 years now they have made a browser that didn't have a shady corporate agenda. It feels like the writing is on the wall though. Even people I know who care about FLOSS are using Chrome as their daily driver these days.Mozilla is great and I hope they continue to focus on building a best-in-class browser."

"I'd like to mention (once again), that Firefox on Android is a huge leap in everyday browsing experience over Chrome - and you should try it if you haven't. Due to mainly one reason: ad blocker extensions; which aren't supported on Chrome.Since that's where most users are, I hope Mozilla will be able to communicate these advantages better. Chrome is arguably better on the desktop for most users, unless they're in the tiny subset of users who care about privacy."

"The fact alone that FF is the best-optimized browser for uBlock Origin makes it an easy choice for me.It's interesting to me that many of my favorite/most used web technologies in the past decade or so have come from individual, non-profit developers just trying to make something useful, free and flying in the face of a lot of legal and industry norms (e.g., gorhill, elbakyan). In my experience, these tend to work best on FF + VPN, or on Tor (built from FF)."

14 September 2021
Preview of 'I refuse to let Amazon define Rust'

I refuse to let Amazon define Rust

"I think Steve has a well earned reputation for being decent and trustworthy.I can understand the desire here for more details so that others can come to a firmer conclusion but try to put yourself in Steve's shoes. It is very hard to publicly criticize some of the behavior of a group you are a member of without burning bridges or deeply harming relationships. At the same time, saying nothing publicly is read as tacit approval.I interpret the article as a giving Amazon credit for why people like Rust, and Steve's response as a public disagreement saying that such credit is unwarranted and gives Amazon more power than it should have over Rust's future direction."

"The facts are pretty thin here, but this seems to be the core tweet: https://twitter.com/steveklabnik/status/1437441118745071617To summarize:* Amazon has too much administrative influence* Amazon has marginalized the core team* also un-stated dirty tricks by AmazonI think rust is great, and I love with the rust community has accomplished, and I wouldn't want to see Amazon break that. But from this thread I don't know enough to raise objections. It sounds like a Rust foundation governance issue, the sort of thing that comes up from time-to-time on most big successful projects.[edited to fix formatting]"

"Is there more context here that's missing from the tweet thread?> And now they want to actually take Amazon's principles and claim that they're Rust's.These just... literally... aren't Amazon's principles. At all. "The practice of coming up with pithy statements to guide decision-making" is the Amazon part.> they've also taken steps to marginalize the core team. and some other dirty shit I won't say rn.This sounds like the real concern, and it sounds really concerning, and I hope people come out to speak publicly and candidly about it. But it doesn't seem sensible to pretend that the making a list of adjectives is itself malign."

Preview of 'Facebook has exempted high-profile users from some or all of its rules'

Facebook has exempted high-profile users from some or all of its rules

"https://archive.is/K5yv5"

"Huh, never thought I’d see XCheck in a news article. I used to work at Facebook and spotted abuse of this system by bad actors and partly fixed it. It’s still not perfect but it’s better than it used to be.I think I might have agreed with the author of this article before working in Integrity for a few years. But with time I learned that any system that’s meant to work for millions of users will have some edge cases that need to be papered over. Especially when it’s not a system owned and operated by a handful of people. Here’s an example - as far as I know it’s not possible for Mark Zuckerberg to log in to Facebook on a new device. The system that prevents malicious log in attempts sees so many attempts on his account that it disallows any attempt now. There’s no plans to fix it for him specifically because it works reasonably well for hundreds of millions of other users whose accounts are safeguarded from being compromised. His inconvenience is an edge case.With XCheck specifically what would happen is that some team working closely on a specific problem in integrity might find a sub population of users being wrongly persecuted by systems built by other teams located in other time zones. They would use XCheck as a means to prevent these users from being penalised by the other systems. It worked reasonably well, but there’s always room for improvement.I can confirm some of what the article says though. The process for adding shields wasn’t policed internally very well in the past. Like I mentioned, this was being exploited by abusive accounts - if an account was able to verify its identity it would get a “Shielded-ID-Verified” tag applied to it. ID verification was considered to be a strong signal of authenticity. So teams that weren’t related to applying the tag would see the tag and assume the account was authentic. And as I investigated this more I realised no one really “owned” the tag or policed who could apply it and under what circumstances. I closed this particular loop hole.In later years the XCheck system started being actively maintained by a dedicated team that cared. They looked into problems like these and made it better."

