hacker news with inline top comments    .. more ..    16 Jul 2017 Ask
home   ask   best   3 months ago   
1
Ask HN: What tasks do you automate?
130 points by flaque  4 hours ago   97 comments top 43
1
naturalgradient 4 hours ago 3 replies      
I take enormous pleasure in automating every part of my research pipelines (comp sci).

As in, I like to get my experiment setup (usually distributed and many different components interacting with each other) to a point where one command resets all components, starts them in screen processes on all of the machines with the appropriate timing and setup commands, runs the experiment(s), moves the results between machines, generates intermediate results and exports publication ready plots to the right folder.

Upside: once it's ready, iterating on the research part of the experiment is great. No need to focus on anything else any more, just the actual research problem, not a single unnecessary click to start something (even 2 clicks become irritating when you do them hundreds of times).Need another ablation study/explore another parameter/idea? Just change a flag/line/function, kick off once, and have the plots the next day. No fiddling around.

Downside: full orchestration takes very long initially, but a bit into my research career I now have tons of utilities for all of this. It also has made me much better at command line and general setup nonsense.

2
zbjornson 3 hours ago 2 replies      
All of my thesis project in immunology was automated, which involved several hours of blood processing repeated several thousand times (with some parallelization) by a team of a dozen robots. There are pics, schematics and vids here: http://www.zachbjornson.com/projects/robotics/.

I also like to say that the final analysis was automated. It was done entirely in Mathemtica notebooks that talk to a data-processing API, and can be re-ran whenever. The notebooks are getting released along with the journal article for the sake of transparency and reprodibility.

(Also, I automated my SSL cert renewal ;))

3
dhpe 11 minutes ago 0 replies      
I need to upload invoices every month from all ~20 SaaS products I subscribe to an accounting software. Most of the invoices can be just redirected from email to another SaaS that will let me download a zip file containing all invoices from a date range. Other software requires me to login to the product, navigate to a page and download a PDF or print an HTML page. I have browser-automated all of these laborious ones as well so everything will be in that zip file. Saves me 30 min monthly and especially saves me from the boring work.
4
MichaelMoser123 1 hour ago 0 replies      
In 2003 I had a perl script to query the job boards for keywords , scrap the result and send out an application email with CV attached to it (I took care to send one application to a single email). I think this was a legitimate form of spamming - at that moment the local job market was very bad.
5
Toast_ 2 hours ago 0 replies      
I'm aggregating flash sales and sending post requests to azure ml using huginn. It's a work in progress, but huginn seems to be working well. Also considering giving nifi a go, but the setup seems a bit over my head.

https://github.com/huginn/huginn

http://nifi.apache.org

6
ghaff 24 minutes ago 0 replies      
I wrote a little script [1] to automate a lot of the steps associated with publishing a podcast. There's still manual work but this takes care of a lot of the fiddly repetitive detail work that's both time-consuming and error-prone. Especially if I do a batch of podcasts at an event, this is a lifesaver.

[1] https://opensource.com/article/17/4/automate-podcast-publish...

7
shade23 2 hours ago 2 replies      
- Downloading a song of youtube, adding meta data via beets and moving to my music lib

- Adding tasks to my todolist client from every app I use(including my bookmarking service when I bookmark with specific tags)

- Changing terminal colours based on time of the day(lower brightness in the evenings and hence dark colours, too much sunlight in the mornings and hence solarized themes)

- Automatically message people who message me based on priority(parents immediately/girlfriend a longer buffer).

- Filters on said messages incase a few require my intervention

- Phone alerts on specific emails

- Waiting for a server which you were working with to recover from a 503(happens often in dev environments) and you are tired of checking every 5 seconds: Ping scripts which message my phone while I go play in the rec area.

- Disable my phone charging when it nears 95% (I'm an android dev and hate that my phone is always charging)

- Scraping websites for specific information and making my laptop ping when the scenario succeeds(I dont like continuously refreshing a page)

I dont think several of these count as automation as opposed to just some script work. But I prefer reducing keystrokes as much as possible for things which are fixed.

Relevant to this discussion:Excerpt from the github page

>OK, so, our build engineer has left for another company. The dude was literally living inside the terminal. You know, that type of a guy who loves Vim, creates diagrams in Dot and writes wiki-posts in Markdown... If something - anything - requires more than 90 seconds of his time, he writes a script to automate that.

https://github.com/NARKOZ/hacker-scripts

8
ajarmst 3 hours ago 3 replies      
I'm the kind of nerd who greatly prefers writing automation code to doing anything remotely repetitive. (I'm afraid to work out the actual timings because I'm pretty sure that I often spend more time coming up with the automation than just doing the task would take).

I've got a script that automatically rips, converts and stitches together audiobooks from the library so that I can play them on my phone. It just beeps periodically to tell me to put the next CD in.

I also had a batch job that downloaded Doonesbury cartoons (including some delay logic so I wasn't hammering the server) and built a linked series of html pages by year and month. I've ported it to a couple of other webcomics so that I can binge read.

I also write a lot of LaTeX macros, doing things like automatically import and format code from a github gist into lecture notes (something like \includegist{C,<path/to/gist>), or autogenerate pretty PDF'd marks summaries for students from my home-rolled marks. database.

Another thing I like is building little toys to demonstrate things for students, like a Mathematica page that calculated the convergence rate and error for the trapezoidal rule (numerical integration) with some pretty diagrams.

I once wrote a bunch of lisp code to help with crypto puzzles (the ones that use a substitution code, and you try to figure out the original text). The code did things like identifying letter, digraph and trigraph frequencies, allowed you to test substitutions, etc.

As developers, we tend to focus on these big integrated projects. But one of the biggest advantages that people who can code have is the ability to quickly get a general purpose computer to assist with individual tasks. I write an awful lot of code that only gets run a handful of times, yet some of those projects were the most pleasure I've ever had writing code.

9
rcarmo 2 hours ago 2 replies      
- Data pipelines (as seen elsewhere here)

- Anything related to infra (I do Azure, so I write Azure templates to deploy everything, even PaaS/FaaS stuff)

- Linux provisioning (cloud-init, Ansible, and a Makefile to tailor/deploy my dotfiles on new systems)

- Mail filing (I have the usual sets of rules, plus a few extra to bundle together related e-mails on a topic and re-file as needed)

- Posting links to my blog (with screenshots) using Workflow on iOS

- Sending SMS from my Watch to the local public transport info number to get up-to-the minute bus schedules for some pre-defined locations (also using Workflow)

- Deploying my apps on Linux (I wrote a mini Heroku-like PaaS for that - https://github.com/rcarmo/piku)

- Searching for papers/PDFs on specific topics (built a Python wrapper for arxiv/Google/others that goes and fetches the top 5 matches across them and files them on Dropbox)

- Converting conference videos to podcasts (typically youtube-dl and a Python loop with ffmpeg, plus a private RSS feed for Overcast)

Every day/week I add something new.

(edit: line breaks)

10
The_Notorious 3 hours ago 1 reply      
Find yourself a configuration management server such as Puppet, Chef, CFEngine etc, and learn to automate system deployment and management with it. I use Puppet CE as my main automation tool.

Use Python/Shell for tasks that are not well suited for a configuration management server. Usually, this is when procedural code makes more sense than the declarative style of Puppet manifests. Interactive "wizards" (i.e. add domain users accounts to a samba server, and create home directories for them) and database/file backups are my usual uses for these types of scripts.

Fabric is a useful tool to use with python. It allows you to send SSH commands that you put into functions to groups of servers in bulk.

I also use python for troubleshooting network issues. It has libraries to interact with all manner of network services/protocols, as well as crafting packets and creating raw sockets.

Look into PowerShell if you work in a Windows environment. Everything from Microsoft is hooked into PowerShell in their newer versions.

11
dannysu 3 hours ago 2 replies      
A bot for reserving hotel rooms.

I wrote a bot to reserve hotel rooms a year in advance for a national park in the US.

It was so difficult to book. After couple days of failed attempts to reserve my desired dates, and after staying up late into the night one day, I went ahead and wrote a bot to automate the task of checking for availability and then completing the checkout process once available.

And... it worked.

12
patd 2 hours ago 0 replies      
Most of my side projects have been about automating the little things that end up taking me a lot of time.

At my first job, part of my work (next to junior dev) was to deploy EARs on Websphere. I automated it so that people just had to drop it on a shared folder and I'd just take a look if it failed to install automatically.

I wrote a command-line tool to search and download subtitles https://github.com/patrickdessalle/periscope

I made a browser plugin to compare the price of the European Amazon and a few other websites (it grew to more countries and websites) http://www.shoptimate.com

And now I'm working on a tool that regularly checks if some of my content is getting adblocked because it's something I periodically do by hand http://www.blockedby.com

In the end, automating things can take more time than actually doing it. But if it's used by others and saves them time as well, it's gratifying.

13
bearton 52 minutes ago 0 replies      
I automate legal documents usings Advobot (advobot.co), a messenger based chatbot that walks you through drafting legal documents. I helped create the bot to make legal more accessible and easier to use. It makes drafting legal documents easy and conversational and is much faster than traditional methods.I can also use it from my phone, which makes drafting legal documents on the go much easier.

advobot.co/web

14
ehudla 1 hour ago 1 reply      
Preparing purchase form for university library and letting me know when books I order become available.

https://github.com/ehud/Library

15
nurettin 1 hour ago 0 replies      
In my city, there are many stadiums which cause traffic congestion during rush hours. I made a scraping bot which tells me if there's going to be traffic on my designated routes the next day. Going to try making it an app and see if it's any useful to others.
16
leipert 4 hours ago 1 reply      
Sorting my mails with imapfilter. I have a yaml file where I write down which mails go into which folder depending on sender or recipient or another header field. Runs on a raspberry pi every ten minutes between 8 and 8.
17
wslh 3 hours ago 0 replies      
Designing and developing UIs. I want to develop web UIs like you develop UIs with Visual Studio or Xcode. I cannot believe how much efforts we need to build and modify web experiences.
18
borntyping 34 minutes ago 0 replies      
Anything I have to do more than once. If I have to do it a second time, I'll probably have to do it a third..
19
greggman 2 hours ago 0 replies      
In the past I've always automated exporting from Maya, 3DSMax and Photoshop, meaning I don't require artists to export from either. The artist saves the source file in the project, tools build from that to the final format for the app/game.

The more typical workflow is that artists export .JPGs or .PNGs manually from Photoshop and somewhere else save their .PSD files. Similarly with 3SDMax or Maya they'd manually export using some plugin. That seems wasteful to me and error prone. Source files get lost. Artists have to maintain multiple versions and do the export manually which seems like a huge waste of time. So, I automate it.

20
paultopia 2 hours ago 0 replies      
Scraping and compilation of various annoying web content formats, with varying levels of efficacy -- e.g. https://github.com/paultopia/scrape-ebook for open source PDF chapters and https://github.com/paultopia/spideyscrape for readthedocs-esque formats.

iCloud documents edited on iOS -> versioning and shoving in a private github repo -- https://paultopia.github.io/posts-output/backup-to-git/

CV updates via template to HTML, latex, and docx

21
jf___ 2 hours ago 1 reply      
carving up marble with industrial robots

https://vimeo.com/94076571

Cad -> robot code compiler is built on top of pythonocc

22
dqv 3 hours ago 0 replies      
A PBX that only let's you record voicemail greeting by dialing in and listening to the whole greeting before it can be saved. So... recording their greeting would take a good 15 minutes if they mess up and have to start over.

I wrote a simple lua script for freeswitch that dials the line, follows the prompts, and plays the person's greeting to the PBX. Of course, one day, the damn PBX will be replaced by freeswitch.

23
profpandit 2 hours ago 1 reply      
This is a great question. The PC has been around for a long time now. For the most part, users/developers have been sitting around, twiddling their thumbs and waiting for the tool and app gods to rain their blessings. This question begs the need to be proactively involved in the process of designing how you use your PC
24
abatilo 2 hours ago 0 replies      
A little different than what other people are doing, but I have tried to automate my savings. I use Mint to figure out what my budgets for things should be, then I use Qapital to automatically save the money I didn't spend but was budgeted.
25
natch 2 hours ago 0 replies      
Many things. Trivial one, recently wrote a script to electronically sign six documents from my divorce and related tax paperwork using ImageMagick. Just to avoid having to do it with Gimp or Preview or some other GUI tool, and then re-do it when there are revisions. Yes there are online tools but I'm working with people who don't use those, nor do I want to upload these documents anywhere I don't have to.

Often I'll spend as much time writing an automated solution as it would take to do the task manually, even if I'm only going to run the automated solution once. The work is way more fulfilling, and I can fix mistakes easier, and can learn and develop new techniques.

26
sawmurai 1 hour ago 0 replies      
Commit hook that aborts commits if the projects code style is violated by one of the changes/added files
27
fenesiistvan 3 hours ago 0 replies      
Support tickets integrated with service monitoring.

Around 3 years ago, we started to get a lot of customers for our VoIP tunneling solution, mostly from UAE. Most of these were unfriendly customers abusing our support, so I started to implement a CRM to track "support points". I spend a half year to develop this solution (with lots of other functionality such as service monitoring) and when I finished, there was no any demand for the VoIP tunneling solution anymore :)

This is how I wasted half year instead to focus to solutions relevant for our business.

Thanks good, we started to have new customers again since last year and actually my CRM/support point tracking software is very useful now, but I still don't think that it worths 6 months time investment.

Conclusion: focus on your main business and dont spend too much time with automation and other helper software (or hire somebody to do it if your business is big enough)

28
sergiotapia 1 hour ago 0 replies      
Download media. I have Sonarr+Radarr+Plex. I don't spend much time looking for media.

Code reviews. Using something like CodeClimate to automatically check code quality before anyone actually reads the code.

29
sprt 4 hours ago 1 reply      
Buying crypto weekly using Kraken's API.
30
vgchh 2 hours ago 0 replies      
1. Code formatting

- gofmt for Go, Google Java Format for Java

2. Code Style Enforcement

- golint, govet for Go, CheckStyle with Google Style for Java

31
kensoh 2 hours ago 0 replies      
I automate as much as possible the tasks involved in coding web automation scripts - https://github.com/tebelorg/TagUI
32
philip1209 3 hours ago 0 replies      
I liked writing an internal command line utility for our Go codebase. It automates common dev commands like deployments (including installing dependencies, migrations, etc), sending test emails (eg to check formatting), and running smoke tests. Pretty minor, but it makes my life a lot easier. I plan on expanding it more for accessing prod and dev APIs.
33
ajarmst 3 hours ago 2 replies      
I consult the relevant XKCD to decide: https://xkcd.com/1205/
34
Huhty 1 hour ago 0 replies      
MY team and I run a reddit/HN-like community platform called Snapzu and we automate most (90%) of our social media channels.

We have 15 main categories, each with their own Twitter, Medium, WP, Blogger, etc. Here's an example of our science Twitter account: http://twitter.com/@Snapzu_Science

35
fest 2 hours ago 1 reply      
Tracking packages so I could batch my trips to post office.

Simple web interface where I have a list of packages I've ordered with the last status update from post service web tracking for.

36
bakli 3 hours ago 0 replies      
I've written a script which helps me copy-paste files from their folders in Material Design image library to my android project. This saves me at least 4 copy paste, and then renaming operations.
37
koala_man 3 hours ago 2 replies      
Backups.
38
utanapishtim 3 hours ago 0 replies      
If I have to update a file programmatically when I make certain modifications to a codebase I'll write a script that automates the update.
39
SirLJ 2 hours ago 2 replies      
Stock market trading systems, so I don't have to watch screens, also backups and also constantly improving monitoring for smooth operations
40
jessedhillon 3 hours ago 1 reply      
I have a script that downloads bank and credit card transaction data, then applies rules to create a journal in GNU Ledger format.
41
hacker_9 3 hours ago 0 replies      
My build process.
42
based2 4 hours ago 1 reply      
a collegue is doing JIRA exports to Excel / MS Project.
43
canadian_voter 3 hours ago 0 replies      
I wrote a bot that automatically comments on HN when certain topics appear.

--

This post has been automatically generated and may not reflect the opinion of the poster.

4
Ask HN: Would you want to sell code of complete websites?
59 points by CAFEEFAC  21 hours ago   36 comments top 21
1
everdev 20 hours ago 1 reply      
People do this on https://flippa.com

But most of the sites are junky WordPress sites. And people pay a couple hundred dollars depending on the setup and the niche.

If you can build a flexible back end, then you could find entrepreneurs willing to pay thousands or tens of thousands to have it customized.

So, would you rather sell 100 $200 "as is" sites, or 1 $20k custom site?

2
5_minutes 19 hours ago 2 replies      
Before the SaaS hype, this was just called "Scripts".

http://www.hotscripts.com

Check out the PHP folder section. It certainly has advantages using: bought scripts, instead of everything being a subscription. It has a onetime fee, and often can be modified yourself to anything you want.

3
hedora 5 hours ago 0 replies      
I wonder if you could make a go at private cloud installs. Contrast synology and a roll your own NFS server. The former has perf analytics history, auto update, auto scrubbing, well supported apps, bullet proof certified hardware (as much as you'll find in the < $1000 range).

There is not a great solution for well-curated (read: backed up, encrypted and updated in a standard way, and works on the first try) dockerfiles. I'm to the point where I'd pay ~$10-100 per service for that at home, and I run about 5 services. Presumably the SMB market will pay more than me.

