Liuser | 2 years ago | on: Created a free website that simplifies stock analysis
Liuser's comments
Liuser | 3 years ago | on: Van Life in Japan
Is that link for personal water use or does it account for farming?
What do you suggest to people who exercise everyday?
Liuser | 3 years ago | on: Ask HN: What tech advice are you giving to those around you for 2023?
> Mitm attacks are still a thing
TLS directly addresses this.
Liuser | 3 years ago | on: Ask HN: What tech advice are you giving to those around you for 2023?
> Don't connect to random public WiFi. If you do, don't login to any online account on it, or send confidential information.
Why? TLS establishes secure channels over insecure networks.
Liuser | 3 years ago | on: Ask HN: How did you stop drinking?
Develop an exercise routine.
I hated the feeling of running or working out hung over and used that as motivation to not drink. Would rather feel good working out and feel good after the work out.
Liuser | 3 years ago | on: Meta announces hiring freeze, warns employees of restructuring
I suspect the reason why people have stopped posting is because of increasing content from other sources. It's definitely my reason.
It's a negative feedback loop.
Liuser | 3 years ago | on: Hertz is still having rental car customers wrongfully arrested, lawsuit claims
This doesn’t bring me confidence. Just rented from Hertz yesterday and after waiting 30 minutes to even get to the counter I needed to wait another 30 minutes for them to locate the car I was supposed to be renting. They never located the car and swapped to a different car. I’m going to be paranoid that someone else’s rental is going to show up on my tab now. Not a good experience especially after a very long flight. Their process and operations is broken. It should not take more than an hour to rent a car when you’ve already reserved online and already have an account setup with them.
I normally rent with Enterprise or Sixt through Lyft with no issue but they did not have any available cars so I tried Hertz. It now doesn’t surprise me Hertz went into bankruptcy.
Liuser | 3 years ago | on: Is this the end of social networking?
I wonder if timing may have been off. I'd like to imagine that re-introducing it today there'd be more appetite for a personal social network, now that Facebook/Meta is pivoting away.
But, yes I agree, I used to use Path also with just a group of 5 friends around 2013. The app was cleanly designed and it definitely felt intimate.
Liuser | 3 years ago | on: Walking Venice
Visited Venice last year late November. During the day, the most enjoyable parts for me were walking a bit further away toward the northern sections (Cannaregio) which are away from the main shopping centers and thus crowds. Then during the late night/early morning I would walk with my wife and explore the city a bit more once the crowds died down and the city felt quiet (after 11pm). That was romantic. I’d parrot with others that it’s amazing not having to worry about cars.
We did Rome, Florence, Tivoli, Siena and Venice. All beautiful cities coupled with amazing food. Florence felt like I was walking through a painting at times; I loved them all.
Liuser | 3 years ago | on: Authorization in a Microservices World
Works fine for 1 application, but what about for thousands of services with many teams?
Everything is difficult with scale. We can’t expect every service owner to implement authz correctly, but if we can expose and build tools that help standardize and abstract as much as possible the difficulties of authz then service owners can focus their energy on other things.
Liuser | 3 years ago | on: Authorization in a Microservices World
I agree that identity is important, but I would argue that challenge lies in authn and would be it’s own separate article. This focus was on authz. We are assuming we trust the passed in identity at this point. Eg user has authned, session is established, and we trust that the identity has been passed securely from downstream.
Liuser | 4 years ago | on: A Primer on Proxies
> Normally the client sends a single CONNECT [hostname] request to the proxy and after that the proxy just forwards TCP packets on that connection, which is nothing that HTTP/2 can improve.
Trying to test my understanding - Does the CONNECT HTTP protocol need to match the underlying payload protocol. Eg After CONNECT over HTTP/1.1 tunnel is established it’s still possible for the client to still use HTTP/2 with the upstream server for its underlying payloads correct?
My intuition is that it doesn’t need to match because the proxy has no way to know what http protocol is being used when the workload is encrypted.
Liuser | 5 years ago | on: Dance is superior to repetitive physical exercise for brain plasticity (2018)
Not VR, but "Just Dance", a video game series teaches actual dance moves.
Liuser | 7 years ago | on: Lyft Follows Uber Into Bike-Sharing Lane, Buying Owner of CitiBike
They just place ads on it. Motivate runs a lot of bikes: Ford Gobike (SF), CitiBike (NYC), Biketown (Portland), Capital Bikeshare (DC), Divy (Chicago), BlueBikes (Boston), Cogo (Columbus), Nice Ride (Minneappolis),
Liuser | 7 years ago | on: Tesla Faces Accelerating Rate of Model 3 Refunds
Been thinking of cancelling my reservation as well. My need for a car has dramatically decreased in the last couple of years with the ubiquity of ride sharing services. Now with last mile services spreading more and more (scooters/bike shares) I'm thinking this trend will only increase.
I take the bus and bike to work. Small groceries are also done by bicycle. Whenever I go out to eat with my wife we use a ride sharing service because we enjoy a drink or two with our meals.
Liuser | 8 years ago | on: Roger Bannister has died
This is often parroted. Comparing long time runners with those that have not run has shown that runner's joints / knees are actually better than those that do not run.
Run with proper form, don't ramp mileage and intensity too fast. Humans are built for long distance running.
Liuser | 8 years ago | on: Ask HN: Have you successfully done a career do-over, and how did you do it?
When you get into technology, you should go under the assumption that you will be a student for the rest of your life. Otherwise you will get left behind. My Dad is in tech (I followed his footsteps). For as long as I can remember growing up he always had a book with him in his free time. He started with punchcards.
Liuser | 8 years ago | on: Airbnb host must pay $5,000 for canceling reservation based on race
The host is also required to take a course in Asian American studies.
Liuser | 8 years ago | on: Show HN: Sqreen API, a security toolbox for developers
How are you curating this information?
How do you separate yourself from the existing hundreds of threat intelligence feeds already out there? (VirusTotal, PassiveTotal, Facebook ThreatExchange, Anomali, Taxii Stix, etc.)
Liuser | 9 years ago | on: Security Certifications Are Causing More Harm Than Good
I used to pentest for a living. Still do some red team exercises every now and then, but far less now that I'm mainly blueteam focused.
I personally organized my report into three sections, which seemed to work well. Clients seemed to enjoy the formatting:
1. Executive - Summarize everything in one page at a high level. You could skim it fast if you chose to. Highlight potential negative business impact of each finding.
2. Management - A little more detailed. 2-3 pages max. Most severe findings at the top and recommended action for remediation.
3. Narrative - This is the bulk 80-90% of the report detailing your step by step process including screenshots so that if someone wanted to duplicate your findings they could.
page 1
eg:
https://name-redacted.com/stocks/crm
https://name-redacted.com/stocks/CRM