"Strong opsec that the supporting documents are actual photos of a computer screen from the visible moire (or somehow altered to look that way).After numerous leaks, Facebook's internal security team became very good at identifying leakers. The person responsible for this 2016 post was identified within hours and terminated the next day: https://www.buzzfeednews.com/article/blakemontgomery/mark-zu.... The leaker was easily identified by the names of friends liking the post (that and part of their name was visible).Facebook-issued laptops are filled with spyware, monitoring everything down to the system call level, and practically every access to internal systems is logged at a fine level. The only way to exfiltrate data with plausible deniability would be to photograph the screen with an individually owned device. The fact that you searched for the internal wiki page and viewed it are nothing, but that you shortly invoked the keyboard shortcut for a screen capture, then inserted a USB drive, and copied a file ("Screen shot ____.png" even!) to it (all logged) ... congratulations, you're caught."

Preview of 'Mozilla has defeated Microsoft’s default browser protections in Windows'

Mozilla has defeated Microsoft’s default browser protections in Windows

"The new Windows 11 defaults manager is amazingly user hostile. [1] Microsoft decided it's a great idea to make non technical users manually adjust 15 different file and protocol associations in order to change the default browser.Microsoft's statement on this: we are implementing customer feedback to customize and control defaults at a more granular level, eliminating app categories and elevating all apps to the forefront of the defaults experience.More granular control is nice and all, but I don't buy for a second that it couldn't be behind some "advanced" button. I think the most probable explanation for removing the app categories is a calculated move to steer people towards Microsoft products which have access to backdoor internal functions to change all of these automatically.I do remember how bad things were back in Windows XP days when every random toolbar would change all the associations. I don't wish for that experience to come back for non technical users either. Microsoft could perhaps look into allowing digitally signed apps to change the associations automatically (a single summarizing OS confirmation prompt might be wise), and non-signed apps would have to instruct users to manually change things.--[1] https://www.theverge.com/22630319/microsoft-windows-11-defau..."

"The amount of dark design patterns around getting edge as the default browser is sickening. Opera was flagged as PUA by many AVs for simply changing the default browser after asking users post-install if they wanted to use that browser as their default - just as edge does (and before Firefox copied that same mechanism here). Now every post-windows update screen (which takes place before you even log in...) comes with a full-page nag screen asking you to "Use Microsoft recommended browser settings" [1]... This is on the heels of a screen that says "Let's make Windows even better - this shouldn't affect what you've already set up" [2]. Even more disappointing is not that they're doing this but that nobody is taking these platforms to court over it in a meaningful way.[1] https://www.windowslatest.com/2020/11/15/windows-10-is-now-n...[2] https://www.windowslatest.com/2020/06/07/windows-10-full-scr..."

"As I was reading this article I kept thinking to myself "Microsoft is going to boot Firefox from Windows" before realizing that MS doesn't have that sort of power (compared to say Apple).It's really interesting how MS will approach this. Unlike Apple, MS doesn't have direct control over which apps go on the operating system, they aren't even in a position like Google where their app store is the dominant platform for getting apps.This will be interesting, interesting to see how MS responds. Will they give in and let users easily set their default browser or will this turn into a cat and mouse game.Lastly I think what MS is doing with the default browser is foolish. Did they learn nothing from the antitrust cases of the 2000's"

Preview of 'NSO Group iMessage Zero-Click Exploit Captured in the Wild'

NSO Group iMessage Zero-Click Exploit Captured in the Wild

"I always wonder what it takes to find this kind of exploit. Are the programmers at NSO group just the best in the world? Or are they incredibly lucky? Both? I’d love to know what a normal day at work is like for their engineers. Clock in, sit down at a…crazy expensive hardware and software testing station? Crack open a brand new iPhone and start probing away while referencing internet sourced chip documentation and software manuals? What does it even look like?"

"I recently learned of this group through the Dark Net Diaries podcast. The host does a pretty good job of covering the NSO group in episode 99 and 100.https://darknetdiaries.com/episode/"

"It is increasingly bizarre in my opinion how this company (and others like Toka) can run active terrorist operations, that if anyone else smaller was doing some of the same hacks they would be in prison for a very long time.People have lost their lives due to these pariahs!Israel already has a massive PR issue with other countries, it would do them well to reign in these offensive front arms of their government/'companies.'Citizen Labs is really a great thing for civilization. There are not enough altruistic organizations."

Preview of 'Epiousios'

Epiousios

"In modern Greek it's not a word we use a lot, but we do have a phrase where it's used exclusively and that is:"He fights to earn the epiousios"In that context epiousios means the bread of each day and by extension the absolutely necessary (commodities) for human living.https://www.greek-language.gr/greekLang/modern_greek/tools/l...https://ikypros.com/53875/%CE%B7-%CE%B6%CF%89%CE%B7-%CE%BC%C..."