4
callmeed 17 hours ago 1 reply      
binpress does this already: http://www.binpress.com/. I've purchased iOS components from there in the past. Not sure how active/popular it is currently. As others have said, there's also flippa, hotscripts, etc.

I like the idea and I'd look into selling some code (I have a collection of Sinatra apps I re-use for all sorts of things from APIs to payments). The issue really comes down to support, customization, and deployment. I don't mind writing some documentation once, but I don't want to spend 4 hours supporting something I sold for $299.

Ignore the people that say there's no market. One way I think you make this stand out is with a "verified" badge of sorts. For any project, ensure that it has one or more of the following:

- Dockerfile that works

- Deploys to Heroku with min. effort

- Has a test suite that passes

- Has a working demo

- Includes a minimum amount of documentation/setup videos

That's my 2

5
primaryobjects 19 hours ago 1 reply      
Buyers are typically more interested in buying a niche customer base/traffic, then they are about buying a web site code base.

In fact, many buyers don't even consider the programming language or platform the site is hosted on as being important, so long as they can get it up and running - and it has good PR and traffic analytics.

Hence, why fippa works (at least for selling a site for a few hundred; if you're lucky).

6
krapp 20 hours ago 0 replies      
So instead of selling templates or whatever, I'm selling, like, a Dockerfile or Vagrantfile, seeded DB, backend and frontend, the whole thing? Sure - if the price is right, sign me up.

I have no problem with the concept necessarily, but I feel like it's kind of a solution looking for a problem that's already been solved, either by freelancing or, as mentioned elsewhere here, Wordpress/Wix/etc. The budget for freelance work along the lines of "Youtube/Twitter/Amazon clone" tends to be incredibly low, certainly lower than most Western developers can afford to live on, so my main concern would be, whether or not it the market would be worth the time.

7
mtmail 21 hours ago 2 replies      
I started my website project with such a template: a Ruby on Rails project (open source on github) that already included user registration, email list management and selling products (ebooks). Over time I've replaced almost all parts but it was a huge timesaver in the first couple of months. I could see that work for Rails, Django, Express.js and similar frameworks.
8
daxfohl 18 hours ago 0 replies      
Seems like it'd be hard to market. Designs you can look at and immediately differentiate. Back ends, eh, how could you tell? Unless you're going all-in like Magento, with customer support and everything under the sun, what would you have to differentiate your solution?

Between that on one end and todomvc.com on the other, I don't see any middle ground that would interest anyone.

I think the better thing is like Heroku, with a platform and pluggable services, and you write your own code into it.

9
throwaway2016a 20 hours ago 0 replies      
These are called "Turn Key Websites" and they were quite common in the late 90s early 2000s.

Most common were dating and real estate websites.

Edit: infact, doing a Google search not much has changes. Tons of scammy sites you can buy for only $300 each.

10
brad0 20 hours ago 0 replies      
There are websites out there dedicated to flipping web sites.

Most sites are people's side projects that bring in a bit of revenue. They've lost interest or have different priorities.

They sell it to others for anywhere from $2000 to $100k+.

11
AznHisoka 16 hours ago 2 replies      
No. Sell me data and then you're talking. (ie geolocation data, lists of most popular hash tags, lists of sites that use MixPanel, etc) Most code is worthless. Its the data thats worth money.
12
SonOfLilit 21 hours ago 1 reply      
I don't feel there's a market - for very generic things you have Wordpress plugins or Wix, for anything less generic you simply can't create it without a very specific use case in mind. There is no "generic social media website" more specific than that Wordpress plugin that makes it look and feel like Facebook.
13
dkarapetyan 18 hours ago 0 replies      
Doesn't this already exist as WordPress themes?
14
rlafranchi 20 hours ago 0 replies      
I sold a wordpress theme site on flippa for $400 a few years ago. It included the site, themes, and demo sites. I was surprised I even got that much. Given the time spent, It wasn't a very good investment.
15
sebringj 20 hours ago 1 reply      
there is sandstorm and codecanyon already
16
bevan 17 hours ago 1 reply      
There could be a market amongst those learning the given tech stack. I would have definitely considered buying well-built apps to study back in the day.
17
ronilan 21 hours ago 0 replies      
sell code - you betcha!

list for (potential) sale - no thanka...

18
Giorgi 20 hours ago 0 replies      
Same company that runs themeforest sells scripts on codecanyon. Yes, full frontend and backend was called scripts back in the days.
19
olalonde 21 hours ago 0 replies      
There's no doubt the answer to your question is yes. The more interesting question would be whether there'd be any buyers.
20
nerdponx 17 hours ago 0 replies      
Isn't there already a cottage industry for Squarespace themes?
21
SirLJ 18 hours ago 0 replies      
People would be interested in buying the business if it is profitable (and not solely based on ad words gimmicks that would disappear with the next google update)
5
Turkish GSM networks currently play a message of the President on any phone call
396 points by mrtksn  21 hours ago   158 comments top 20
1
kbody 19 hours ago 2 replies      
"As president, I send congratulations on the July 15 National Day of Democracy and Unity and wish the martyrs mercy and the heroes (of the defeat of the coup) health and wellbeing,"

Source: https://au.news.yahoo.com/world/a/36394050/mr-president-erdo...

2
throwaway76493 10 hours ago 1 reply      
There is something equally insane happening on the Turkish internets right now.

At least two major mobile operators / ISPs are injecting JS into web traffic to display pop-up ads / Youtube videos on the lower right corner of every web page. The videos "commemorate" last year's events on July 15 in a language that is, to put it mildly, thorougly in line with Erdogan's ideology, and make a point of offering free data and phone credits throughout the 3-day commemorations being held.

3
rdtsc 18 hours ago 2 replies      
For a additional level of scary allow people to opt out but record who they are and compile a list. Use the list to deny them services or imprison when the next overthrow is attempted."You've been protesting and we noticed you blocked messages from our glorious leader... clearly a candidate for the labor camp"
4
buremba 13 hours ago 2 replies      
Even if you stop watching TV, reading newspapers and following the political people on social media and avoid discussing political news with people, you can't escape from him and his followers.

They will force you to believe what they believe and if you don't, they will flag you and also make you listen their leader no matter what you do to avoid their propaganda.

Even though I believe that the leaders of Gulenist group did the coup attempt and are terrorist, Erdogan gave this power to them and yet acts like he's not responsible from all these shit.

5
xepbam57 16 hours ago 4 replies      
Have anybody thought why you hear the sound(beeeep-beeeeep-....) when you make a call and from where it comes? Yes, telco can put anything there. Even more, I wounder why we do not hear some commercial Ad's every time we call. This would be in a spirit of current times...
6
mmerlin 20 hours ago 1 reply      
So so sad when a country devolves into quasi-dictatorship
7
Lagged2Death 5 hours ago 0 replies      
Dexter Palmer's 2016 novel Version Control had imagined something rather like this in a near-future United States, where phone calls and video screens would occasionally be interrupted by a message from the president.

I had thought it was inventive and evocative, but sort of unrealistic.

I was wrong. Yikes.

8
fouadmatin 20 hours ago 3 replies      
The number in the video is 112, which is Turkish-equivalent of 911 in the U.S.
9
exabrial 19 hours ago 6 replies      
Why are they a NATO country again
10
Fnoord 20 hours ago 2 replies      
What exactly is he saying? Can someone translate?
11
toroslar 5 hours ago 1 reply      
It's a lie like so much other stuff in the press. I'm currently in Turkey/Antalya, I've a cell-phone with a turkish Vodafone SIM card - I had several phone calls today - no president in my phone.
12
NicoJuicy 8 hours ago 1 reply      
It's funny to see that Erdogan wants to battle every European country and at the same time he asks us to visit Turkey.

His power comes from the wealth and investments of Western companies, so the people had it good in the past. But this is currently changing. Its 'just' a waiting game.

13
noncoml 17 hours ago 4 replies      
I wonder how would things have been if Turket had been accepted to EU 10 years ago. Would it have helped?
14
Talbotson 8 hours ago 0 replies      
This is 100% normal for these types of situations.
15
AdamJacobMuller 20 hours ago 0 replies      
What does this say in English?
16
homero 13 hours ago 0 replies      
When people voted, they were tricked into thinking somehow they were voting against the West instead of installing a dictator for themself
17
marcxm 12 hours ago 1 reply      
18
OzzyB 19 hours ago 3 replies      
19
powertower 18 hours ago 1 reply      
20
appendixsuffix 20 hours ago 1 reply      
6
Ask HN: Which blogs / sites do you follow to keep up-to-date with devops?
8 points by rajeshmr  11 hours ago   2 comments top
7
Am I seeing corruption on Google Play? How's this possible legal?
20 points by vitovalov  10 hours ago   18 comments top 7
1
vitovalov 2 hours ago 0 replies      
Sharing a gif that will serve as a proof in case they do some changes to this app page. https://twitter.com/vitovalov/status/886563706494218240

Apart from that, I continue monitoring, and the numbers of ratings keep growing. Also I noticed something strange when you refresh a couple of times the play store page. https://media.giphy.com/media/3ohryBbqtYeAkomS3u/giphy.gifIt appears to be two different counts of ratings? Crazy...

2
dukoid 5 hours ago 1 reply      
One possible explanation could be that the ratings count is updated immediately while the install count is updated at a slower rate...
3
vitovalov 2 hours ago 0 replies      
Also the time will show if this is true. If tomorrow the installs count doesn't grow to 1000-5000 or at least 100-500, it's cheating for sure.
4
tluyben2 4 hours ago 1 reply      
I don't think the install number is accurate or maybe based on something else than actual, physical installs? Also if you install / deinstall does that count as install (it should imho) or maybe not?

i'm not sure how easy it is to farm Play Store accounts; maybe someone knows? You need gmail which then turns into a Play store account right?

Does install count per device and how far does Google go in limiting that?

5
pbhjpbhj 5 hours ago 2 replies      
Is installs the current number as opposed to the total over time? That would allow people to install, rank, then later remove, and so make sense of the statistic.

Another option is that people get to rank each device install but only count as being one (person with an) install? That would allow for such "corruption".

6
la_fayette 4 hours ago 0 replies      
download numbers are absolute, independent of any version or uninstalls of the app. the store updates the number with a lag. the ratings can be done only after download and are shown faster.
7
DamonHD 9 hours ago 3 replies      
Aren't there farms of mobiles on racks in Thai and Chinese houses set up specifically to game those ratings? (Remembering some arrests within the last month or so...)
8
Ask HN: Are UML diagrams still used today?
27 points by tzhenghao  1 day ago   20 comments top 13
1
EliRivers 9 hours ago 0 replies      
UML diagrams. I sometimes use sequence diagrams, but almost certainly with all the wrong symbols and so on. They're just parallel timelines showing communication between conceptual objects.

Otherwise, all I've ever seen anyone do is take their actual design diagrams and laboriously turn them into UML diagrams of some kind for a document. The recipient then took the UML diagrams from that and made their own new sketches from that, turning them into something they could easily read and understand and that generally looked very similar to the original diagram that was laboriously translated into UML.

My conclusion is that a UML diagram is better than nothing, but not as good as a well-written and well-explained design. I suspect UML diagrams are meant to be part of a well written, well-explained design, but for any given design there seems to be a better way to draw it than UML diagrams.

2
BjoernKW 8 hours ago 0 replies      
A few months ago I wrote this https://news.ycombinator.com/item?id=12879493 and I think that's still valid.

Simplified UML class diagrams (i.e. boxes and arrows) are expedient for explaining specific aspects of a design. Complex class diagrams trying to give an all-encompassing picture of an application: Not so much.

Sequence and activity diagrams can be quite useful for clarifying application state, too.

3
kpil 18 hours ago 1 reply      
I think that entity-relation diagrams are underused, especially when analysing requirements with stake holders.

Unfortunately a lot of otherwise capable people that could benefit from some simple structuring of things and their relations have never thought about the world in that way and may take a little while to catch up.

In some cases I have found it to be easier to represent one-to-many relations as a bunch of stacked boxes on the "many" side. But that only works once...

Sequence diagrams and state-charts helps from time to time, but does not really help much when talking to non-professionals.

But I don't really like the very formal UML. Some bubbles, arrows and crow's feet will do fine in most cases. The precision promised by UML is really a lie, as most diagrams are simplifications and can probably not represent the actual complexity in anything that warrants the use of UML...

Anyway, I think it might actually be a good idea to do some simple entity-relationship analysis in schools at some point, if not to just get another tool for sorting out the mess.

The underlying reason that led to OO-languages still exists, namely that a lot of things can be described rather nicely with entity-relation maps. It's just unfortunate that the "relation" part was forgotten, and all energy was spent on wrestling various languages into bizarre "OO" hacks such as C++.

4
7ewis 9 hours ago 1 reply      
I'm doing a degree part-time, online, and that's the only time I've ever used UML.

I work at a kind of graduated tech start up, so we're doing most things the modern way. I've never even heard anyone mention UML.

5
arca_vorago 1 day ago 0 replies      
In the sysadmin world yes but not nearly enough. UML along with similar ones like blockdiag and nwdiag interface nicely with my documentation systems in orgmode and asciidoc.

One of my side projects is an automated nwdiag mapping system with diff's to be able to help sysadmins coming in blind to orgs (happens way more than you'd think, usually a 5 yr old visio file somewhere).

Anyway, in the future I see uml style things as useful for similar automation projects, due to the simple text nature.

Also, I live in a terminal most of the time so personally prefer stuff like nwdiag over say visio or some of the alternatives.

I also used to make repair flowcharts with seqdiag for my t1 and 2s.

6
palidanx 15 hours ago 0 replies      
For software projects with new clients, I use cacoo.com and create simple domain and sequence diagrams to capture more complex workflows. I usually don't tell them it is UML and say these diagrams help better express workflows.
7
kbody 10 hours ago 0 replies      
In the past 2 jobs even though it was just small startups with less than 5 devs, we used them in relatively critical or complex cases, but it wasn't anything formal (e.g. for every major component introduced do this).

I personally like them, maybe because I like thinking of the big picture no matter the task, plus we had extensive practice on uni.

8
based2 1 day ago 1 reply      
Yes (ex: with plantUML for a just quick DSL draws) and you can use Archimate too. (http://www.archimatetool.com)

Are you using RUP? https://en.wikipedia.org/wiki/Rational_Unified_Process

9
beders 20 hours ago 1 reply      
I just call all my diagrams "boxes with arrows" nowadays ;)
10
seanwilson 11 hours ago 1 reply      
I've not seen anyone use any UML for years to be honest except for class diagrams or something similar to give a high level architecture overview or to explain how major components interact.
11
softmodeling 13 hours ago 1 reply      
More than we tend to think. Less than I'd like.

But the key to benefiting from UML is to first decide what subset of the whole language you need and focus only on that. Very few companies will find a use for the 13 types of UML diagrams.

12
edimaudo 5 hours ago 0 replies      
Of course! Great design starts with UML.
13
racktash 1 day ago 0 replies      
Where I work, we use it extensively for analysing problems and designing code. It's invaluable for communicating and collaborating on designs.
9
Ask HN: Any bootcamps or courses for intermediate/advanced people?
146 points by sotojuan  2 days ago   91 comments top 34
1
ozanonay 2 days ago 5 replies      
Hi! I'm one of the instructors at Bradfield: https://bradfieldcs.com . We teach computer science to strong programmers, typically those who were self taught, attended bootcamps or weren't quite satisfied with their conventional CS experience.

We teach in small classes, strictly in person in SF. I know this sucks for folk (like OP) who are outside SF, but honestly you can't teach this stuff to a high enough standard remotely. We do get plenty of interstate and international students who visit for a course or two.

We also maintain a self-teaching guide https://teachyourselfcs.com for those who don't need the full classroom experience.

Happy to answer any questions in person: oz@bradfieldcs.com

2
modalduality 2 days ago 4 replies      
Recurse Center: https://www.recurse.com/. Anecdotally, not so easy to get in.
3
soham 2 days ago 5 replies      
[Disclaimer: Shameless self-promotion]

We run something called Interview Kickstart: http://Interviewkickstart.com .

It's a part-time bootcamp focused on preparing for technical interviews at (so-called) top-tier places i.e. places which interview heavily in DS/Algos and Large Scale Design for their core engineering roles, and also make staggeringly high offers. Think G/F/A/Netflix/Amazon/MS etc.

It is intense and also taught by Sr. Engineers working in core systems at these places. There is a rigorous academic take to it, with homework, tests, mock interviews etc.

A little known fact, is that many people come to the program with no intent to look for a job. They are already at good places, paid well, and just want to get better as an engineer, which I think is what you're looking for.

Many have figured out, that the structure and the forcing function challenges them to be better. Most of your peers will have backgrounds in CS/CS, and you'll also see people coming FROM some of the same companies others are aspiring to go to (e.g. Amazon, Microsoft etC).

We start an online cohort every month, where people join from all over US and Canada (and sometimes even other countries).

Feel free to check it out.

4
crispyambulance 2 days ago 2 replies      
Advanced folks will have very specific needs that are hard to meet for any course with a pre-determined curriculum.

Perhaps a better approach would be to hire an expert from a consultancy, negotiate a detailed custom curriculum together and go from there? It would certainly be expensive but perhaps within reach for a small group or for heavily motivated individuals?

