They also have a typo on their description... "AI coding creates a time span isn't long enough to do something new, and it's not short enough to be entirely negligible" Should say "that isn't long enough" or "which…
Is the conclusion here not that you are asking questions when you should instead have been looking for an existing resource? The ability to search across the massive accumulation of knowledge we have already built up is…
How many people drive their car daily or near daily? How many people are good drivers? The ratio of those two values shows, in my experience, that a lot of people are not very good at things they spend a lot of time…
In that case the NAS company should, at a minimum, be loading their NAS with a certificate signed by a CA owned by the NAS company, where the trust chain for their NAS's certificates are easily available for users to…
Allowing self-signed certificates creates a higher risk for MITM attacks. Sure you can trivially get a letsencrypt certificate once you register a DNS entry, but you can't trivially get a letsencrypt certificate which…
If a user set up a NAS they should be capable of googling "Openssl how to set up a CA" > First link fully explains it https://arminreiter.com/2022/01/create-your-own-certificate-... "How to import CA into iPhone" >…
You have to consider the rarity of your use case vs the use case they're defending against. How often do you think someone tries to connect their gamepad to a local server? Not never, but the total amount of users doing…
I didn't say a "pinned self signed cert is insecure" I said that self-signed certs are a lazy choice I also said "allowing the end-user to confirm a certificate offers basically 0 protection" If an average user get's…
"This is good enough because I don't expect anyone other than me will use it" is lazy What would happen if you connected to your mail client today and you got prompted "Trust this certificate?" showing a certificate…
It's 2024, PKI best practices are well known and well documented, anybody still using a self-signed certs on their mail server (or anywhere) is either lazy or stupid. Plenty of existing applications will refuse to…
I used logic.ly for a class last semester, we used it for about a month and built up to a very basic cpu. I found it pretty easy to pick up and fun to work in. Wouldn't be surprised if a lot of online computer arch…
Glad to see this go public. I am interning for one of the guys working on this project (I am not working on this however) and they seem like good guys. Best of luck in getting funding!
Congratulations on getting published. Having finished the paper I thought it was informative and well written. I just started interning for you guys today and I look forward to an exciting month!
I am currently an intern an The Immunity Project, a YC funded non-profit working on vaccinating HIV. I have been here for only a day so far but I whole heartedly agree. I have been welcomed with open arms, introduced to…
They also have a typo on their description... "AI coding creates a time span isn't long enough to do something new, and it's not short enough to be entirely negligible" Should say "that isn't long enough" or "which…
Is the conclusion here not that you are asking questions when you should instead have been looking for an existing resource? The ability to search across the massive accumulation of knowledge we have already built up is…
How many people drive their car daily or near daily? How many people are good drivers? The ratio of those two values shows, in my experience, that a lot of people are not very good at things they spend a lot of time…
In that case the NAS company should, at a minimum, be loading their NAS with a certificate signed by a CA owned by the NAS company, where the trust chain for their NAS's certificates are easily available for users to…
Allowing self-signed certificates creates a higher risk for MITM attacks. Sure you can trivially get a letsencrypt certificate once you register a DNS entry, but you can't trivially get a letsencrypt certificate which…
If a user set up a NAS they should be capable of googling "Openssl how to set up a CA" > First link fully explains it https://arminreiter.com/2022/01/create-your-own-certificate-... "How to import CA into iPhone" >…
You have to consider the rarity of your use case vs the use case they're defending against. How often do you think someone tries to connect their gamepad to a local server? Not never, but the total amount of users doing…
I didn't say a "pinned self signed cert is insecure" I said that self-signed certs are a lazy choice I also said "allowing the end-user to confirm a certificate offers basically 0 protection" If an average user get's…
"This is good enough because I don't expect anyone other than me will use it" is lazy What would happen if you connected to your mail client today and you got prompted "Trust this certificate?" showing a certificate…
It's 2024, PKI best practices are well known and well documented, anybody still using a self-signed certs on their mail server (or anywhere) is either lazy or stupid. Plenty of existing applications will refuse to…
I used logic.ly for a class last semester, we used it for about a month and built up to a very basic cpu. I found it pretty easy to pick up and fun to work in. Wouldn't be surprised if a lot of online computer arch…
Glad to see this go public. I am interning for one of the guys working on this project (I am not working on this however) and they seem like good guys. Best of luck in getting funding!
Congratulations on getting published. Having finished the paper I thought it was informative and well written. I just started interning for you guys today and I look forward to an exciting month!
I am currently an intern an The Immunity Project, a YC funded non-profit working on vaccinating HIV. I have been here for only a day so far but I whole heartedly agree. I have been welcomed with open arms, introduced to…