"As a Greek myself I never really thought much about this word. Yes, it is not common but I thought I understood this. After reading the linked article I am not so sure anymore and I am not really sure how I would translate it.I cannot translate it to English in a single word but the way I understand it would be "what is needed, no more, no less" (which is also mentioned in the article).I found two greek sources that seem to agree with me [1], [2]. Especially in the first it gives also as synonym the word "daily". However it also mentions that in the biblical context although it is widespread understood as "necessary" the correct interpretation (of the whole phrase) is rather "give us today the bread of tomorrow".So, as a conclusion, I guess even as a Greek I am as much confused as all these scholars that try to translate it![1] https://el.wiktionary.org/wiki/%CE%B5%CF%80%CE%B9%CE%BF%CF%8... [2] https://www.greek-language.gr/greekLang/modern_greek/tools/l..."

"In Persian we have an old word which is even used today called “Roozi”. It is a combination of “Rooz” + “i”. The main part translates to “day” and this word refers to what you need to live for a day. It’s also used in prayers which asks God to provide us with what we need to live for the day.This word instantly reminded me of that but I don’t know if they are conceptually related or not."

Preview of 'Intuit to Acquire Mailchimp for $12B'

Intuit to Acquire Mailchimp for $12B

"This kinda feels like one of those acquisitions where all the special sauce that makes the acquired company a great company is the exact opposite in the acquiring company.That is, from all I've heard, Mailchimp is a great company to work at, and the founders definitely had the "scrappyness" that let them become so successful without VC funding, and their customers really like them too.Intuit, on the other hand, is basically the poster child for "regulatory capture" company. Also, since employees don't have equity (though I'm assuming they'll get fat bonuses for this), it's bound to cause some level of strife in the company."

"Here are some numbers I dug up:Mailchimp has ~13MM users and 800k paying customers. In 2019 they had revenues of $700MM. In 2020 they had EBITDA of ~$300MM.They are fully bootstrapped and have taken on zero outside funding."

"@&$#But can't fault them. Congrats to the entire mailchimp team! You all deserve all the rewards, especially for bootstrapping.Hope everyone there made out like bandits, and may this give them the financial freedom to pursue new passions in their lives.For those curious about the founding story, How I Built This did a podcast with Ben Chestnut (released July 12, 2021): https://www.npr.org/2021/07/09/1014699766/mailchimp-ben-ches...Small tidbit: mailchimp was a major pivot into SaaS (before that was a phrase) from another already successful services business (building websites). The team realized scaling a software product was a better idea than selling their time."

Preview of 'OpenRA: Red Alert, Command and Conquer, Dune 2000, Rebuilt for the Modern Era'

OpenRA: Red Alert, Command and Conquer, Dune 2000, Rebuilt for the Modern Era

"One thing i remember best about the original C&C is a gorgeous installer [1]! Being one of the first games that came on CD, I thought it is the standard of the things to come.Unfortunately, the future disappointed: every other game came with a boring windows installer.[1]: https://youtu.be/cioyLQ2O6yc"

"Something to note about the 90s-era is that the "death ball" of cheap units was *aggressively* mitigated in almost all strategy games.* Civilization 1, 2, and 3 had "stacks", but if you kill one unit in the stack, you kill ALL units in the stack. As such, "death balls" were incredibly fragile, one well placed attack kills the whole stack.* Command and Conquer has infantry, which get rolled over and instant-killed by tanks. The overall "death ball" of tanks can eventually reach endgame proportions of death, but the cheapest units are fully ineffective at death-balling.* Starcraft had a 12-unit selection cap. It required a lot of clicks (on purpose) to create a death ball, so only the highest levels of players (with high APM) could attack-move with a whole army effectively."

"OpenRA is currently my favourite free/libre computer game. They've done a fabulous job at keeping the feeling of the original game while updating things like cross-platform support, screen resolution and network play and added build queues (and waypoints, I believe) that was present in later C&C games. They've also tweaked the game play, making thieves able to hijack vehicles and cloak (They are probably the most fun unit to micro around) and radar jammers able to deflect / confuse missiles, and added per-country special units like in RA2 (The French invisible phase transport is wild), and changed the tech tree so medium / heavy tanks require service depot.I remember in the original Red Alert, if you ordered an airplane to fly into the shroud, it'd just disappear into the darkness, but in OpenRA you can actually use them for scouting (which totally makes sense). OpenRA also has fog-of-war which suddenly makes planes and helicopters key units for ground support.I don't like war. The arms trade should be abolished. We should help refugees get safe passage and eliminate borders rather than build walls or drop bombs on them. Anyone working with defense in any capacity, like militarizing borders with drones or whatever, should immediately quit or turn whistle blower. Still, I find this war game incredibly enjoyable. Applause to the hackers."