5
zumu 2 days ago 0 replies      
How about moocs? Am algorithms class will level you up for sure.

https://www.coursera.org/specializations/algorithms comes to mind.

6
austenallred 2 days ago 1 reply      
Lambda Academy of Computer Science - a six month, full-time deep dive into software engineering and computer science. Closer to a CS degree than a one-month bootcamp. You need to know basic programming before enrolling.

It's free up-front and takes a percentage of income after you get a job, or you can pay up-front.

https://lambdaschool.com/computer-science

(I'm a co-founder, happy to answer any questions)

7
otterpro 2 days ago 1 reply      
Big Nerd's Ranch (https://www.bignerdranch.com/) especialy for mobile app development. Their bootcamp is called "retreat", and they also work as developers and publish books.
8
zengr 2 days ago 2 replies      
I have done CodePath twice and highly recommend for iOS and android bootcamps. https://codepath.com/
9
gaius 1 day ago 0 replies      
At this level you should probably just take a Masters. I did mine part time over 2 years while working full time. Many if not most good colleges will offer some sort of programme.
10
baron816 2 days ago 0 replies      
I highly recommend Frontend Masters: https://frontendmasters.com/courses/.

Lots of different courses taught by the likes of Douglas Crockford, Kyle Simpson, Ryan Chenkie, and Kent C Dodds. It's not just front end stuff--they cover data structures and algorithms, building REST apis, Electron and React Native, testing and debugging, functional programming, prototyping, and even SEO.

11
spudsfurious 1 day ago 1 reply      
Profuse apologies in that this is not a so-called boot camp type avenue, but if you're really interested in some computer science concepts, UMass Dartmouth offers a computer science certificate.

http://www.umassd.edu/extension/programs/computerscienceonli...

12
jbot29 2 days ago 0 replies      
I have been working on this idea for a little bit. Started putting together a list of intermediate projects for people that finished a bootcamp. It is still in its infancy. I ran a programming bootcamp for a year and a half and think there is a need for this, but still figuring out the right way.

https://github.com/Jbot29/intermediate-programming-projects

13
eorge_g 2 days ago 1 reply      
This is heavy ruby/rails focused but has other content as well. Tagline is "Get the junior out of your title"

https://thoughtbot.com/upcase/

14
sixhobbits 2 days ago 1 reply      
I'm working with Hyperion Development[0] which has a wide variety of online bootcamps with 1:1 mentor support. We have courses targeting beginner, intermediate, and advanced. Currently we are just about to deploy a big update but have a look and you might find what you are looking for.

[0] https://hyperiondev.com

15
mcx 2 days ago 3 replies      
If you're in SF: https://bradfieldcs.com/
16
valbaca 2 days ago 1 reply      
Udacity Nanodegrees are geared toward "post-beginners looking to specialize" (my words, not theirs).

https://www.udacity.com/nanodegree

For example, the Android nanodegree assumes you're already familiar with Java and OOP, but not with Android.

The "Full Stack Web Developer Nanodegree" suggests you have "Beginner-level experience in Python." (direct quote) https://www.udacity.com/course/full-stack-web-developer-nano...

These courses are not cheap, they take a lot of time, but if you have the time and money, they are absolutely worth it IMO.

17
vikp 2 days ago 0 replies      
I'm the founder of Dataquest (https://www.dataquest.io) -- we teach data science online from the basics, and have a comprehensive curriculum that includes machine learning, spark, and data visualization. You can skip the Python basics and start with more intermediate/advanced material (and build your own projects!).

We also have a data engineering path that teaches more CS fundamentals, and may be a good fit (this is still being developed, but has a few courses).

18
yamalight 1 day ago 0 replies      
Shameless self-promotion:

If you are interested in front-end and/or node.js courses (javascript, react, webpack, all that kind of stuff) - I've been doing a free open source course called "Building products with javascript" [1] that is aimed at intermediate/advanced developers who want to learn javascript more in-depth.

[1] https://github.com/yamalight/building-products-with-js

19
seanlane 1 day ago 0 replies      
MIT's OpenCourseWare [1] has a lot of great material that's as rigorous and in-depth as anywhere you'll ever find. I've been using it to supplement and extend areas where my alma mater's curriculum has fallen a bit short, or where I just want to focus.

[1] https://ocw.mit.edu/index.htm

20
luckycharms810 1 day ago 0 replies      
Highly recommend 'Design of Computer Programs' on Udacity. Its a 300 level class taught by Peter Norvig, and while the quizzes and homework's aren't terribly challenging, its a great way to learn how to break down problems for an intermediate developer.
21
southphillyman 2 days ago 0 replies      
Correct me if I'm wrong but aren't most bootcamps geared toward preparing people for jobs? I feel like in this current market having to attend a bootcamp as a experienced developer would send off negative signals about one's ability to stay up on current tech/trends.
22
lukas 1 day ago 0 replies      
I've been teaching classes on machine learning for engineers (shameless self promotion: https://www.eventbrite.com/e/technical-introduction-to-ai-ma...)

One of the coolest parts of teaching these classes is how awesome the people are that show up. The engineers that want to learn new things mid career are exactly the kind of people I want to work with and hang out with. I think there's a real opportunity for more classes like this.

23
mjhea0 1 day ago 0 replies      
I am building out an advanced-beginner course at http://testdriven.io/. It details how to set up a set of microservices with Flask and Docker. Let me know your thoughts. Cheers!
24
markfer 1 day ago 1 reply      
I've actually been thinking about starting a Sales bootcamp aimed at teaching technical founders, or people with no background in sales.

Not sure if there would be any interest though.

25
nilkn 2 days ago 0 replies      
This is not exactly what you're looking for, but it's somewhat similar and may be of interest to some readers of this thread.

The Google Brain team accepts residents:

https://research.google.com/teams/brain/residency/

It's similar to a one-year research-focused advanced degree in machine learning (with the focus being, of course, entirely on deep learning).

26
werber 2 days ago 0 replies      
Not a bootcamp, but egghead.io is a fantastic resource, and udemy can be an awesome resource for specific classes (but there is a lot of junk to wade through)
27
shadyrudy 2 days ago 0 replies      
Want to learn SQL Server from the best? Check out SQL Skills: https://www.sqlskills.com/sql-server-training/immersion-even... They are the best and most comprehensive. Not associated with them, but a long time, satisfied customer.
28
prettygenius 2 days ago 0 replies      
Does anyone have experience with https://www.udemy.com/intermediate-advanced-java-programming...? I've been eyeballing it for a while, $10 is cheap but I'm afraid that's also indicative of the quality.
29
shalperin 1 day ago 0 replies      
I'm surprised that Coursera and Udacity don't figure higher in the responses. There are a tonne of advanced algorithms, machine learning, data science, and domain specific stuff on there like computational biology and computational neuroscience.
30
zitterbewegung 2 days ago 0 replies      
Although, part of the program is an intro to python development (which you can easily skip) https://www.dataquest.io/ is a set of guided lessons that teach you data analysis/science/engineering .
31
tarheeljason 2 days ago 1 reply      
For data science: http://insightdatascience.com/ only accepts those who have completed a PhD
32
asimpletune 2 days ago 0 replies      
There's a great option here in SF called BradfieldCS.
33
jancsika 2 days ago 0 replies      
> I'm past the stage where I need a course on Python syntax or HTML.

It's hard to guess what stage you are at.

What have you built so far in Python?

34
Maven911 2 days ago 0 replies      
this is more of an AI bent to it but I have heard good things about the following in NY that comes with a job placement:

http://ivydatascience.com/

10
Ask HN: How do you manage your daily non-work related tasks?
29 points by yotamoron  6 hours ago   48 comments top 32
1
mbrock 5 hours ago 8 replies      
I let them pile up into a big anxious horror too repulsive to even approach until absolutely necessary, at which point I sloppily and with great frustration do the very least I can to somehow postpone the ever-escalating disaster that will be my personal undoing.

You mean you think there's another way?

2
Xcelerate 5 hours ago 2 replies      
Trello. My wife uses it as well. It sounds silly at first to use something so engineering/workplace minded in a relationship, but it actually works really well for us because my wife and I have two very different styles of task management (and as newlyweds, we needed to quickly figure out a workable system!)

Her strategy is to break all tasks into little manageable chunks and complete them over a period of weeks. My strategy is to sort all tasks into a giant priority queue and then complete each task in one non-stop session as late as possible but early enough that is still gets done. For those who are deadline-averse, my strategy is clearly anxiety inducing, so Trello allows to us pick dates for each other that we would like tasks to be completed by. So far, this has eliminated all difficulties and confusion involved in getting stuff done.

The next step is establishing a shared calendar so we can track events, but I haven't found one I like yet.

3
smilesnd 5 hours ago 0 replies      
I work from home and do the 60 work 15 no work. For those that never heard of this practice you spend a certain amount of time doing work then take a short break. I spend at least 60 min working no matter the pain and suffering or any other distractions that may come my way. Then I spend 15 min doing something else that doesn't involve sitting at my computer. Those 15 min are typically spent on cleaning something around the house like throwing in a load of laundry, vacuuming the floor, and such. You be surprise how more productive you are taking a short break from time to time, and how much you can get done in a short break.
4
ellius 3 hours ago 0 replies      
I recently started using GTD. It's a system with three main principles:

1. You need to get all "open loops"anything you think you need to do or want to doout of your head and written down. You naturally get rid of these whenever you find yourself mulling over them and distracting from your main task.

2. They should be put in a trusted system that is both complete and has no duplication. Usually this should be separated by context (things to do at work, at home, etc). You should have just this one system, and not jump around between several ad hoc systems (an email inbox here, a list on the fridge there).

3. Each item needs a defined next physical action. So you can't just have something like "plan vacation." You need that to have an attached next action, such as "google hotels in Miami and make a list of options." And then when that's done you replace it with the next physical action and so on, until "plan vacation" is done.

I combine this with a homespun version of pomodoro (where I both work on tasks in 25 minute chunks and block my internet access with apps like Freedom and Stayfocusd for that amount of time). I also review my lists during break periods to get confident I'm doing the right thing. In just a few months I've cleared out a lot of my backlog and removed a lot of the background anxiety that had been plaguing my free time.

5
5_minutes 5 hours ago 0 replies      
I'm using Things 3 for the moment. It's nice because it integrates also with Gmail Calendar and iCal.

Truth is, I'm cycling between to-do list productivity tools every few months. OmniFocus could do anything you want, but can get quite complicated too. Things and Todoist are simple and straightforward, but are missing some essential (advanced) things. I can't seem to find the tool with that right sweet spot. I guess I love procrastinating with fiddling for the best tool configuration.

That said, I also often fallback to using pen&paper, and writing in the morning the 5 things that really should be completed today, and that seems to work very well too.

6
flatfilefan 4 hours ago 0 replies      
A rule of piles - pile up things you don't know how to sort in one place but keep the rest of the space clean. This can be applied to room cleaning but also to your tasks. There a todo list can serve as a 'mental' pile for tasks. This helps immensely to keep your mind from multitasking between actually doing some work or resting and self-reflection on the things you haven't sorted yet.
7
Tade0 4 hours ago 0 replies      
I outsource them to my spouse. I pay with her rage.

But seriously: I routinize. Saturday is cleaning day, every four days I go get groceries(our fridge is rather small).

8
dguo 5 hours ago 1 reply      
Combination of Todoist [1] and Google Calendar. To make up for my poor memory, I've started to put everything I have to do in them.

For example, I have annually recurring tasks in Todoist to get Father's/Mother's Day gifts two weeks before the actual days and then separate tasks to call my parents on the actual days.

While it has been very effective for me, it might be leading to a Google-like effect [2] where my memory seems to be getting worse because I know I have a crutch.

I am also trying to maintain a daily routine (to make sure I do important things like exercise) and to finish unpleasant tasks in the morning before all the fun stuff.

[1] https://todoist.com/

[2] http://www.yalescientific.org/2013/05/is-google-ruining-your...

9
erikb 5 hours ago 0 replies      
I can't do any of the todo-list stuff after work, for the basic reason that it also feels like work when done this way. Also I usually spend too much energy at work so afterwards I don't have any left to motivate myself etc. Ergo: Zero effort or it won't be done.

So the first thing I do is I put reminders where I see them. For instance there's a contract for a telephone provider I need to quit. The box connected to the provider is laying right there next to the computer I'm typing this on. This way it gets into my head and if I don't have higher priority tasks I will think about it regularly, without ever actually pushing myself to it.

Then instead of already resolving the issue (which in itself would cost energy) I procrastinate by planning or doing simple steps toward the goal. In this case it may be checking out on the website of the company how their quitting process works. After that I feel like I achieved something and successfully avoided doing actual work at the same time. That's the best reward for doing part of the job, feeling like you cheated your boss (in this case your inner moral guard).

And when there's really not anything left it most often means that the last step really isn't any effort anymore. So when I have everything prepared I just need to write a short text, and send it to the company, and be done with it. Because everything was planned out and prepped already.

Last but not least, if I really can't convince myself to even do a small step like googling the website of the company, then it probably means I'm too exhausted and instead of doing any serious tasks I really should take a walk and a nap, which I then also have motivation for since it also avoids doing the painful highest prio task.

Yeah, it's a slow process, but it actually hacks your brain into doing real work while it thinks it's procastinating, instead of the other way around.

10
ccozan 5 hours ago 0 replies      
A real whiteboard! Easy to edit and organize. With colors too!
11
mezod 5 hours ago 1 reply      
I have my own set of tools to try to help me in that regard. I keep iterating on it to try to find a flexible solution that covers as much as possible, long term goals, short term goals, projects, etc. I use https://everydaycheck.com to list all the things I want to work on every day, and https://multikanban.com to manage my multiple personal projects. In the end, one divides to conquer, while the other helps me sure I conquer at least one task a day!
12
onion2k 5 hours ago 2 replies      
I don't manage them. Managing tasks doesn't change the likelihood of them being done; it only changes the order in which they'll get done, if they get done at all. Changing the way you plan won't magically motivate you to do stuff.

The way I get tasks done is by doing them immediately I see that they need doing. If you can develop that habit then tasks won't even need managing, you won't need to set time aside to do things, and you'll always be on top of things. Sometimes it's really hard work to keep at it but your future self will thank you.

13
_jal 4 hours ago 0 replies      
I use Omnifocus and a physical notebook.

Omnifocus: I throw everything that comes to mind to the inbox, whenever it occurs to me. Usually on weekends or whenever I panic about feeling things are spinning out of control, I'll go through and organize it, grouping things and adding dates. In the morning while waking up, I browse a bit, deciding what needs to happen.

Two things that work well for me about it:

- the geolocation context stuff is a godsend for remembering random things I need to pick up.

- The fact that uncompleted tasks don't automatically roll forward means I don't constantly have 647 overdue items, and makes me think about what I'm actually, really going to get done.

Notebook: Paper still works best for me for a lot of things. I still make lists there, sketch box diagrams when thinking through things, sketch ideas for stuff to make, collect random info, things that amuse me, etc. Also, it serves as a binder for loose paper/receipts/etc that are still in-flight. I trained myself to write the date and location on every page, and to write out sufficient context for even throwaway notes to actually remember what a given thing is later. This makes them very useful after they're full - I have years of full notebooks on my shelf and reference them more than you might think.

Some not-strictly-related things that reduce the cognitive load of existence for me:

- Once I got to a financial place where I could, I forced myself to start paying every bill the minute it came in. Not having to mentally keep track of due dates and all of that leaves room for worrying about a bunch of other stuff. Nobody gets auto-withdrawl permission, but doing things this way offers the same effect and is trivially easy now that everything is online.

- I scan any paper artifact that doesn't need to be paper. Organizing it is still tedious, but the payoff of actually being able to find something when I need it seems magic. Things tend to build up until I spend a couple hours on it, and then in to the shredder they go. Make sure your backup regimen is solid.

- A little, slightly hokey thing that nonetheless is useful for me: I started writing my (nonwork) goals on a whiteboard in my home office. Just whatever is important right now. Having it physically on the wall seems to provide a little bit of focus, something I frequently need.

14
RBerenguel 3 hours ago 0 replies      
I use an app called 2Do (obviously, a task manager). It's where I centralise my work and non-work tasks (for work tasks I create specific projects and tasks out of the user stories I'm working on). Also I "outsource" tasks to my partner, when I can (and she does the same) :)
15
mikehollinger 5 hours ago 0 replies      
For one off items with no clear date, "People that I owe something" and "People who owe me something" lists, managed in apple's todo apps.

For things that have a clear deadline - calendar entries blocking time to go work on whatever it is (i.e. "Research deals for fall vacation").

I've found that writing things into either of those categories clarifies things a bit. Personal tasks end up being in the "I owe" lists, with my own name next to them.

16
someSven 5 hours ago 1 reply      
taskwarrior on Linux shell, but also for work. I'm kind of meditating every day over it for a while, doing some adjustments, until I get myself to do something.
17
shotgungg 5 hours ago 0 replies      
I recently wrote about how I handle pretty much everything related with work here[1]. It can easily be applied outside of work. hope it helps

I personally just use evernote and list everything there.

[1] https://medium.com/@jmrocela/an-organized-chaos-5c844f8a9c82

18
accnt 5 hours ago 0 replies      
I like to keep track of all things: shopping list, payments, projects, appointments and so on. In doing so I know when I'm way behind as there is a pile of items in "pending".

So I use Trello (most tasks, projects) integrated with Calendar (appointments, due dates) and Google Sheets (all payments, due dates).

