I think the saying is "missing the forest for the trees.[1]" Referring someone to another food bank or resource is not addressing or owning the immediate problem, which is what the experiment showed. Those organizations…
[dead]
Correct, which is why .local wouldn't become a TLD or part of a standard for home network reserved domains.
I agree it would be great to get some of the vendor pushed / common domains put into an accepted standard. In my interaction with IETF standards they are created / implemented in two ways: 1. They set the forward…
I didn't see a specific RFC that reserved .lan however from the proposed standard RFC 8375 home.arpa is suggested. https://datatracker.ietf.org/doc/html/rfc8375
Where? Should they drop them at a starbucks out front? Have an employee volunteer their home address? Put them out front at the office? How long should they hold onto the "free" cables that people are going to ask…
Free pickup? at a secure data center? Lets use some logic here. The disposal company is taking the cables with them to recycle them for the copper wire. Same with power cables.
This is common compliance nomenclature. The only people paying the high cost to have a full sized piece of equipment destroyed are governments or R&D companies with unique prototypes. The hard drives are most likely…
I found that the book "Writing to Learn" by William Zinsser was excellent in convening this process. As noted in the book the author advocated for more writing to be included in all subjects.…
Reading, writing and math have been the constants utilized throughout life and as such have been core subjects carried through educational systems. I'm not quite sure what subjects and topics we would be teaching future…
This quote mostly applies to people who don't want to spend the time learning existing tooling, making improvements and instead create a slightly different wheel but with different problems. It also applies to people…
> The frontpage should directly show the list of papers, like with HN. I disagree. There are numerous times where I have browsed the comments on a HN post where people haven't read the article and are just responding to…
> it hasn't turned around in cyber fwiw and it's been growing for probably 2 decades, 1 decade in earnest. Perhaps b/c SWEs are a profit center vs. the security > cost center, there'll be motivations though. IMO the…
> Because the project was big enough to warrant more than one person. But based on what, the scope? If you weren't familiar with the tech stack how would you gauge that? I understand people can conceptualize frameworks…
I'm not sure I see this as a reality anytime soon. > Those folks have a lock bc there’s a small group of who knows assembly and OSs across multiple systems very well and knows if from a security context. There is two…
You will start to see this turn around as companies realize they need to go back to the path of entry -> mid -> Senior/Principal. For cybersecurity this is operations and/or development -> cybersecurity w/ focus on…
Why did you think you needed to hire a junior dev before even starting work on the application? I know estimation can be a difficult task but the typical "I'm moving so fast..." type experiences usually mean you didn't…
Honestly it sounds like it wasn't a tool that is needed often, if it was you or someone else would have already written it. Or you don't regularly day-to-day program enough in javascript / python to do this quickly.…
80% of being a good security engineer is knowing the big picture, all the parts and how they work. The correlation that LLM produces has no value if its not actionable. You are the one that determines the weights,…
Well two things: 1. Maybe you aren't the intended audience for this. 2. They are lecture notes and homework which are typically distilled from a textbook or industry experience topic. These are helpful items for someone…
The lectures aren't a how-to guide. The items that are explained are to provide reference to the lecture material. For example the apache2 setup could just as easily be nginx, lighttpd on Windows, FreeBSD, Redhat, etc.…
Says its lecture notes right at the top. > "Think of these lecture notes as a living textbook that strives to strike a..." Why would you need to watch a video on lecture notes?
I think the saying is "missing the forest for the trees.[1]" Referring someone to another food bank or resource is not addressing or owning the immediate problem, which is what the experiment showed. Those organizations…
[dead]
[dead]
Correct, which is why .local wouldn't become a TLD or part of a standard for home network reserved domains.
I agree it would be great to get some of the vendor pushed / common domains put into an accepted standard. In my interaction with IETF standards they are created / implemented in two ways: 1. They set the forward…
I didn't see a specific RFC that reserved .lan however from the proposed standard RFC 8375 home.arpa is suggested. https://datatracker.ietf.org/doc/html/rfc8375
[dead]
[dead]
Where? Should they drop them at a starbucks out front? Have an employee volunteer their home address? Put them out front at the office? How long should they hold onto the "free" cables that people are going to ask…
Free pickup? at a secure data center? Lets use some logic here. The disposal company is taking the cables with them to recycle them for the copper wire. Same with power cables.
This is common compliance nomenclature. The only people paying the high cost to have a full sized piece of equipment destroyed are governments or R&D companies with unique prototypes. The hard drives are most likely…
I found that the book "Writing to Learn" by William Zinsser was excellent in convening this process. As noted in the book the author advocated for more writing to be included in all subjects.…
Reading, writing and math have been the constants utilized throughout life and as such have been core subjects carried through educational systems. I'm not quite sure what subjects and topics we would be teaching future…
This quote mostly applies to people who don't want to spend the time learning existing tooling, making improvements and instead create a slightly different wheel but with different problems. It also applies to people…
> The frontpage should directly show the list of papers, like with HN. I disagree. There are numerous times where I have browsed the comments on a HN post where people haven't read the article and are just responding to…
> it hasn't turned around in cyber fwiw and it's been growing for probably 2 decades, 1 decade in earnest. Perhaps b/c SWEs are a profit center vs. the security > cost center, there'll be motivations though. IMO the…
> Because the project was big enough to warrant more than one person. But based on what, the scope? If you weren't familiar with the tech stack how would you gauge that? I understand people can conceptualize frameworks…
I'm not sure I see this as a reality anytime soon. > Those folks have a lock bc there’s a small group of who knows assembly and OSs across multiple systems very well and knows if from a security context. There is two…
You will start to see this turn around as companies realize they need to go back to the path of entry -> mid -> Senior/Principal. For cybersecurity this is operations and/or development -> cybersecurity w/ focus on…
Why did you think you needed to hire a junior dev before even starting work on the application? I know estimation can be a difficult task but the typical "I'm moving so fast..." type experiences usually mean you didn't…
Honestly it sounds like it wasn't a tool that is needed often, if it was you or someone else would have already written it. Or you don't regularly day-to-day program enough in javascript / python to do this quickly.…
80% of being a good security engineer is knowing the big picture, all the parts and how they work. The correlation that LLM produces has no value if its not actionable. You are the one that determines the weights,…
Well two things: 1. Maybe you aren't the intended audience for this. 2. They are lecture notes and homework which are typically distilled from a textbook or industry experience topic. These are helpful items for someone…
The lectures aren't a how-to guide. The items that are explained are to provide reference to the lecture material. For example the apache2 setup could just as easily be nginx, lighttpd on Windows, FreeBSD, Redhat, etc.…
Says its lecture notes right at the top. > "Think of these lecture notes as a living textbook that strives to strike a..." Why would you need to watch a video on lecture notes?