Preview of 'YouTube takes down the Ig Nobel show because of a 1914 recording'

YouTube takes down the Ig Nobel show because of a 1914 recording

"This mentions something that has always irked me, YouTube trying to be informative about who the music is licensed by. For one, it's completely useless on classical piano music because the Content ID algo finds similarity in a dozen different recordings. But even when there is one canonical recording, such as Rick Astley's Never Gonna Give You Up, I'm informed that the music is licensed by:(on behalf of Sony BMG Music UK); UMPI, Kobalt Music Publishing, LatinAutor, Warner Chappell, BMI - Broadcast Music Inc., UNIAO BRASILEIRA DE EDITORAS DE MUSICA - UBEM, LatinAutor - UMPG, SOLAR Music Rights Management, AMRA, UMPG Publishing, CMRRA, LatinAutorPerf, LatinAutor - Warner Chappell, and 15 Music Rights SocietiesWhat is happening here? Does YouTube have legal arrangements with all of these bodies to make sure they get their penny per kiloview?"

"Presumably this will encourage the creator of the 1914 work to create new works."

"> Here’s what triggered this: The ceremony includes bits of a recording (of tenor John McCormack singing “Funiculi, Funicula”) made in the year 1914. The Corporate Takedown> YouTube’s takedown algorithm claims that the following corporations all own the copyright to that audio recording that was MADE IN THE YEAR 1914: “SME, INgrooves (on behalf of Emerald); Wise Music Group, BMG Rights Management (US), LLC, UMPG Publishing, PEDL, Kobalt Music Publishing, Warner Chappell, Sony ATV Publishing, and 1 Music Rights Societies”So what's going on here? Did some record company reissue the song later on CD, so YouTube is treating it like it was released at a later date than it was?https://en.wikipedia.org/wiki/Public_domain_in_the_United_St...:> All works first published or released before January 1, 1926, have lost their copyright protection, effective January 1, 2021.Google probably should compile a list of public domain recordings to act as a blacklist for YouTube copyright claims. Maybe that should even be legal a requirement for such automatic enforcement systems. If they partner with some library or national archive, such a project could help with media preservation efforts."

Preview of 'Uber must employ its drivers, Dutch court rules'

Uber must employ its drivers, Dutch court rules

"Rightly so. The 'gig economy' is abused by quite a few companies to create employment like situations without the required trappings (social security payments, employee protection, hourly minimums and so on). This was long overdue, let's hope it has precedent effect for other companies that abuse the ZZP construct."

"If this ever happens in the U.S. I won't bother with driving Uber anymore and this would probably put them out of business. The Taxi industry will win back from the disruption that Uber caused.This has nothing to do with worker's rights. No one gave a crap about Taxi driver's work standards and they are/were treated worse than Uber drivers.This is all about the Taxi industry fighting back.75% of all ride share drivers would prefer to remain independent.In Chicago, I can make $42/hour driving Uber. I still don't understand how anyone can claim I'm being mistreated."

"Unfortunate consequence of a legacy legal system. Uber drivers are clearly neither quite like employees nor are they entrepreneurs, and the law should come up with a fitting category that ensures they are protected from exploitation but continue to enjoy some of the freedoms associated with the gig economy."

Preview of 'France grants citizenship to 12,000 Covid frontline workers'

France grants citizenship to 12,000 Covid frontline workers

"Smart action by the French government. France is not necessarily the most attractive country for medical workers and doctors in terms of income so being grateful for their support and giving them the citizenship is a smart thing to do when France needs more people doing those job."

"It's similar to an existing law that recognize citizenship through spilled blood (Français par le sang versé) [0].Basically, if you were injured in a battle fighting for France, you get expedited citizenship.Interesting idea to extent it to frontline workers who risked their health during the pandemic.[0] https://en.wikipedia.org/wiki/French_Foreign_Legion#Composit..."

"That's great news!It seems strange to me that more countries don't offer citizenship programmes like this."

13 September 2021
Preview of 'Starbucks and TrustArc add fake cookie processing delay if you don't click agree'

Starbucks and TrustArc add fake cookie processing delay if you don't click agree

"I see the TrustArc in use at quite a lot of sites - the fake delay, and the whole UX in general, is intensely irritating, and it just feels like the darkest of dark patterns. Really gives me a bad feeling about sites that use it."