19
nvr219 5 hours ago 0 replies      
Calendar for time-sensitive tasks, reminders for everything else including location-sensitive tasks. I also meet with my wife every Sunday night to review everything four weeks out, so we know who's doing what.
20
qrbLPHiKpiux 5 hours ago 0 replies      
Pen and paper.
21
Akarnani 5 hours ago 0 replies      
I try to routine-ize as many of them as possible so it's on autopilot. Sunday afternoons get time scheduled in the calendar to take care of one off items.
22
mojoe 5 hours ago 0 replies      
Google Keep -- when I think of something that needs done, I write it down and set a reminder for the next available non-work time.
23
binaryanomaly 3 hours ago 0 replies      
Todoist and Calendar. Mostly on mac and ios but also win/lin.
24
chrishn 5 hours ago 0 replies      
Reminders app.
25
wheelerwj 5 hours ago 0 replies      
work and "non-work" are the same thing to me. it all goes into trello or jira, then synced with a time management tool. so i track the amount of time i spend doing everything.
26
girzel 5 hours ago 0 replies      
Org in Emacs, synced to my phone's calendar with Radicale.
27
thegoldenboy 4 hours ago 0 replies      
28
insulanian 4 hours ago 0 replies      
Trello + Google Calendar
29
alexilliamson 5 hours ago 0 replies      
GTD 4 life
30
alexpetralia 5 hours ago 0 replies      
Google Keep runs my life.
31
UnoriginalGuy 5 hours ago 0 replies      
Same way I managed my work related tasks, KanBan board.
32
j45 5 hours ago 1 reply      
I put it on a calendar app that allows floating tasks that can automatically move/carry over to the next day. Helps when I have to get something done over a week.

Currently using pocket informant, I'm sure there's others too.

11
Ask HN: What is your password management solution?
179 points by ericb  1 day ago   285 comments top 85
1
benjaminjosephw 1 day ago 6 replies      
`pass` is a nice command line tool that stores gpg2 encrypted password files. It's simple, super handy and doesn't require you to trust any third party with what you're storing.website: https://www.passwordstore.org/man page: https://git.zx2c4.com/password-store/about/
2
dannysu 1 day ago 8 replies      
I use KeePassXC [1], which is open-source, and I sync it across my iPhone, Windows laptop, and Linux desktop via Tresorit [2] (like Dropbox but end-to-end encrypted). It's secured with a password that I know, and a keyfile that I have. I don't sync the keyfile and always manually transfer to new computers.

I also use Arq [3] to automatically backup to S3 every hour, and I also do manual backup to my external backup drives once in a while.

 [1]: https://keepassxc.org [2]: https://tresorit.com [3]: https://www.arqbackup.com

3
dheera 1 day ago 13 replies      
This is my password manager.

 password = b64encode(hashlib.pbkdf2_hmac( 'sha256', (master_password + '/' + domain).encode(), b'', 100000 + n )).decode()[0:16] + 'Aa$1'
master_password = some master password that you never write or store anywhere

domain = domain name for the service in question, e.g. 'facebook.com'

n = the nth password being generated for the domain (typically 0)

The 'Aa$1' is to ensure satisfaction of stupid password rules on various websites.

Advantages:

- Open source. You don't have to use some random person's password manager software that you have no clue how or where the passwords are being stored or the trustability of the people who wrote the software.

- Portability. You can run this on any OS including a phone with a Python implementation, and it's pretty easy to port the above to any other language with a hash library.

- No files to lose. You don't need to worry about losing a password manager's database, you don't need to worry about syncing the database across machines, and you can compute the above on any machine that you own and trust. Kernel panics while you're on vacation? No worries! Reformat your PC with a fresh Ubuntu install and compute the above to get access to your bank account, plane tickets, and e-mail again.

4
jzast2 1 day ago 4 replies      
https://www.lastpass.com

Free to use, auto password generation, has an iOS app with thumb print unlock (saves you from typing in a long master password).

I personally really enjoy it.

5
linopolus 1 day ago 3 replies      
1Password. Don't know what they're about on Windows, as I'm happy to not use this shit anymore. On Mac and iPhone, I can happily use the newest version without any subscription or anything (which I didn't even knew about)..
6
onetom 1 day ago 2 replies      
Subscription to 1Password is not mandatory.Or at least it was not in the past.Without a subscription, you can create local vaults which can be synced via Dropbox, iCloud or over WiFi within the same subnet (which means over VPN too).

Here is some documentation on the Dropbox sync for example:https://support.1password.com/sync-with-dropbox/

7
mhw 1 day ago 1 reply      
PasswordSafe - https://pwsafe.org

I use the open source version on Linux and Windows, and https://pwsafe.info on Mac and iOS, all syncing through Dropbox.

8
temporaneous 1 day ago 1 reply      
I memorize my passwords and reuse them to a large extent. Strength of the password is actually a lot less important than the website's security and the value of the account.

* relatively weak/old passwords for sites I don't care about and would lose nothing if they were compromised (vast majority)

* a couple relatively strong passwords for the 5-6 sites I don't want compromised, but wouldn't have huge consequences and could be email recoverable.

* unique strong passwords for a couple vital services such as email account.

The re-use depends somewhat on how much I trust the site's security. Also I cycle occasionally by introducing new passwords at the "top" and moving those passwords "down" to less important sites.

9
zachrose 1 day ago 3 replies      
1) Make up a unique password on the spot.2) Log in and forget it.3) Reset password.

Works every time.

10
dewey 1 day ago 2 replies      
1Password & gopass (https://www.justwatch.com/gopass/, it's "pass" compatible if you are using that already). I don't really mind the subscription service as it works fine across all platforms I use.
11
fgcbs 3 hours ago 0 replies      
I have used for year a KISS (Keep it simple) solution: I have a directory encrypted with encfs where I keep all sensitive data. The directory is shared through dropox by all my devices. In this directory I keep a plain text file with all passwords, domain, used email.... It is actually a YAML file cause I also have a simple groovy scripts that pastes the password (given domain or key) in my clipboard, but any text file would do the job. As simple as that.
12
joshuahutt 1 day ago 0 replies      
I used KeePass on Windows, and I use KeeWeb on Mac. KeeWeb is fast to search, allows for the inclusion of arbitrary data and tags, has a password generator, and it does autotype, which is nice. Also, it's open source.

http://keepass.info/https://keeweb.info/

13
jobvandervoort 1 day ago 2 replies      
> I want something that keeps an encrypted file that I can put in dropbox

FWIW You can do this with 1Password. Preferences > Sync > Sync with Dropbox

14
jchw 8 hours ago 0 replies      
Interestingly enough, I immediately moved from LastPass to 1password when I heard about the subscription service. Why? Because I trust AgileBits but last time I wanted to run 1password I was going to need to pay a shit ton of money just to get it on Most of my platforms. Now, overall I'll pay more money, but I don't have to worry about how many platforms I use or upgrading periodically.

Plus, syncing is done right automatically. Sure, AgileBits could go out of business and I'd not be able to use 1password anymore. That's fine. It took one day to switch from LastPass. The lock-in is minimal. I'd rather not continue using a piece of security software without updates being released.

(Even if they did, I have a gut feeling they are classy enough to open source the server, though. It looks like the app already is built with the possibility of connecting to 3rd party sync servers.)

And it looks like a real solution is in the works for Linux finally, so there's that.

15
stirner 1 day ago 1 reply      
I use iCloud Keychain on macOS and iOS. Both operating systems include a rudimentary interface for managing passwords, and automatically store passwords entered in Safari. Keychain Access on macOS also allows to create secure notes on iCloud Keychain.
16
richardpetersen 1 day ago 6 replies      
Enpass all the way. Free and works with dropbox
17
odammit 1 day ago 0 replies      
All of my passwords are kitt3nZ!PIzZA837591&#! Which I simply copy and paste out of an iCloud Note.

I use HashiCorps vault running on a micro EC2 with a small API written around it. Then I access it using a CLI I built and a key pair.

Pros:

- I don't pay for a service (the ec2 instance was already running)

- I don't use someone else's software that is hopefully secure

- I got to play with Vault for an afternoon

Cons:

- I've probably done something wrong and I'll end up paying for it the hard way eventually

- I had to spend about an hour building something

18
duebbert 1 day ago 0 replies      
Oh I gotta show off my Keepass (http://keepass.info) with Ubuntu on Win10 setup which I just sorted out this week. The Keepass DB is saved on Dropbox.

I use it for all my passwords but crucially also as a SSH Agent for Bash, Git, Pycharm and WinSCP. My SSH keys are in Keepass and it gets used by Git, Pycharm and WinSCP. So all I need to do is unlock the database and it just works when using SSH in Bash or Pycharm or WinSCP or Git.

Anyway, the setup was a bit tricky to find out but it works very well (for me) now. I have documented it here because it might be useful to others: https://gist.github.com/duebbert/6a152ad2030e8dcb6d860802758...

19
wazoox 1 day ago 0 replies      
I'm using KeepassX with Dropbox. I store the database on Dropbox, so that it's available on my computers running different OSes (Ubuntu, Slackware, MacOS) and my phone at all times.I'll probably get rid of Dropbox at some point, but I'll keep the same method, which gives me complete satisfaction.
20
ameister14 1 day ago 5 replies      
I just use lines of poetry for my passwords. They're long enough, complex enough, but extremely easy for humans to memorize.
21
retor 1 day ago 2 replies      
Google passwords. I trust their engineering, it's free, passwords are accessible as long as I have a browser and it comes with Chrome.

Negatives: I can't do backups, easily migrate to another supplier and it won't work automatically with other browsers. And it's Google (feels privacy invasive)

22
wodenokoto 1 day ago 0 replies      
I use a system where I mix a counter, a master password and website URL.

I don't hash it via a software algorithm, it is a system simple enough to do in my head.

I basically only have to keep track of the counter for the few websites that have forced me to change password.

The counter exist both as a number and spelled out, ensuring that changes in password differs enough for websites that require new passwords to not be similar to old passwords.

It is as secure as any 8-10 character password, except if a person is targeting me, and manages to get 2 or more passwords, there is a chance that they'll notice the system.

But if I am targeted by someone who can crack multiple of my online passwords, then I have pretty much given up hope for my safety.

23
leemck 16 hours ago 0 replies      
I have been managing passwords for more than 12 years with an encrypted vi file. Inside the file, every login uses a unique password. I generate unique passwords in batches of 100 or so using a script that I list below.

This scheme has the obvious single point of entry weakness and a further keystroke logger vulnerability. I have never had any of the 360+ accounts and logins compromised.

It is very important to not use the browser for secure activity if one has been browsing Internet junk recently. I have no doubt that all kinds of keystroke logging scripts do get started. I occasionally run rkhunter and top looking for intrusions and compromises.

Script for making big batches of passwords:

 File of passwords. First 99 are lettes usable for names, next 100 is pasword strings. 1-6-2008 Here is the command line: (/usr/bin/apg -a 1 -n 99 -m 11 -x 13 -M CL; /usr/bin/apg -a 1 -n 100 -m 17 -x 23 -M NCL ) | cat -n

24
danieldk 1 day ago 0 replies      
If the problem is storing data in the cloud, you can still store data locally (outside the 1Password cloud) with the subscription version. Go to "Preferences" -> "Advanced" -> "Allow creation of vaults outside of 1Password accounts".
25
rnentjes 10 hours ago 0 replies      
A while back I was looking for an online password manager that you can host yourself (I don't trust my passwords with anyone else).

I couldn't find one that matched my requirements so I build one myself:

https://github.com/rnentjes/simple-password-manager

26
grigory 1 day ago 0 replies      
I use passpack to generate/store passwords, remember them in Firefox, and let Firefox Sync get them onto my different devices. Works pretty well!

My host of devices includes multiple laptops (Linux, OS X) and many different phones - both Android and iOS. Since Firefox runs everywhere, this works nicely. Firefox Sync has end-to-end encryption, but data stored at-rest on devices is guarded purely by physical access, which is fine for my use cases.

27
lazard 1 day ago 0 replies      
I used pwclip [1] for several years but I no longer believe that hash-based password managers are the best plan. Now I'm using Seal [2], which is like pass but doesn't depend on gpg.

[1] https://github.com/davidlazar/pwclip

[2] https://github.com/davidlazar/seal

28
skinnymuch 1 day ago 0 replies      
I use 1Password and have used it for 5+ year a now and love it. I used to pay one time fees. They were doing a sale for their pricey subscription service when my business partner got interested in using a password manager. So he bought an annual subscription for the both of us at a sale price. I think it ends up being $60 a year for the both of us.

Being able to use different shared password vaults has helped us a lot. As our business entails going through lots of quick sites before moving on to new ones, along with working with different partners.

Sure it still isn't "cheap", but I get a good app and browser plugins on all major platforms.

I highly prefer 1PW to Lastpass because it is much easier to get a lot of different form fields saved into 1PW along with easily adding any number of your own. Lastpass plugins also aren't the greatest.

I'd move to KeePass if I hadn't to stop using 1PW. But I doubt I'll switch while doing business. Shared repos integrated tightly into the UX is too helpful.

29
makmanalp 1 day ago 0 replies      
Of the open source password wallet solutions, which ones have actually been audited?
30
rdl 1 day ago 0 replies      
I currently use 1Password (local) on iOS and OSX, and use 2FA wherever possible as well.

I'm unhappy with support for windows/linux/chromeos, so I was already looking for alternatives.

I manage certain passwords (PGP keys, some very high privilege accounts, etc.) separately (primarily offline, and some split).

Considering building/paying to have built something that truly meets my needs, since my needs are fairly general.

31
FfejL 1 day ago 1 reply      
Enpass, all the way. Free (Gratis) on Mac, Windows & Linux, US$10 for iPhone or Android.

100% local storage, or sync the encrypted file via Dropbox.

32
0xTJ 1 day ago 0 replies      
I use Keepass 2. With a plugin, it's synced to Dropbox, where I can access it on my Android device with one of the compatible apps.
33
JesseAldridge 1 day ago 0 replies      
I have one simple master password. I modify it slightly based on the url of each website. I have a text file backed up on Dropbox with any special rules for the password on each website (e.g. "turbotax: capitalized + bang").

Works great as long as you can resist the urge to tell other people about your system!

34
bgschiller 1 day ago 0 replies      
I wrote about my (mac-specific) pass setup at https://brianschiller.com/blog/2016/08/31/gnu-pass-alfred

It uses Alfred to get fast, autocompleted access to passwords.

35
jasonincanada 1 day ago 1 reply      
I rolled my own solution a couple years ago: https://gridpass.io/

Your master password is remembered visually, instead of as an arbitrary string. My contention is that you're less likely to forget specific spots on distinct images than an arbitrary sequence of characters. The method has worked perfectly for me since I began using it, but only one other person I know uses it, and it has NOT been audited or scrutinized by an expert in the field. Nonetheless, check it out. It's free, being more of an idea than a technology. Besides, I can't charge you for something you've stored in your own visual cortex!

36
jvehent 1 day ago 1 reply      
I wrote https://github.com/mozilla/sops to manage secrets in our deployments, and also use it as my personal password store, to encrypt a file stored in a private git repo.
37
marvelous 1 day ago 0 replies      
I use Firefox sync for my web needs and a plain text file (on my encrypted laptop) for everything else that doesn't fit into that. The more sensitive stuff (credit card, computer unlock) is in my brain with a hidden paper backup.
38
Leftium 1 day ago 1 reply      
I use https://pwdhash.com algorithmic password generator. It is the sweet spot of more security without too much added frustration.

Usually I use the Chrome extension, but when that fails I built a more user friendly web interface: https://ph.leftium.com

To avoid having to change all my passwords at once when one password must be changed, I suffix my master password with a sequential suffix. In the worst case, the last few suffixes don't work and I use the service's password reset feature to update the password to the latest suffix.

39
cmcginty 1 day ago 0 replies      
I use MacPass (KeePass OS X client) and sync the DB with a (2FA enabled) Box Sync account.

I use the Chrome ChromIPass plugin for user/passwords autofill. There is also a FF plugin, but I usually stick with Chrome these days.

I tried to switch to Lastpass but I found that a) the plugin was a terrible resource hog and b) would make some sites unusable due to ridiculous page load times. Obviously it works for some people, but the attack vector of sites like LastPass are so large, I was never comfortable following the masses.

40
nzealand 21 hours ago 0 replies      
I use firefox bookmarks synced using Xmarks.

Each account has a unique email address, and important accounts have a unique password element added.

I use firefox bookmarks to note down in a cryptic manner any variations to the common themes I use. The bookmarks are synced across computers.

The upshot is I always use firefox bookmarks to log in to a site, which means I am not clicking links from emails and I am always in an extension free browser.

41
latkin 1 day ago 0 replies      
1Password synced w/ Dropbox. Using Windows, MacOS + Android support. Very unhappy about the recent push toward subscription-based model, though, so I'm starting to look around for something new. Lots of good options in this thread.

For those in need of a cross-platform (Windows, Mac, Linux), open source 1Password CLI client, check out https://github.com/latkin/1poshword (disclaimer: my project)

42
standalone1p 1 day ago 0 replies      
MacOS version still able to buy standalone license here without signing up for an account:

https://agilebits.com/store

43
TazeTSchnitzel 1 day ago 0 replies      
I use an encrypted disk image (in this case a macOS .dmg, but it could be any similar format) filled with text files that I edit in vim.

I don't use random passwords, I use (mostly) memorable ones. I mount the disk image only when I forget one. It's an aid to help me memorise passwords and keep track of important information (reference numbers etc), not a single point of failure without which I can't get into anything.

44
ruanmartinelli 1 day ago 1 reply      
Enpass is what you are looking for!
45
free_everybody 1 day ago 0 replies      
I use keeweb as a desktop app, and I save the file locally, backing up to gdrive and cold storage hard drive weekly.

My laptop is my primary device so I'm not too concerned with logging into accounts on mobile, but if I really needed to get my passwords without my laptop, I could get use the keeweb web app with my gdrive backup.

https://keeweb.info/

46
bantunes 1 day ago 0 replies      
I use a Mooltipass Mini https://www.themooltipass.com
47
bgrohman 1 day ago 1 reply      
I switched from LastPass to KeePassXC a few months ago after reading about some LastPass security problems. I really like KeePassXC.
48
rntksi 1 day ago 0 replies      
https://spideroak.com/personal/encryptr

You can have this on MacOS, Windows, your smartphone.

Great when you only have your phone with you and you need to login somewhere to do stuff.

49
paulrd 1 day ago 0 replies      
I use Universal Password Manager (UPM). It runs everywhere, syncs to dropbox (or wherever), pretty fast start time even though it's java. Github link: https://github.com/adrian/upm-swing
50
louismerlin 12 hours ago 0 replies      
http://lesspass.com

No database, no problem.

51
madhadron 1 day ago 1 reply      
I still use a GPG encrypted org-mode file. Emacs/org-mode opens it seamlessly.

I feel like I should move to Keepass at some point, but it's one of those cases where if I'm apathetic long enough, Keepass will be gone and I'll still have my Emacs setup.

52
cagey 1 day ago 0 replies      
Password Safe[1] (almost entirely on Windows clients) and version control on home server via ssh. And most of my passwords are memorized by my Google account.

[1] https://pwsafe.org/

53
3pt14159 1 day ago 0 replies      
I use this ruby script:

 print ((rand * 1_000_000_000).to_i.to_s + \ ("a".."z").to_a.sample(10).join + \ ("A".."Z").to_a.sample(10).join + "_")
It solves a number of annoyances. First, it's easy to type on mobile if you need to for some dumb website that clears your input field when you alt-tab, since it sticks to numbers, letters, then capitalised letters. It contains a non-alpha numeric character, but at the end for stupid forms that don't allow them.

As for keeping the passwords around, you can do one of a couple things, but I generally just forget the password after logging in with it everywhere. I'm signed into chrome, so what's the point in remember the password myself? Unless it's something sensitive I don't bother. It's easier to generate a new one than to dig it up.

54
jokoon 1 day ago 0 replies      
Sheet of paper and pen.

Change it every 3 years or so.

Reset my passwords often, have to use my email often.

55
hampo 1 day ago 1 reply      
> I'm a bit unhappy with 1Password. I don't want a subscription service, I want something that keeps an encrypted file that I can put in dropbox.

> What is everyone else using these days?

I use a self made password matrix in paper.

56
raverbashing 1 day ago 0 replies      
gpg -c / gpg -d with master passwords for different things

also one .sh to save the data to a tmp file, open it in your editor then override it (the tmp file) with random data upon exit

57
erikpukinskis 1 day ago 1 reply      
Answering this question publicly is a very bad idea.
58
mosodede 1 day ago 0 replies      
KeePass and KeeWeb are both great interfaces that can read KDBX format. I sync with Dropbox and encrypt with a private key that I carry with me or keep on my main machines.
59
tarp 1 day ago 0 replies      
https://keeweb.info/

You can self host the webapp, or run the desktop app. You can store your file on Dropbox

60
justifier 1 day ago 0 replies      
What are the hidden requirements of your question?

As asked you can just use gpg https://www.gnupg.org

61
SirLJ 1 day ago 0 replies      
My best solution is to not discuss password management on public forums...
62
sakawa 1 day ago 2 replies      
Just a follow up: what do you use for secrets files, like ssh keys?

Everytime I find my self in some mess with too many keys to manage. :\

63
peterwwillis 1 day ago 0 replies      
I memorize multiple passwords.
64
SAI_Peregrinus 22 hours ago 0 replies      
KeePass2 is my preferred password manager. KeePass2Android is a good Android app version.
66
miguelrochefort 1 day ago 0 replies      
> I want something that keeps an encrypted file that I can put in dropbox.

KeePass.

67
mongol 1 day ago 0 replies      
I think PasswordSafe is good. Combined with storage in OneDrive and the Android app it solves my needs.
68
paulpauper 1 day ago 1 reply      
write it down and put piece of paper in pocket
69
mnm1 1 day ago 0 replies      
Enpass. Does exactly what you describe.
70
srinathkrishna 18 hours ago 0 replies      
vim has a command line switch to encrypt files when they are written. I use my password file on mac, linux and windows and vim works on all these platforms.
71
Havoc 23 hours ago 0 replies      
Lastpass. Not super convinced their security is bullet proof, but meh close enough
72
hungerstrike 1 day ago 0 replies      
I use KeePass on my desktop and KeePass Touch on my phone. It does exactly what you want.
73
krapp 1 day ago 0 replies      
Simple. I only use one password for everything: "Melody Nelson"
74
GlassOuroboros 1 day ago 0 replies      
KeePass inside of a Qubes OS qube.
75
Piccollo 1 day ago 1 reply      
Dashlane
76
Geee 1 day ago 0 replies      
1Password is still available without subscription.
77
maxxxxx 1 day ago 1 reply      
I use passpack.com.
78
tavish1 23 hours ago 0 replies      
pass - passwordstore, syncthing on laptop and phone, and password manager and openkeychain on phone
79
narak 1 day ago 0 replies      
Password Safe + pwSafe ios and mac clients + Dropbox
80
chippy 1 day ago 2 replies      
For generating a quick and I imagine a reasonably secure password I use:

 date | md5sum

81
X86BSD 1 day ago 0 replies      
I use Vault from hashi corp for everything.
82
proactivesvcs 1 day ago 0 replies      
KeePass with a Yubikey for TOTP. Database and metadata is synced between devices via Syncthing.
83
jedisct1 1 day ago 0 replies      
Enpass.
84
Adam89 1 day ago 0 replies      
1password
85
teddyqwerty 1 day ago 3 replies      
Roboform
13
Tell HN: I want to teach you finance. In 30 mins. For free
11 points by swyx  18 hours ago   10 comments top 6
1
payrainbow 4 hours ago 1 reply      
I would love to learn more and have an exchange of ideas. amonxnye@gmail.com
2
roshan_arhsim 14 hours ago 1 reply      
It would be awesome if you can make a video /course on a topic you think everyone should know. I would be happy to pay for it to learn more about taxes.
3
avisaven 18 hours ago 0 replies      
I'd love to talk about cryptocurrencies/software engineering/cybersecurity if you're interested.avi . saven (at) gmail
4
c0l0nelpanic 15 hours ago 0 replies      
I'm a software engineer and would love to have an exchange of ideas. the.latoya.banks@gmail.com
5
SirLJ 6 hours ago 1 reply      
How about a more detailed CV with exact positions and company names and contact information and a track record? Free financial advice is always a scary proposition to me, maybe because I work in security and my job makes me cynical and a little paranoid...
6
sakuraiben 15 hours ago 1 reply      
I'd love to discuss finance with you - shuumai0318 at gmail.com
14
Ask HN: What Linux diagnostic tools/commands do you use?
18 points by adampie  1 day ago   10 comments top 9
1
assafmo 31 minutes ago 0 replies      
mostly htop, iotop, pv -d...

EDIT: ... curl, jq, cat, less, grep, awk, lynx, watch, parallel, xargs, head, tail, sqlite3, rsync, scp...

2
bennofs 21 hours ago 0 replies      
strace - to see what a program is doing / where exactly something is failing if the error message is bad

ltrace - same as above, if strace is not enough

perf trace - if you don't know the exact process to strace upfront

https://github.com/brendangregg/perf-tools - to track disk accesses or exec calls

env LD_DEBUG=all - debugging dynamic linker issues

3
JosephRedfern 21 hours ago 1 reply      
I guess it depends what I'm trying to debug, but one thing that seems to be missing from your wrapper is quick logfile inspection. Tailing the last n lines of syslog (or something more specific) is often a good starting point when diagnosing problems.

Perhaps something that performs basic connectivity tests might be useful, too -- pinging the router, an external IP (like 8.8.8.8), and a FQDN (like google.com) would be a good quick test of both internal connectivity, external connectivity, and DNS resolver.

4
deckarep 2 hours ago 0 replies      
htop, iftop, ngrep, tcpdump, lsof, strace, wireshark, nc, telnet, ping, netstat, ps, grep, awk, pv, middleman, curl, jq, mitmproxy, tail, tr....

Okay, ok pretty much all of them. :)

5
irundebian 10 hours ago 0 replies      
Have a look on this picture which maps subsystems to tools: http://www.brendangregg.com/linuxperf.html
6
lobster_johnson 20 hours ago 0 replies      
Per-process I/O and network metrics are super important. I usually use pidstat (-d flag gives you I/O) for this, or read data from /proc directly.
7
amingilani 13 hours ago 0 replies      
top, ps aux, which, find, ls, rm, cd, cat, echo, touch, pbcopy, ssh

That's pretty much it, otherwise I have a whole lot of cli tools too. Things like git, tmux, mosh, rails.. but I guess they don't count.

8
b0n40 13 hours ago 0 replies      
nc, tcpdump, ethtool, htop
9
gricardo99 14 hours ago 0 replies      
lsof

netstat

strace

top

15
Ask HN: Are social games, such as Farmville, dead?
9 points by kermittd  1 day ago   6 comments top 4
1
idunno246 11 hours ago 1 reply      
facebook killed "social gaming." social games became large because fb encouraged spamming invites to get more people to use and grow facebook, and then slowly locked down that channel. So, you could spend $5 in ads to get one user, that user would get 5 friends to join, so it only cost $1/player, and theyd spend $2 on average. This was great for building the platform, but once at critical mass fb needed to capture that money so they squashed the social channels in favor of their ads.

So now what happened is gamers on fb only would spend say $2, without invite spamming at $5 installs you lost money. But turns out people who own iphones spend money more easily. So everyone moved into mobile. While it didnt have the social channels, you could extract say $6 per user, so that $5 per install was still profitable. Before Apple really cracked down on some shady companies(they bot you into the top 10, you get thousands of installs from top 10 placement), you could drive that cost down even further.

Today, all the free to play apps in the app store follow a lot of the same patterns as social games - clash of clans is just a clone of backyard monsters(fb), which was probably a clone of something else. Some have social elements, mostly top charts, but... These games were never truly social, they were just addiction feeding machines. Effectively they just changed the name to f2p on mobile.

2
nwjtkjn 20 hours ago 0 replies      
Perhaps for now, but the ubiquity of smartphones could also bring them back in new and interesting ways. The most recent runaway hit was Pokemon Go, and though it was clearly a fad, it may have had more staying power if the social aspects were stronger, e.g. direct PvP battling.

Caveat: Take what I say with a grain of salt; I've never built a game in my life.

3
tnone 16 hours ago 0 replies      
I'd look into Facebook's actual app policies if I were you.

What made Farmville successful was to basically bribe players into sharing by rewarding them with in game currency. This resulted in a ton of spam.

If that's not outright banned by now, it's possible the feed filter makes those messages all but invisible regardless. They want people to pay to advertise now.

4
GrumpyNl 1 day ago 1 reply      
Take angry bird for example, see where that company is now.
16
Which crypto currency should one invest in and why?
7 points by archeryftw  13 hours ago   4 comments top 4
1
itamarst 5 hours ago 0 replies      
None. It's not an investment, it's speculation, and you have decent chance of losing all your (real) money buying fake money.
2
chintanjoshi 12 hours ago 0 replies      
I would say one should go for Ripple and Bitcoin, as the prices are going down for now, it would be a great time to invest. For ripple the reason is that it is very cheap, compared to other CrypCurys and thus investing in it gains you more and faster retruns. Bitcoin because it is one of the most known CrypCur and is down for now, which I think would surely go up.
3
CCing 9 hours ago 0 replies      
None
4
SirLJ 6 hours ago 0 replies      
There is not enough data to back test a trading strategy, no volume, no reliable exchange, so I don't see any reason to redeploy part of my capital from the stock market to cc, maybe one day all this will change, but until then it is pure gambling to me...
17
Anyone making decent money from a UWP app (not Windows phone) in windows store?
7 points by tony2016  14 hours ago   1 comment top
1
Boothroid 8 hours ago 0 replies      
Crickets only thus far! I'm interested in this also - suspect there is still plenty of money to be made in the less mainstream platforms. Android etc. seem to be so swamped as to make it pointless to contemplate writing apps for them.
20
Ask HN: How do I fix my posture after years at the computer?
21 points by nkkollaw  1 day ago   20 comments top 11
1
tmnvix 1 day ago 2 replies      
Walking.

Aside from the many, many other benefits you'll get from making it a regular habit, it can really help to strengthen the muscles needed to maintain good posture (just be sure to walk with your head held up).

The beauty of walking is that it is so easy to work into your daily life. In the right environment it's a very pleasant thing to do. I often find myself heading out to get lunch and instead of stopping at that place a block away, I'll go an extra couple of blocks just because I'm enjoying the walk (usually, this has something to do with the trains of thought that walking encourages). It never feels in the slightest like 'exercising'. As a programmer, I consider walking while thinking to be one of my most productive activities.

I'm not suggesting that walking is the solution for you, but I'm confident that it will help to improve your posture if you don't already do a lot of it.

2
PaulHoule 1 day ago 1 reply      
If your back is hunched, the solution is to stretch it in the opposite direction: the following works for many people and if you go to a doc or PT and get something like this for first line treatment you are lucky:

https://www.amazon.com/Treat-Your-Back-Robin-McKenzie/dp/095...

Look at the yoga position

https://www.yogajournal.com/poses/cobra-pose#!

Also see

http://reichandlowentherapy.org/Content/Practices/Grounding/...

The bow position is easy to do because you can just stand up and do it as opposed to lying down as you would for the Cobra and McKenzie exercises.

I also like lying back on an exercise ball to stretch.

If your neck hurts, neck exercises are likely to make your neck hurt more because your neck is already being worked too hard already, the key is to do exercises that get other body parts to put your neck in the right place, see the neck exercises in:

https://www.barnesandnoble.com/w/pain-free-pete-egoscue/1102...

3
evex 1 day ago 0 replies      
There is a youtuber[0] I've been following lately, he explains the effects from sitting too much infront of a computer and how to fix them.

I've already learnt about APT[0](Anterior Pelvic Tilt) which is a common problem that happens when sitting for prolongated periods of time.

Forward Head Posture[1]: happens when your neck is not straight above your shouldersComputer Shoulders

Computer shoulders[2]: when your shoulder are rounded(bro physique), happens when you rotate your shoulders to reach your keyboard

He've got a lot more about posture.

There also another youtuber you probably seen him before(Athlean-X)

Videos from Athlean-X about posture corrective exercises:

Perfect Posture in 5 Steps (BAD POSTURE BUSTER!)[4]

How to Fix Your Posture (NO MORE ROUNDED SHOULDERS!)[5]

How to Fix Anterior Pelvic Tilt (SIT HAPPENS!)[6]

[0]: https://www.youtube.com/user/GuerrillazenFitness

[1]: https://www.youtube.com/watch?v=ET9IRDtQvhk

[2]: https://www.youtube.com/watch?v=IjBYHvKDKn0

[3]: https://www.youtube.com/watch?v=gMv5cMiIWEk

[4]: https://www.youtube.com/watch?v=TQqgf8kB6R8

[5]: https://www.youtube.com/watch?v=l2VQ_WZ8Bto

[6]: https://www.youtube.com/watch?v=K-CrEi0ymMg

4
twobyfour 1 day ago 0 replies      
Keep your keyboard and monitor separated by height. Laptops are evil for upper back posture.

Think of how high your eyes are above your elbows. Most of us need the center of our monitors to be 2-3ft above our keyboard height for proper ergonomics. Even typical laptop risers don't cut it.

Get your eyesight checked - and get it rechecked annually, because it can change significantly in as little as six months. Nearsightedness (myopia) and astigmatism may both cause you to lean in closer to your monitor to read clearly, causing your back to hunch. Corrective lenses make this unnecessary (though they alone won't break you of the postural habit.)

Lower back posture is a separate issue - and that's what sit-stand desks, exercise balls, and the like try to address. That said, they also strengthen your core, which may be necessary (though not sufficient) to straighten your upper back.

You may want to consult a physical therapist for specific exercises to straighten your posture, for guidance on how to do them most safely and effectively, and for a program that ramps them up gradually as your strength increases.

5
untangle 1 day ago 0 replies      
I'll let others address keyboard heights and such, but here are some body-centric things that helped me:

1. If you are overweight, fix that first.2. Do yoga 3-4 times per week. 20-min sessions are OK. Even sun salutations will help a lot.3. Work on strengthening your posterior chain. I don't mean lifting heavy, just getting tone and activation.4. Learn what it feels like to have good (better) posture. Work with someone (pro or not) to pose you and work with you. Or just use a mirror.5. EASIEST: Learn simple tricks like rotating your wrists outward (thumbs forward) when standing or walking. And get your eyes up near the horizon, etc.