"IME this isn't unique to Starbucks, every single site that uses TrustArc does this.Thankfully, I haven't had to deal with any of these stupid pop-ups since installing the 'I don't care about cookies' add-on. [1]Related question: Does anyone have experience using 'Stardust Cookie Cutter'? [2] Is it better than 'I don't care about cookies' or does it do the same thing?[1] https://www.i-dont-care-about-cookies.eu/[2] https://get.stardust.today/"

"I seem to recall a relation between loading time and visitor retention? A quick search gives dozens of statements along the lines of..A 1 second delay in page response can result in a 7% reduction in conversions. [1]47% of consumers expect a web page to load in 2 seconds or less. [2]40% of people abandon a website that takes more than 3 seconds to load. [3]...etcEither those cookies make up for the lost business, these statements only hold for the initial page load or these statements are factually incorrect. I suspect the statements only hold for the initial page load, that spinner and the slowly but surely updating fake counter holds visitors enthralled for the final outcome.Anyway, the path is clear: close that Starbucks tab after ~2 seconds of faked cookie setting time and get your caffeine kick elsewhere.[1,2,3] just search for it - most results are commercial entities trying to sell some "marketing" or "website enhancement" service which I do not feel like boosting by linking to them. Much of the original research seems to come from Google and can be found in a report titled “The Need for Mobile Speed"."

Preview of 'Leaded gas was a known poison the day it was invented (2016)'

Leaded gas was a known poison the day it was invented (2016)

"I guess we live on the shoulders of nastiness and things get better. So TEL was part of our boot sequence. What nastiness are we subjecting ourselves to today?BTW: The guy that invented TEL also invented CFCs! See Thomas Midgley Jr: https://en.wikipedia.org/wiki/Thomas_Midgley_Jr.This guy who invents awesome working chemicals that are tragically bad for people on a worldwide scale manages to exit life dues to his own inventions, unrelated to chemistry... Kind of Ironic! Thomas Midgley, Jr. (1889–1944) was an American engineer and chemist who contracted polio at age 51, leaving him severely disabled. He devised an elaborate system of ropes and pulleys to help others lift him from bed. He became accidentally entangled in the ropes and died of strangulation at the age of 55. However, he is better known for two of his other inventions: the tetraethyl lead (TEL) additive to gasoline, and chlorofluorocarbons (CFCs)."

"I've got a sneaking suspicion we ought to go through everything else Thomas MIdgley Jr. invented and ban it, just to be sure. Leaded gas, CFCs, and the contraption he killed himself with is a worrying pattern.https://en.wikipedia.org/wiki/Thomas_Midgley_Jr. https://en.wikipedia.org/wiki/Thomas_Midgley_Jr."

"I have a very distinct memory of disembarking from the Budapest to Belgrade night train to the smells of leaded fuel in Belgrade.Budapest was no standard of cleanliness at the time (late 90s), however Belgrade was truly still in its post-war phase and had all of the energy, anger and edge of a place that had been pretty beaten up.We were robbed, given a pistol in a nightclub (still have no idea what was going on there, I just remember being really surprised that pistols came in styrofoam and shrink-wrap packages when they are new... Being from Canada I had never even seen a pistol before), were surrounded by really beautiful people who we thought wanted something from us but who were only generous and kind, and .... the smell.The smell of that leaded fuel was everywhere. It smelled sweet and was so unique. It's what has stuck with me 20+ years later.One other side note from that trip. We were in the countryside (mean to be meeting a friend from home in his ancestral/family village but took the wrong bus) and someone in the village directed us in to a pub that was basically an old barn. Inside there were many middle eastern guys and a mix of Serbian and english speaking people. I was given a pin by one of the middle eastern guys after I threw an excellent game of darts on the dartboard next to him.Years later I had a job for a defense contractor and the subject of that trip and the pin came up. I showed him a picture of it and he recognized it instantly: al-Aqsa Martyrs' Brigades. I looked it up and so it was.We were put up with a local elderly woman who served us some type of soup in the morning and then someone gave us a ride out of town to a bus stop that had service that day. We waited only an hour until the first car came along, reeking of leaded fuel."