IME, these things can make your posture visibly better. But habit and genetics are tough to overcome. As in most things, expect modest early success but steel yourself for the long haul.

6
juanjegal 1 day ago 2 replies      
I just bought this product: https://shop.blackroll.com/collections/other-fascia-tools/pr...

It still doesn't arrive, so I'm not sure how good it is.

7
elorm 1 day ago 0 replies      
I'd personally suggest the Molding mobility routine to you as something to do every day. Works wonders for the back.

Here, have a look https://phrakture.github.io/molding-mobility.html

8
9
jainankit9 1 day ago 0 replies      
try yoga to gain flexibility. your body will open up leading to a good body posture. you too have to try sitting in correct way
10
ourarash 1 day ago 2 replies      
Switching to a sit-stand desk was life changing for me.
11
DanBC 1 day ago 0 replies      
If you're at correct weight you can try some physical exercises.

http://www.nhs.uk/Livewell/Backpain/Pages/low-back-pain-exer...

21
Ask HN: Why are you still using a crappy keyboard?
3 points by miguelrochefort  18 hours ago   5 comments top 5
1
switch007 3 hours ago 0 replies      
I found a ~$20 Logitech I can just about stand. I don't use a mechanical keyboard in the office out of respect for my colleagues. If I had a private office I certainly would!
2
Zekio 16 hours ago 0 replies      
I recently switched away from a really old wireless Logitech keyboard to a mechanical keyboard, I would really recommend anyone who haven't tried typing on mechanical keyboard before, tries it because it just might change how they look at a keyboard
3
CyberFonic 15 hours ago 0 replies      
Two data points:

I continue using a 2009 MacBook Pro, because for me its keyboard has a better feel than the more recent notebooks. Except for high-end Lenovos, I find notebook keyboards (and trackpads) very poor quality compared to the old Apple keyboards.

On my main desktop system I use an old Lexmark (aka IBM) clicky clacky keyboard from the PC/AT era. I have yet to wear it out. I tried using it in an open office setting but my co-workers complained about the noise. I grudgingly used a Logitech until I moved into a private office -- I just close the door.

4
foota 17 hours ago 0 replies      
I'm using something like this: http://www.bestbuy.com/site/insignia-usb-keyboard-black/3489...

I'm actually quite happy with it. I think it looks nice and the keys seem to press fairly well (not getting stuck, doesn't miss key presses). I haven't upgraded mostly because I don't see much of a need for a different keyboard.

5
LarryMade2 16 hours ago 0 replies      
I use at least three separate computers regularly and probably eight on and off in the course of a year - not including the ones I work on helping others.

I think being flexible in able to adapt to a variety keyboards is kinda cool myself. Especially when some are 30-40 year old ones.

22
Ask HN: Why is Bluetooth so unreliable?
342 points by whitepoplar  4 days ago   259 comments top 34
1
bjt2n3904 4 days ago 9 replies      
This isn't the first time I've talked on this. I've had some experience with bluetooth on Linux, and as a radio guy. The answer is there are problems from Layer 1 to Layer 7, needless complexity, and design by committee.

Bluetooth is an EXTREMELY complex radio protocol on Layer 1. It's like a mating dance between scorpions in the middle of a freeway. High chance something gets messed up.

Layer 1 keeps drastically changing too. Bluetooth 1 and 2 use completely different modulations, and are not backwards compatible. Bluetooth 3 simply was an extension to 2. "Let's agree over Bluetooth 2.0 to use WiFi instead." Bluetooth 4, while much simpler, uses an entirely different scheme.

Instead of a "general purpose" wireless network like WiFi, Bluetooth tried to be application specific. Except the only profiles everyone wants are mice, wireless audio, and fitness trackers. If you look at the application layer spec, it reeks of design by committee. Everyone haphazardly jammed their pet projects together, and there are redundant and vestigial parts everywhere.

The Linux side of BlueZ is abysmal. Honestly, I don't even know how anyone does anything with Bluetooth on Linux besides a mouse and keyboard. And barely even that.

As much as I hate on the protocol, the Layer 1 spec is truly ahead of it's time, in some areas. Watching two radios frequency hop, and negotiate to avoid a congested wifi channel was unreal.

2
Duhck 4 days ago 4 replies      
I've spent the better half of 3 years building products on the 2.4ghz spectrum (WiFi and BLE).

Most of the issues in this thread are related to poor hardware design more than a crowded spectrum. While the spectrum is in fact crowded in metropolitan areas, most Bluetooth communication doesn't require much bandwidth and can handle error prone areas with ease.

While the frequency hopping helps a ton on BL (and WiFi for that matter), the issues people outlined are due to:

1) Shitty firmware2) Shitty hardware

Antenna design is black magic and only a few firms in the US do it well. It took us almost 10 months to fully design and test our antenna assembly(s) with a very capable third party firm.

It took dozens of trips to a test chamber, a dozen computer simulations that take a day to run, and PCB samples that take days to verify. They have to be tuned every time copper or mechanical parts move as well.

It's a real pain and most Bluetooth products use garbage chip antennas and baluns or reference designs for antennas. This increases the sensitivity to failure and provides a generally shitty experience.

Most of your product interactions around bluetooth are budget products connected on one side of the equation (e.g. a $50 bluetooth headset). So despite how capable your Mac or iPhone is, if you have a garbage headset on the other side with poor antenna design, it'll be a disaster of an experience.

3
IgorPartola 4 days ago 5 replies      
This is a daily goddamn struggle for me. My Macbook Pro routinely forgets about my Apple trackpad, and the only thing that fixes it is restarting the laptop. The sound system on the laptop often selects the wrong mic for the input when a BT headset is connected. My iPhone keeps switching between headset and internal speaker/mic when on a call. Pairing the same device to multiple hosts (laptop and phone) is like birthing a hedgehog backwards. And let's not forget where you try to initiate pairing from a laptop or phone instead of the device. Why even provide the damn buttons to do it if they never work?
4
drewg123 4 days ago 9 replies      
For me, the biggest problem with BT is that BT audio is almost entirely unbuffered. I wear a set of BT headphones connected to a fitness watch (Polar M600) when running. When the BT connection from the watch to the headphones is briefly blocked by part of my sweaty body (think arm movements when running), the BT signal is interrupted and the music cuts in and out with every stride. If BT audio could be buffered for 15-20 seconds, this would not be a problem.
5
api_or_ipa 4 days ago 3 replies      
I used to absolutely abhor BT, but in the past few years it seems to have gotten really, really good about picking up, and maintaining a decent connection. Since then, I've picked up BT headphones, BT keyboard + mouse (Apple), and a nifty little waterproof BT speaker. Now, the only issue I sometimes have is when I want to connect to a new host device. Other than that, BT has been really nice to me.
6
evilduck 4 days ago 0 replies      
I have a lot of gear in the Apple ecosystem that uses Bluetooth and I don't consider it unreliable at all. I use at least 6 different Bluetooth devices all day, every day (MBP, keyboard, trackpad, iPhone, Watch, Airpods, with additional car pairing, portable speaker and iPad pairings) in close proximity to a bunch of other developers behaving similarly. Looking around I can count at least 40 BT devices in active use around the office and I would still characterize my Bluetooth devices as more reliable than any wifi AP I've ever used.
7
blumomo 3 days ago 0 replies      
For programmers using Bluetooth Low Energy (BLE 4.0) on Linux/BlueZ, we're working on this handy BLE GATT library for Python: https://github.com/getsenic/gatt-pythonBlueZ/GATT is very stable to our experience and supports most functions such as BLE device discovery, listing services and characteristics, reading/writing/subscribing values from/to characteristics.
8
ComputerGuru 4 days ago 0 replies      
A big part of the reason "Bluetooth" is unreliable is that there is no one "Bluetooth." Each manufacturer's implementation differs in strength and weakness, and depending on the potentially shoddy chips in the devices you are connecting to, a different Bluetooth standard will be used.

I have Bluetooth devices years old that I've never had problems with, and others that are a constant nightmare. The software stack behind the Bluetooth is also a major component in the reliability question.

9
Spooky23 4 days ago 2 replies      
Is it? I'm a pretty heavy user if Bluetooth in a few different use cases and it's pretty reliable for me.

Best way to improve reliability is to avoid dodgy or counterfeit radios in crappy electronics.

10
synaesthesisx 4 days ago 2 replies      
Not 100% sure on this, but I believe devices utilizing Apple's W1 chip use a combination of Bluetooth + WiFi (WiFi for the initial handshake upon connecting probably or something like that). If anyone's ever used AirPods it's amazing how reliable they are compared to other bluetooth headsets.
11
AceyMan 4 days ago 0 replies      
Disclaimer: non-technical anecdotal evidence here

I had a colleague for a time who's dad was a hardware engineer with Toshiba & worked with/on their part of the specification Working Group.

His pop said that the whole BT stack was unambiguously a steaming pile of poo from the get-go, and it was nearly miraculous it functioned as well as it did.

At that I had to chuckle, seeing how I'd wager that each of us have had enough woggy experiences with the tech to agree with the point he made so plainly.

But I do love the chosen icon & the history behind it, vi-a-vi the name ("Bluetooth"), so it's not all bad <wink>. ---

this was around 2010 or so, to add some context wrt the relevant timeline(s).

12
js2 4 days ago 3 replies      
The last few years, I have not had trouble with BT, but maybe it's because I simplified my use cases to ones which work after early failures. Here's what works for me and never fails:

- Macbook to Apple bluetooth mouse

- iPhone 6s to late model Mazda infotainment system

- iPhone 6s BTLE connection to Garmin Forerunner watch

13
linsomniac 4 days ago 2 replies      
I gave up on Bluetooth at home around a year ago. Not sure what it is, but I'd pretty much have to put my phone right next to the bluetooth speaker for it it work reliably. Might as well use a cable.

I had high hopes for Google Chromecast Audio for my music at work and at home. Probably my fault for jinxing myself by asking "What could possibly be worse than Bluetooth?" Chromecast Audio has definitively answered that.

For one thing, you can't limit who can interact with the Chromecast. Anyone on the network can see it. At work, my music would usually pause ~4 times a day as someone else's phone would see it and connect to it. I'd have to set up a new wifi network that only I could use to fix this. Since I only listen to music a few hours a day, that's pretty frequent.

It also gets confused if I leave work and then try to use Google Play Music elsewhere: my Google Home in the bathroom will play a song and then stop, I think because "google play is being used on another device", but it doesn't tell you that.

Maybe I should just go back to using something like a Raspberry Pi with access to my music library, it still is mostly songs I have the CDs for and ripped, though I've added probably 50-100 songs over the last year on Google Play, my 600 CDs I have all in FLACs.

14
howard941 4 days ago 0 replies      
I switched from a bluetooth dongle of unknown provenance to a more powerful Zoom (brand) class 1 dongle and hung it from a usb cable off of a lighting fixture in my home office. I get complete coverage to a Jabra headset of a rather large screened in porch despite having to penetrate my pudding head, two interior walls, and one exterior wall. The class 2 dongle barely worked outside.
15
jbg_ 3 days ago 0 replies      
I know this is a little tangential, but this brought some simmering anger back to the surface. Just today I was trying to communicate with a bluetooth device that provides a serial channel.

Back in the day I used to just run "rfcomm bind <mac-address> <channel>". But it turns out BlueZ decided to deprecate (read: stop building by default) the rfcomm command in favour of... wait for it... a barely-documented D-Bus interface.

How much do you have to hate your users before you decide to take away a useful, functional executable and replace it with an unspecified interface over D-Bus that requires hours of research to use rather than 30 seconds of reading a manpage?

16
bhouston 4 days ago 2 replies      
I never have Bluetooth issues in my Rav4 between any of my phones (ZTE, OnePlus), it is perfect always. I can not emphasize enough how amazing it is.

My and my wife's Fitbit have constant Bluetooth issues to our phones. This is completely and utterly annoying.

Driver related? Not sure.

17
thewhitetulip 3 days ago 0 replies      
Despite multiple apps of the likes of shareit, I find bluetooth to be the only mechanism of data transfer that just works. SHareit and the likes of it get new versions which break on my Android 7 for each upgrade and it is a PITA to get it working for different android versions, for some reason it does not show my device on a moto phone and I have to use the hacks like get a file from the other device to my device and then send something on the established connection.

but there is one thing, bluetooth is not useful if the file is big.

18
jimmies 3 days ago 1 reply      
I have a Linux computer (Dell Chromebook 13) connected to the Microsoft Mouse 3600 Bluetooth (BLE 4?) and it was rock solid. The mouse picks up immediately whenever the computer is on. It was almost miraculous how well it works. The mouse is really quite darn responsive too.

That is, I use the cutting edge Linux distribution (Ubuntu 17.10) -- it was pretty darn painful even on 17.04. I have another keyboard that is on Bluetooth 3.0 that fucking disconnects every other day.

So YMMV - I think BLE mice and keyboards are much better in terms of 'just works' unless you pair them with a whole bunch of devices.

19
jonbarker 4 days ago 5 replies      
I would buy a wireless audio speaker that uses NFC instead of bluetooth to connect to Android or iPhone. You would have to set the phone on the device but that would be a small price to pay if the connection were more reliable.
20
gjvc 4 days ago 1 reply      
From an experiential view, I say "crowded spectrum" My bluetooth keyboard takes ages to associate at work (which is close to a mainline rail station), but at home in the relative country, it works smoothly.
21
FRex 4 days ago 0 replies      
Oh wow. And I through it's reliable. I used it only a few times on smartphones and laptops (I like my mice and keyboard with cables) but I still remember what a big deal it was compared to infrared and how mobile phones in early 2000s would lose connection and the only sure way to use IR was putting them next to each other on a flat table with the IR thingies of their physically touching(!).

That makes me a little less excited about my plans of getting Dual Shock 4 for my PC for gaming.

22
nthcolumn 4 days ago 0 replies      
I have nothing to add only 'yes me too my how I have suffered', the countless crappy bluetooth devices I have connected and disconnected and hours and hours I have wasted trying to get them paired with various linux boxes, nearly all in short order choosing death rather than do my bidding. I am looking at one right now currently unconnected. 'Dummy device'. Why indeed.
23
airbreather 1 day ago 0 replies      
Plantronics seem to do it substantially better than anyone else somehow.
24
gargravarr 4 days ago 1 reply      
Part of the issue is that bluetooth as a whole is nothing more than a wireless serial connection. It's the various protocols built on top of it that determine its stability. The Bluetooth SIG only really control the pairing between the two devices, a low layer. You're hoping that the company you buy stuff from has implemented the protocol correctly, over which the SIG has no control.
25
kahlonel 3 days ago 0 replies      
I'll just leave here that the "official" linux bluetooth stack (i.e. BlueZ) has dogshit documentation.
26
baybal2 4 days ago 0 replies      
1. fragile encoding schemes

2. fragile modulation techniques (uwb would've been a "final solution" to the problem, but died to patent trolls)

3. interference from wifi (try using bt mouse while downloading an hd movie)

4. because of three different "wire protocols"

But the upside is that BT super cheap to implement, and thus ubiquitous

27
jdlyga 4 days ago 0 replies      
I've always had trouble with bluetooth devices until I got AirPods. Whatever bluetooth setup they're using is very reliable. I use them with my phone, windows computer, ubuntu work machine, and I rarely ever have connection issues.
28
80211 4 days ago 0 replies      
I learned a lot about Bluetooth with an Ubertooth Bluetooth dongle. It also let me realize how many security issues (side channel leaks, especially) exist that can't be easily fixed.
29
moonbug22 4 days ago 1 reply      
You only need to look at the page count of the specs to know why.
30
digi_owl 3 days ago 0 replies      
I would try eliminating Bluez5 and Pulseaudio first...
31
linuxlizard 4 days ago 8 replies      
Because it's not as popular as WiFi or Ethernet or USB. It hasn't had the decades of hard core, hard knocks field usage of WiFi/Ethernet/USB. So the chipsets are less robust to errors, are less sensitive to highly noisy environments. The drivers aren't as battle tested as the other connectivity.

WiFi in its initial days (802.11b) reminds me of bluetooth right now. Quirky, bad tools, weird errors. But WiFi caught on and manufacturers started throwing $B at R&D for better chips and better drivers for those chips.

Bluetooth just has a problem with scale.

32
mchannon 4 days ago 3 replies      
Simple- it inhabits the same band almost everything else inhabits- 2.4GHz. To an extent, the reason Bluetooth is unreliable is the same reason most Wifi is unreliable in crowded areas. There's a lot of appliances that use that bandwidth over incompatible standards.

Even worse are the "spark" kind of 2.4GHz appliances that don't play nice, like wireless camera systems and baby monitors. If your strong-signal wifi or bluetooth keeps dropping, it's far more likely to be one of those at fault than anything else.

33
rikkus 3 days ago 1 reply      
As much as I dislike proprietary protocols, I'd be greatly in favour of Apple deciding to make a replacement for Bluetooth that works with all their products - and Just Works. It'd be no use to me, as my only Apple product currently is an iPhone, but if I saw that Appletooth Just Worked, I'd be looking at diving (back) into their ecosystem.

I know some people are saying Bluetooth works perfectly between their Apple products, but plenty of people are saying it doesn't, too.