Preview of 'PipeWire: A server for Linux audio and video streams'

PipeWire: A server for Linux audio and video streams

"PipeWire is how audio should be on Linux, and it's ready to use. No more complications between PulseAudio, ALSA, and JACK. PipeWire implements all 3 of these interfaces, which means you can use applications that depend on any or all of these interfaces simultaneously with no conflicts. Playing a video in Firefox and a track in a digital audio workstation at the same time works with no special configuration. PipeWire makes audio on Linux as easy as it is on other OSes.The Arch Wiki page describes some of the use cases for PipeWire: https://wiki.archlinux.org/title/PipeWire"

"For the last ~12 years, I gave PulseAudio a try every time I upgraded the Fedora distro on my main computers. I almost never had the catastrophic bugs many people complained about. But pulseaudio has always taken 10-15% of one CPU when in use (be it on audio/video calls, or music/movie playback). This is across 3 different laptops and 2 desktops. It is not a huge deal, but it is a bit frustrating on laptops where battery life is precious. I understand that PulseAudio is very powerful, but it represented no practical gain for me personally, with my very simple use cases, so I simply disabled it.Weirdly, I found very few people complaining about PulseAudio's CPU usage. Maybe nobody cares about 10-15% of one core.However, I am happy to report that PipeWire seems to not have this problem at all. Since it became default on Fedora, it has barely shown on top's first page. Given that it is even more ambitious than PulseAudio in terms of latency, this is incredibly impressive!"

"Wanted to try debian 11 last weekend. First time I installed it from debootstrap. I plugged in a 1TB SSD on an USB 2.0 to SATA case, formatted it, prepared the root filesystem with debootstrap, chrooted to it, installed a bunch of packages, setup locale and timezone, installed linux-image, grub and booted it. Worked flawlessly.Tried a "ps|aux" and discovered it is already running wayland and pipewire. Works so well it is boring. Nice!"

Preview of 'New alternatives to HSL and HSV that better match color perception'

New alternatives to HSL and HSV that better match color perception

"Good related reading: https://raphlinus.github.io/color/2021/01/18/oklab-critique...., with some analysis of various colour spaces of different types, focusing especially on their behaviour in gradients, to do with interpolation.My biggest complaint about perceptual colour spaces has been that they make working with colours near gamut boundaries really hard. For example, with #ff0 (yellow) in LCH, you can’t tweak any of the three parameters in either direction without going out of gamut (play with it at https://css.land/lch/ to get a vague idea of what I mean, though it doesn’t handle going out of gamut well). Yet such colours have plenty of practical value, and it’s a shame that many things eschew them because they’ve drunk too much perceptual uniformity kool-aid. Colour palettes often just don’t have any decent yellows at all. (To be sure, you do need to use such colours with care, but to remove them altogether is distressing.) For colour pickers especially, perceptual colour spaces have just been no good, because of their weird shapes and because you’re more likely to want to pick interesting colours nearer gamut bounds.So I’m really glad to see this, because it’s just what I’ve been grumbling about the absence of. Thank you Björn, I continue to enjoy your work!"

"I think the real story is subjective, not quantitative. Color pickers:https://bottosson.github.io/misc/colorpicker/OKHSL works a lot better than the alternatives. It's really nice!OKHSV doesn't seem as good, and neither do the other new ones."

"My personal complaint with color pickers is that they make it hard to find many normal environmental colors. Where is brown? I've learned to find it around red, a little toward orange, and a dark saturation. It's not intuitive, and I don't feel like I just pick _some_ brown because I can't easily explore the space of browns through beige and tan. Flesh tones are similarly difficult.I'm not sure what the solution is. A purely algorithmic color picker probably isn't the answer because it's not just our color perception that matters, but also the way colors are formed in our environment (which is what gives us so many browns)."

Preview of 'Social Networks: It's worse than you think (2020)'

Social Networks: It's worse than you think (2020)

"Related to this, there is an intimacy of small community which makes you feel valued and a proper contributor, that social networks really seem to oppose: they want to make the network bigger, you are part of the biggest world context, everybody on TikTok is eating a habanero while watching Bob Ross, so only if I do the same nonsense do I have a chance of 100 people noticing and liking the video and maybe opting to see more of my content.When I put it that way it feels banal, but like, you know the “fast-growing subreddits” list on Reddit? There were meetings! Someone worked on that! People literally sat in a room and said effectively, “Hey Fatimeh, what is the status of the ‘make subreddits suck faster’ feature? Management is very interested in delivering that in Q3.” Right? Like this connection from global to personal is just automatically assumed, nobody spends a waking moment thinking it could be anything but that way."