34
gdulli 4 days ago 2 replies      
My company bought me a $150 pair of noise canceling headphones last year, it was my first experience with Bluetooth. After a month I was back to using the $10 earphones that I've had for over 10 years. It turns out reliability and convenience was more important than blocking noise.

To be fair there were problems other than Bluetooth. The headphones were trying to be smart, if they sensed you taking them off they'd pause the music for you. Except it didn't always work so instead of pausing the music when I took off the headphones, which is ingrained and reflexive and automatic and no trouble at all, now I had to pay attention every time to whether the auto-pause worked and then either pause myself or not.

And sometimes I'd adjust the headphones slightly to scratch my ear or something and the music would pause. Sigh.

23
Unix time turns 1500000000 today
57 points by dheera  3 days ago   8 comments top 5
2
JdeBP 2 days ago 0 replies      
Duplicates https://news.ycombinator.com/item?id=14758615 , and the date calculation is not actually measuring 1.5 Gs since the Epoch. See https://news.ycombinator.com/item?id=14760144
3
King-Aaron 2 days ago 2 replies      
I suppose you only turn One billion, five hundred million once
4
glasz 2 days ago 0 replies      
makes me remeber my first steps with suse's yast. many, many years ago. those were the days when i wasn't afraid or too lazy "reverse-engineering" stuff and learn.

also, one friend once always used the password "susel". no joke.

5
h1d 2 days ago 0 replies      
Remember when it was reaching 1234567890.
24
Ask HN: What tough problems are you solving right now?
6 points by colesantiago  19 hours ago   4 comments top 2
1
joshuathomas096 18 hours ago 1 reply      
Quantum Complexity Theory. It's useful in machine learning when defining a slope in an infinite dimensional function space (Hilbert Space). I'm trying to understand what problems are worth solving with quantum machine learning algorithms.
2
atroyn 12 hours ago 0 replies      
Dealing with poorly behaved surfaces (specular, luminous, reflective, deformity) in 3D reconstruction.

Figuring out human interaction intent from force measurements for cooperating with a robot in a collaborative task (moving a table together).

Both language agnostic.

25
How to learn machine learning in the simplest way?
17 points by cond289123  2 days ago   9 comments top 7
1
Toast_ 1 day ago 0 replies      
Azure machine learning has a drag and drop interface (which allows custom code) and allows you to use it as a Web service, plus it's free. I'm currently using it and pretty happy with the results.

There's a bunch of 'learn as you go' workbooks that may be of interest to you too.

https://studio.azureml.net

2
dccooper 1 day ago 0 replies      
Additionally, the Machine Learning Crash Course Series from Berkeley is a good overall explainer of the concepts.

https://ml.berkeley.edu/blog/2016/11/06/tutorial-1/

I've had luck with a mixture of online courses like Datacamp (https://www.datacamp.com/) and finding projects to try on sites like Kaggle.

4
xoolooloo 22 hours ago 0 replies      
if you are you a #MachineLearning or #BigData enthusiastic and want to find somebody nearby to hang out or to discuss your problem, then I would say to @xoolooloo is perfect to find somebody nearby. https://www.xoolooloo.com/#/signup
5
lovelearning 1 day ago 1 reply      
What do you mean by "simplest way"?
6
jhildings 1 day ago 1 reply      
Be a machine :O
7
adamb_ 1 day ago 0 replies      
fast.ai
26
Ask HN: How to get a consumer social app off the ground?
7 points by teehfb  14 hours ago   2 comments top 2
1
brudgers 5 hours ago 0 replies      
2
smt88 13 hours ago 0 replies      
No matter what the other ingredients are, the greatest ingredient is luck. If any of us could give you a reliable, repeatable solution, s/he'd be a billionaire.
27
Ask HN: Do you have any ideas that seem impossible?
17 points by raymondgh  1 day ago   19 comments top 13
1
arjunvpaul 1 day ago 0 replies      
Too many Kids and Pets die of heatstroke every year after being left in vehicles - https://goo.gl/FFDbEr

How about an internet connected Amazon Echo like device that with camera and vision analysis https://goo.gl/SoUzEi . It can basically learn to - subtract the vehicle https://goo.gl/x4uKVU- sense when temperatures are at dangerous levels- Take a picture and send it to certain pre determined phones alerting the owners that a kid or pet might be in the car.

Maybe we can even wire the car to switch on air conditioning till help arrives, alert local authorities to go check on the car etc.

Another way to have an API that would let sites like reddit, hacker news, you tube have a live feed of "potential kid in hot car" images that could crowd source a second level of human verification.

2
roryisok 1 day ago 0 replies      
Oh gosh, I have so many of these.

- a vacuum cleaner that separates out things it shouldn't have vacuumed for collection later.

- a tiny indoor drone that finds and takes the perfect photos at parties so you don't have to miss the action behind a camera. (I think I read about one that follows snow boarders or something)

- a web service that tells me about cool things that are happening nearby, but by scanning newspapers and notice boards, because around here most of this stuff misses the internet

- take a photo of a piece of furniture and find plans on-line for how to build it

3
arjunvpaul 1 day ago 1 reply      
I am not entirely sure but there maybe some truth to the suggestion that animals can sense earth quakes in advance - https://goo.gl/j4sLFw- https://goo.gl/YrSzJm

How about a pet owner data collective that predicts earthquakes? It would work by having some sort of Fitbit accessory for our pets which would collect and share their electrical signals via an app. Machine learning could then correlate these signals with actual earthquake activity and learn how to predict quakes (or if we would be able to predict them). Maybe just in time before the next big one hits the Bay Area :-) .

4
LarryMade2 16 hours ago 0 replies      
Ever see second life? theres the avatar name floating above the avs as they walk around. I would like to see a set of AR glasses that provide peoples names floating over their heads in real life.

So many issues - technical and legal..

5
Mz 1 day ago 0 replies      
I actually have ideas that work, but everyone else thinks they are impossible and "half-baked" -- actually, it is worse than that. I get called a lunatic.

So my impossible dream is actually turning what I already do into some kind of real business with an actual income stream. Ugh.

6
doingmything 23 hours ago 1 reply      
Underground tubes that deliver packages directly to your residence instantly.
7
fern12 23 hours ago 0 replies      
For short people: a lightweight, retractable, sturdy, claw-like device that can easily fit into a purse, yet extend up to 4-6 ft. for reaching items on high shelves.
8
strongai 1 day ago 1 reply      
I have always wanted to invent an ice-cube maker that works by being filled with water and placed in a microwave.
9
djmips 1 day ago 1 reply      

 Well anyway, how about a walking machine that could walk on the ocean floor from one continent to another. Like an underwater ATAT.
(Half bakery still exists right?)

10
SirLJ 1 day ago 1 reply      
Teleportation
11
incalifornia 1 day ago 0 replies      
Freedom (global)
12
miguelrochefort 1 day ago 0 replies      
I think there should be one app/website/service that replaces 80% of other apps/websites/services.
13
2_listerine_pls 1 day ago 0 replies      
I am drunk, don't count on me. I will tell you tomorrow.
28
Dev Bootcamp is shutting down
126 points by Techowl  3 days ago   32 comments top 17
1
shawndrost 3 days ago 5 replies      
(I'm a cofounder at Hack Reactor, a competitor.)

DBC launched an industry. Early students/staff went on to start Hack Reactor, App Academy, and Hackbright Academy. Early students/staff of Hack Reactor went on to found Zipfian Academy (acquired by Galvanize -- went on to lead Galvanize's education efforts), Codesmith, and a half-dozen other bootcamps. I'm sure AA and HB alums went on to pass the gift on in their own ways.

DBC also launched several thousand careers. I attended a coworker's birthday happy hour today, and I told a story of a former student that brought me to tears. DBC launched an industry where real lives get changed in real ways. Staff and alums alike participated in a very personal transformation.

DBC was a rock in a pond and its ripples will extend past where its story ends today. I can't speak for DBC, but they were probably struggling (like the rest of our sector) with growing past the bootcamp industry's early days, when starry-eyed optimism clashed with the operational realities of a highly-regulated industry. Kudos to everyone that tried, and there were many that poured their hearts and wallets out.

Staff/students/mgmt/etc -- reach out if I can help. shawn@hackreactor.com

For nostalgia's sake, here's the HN post where Shereef launched DBC: https://news.ycombinator.com/item?id=3267133

2
mattbaker 3 days ago 1 reply      
As a former employee I have to say that Kaplan did a very fine job keeping the company afloat when it would have otherwise collapsed years earlier. I know the story of an evil corporate takeover is a tempting one, but that's not what happened here. Frankly, I was astounded at just how massive a bet they were willing to make on us. More than once they provided an influx of capital while Dev Bootcamp's leadership attempted to find a sustainable business model. In the nearly four years I was there they exerted shockingly little influence over DBC, and largely left it up to us to figure out how to make this work.

DBC failed because DBC failed, not because Kaplan made us fail, and I think it's important to own that. Without their deep pockets our quirky, beautiful, compassionate little place of learning would have fallen apart a long time ago. As far as I'm concerned, Kaplan bankrolled an amazing thing far past its expiration date, and gosh am I glad they did, because I had a blast.

3
SlyShy 3 days ago 1 reply      
As a former employee I have to say that Kaplan did a very fine job of running the place into the ground. Kaplan management managed to take an industry leader with first mover advantage and completely squander it by myopically focusing on quarterly profits. They really should have switched to a pay-after-getting-a-job tuition model that schools like AppAcademy offer. That would have simultaneously better met the mission of serving diverse students (students who can't afford $17,000+ and living in an expensive urban area for almost five months) and improve long term outcomes.

The pay-after-getting-a-job model creates virtuous cycles, because the schools that implement it suck up the most prepared students. Schools not offering that model end up with the leftovers after admissions to the top schools.

Arguably colleges and universities should also adopt pay-after-getting-a-job but that would probably hurt their bottom lines substantially. It definitely creates the correct alignment of incentives for the school to educate well.

Pretty amazing too, considering Kaplan has very deep pockets and could easily have financed the slight lag in revenue switching to models would have required. To me it just reeks of old-school short sighted corporate management thinking.

For a bootcamp to not adopt pay-after-getting-a-job just shows that they lack faith in their own product. Funny because many schools end up having to hire lots of their alums as a way of bolstering their employment numbers.

On a closing note, huge props to all the extremely hardworking teachers and students who went through DBC, they made it an amazing place despite all hardship. I made many of my most meaningful relationships there and I witnessed tremendous transformations in people.

4
darrellsilver 3 days ago 0 replies      
Even though a direct competitor with DBC I just wanted to say: solid team and leadership; we respect everyone there, especially in pioneering the market in the early years.

It was in DBC's NYC campus that I did my first LGBT advocacy event. Still remember the passion of the students and instructors two years later.

I know I speak for everyone here when I say Im sorry to see a leader and organization leave the community.

- Team Thinkfuldarrell@thinkful.com

6
rodlevy 3 days ago 0 replies      
This is truly a sad moment. I was part of DBC's first cohort in Chicago, and was so inspired by its capacity to transform lives that I founded something similar, Code Platoon, a nonprofit coding bootcamp for Veterans. DBC literally changed the lives of thousands of people. Strictly from a job training perspective, I can think of no training model that does a better job at addressing underemployment. The good news is that many great coding bootcamps followed DBC, and the model will continue to thrive.
7
pensierinmusica 3 days ago 0 replies      
Kudos to the school who started it all, and the vision behind it. Thinking about the future, and the million of people who could benefit from learning coding, is DBC going to open source their curriculum?

I think they should consider it, and I think that they could reach out to Free Code Camp to see if they can do something together. Hope to see this happening!

From the European side - https://codeworks.me/

8
Shooogur 3 days ago 0 replies      
So sad to see this. DBC is one of my largest clients and despite all the crap bootcamps take, I saw them first-hand transform lives and careers. End of an era. Incredible careers team, incredible instructors, incredible students, terribly sad and shocking development.

<3 Amir @ skilledinc.com

9
marksiemers 3 days ago 0 replies      
(Current Teacher at DBC)

First, thank you all for the positive feedback. It means the world to us. Most of the teaching staff only found out about the decision a day or two before it became public, so we are only recently processing this. Trust me when I say that the gratitude that we're seeing...I'm just not sure what we would do without it.

Second, for our remaining cohorts, I want to give you an idea of the sentiment of the teachers at the moment.

We see this as an opportunity to go out on a high note. We know this is our last chance to have a deeply positive influence on students' lives. We don't want to squander that privilege.

10
kaimirawcci 2 days ago 0 replies      
(I'm founder and CEO of coding bootcamp, We Can Code IT)

Dev Bootcamp pioneered an industry that has changed lives. It's not an easy business to compete against the "We've always done it that way" mentality, and they did it well for 5 years. They were well-respected and will be missed. Hats off to them for maintaining their principles, passion, and giving it their all! I always appreciated that they focused on inclusion and diversity in technology. I'm sad about that loss, but We Can Code IT promises to continue carrying that torch.

11
eldavido 2 days ago 0 replies      
Why did they shut down?

This whole page is long on emotion, not that that's not important, but very short on facts.

Regulation? No tenable business model? Couldn't charge enough to pay instructors? etc.

12
zamansky 3 days ago 0 replies      
I haven't actively followed DBC's trajectory but as a long time CS educator I've long said that education doesn't scale in the way that other tech sector initiatives scale, particularly if you want to maintain quality.

I'd really be curious to hear more about the obstacles to maintaining your quality that helped lead to this.

13
atsaloli 2 days ago 0 replies      
I would love to buy it and give it another go. Wonder how that would work and how much it would cost, and if it's even an option. Seems a shame to see it close.
14
trowawee 3 days ago 0 replies      
This makes me really sad. DBC changed my life dramatically. I wasn't a fan of some of the changes/decisions they made over the last few years, but I would be in a much, much worse place overall without DBC.
15
lowglow 3 days ago 0 replies      
Wow. End of an era.
16
avisnir 3 days ago 0 replies      
DBC was really inspiring for me. Just before we opened the 1st coding bootcamp in Tel Aviv (@Elevation Academy) I came for a visit and they were so open, generous and helpful. Thank you for the breakthrough and the hard work!
17
3 days ago 3 days ago 1 reply      
29
Ask HN: What feature would you want the web to force next, after HTTPS?
112 points by chiefofgxbxl  4 days ago   269 comments top 72
1
amluto 3 days ago 2 replies      
First party isolation. Social media buttons and other trackers should not get a global identity for free.

Explicit opt-in to store persistent state at all. An exception should be a cryptographic identity that is only revealed when you click a login button.

No sound without opt-in.

No big data transfers without opt-in. If a site wants to shove 10MB of crap in their article, then they should have to show a page asking permission to use data. And search engines should refuse to index anything behind a bloatwall.

2
age_bronze 3 days ago 4 replies      
Registration forms should be standardized. I want to have my "real" details, and my "fake" details ready to be entered into websites that want yet another registration. Why does every single website implement their own registration form with exactly the same details?! Why does every single web site re-implement the registration page slightly differently?! Ideally, I'd enter the registration page, the browser would list the things they want to know, I'd pick either my details or another set of fake details (for spammy websites or others u don't really care about), one click and registration complete.
3
notzorbo3 4 days ago 7 replies      
- A protocol for sites to get my public PGP key for server side use

- The discontinuation of using SSL certificates for verification of website identities and a move to true fingerprinting ala SSH.

- Deprecation of email or rather its insecurity.

- Logins on websites with a public / private keypair ala SSH.

- A resurgence in sites that let me pick my own anonymous username instead of Facebook, Google or Twitter logins and email addresses as UIDs.

- Blocking of any and all forms of popups, including javascript popups, overlays, cookie banners, browser notifications.

The web is rapidly becoming a place I don't want to visit anymore.

4
gcoda 3 days ago 4 replies      
Ajax without JavaScript.Ability to send a response from server updating only part of DOM.Basically, react with virtual DOM on the server pushing diffs to user with http2 awesomness.

There will be no need for JS on most sites, can be adapted to current frameworks, and with preload/prefetch it might be very fast.

* U can prefetch progress bar / loading state for example, and redirect to partial url of a real content

5
syncerr 4 days ago 8 replies      
I'd vote for DNS-over-HTTPS or similar tech. Encrypting domain name resolution should help mitigate a gateway or proxy (Comcast) from knowing or blocking sites you visit.
6
SubiculumCode 3 days ago 2 replies      
I'm ignorant of a lot but, segregation of cookies by browser tab. If I log into Xsocialmedia in Tab 1, and go to news site in Tab 2 using Xsocialmedia plugin, it doesn't know that tab A logged in, or that it came from same browser.

Basically, I want my tabs to be isolated and treated as completely separate, isolated browsing histories, caches, and cookies. ...This is my gmail tab. All that tab ever sees is gmail. This is my HN tab. All it ever sees in HN.

Like I said, this isn't my field, but..

7
atirip 4 days ago 4 replies      
JavaScript Standard Library created that every browser has "installed" and updated automatically.
8
nodesocket 3 days ago 0 replies      
"grandmother" usable email encryption for the masses.
9
payne92 3 days ago 2 replies      
Hard deprecation of the long tail of Javascript browser capabilities and incompatibilities.

So much code and so many libraries are littered with "if (old version browser) do x, else if IE, do y, else, ..."