"Somehow this post takes the least interesting part of the source article[0] and draws false conclusions from it.> In the simulation, the decision whether to rebroadcast is random, rather than being driven by “virality” or cognitive bias, so the simulation is an optimistic one. > It turns out that message propagation follows a power law: the probability of a meme being shared a given number of times is roughly proportional to an inverse power of that number.So they implement a textbook model and a textbook result comes out - surprise? There’s nothing to be drawn by this.I may share the authors sentiment but frankly this blog post is bunk.There’re some interesting parts in the source though once you get through all the grand-standing fluff.[0]: https://www.scientificamerican.com/article/information-overl..."

"As soon as your news feed becomes too big for you to read all of it and then decide whether to repost anything, the quality of information you propagate is going to fall because of that filtering process.I avoid this by unfollowing people very frequently. I see one stupid candid or a pout or a food shot, I just unfollow that person.Same goes for SJW/White Supremacy types. Whether you are OP or a sharer, you get muted/unfollowed.This is how I use Quora. When I used Facebook five years ago, I used it this way.Twitter I use only for professional content. Very strictly. I also set the trending country to Namibia, so that I don't even know what they are talking about.I am less and less active on social media with the passing of days, but a good social media experience can be achieved by strictly filtering normies, politics, food porn, etc."

Preview of 'Transmission torrent client ported to C++'

Transmission torrent client ported to C++

"I think it's a sensible choice. I've seen way too many C codebases rewriting half of the STL or using clunky macro hacks (or worse, half-assed linked lists) when basically every single platform out there has a copy on the STL available which includes containers and algorithms with excellent performances and are well tested.It's complicated but it's the only reasonable choice. You can then write your code C-style while compiling it as C++ and nobody will bat an eye."

"The title is a bit misleading. This PR is just getting the lib to compile with a C++ compiler. Seems like the bulk of the work remains.> This PR is the first incremental step of getting libtransmission to compile with a C++ compiler."

"Transmission is one of those pieces of software that just works. I've been using it for around a decade, and can't see that changing anytime soon."

Preview of 'Beam/Erlang/Elixir Concept Explanations'

Beam/Erlang/Elixir Concept Explanations

"I had a brief love affair with Elixir/OTP recently. The language ist beautiful, the platform very impressive. Genserver and the actor model are very powerful tools for concurrent systems and Phoenix is one of the best web frameworks I ever tried.BUT the tooling was a bit lacking (e.g JetBrains IDE, good debugging workflow), the library support was a bit spotty (e.g for Auth, everything high quality but often abandoned). Then if you use e.g GCP there is no real first class language support and if you deploy to Kubernetes then there is a lot of overlap with Beam/OTP for deployment management etc. this and I feel for most quick web development pure functional programming is too much mental overhead for me (maybe this comes down to practice). I feel way more productive with e.g Go or Node.I have mad respect for Jose Valim and the community for delivering such an exceptional project in a world saturated with languages and frameworks. But I fear its not for me. At least not yet."

"Very curious about the recent surge of Elixir / Erlang posts on HN, is there a reason for this?How is the the job market surrounding this as well for Elixir / Erlang devs?"

"Great resource, thank you. I've been slowly transitioning my programming time to Elixir/Phoenix the last couple years. Every couple weeks I dive in, but mostly going back to Rails. But recently with the `1.6.0-rc.0` release, this time it might stick. HEEx templates are fantastic, esbuild as the default is a really good choice, LiveView is getting some traction, and the packages seem to be picking up. Fantastic language & framework in general."

Preview of 'How Docker broke in half'

How Docker broke in half

"> “The biggest mistake was to miss Kubernetes. We were in that collective thought bubble where internally we thought Kubernetes was way too complicated and Swarm would be much more successful,” Jérôme Petazzoni, one of Docker’s first and longest serving employees, said. “It was our collective failure to not realize that.”They were not wrong on saying that Kubernetes was very complicated, at least in some sense. In the beginning no one wanted to use it because they could easily setup Docker Swarm with minimal effort. This argument still pops up frequently on HN when there's a new post about Kubernetes.I guess the problem was they didn't realize why Kubernetes needs to be that complicated. And if a system is complicated for good reasons, that's actually good business opportunity and tons of people and companies will be willing to make the effort to fill that gap."

"Good read, and touches on a lot of the pain points from that era. As someone who was lurking on HN at the time during the containerization boom, I think that the key failing of dotCloud/Docker was not capitalising on Docker Swarm almost immediately. Docker Swarm was touted almost from the start but the repeated delays gave it a reputation of smoke and mirrors left people scrambling for solutions.I also clearly remember the multiple high profile spats that 'shykes had on HN which burned a lot of bridges. At the time he had a reputation for answering lots of questions on HN which helped a lot with community building. After those bridges were burned there was no one to speak for Docker as the developer mindsets shifted slowly towards Kubernetes. IIRC the Github PRs were also a source of contention as dotCloud corporatised.To be fair, Kubernetes was a real slog to understand at the start and had a lot of competition; it was definitely not the same level of simple, direct technical solution that Docker was.Interesting trip down memory lane and what a pivotal technology! Regardless of the rest Docker is a true cultural phenomenon and a testament to the insight of the creators working outside of the myopia of big tech."

"> The truth is, Docker had the chance to work closely with the Kubernetes team at Google in 2014 and potentially own the entire container ecosystem in the process. “We could have had Kubernetes be a first-class Docker project under the Docker banner on GitHub. In hindsight that was a major blunder given Swarm was so late to market,” Stinemates said.> Craig McLuckie, Kubernetes cofounder and now vice president at VMware, says he offered to donate Kubernetes to Docker, but the two sides couldn’t come to an agreement. “There was a mutual element of hubris there, from them that we didn’t understand developer experience, but the reciprocal feeling was these young upstarts really don’t understand distributed systems management,” he told InfoWorld.The article criticizes Docker Swarm as myopic, but IMO, there were only two possibilities for Docker to move forward; either they acquired Kubernetes, which was a possibility in this telling of events, or they won with their own Docker Swarm."

Preview of 'Those who witnessed Castle Bravo looked into Armageddon'

Those who witnessed Castle Bravo looked into Armageddon

"This was really when people started figuring out how bad fallout from thermonuclear bombs could be. General Fields described it most lucidly:"If Bravo had been detonated in Washington, D.C., instead of Bikini, Fields illustrated with a diagram, that lifetime dose in the Washington-Baltimore area would have been 5,000 roentgens; in Philadelphia, more than 1,000 roentgens; in New York City, more than 500, or enough to result in death for half the population if fully exposed to all the radiation delivered. This diagram was classified secret and received very little distribution beyond the Commissioners." [1]Image reproduced here [2].Thermonuclear bombs are really terrifying. If one goes off and you're in the fallout zone do not go outside for at least 2 weeks. If you survive the initial blast you have about 10 minutes to get inside where you must stay. If you're still outside and it's 'snowing' ash you're already dead. More tips and tricks in [3].Though these days, they say it's likely that a single individual or small group can have even worse impact from a basement bioterror lab.[1] Hewlett and Holl - Atoms for Peace and War around pg 181 (free pdf history book) https://www.energy.gov/management/downloads/hewlett-and-holl...[2] https://whatisnuclear.com/img/castle-bravo-if-on-dc.png[3] Nuclear War Survival Skills (free pdf book) https://www.oism.org/nwss/"

"It’s worth reminding people that the US still refuses to properly clean up or compensate the Marshall Islanders for this and the 66 other nuclear tests done on their islands."

"I know it's near trivial in comparison but I really understood the power of atomic weapons as a child when I read what happened to the Saratoga, namely the explosion lifted the ship out of the water, more like thrown it out of the water several meters high. How can anything lift a thirty seven thousand ton ship???"

Preview of 'Geizhals – Tech Product Price Comparison and Tracking'

Geizhals – Tech Product Price Comparison and Tracking

"I always go there not only when I need a cheap vendor, but especially when I don't know exactly what exists on the market because they have such a superior index and filter for finding the product you search for.Especially Amazon is exceptionally bad, Even if I sort by price it isn't guaranteed they really show them in order and even if they do, the filters/search terms are often so broad that sorting from cheap to expensive just shows 100 pages of crap first.Idealo is somewhat fine in terms of capabilities but I think the geizhals UI is far superior."

"One of their most impressive features is how many product attributes they track and allow you to filter for. E.g. for mainboards you can filter for support for all generations of Ryzen CPU + at least M.2 slots + BIOS flashback (allows you to do BIOS updates without a CPU or RAM) + at least one USB-C + built in IO shield + at least 12 VRM phases + WiFi 6 + in stock: https://geizhals.eu/?cat=mbam4&v=k&hloc=at&hloc=de&hloc=pl&h..."

"My main shopping site. Proof that UX and "pretty" aren't always the same, this page has the best experience by a mile.You know there is a lot of optimization in the background for all the faceting and search, I'd be really interested how they implemented that.A lot of the value also comes from meticulously integrating shop product datasets either by scraping or cooperating, combining offers etc.Disruptive by putting in the hard work and keeping at it."

Fork me on GitHub