10
5ilv3r 3 days ago 4 replies      
I want a way to force sites to become static after they are rendered. Just frozen, as though they were on paper. I am tired of scrolling making menu bars move around or triggering popovers. Just give me a way to turn off javascript and any dynamic CSS junk after X amount of time. I looked into writing this as a firefox browser extension, but extensions now use javascript so we're all screwed.
11
delbarital 3 days ago 0 replies      
It's very interesting that most people here mentioned changes only to the top layers while one of the most urgent problem is in the BGP protocol that help route traffic between ISPs. Many times in recent years governments and ISP used it to steal the traffic of entire countries, or to block websites.
12
cwp 3 days ago 6 replies      
Add SRV lookups to the HTTP standard.

There's a tremendous amount of complexity and cost attached to the fact that browsers look up the IP address of the hostname and then connect to port 80.

First, it's true that you can specify another port in the URL, but nobody does that because it's ugly and hard to remember. If you want to be able to send people to your website, you need to be able to tell people what the url is - "Just go to example.com". The minute you start saying "example.com colon, eight zero eight zero" you're screwed. With a SRV record in DNS, example.com could map to an arbitrary IP address and port, which would give us much more flexibility in deploying web sites.

If you want a bare http://example.com to work, you need to create an apex record for the domain. That can't be a CNAME that maps to another hostname, it has to be an A record that maps to an IP address. This means you can't put multiple websites on a single server with a single IP address, you have to have an IP address for each site. IPv4 addresses are already scarce, this just makes it worse.

Also, port 80 is a privileged port in unix (which does the lion's share of web hosting). That means you have to run web servers as root. That, in turn, defeats the unix security model, and requires hosting providers to either lock down their servers and give limited access to users (cPanel anyone?) or give customers root access to virtualized operating systems, which imposes a tremendous amount of overhead.

Virtual operating systems also impose a bunch of complexity at the networking level, with a pool of IP addresses get dynamically assigned to VMs as they come and go, DNS changes (with all the TTL issues that go along with that), switch configuration etc.

These problems are all solvable and indeed solved, by really clever modern technology. The point is that it's all unnecessary. If browsers did SRV lookups, we could still be hosting like it's 1999, and putting all the tremendous progress we've made in the last 20 years into making it cheaper, faster, easier and more secure to build and run a web site. People that support the "open web" as opposed to "just make a Facebook page" should advocate for SRV support in HTTP.

This doesn't actually have to be "forced" on users of the web - it'd have to be forced on browser implementors, hosting providers and web site operators. If the transition was handled well, users wouldn't even notice.

13
exelius 3 days ago 1 reply      
I think this is only really worth the headache for security issues. That said:

- HSTS

- DNSSEC

- IPv6

in that order. I think for a long time, governments had no interest in pushing security and encryption because that would prevent them from mass data collection. I think minds are starting to change around that: poor security is much more likely to be exploited against a government rather than used in its favor (plus all the real criminals now have much better opsec these days so mass surveillance is much less effective).

14
r1ch 3 days ago 1 reply      
Start cracking down on bloated and unnecessary JS. Loading more than 1 script? More than X KBs of total JS? More than Y secs CPU time? "This page is slowing down your PC".
15
SwellJoe 4 days ago 2 replies      
It's not security related, but: Accessibility.
16
lognasurn 3 days ago 2 replies      
Now that adoption of HTTPS has solved all SQL injection holes, we can take steps to further modernize the Web so people can feel secure.

Require Facebook login for everything. Just don't serve the content without a Facebook login. Can use DPI at the network layer to help enforce.

Add phone-home features to CPUs to make them turn off 6 months after product introduction. Everyone ought to be buying a new computer every 6 months.

Disallow email addresses ending in anything other than @gmail.com.

Rewrite everything in a memory-safe language such as PHP. Eventually this can be enforced at the OS level.

17
c-smile 3 days ago 2 replies      
Adding support of Internet Message Body Format (a.k.a. MIME) to browsers [1].

MIME is a format that can contain html/css/script/images/etc in single file (or stream).

Thus the whole web application can be served as a single stream by the server.

Yet emails (that are MIME files) can be opened by browsers as natively supported documents.

[1] MIME : https://tools.ietf.org/html/rfc2045

18
pfraze 4 days ago 0 replies      
A peer-to-peer hosting protocol which publishes user data outside of site silos while still "feeling" like a web app. Bonus feature: end to end encryption.
19
scottmsul 3 days ago 0 replies      
This is a moonshot, but I would love to see a social network based on protocols similar to how emails work. Then different websites could implement interfaces for the protocol and talk to each other.
20
tjoff 3 days ago 2 replies      
Obtrusive prompt (UAC equivalent) required to load any javascript. How the web would be so much functional, to the point and responsive. Just imagine the electricity savings.

The world truly would be a better place.

21
lousken 4 days ago 1 reply      
Working version without javascript (unless it's crucial for the website). No opacity 0 animations, javascript only menus etc.
22
avaer 4 days ago 2 replies      
ML driven content blocking for ads and other garbage such as social widgets and beacons. Red screen warning as deceptive on any site that tries to hack its way around the filter.
23
serial_crusher 3 days ago 0 replies      
A secure standard for ads. Right now reputable sites are running ads from people they shouldn't trust, and getting bit in the ass by it. Popups, page takeovers, even viruses get distributed through ad networks and end up on non-malicious sites.

None of that should work. Ads shouldn't be able to inject their own JavaScript into a page. There's a technical solution to that problem.

Let's narrow down the scop of things an ad needs to do (display an image, maybe play sounds and videos (after user clicks on them), and send back a reasonable amount of tracking data, etc). Then let's come up with a sandboxed DSL for ad networks to specify their ads. Web sites could embed those ads inside an <ad> tag that sandboxes that content and makes sure only supported functionality is being used.

Then I can turn off my ad blocker and not have to worry about all the security issues that unscrupulous ad providers bring with them today.

24
momania 3 days ago 4 replies      
- A decent minimum password length, without any funky requirements, just the minimal length.

- Being able to prosecute any company that stores passwords in plain text

25
alain_gilbert 3 days ago 2 replies      
For me, I would go with:

- Typed javascript should be built-in in browsers.(Typescript)

TypeScript is great, but all the configurations and transpiling is a pain.

26
dredmorbius 3 days ago 0 replies      
Standardise on a set of basic document types. Index page, article, gallery, search/results. Others as necessary. Specify standard elements and styling.

Standardised metadata. Pages should have title, author, publication date, modification date, publisher, at a minimum. Some form of integrity check (hash, checksum, tuple-based constructs, ...).

User-specified page styling. If I can load a page in Reader Mode, https://outline.com, or Pocket, I will (generally in that order). Every page having some stupid different layout or styling is a bug, not a feature. Web design isn't the solution, Web design is the problem. Users could specify their default / preferred styling. Night mode, reader support, etc., as standards.

Fix authentication. PKI or a 2FA based on a worn identification element (NFC in a signet ring with on-device sensor is my personal preference), if at all possible. One-time / anon / throwaway support.

Reputation associated with publishers and authors. Automated deprecation of shitposting users, authors, sites, companies.

Discussion threads as a fundamental HTML concept.

Dynamic tables: Sort, filter, format, collapse fields, in client. Charting/ploting data would be another plus.

Native formula support.

Persistent local caching. Search support.

Replace tabs with something that works, and supports tasks / projects / workflows. (Tree-style tabs is a concept which leans this way, though only partially).

Fix-on-reciept. Lock pages down so that they are no longer dynamic and can simply be referred to as documents. Save to local storage and recall from that to minimise browser memory and CPU load.

Export all A/V management to an independent queueing and playback system.

27
deepsun 4 days ago 0 replies      
IPv6?
28
seltzered_ 3 days ago 0 replies      
First thought when reading the headline: Backlinks.

Jaron Lanier explains... https://www.youtube.com/watch?v=bpdDtK5bVKk&feature=youtu.be...

29
linopolus 4 days ago 2 replies      
A ban of everything JS except for these so-called web apps, which obviously need it. Make the internet great (performant/efficient/secure) again!
30
modeless 3 days ago 1 reply      
FIDO U2F hardware authentication token for 2 factor login. Simultaneously easier and more secure than other 2 factor methods. But first someone needs to make a <$5 hardware token so people might actually consider buying one.
31
Giorgi 3 days ago 1 reply      
SSL was forced by Google single-handedly. Developers scared that https might provide ranking factor, quickly moved to SSL.

As for topic, I would like to see all mails clients rendering emails same god damn way.

32
rdsubhas 3 days ago 0 replies      
W3C standard for bloat-free websites, aka vendor-neutral equivalent of Google AMP and Facebook Instant Articles, to avoid further fragmenting the web.

If its an open standard, mobile-view and other stuff can be progressively added to websites in a variety of ways: built-into browsers, polyfills or open source libraries, and lead to a much better web experience across devices. Aggregator startups and apps would stand to benefit a lot by this.

33
vfulco 3 days ago 2 replies      
2FA everywhere, preferably with Yubikey (no connection but happy user)
34
kuschku 3 days ago 1 reply      
Getting rid of passwords. Passwords are the easiest way for others to get access to your accounts.

A move to federated identity, with a standardized API, and integration with the browsers, would fix all these issues. You could easily use a federated identity provider with support for 2FA, and ALL your accounts would immediately work with 2FA.

And, with federated identity, you can also run your own, if you dont trust Google or Facebook login.

35
irundebian 3 days ago 2 replies      
Strict HTML, CSS and JavaScript parsing. One single error => Site won't be displayed. These lazy web devs need some more discipline!
36
bmh_ca 4 days ago 1 reply      
Automated HSTS, revokable public key pins, and certificate transparency.
37
grumblestumble 4 days ago 2 replies      
Evergreen web browsers. Safari and IE11 continue to ruin my life.
38
_greim_ 3 days ago 0 replies      
Only half joking. Team up and find a way to force Apple to allow competing rendering engines on iOS.
39
joshfraser 4 days ago 0 replies      
Ending the NSA dragnet
40
hedora 3 days ago 0 replies      
Decentralization.
41
snomad 4 days ago 1 reply      
I would love package systems and server admins to recognize the inherit danger in allowing the servers to call out to the wild. All internet facing servers should be allowed to only call out to white listed addresses.
42
O1111OOO 3 days ago 0 replies      
Disclaimer on all sites about data collection (on sites that collect data):

Precisely what data is collected, a list of the 3rd-parties the data is sent to, the policies of those 3rd-party sites, how long the data is held at the primary domain, how long the data is held at the 3rd-party sites, options for requesting that such data be deleted.

Sites that act as a conduit for the collection and transmission of user data should be held accountable for the breach of such data.

43
Spivak 4 days ago 3 replies      
Dropping TLS in favor of IPSec. Now every protocol is transparently secure by default and there's no chance of developers accidentally messing it up.
44
tomc1985 4 days ago 1 reply      
- Make client-side certificate authentication mainstream. Fix the UI, UX

- Standardize on some sort of biometric identification that actually works. I HATE two-factor :(

45
mattl 4 days ago 0 replies      
A simple way to block third party trackers/beacons that's on by default, with a simple one-click to disable it on that page load.
46
davimack 4 days ago 2 replies      
A truly obfuscatory browser: one in which everything sent to the server looked the same, regardless of which user, region, etc.
47
joelcollinsdc 3 days ago 0 replies      
Accessibility. Should be hard or impossible to build an inaccessible website. Tooling needs to be vastly improved.
48
supertramp_sid 3 days ago 0 replies      
Informing user about trackers being used on a website. (I know there are add ons available). There should be mode or something that informs user about this so that he can close the website and look for alternatives
49
kyledrake 3 days ago 1 reply      
Ability to mark HTTPS site as "not secure" using HTTP headers if it's asking for things like logins and passwords.

Would be useful for things like free static HTML web hosts and CDNs for combating phishing.

Could be something put in CSP.

50
api_or_ipa 3 days ago 0 replies      
I'd like to see form validation get a badly needed overhaul. At the same time, we can punish sites that use shitty/inappropriate practices. This would vastly improve mobile experience especially.
51
gwbas1c 3 days ago 0 replies      
Less features... Instead, figure out how to force good usability.
52
molsson 3 days ago 0 replies      
* SameSite cookies* CSP
53
martin-adams 3 days ago 0 replies      
For me it would be the cookie consent control to be implemented at the browser level with sites being able to describe the policiy via a hosted policy file.
54
flukus 3 days ago 0 replies      
I want a meta command to enable the browsers reader mode. Then I can just render HTML and the browser can display it as the user prefers.
55
betaby 3 days ago 0 replies      
IPv6, DNSSEC, P2P DNS and rootless DNS,
56
cody8295 3 days ago 0 replies      
HTTPGP, forced PGP encryption between client-server. Would be pretty cool
57
ScalaFan 4 days ago 1 reply      
Default encrypted email communications
58
tardo99 3 days ago 0 replies      
A simple micropayments scheme that can be used on publications, music sites, whatever.
59
knocte 3 days ago 0 replies      
HTTP2 instead of the horrid hack that are WebSockets or long polling.
60
monk_e_boy 4 days ago 1 reply      
Pay turn off ads. A certain percentage of visitors are asked to rate the content (to avoid paying) the rest of the visitors are automatically billed and pay the average rating.

Each user can specify a maximum payment and can opt to view with ads if payment requested is too much.

61
keymone 3 days ago 0 replies      
hashcash and convenient end-to-end crypto everywhere
62
jasonkostempski 3 days ago 0 replies      
User prompts for JavaScript from other domains.
63
anotherevan 3 days ago 0 replies      
Civility.
64
spuz 3 days ago 0 replies      
IPFS
65
acosmism 4 days ago 0 replies      
a distributed built-in password manager (a password-less web)
66
zmix 3 days ago 0 replies      
X(HT)ML
67
chriswarbo 3 days ago 0 replies      
Make the Web standards more fundamental, so they barely need to change. Implement the rest in terms of those fundamentals.

Some thoughts:

- HTML and CSS are reasonable from an implementation standpoint: they have pretty rigid syntax (annotated tree of text, groups of name/value pairs) so user agents can ignore whatever they don't know/care about, and give reasonable results. Even if that's just a wall of plain text.

- Javascript is awful in this regard. It has masses of syntax, keeps changing, requires incredibly specific behaviour from a truckload of APIs and likes to silently bail out completely if one thing goes wrong.

Our notions of computation don't change all that much, and certainly not quickly. There's no reason to make every user agent understand all of the human-friendly bells and whistles that the standards bodies keep bolting on. Whilst "view source" is nice, these days we often need tools to undo minification and obfuscation; let alone the rise in compile-to-JS languages.

The standards should only dictate something that won't need to be changed for a long time; say, a pure, untyped, call-by-value lambda calculus, with literals for integers, strings and symbols. APIs can be defined as reduction rules involving the symbols; for example:

- Applications of the form '((+ x) y)', when x and y are integers, can be replaced by the sum of x and y.

- Applications of the form '(array 0)', can be replaced by an empty array value (defined elsewhere); applications of the form '((array 1) x)' can be replaced by an array value containing the single element x, etc.

- Applications of the form '((object 1) (keyvalue x y))' can be replaced by an object value, with the value y for property x, etc.

- Application of the form '(XMLHTTPRequest x)' where x is an object value with properties...

Executing such programs would, like with HTML and CSS, allow implementations to ignore whatever they don't know/care about. Expressions with no corresponding reduction rule just sit there unevaluated, whilst everything around them carries on as normal. Users could implement their own overrides for how things should rewrite; like user styles, but more pervasive. Sites could supply pure reduction rules as part of their code, to enable things like fancy control flow. Effectful reduction rules could be controlled at a fine-grained level by the user agent (and hence, the user). Programmers can write in whatever language they like and compile to this simple Web language. Since we're being ambitious, let's say they'll include links to the original source, under the AGPL ;)

Fancy, state-of-the-art browsers can come with a bunch of optimisations and tricks for faster parsing and evaluation of common code patterns. They can also define their own libraries of symbols and rules, which are more amenable to optimisation (like asm.js); along with fallback "polyfills" which make them work (slowly) everywhere else.

We can probably do similar things for rendering, layout, etc. The clever, complicated algorithms dictated by the standards can be great when we've got a bunch of content and we'd like the user agent to display it in a reasonable way. On the other hand, if we've got some exact output in mind, we should be able to describe it directly, rather than second-guessing and working around those algorithms. All of this can go into libraries, leaving the "core" alone.

There's always the danger of turning the Web into the equivalent of obfuscated PostScript: a blob of software that, when executed, renders an image of the text, etc. content. However, I think that's mostly down to the choice of what APIs are included by default. If the default behaviour is similar to today's browsers: take text from the document and lay it out in a readable way; allow headers, emphasis, etc. using annotations, and so on, then I'm sure most would do that, ensuring the text and other content is easily parsed, indexed, etc.

68
interdrift 3 days ago 0 replies      
Destroy fake news (no pun intended).
69
mathiasben 4 days ago 0 replies      
VRML
70
frik 4 days ago 2 replies      
Dear overlord, stop this shit. Don't force any web user over your agenda BS.

Amazon.com worked fine from 1995 to 2016 with HTTP (only the login page was HTTPS).

If you have a crappy ISP like Verizon or whatever, it's your own personal problem - 99% of the web user don't care about your problem. Maybe use a VPN to somewhere to an ISP you can trust.

I stopped using Firefox because they turned mad. Chromium with some custom patches seems like a far better solution nowadays. Yet I see Google is too trying to destroy the open web with their PWA/AMP monoculture that is favored and listed on top of search results.

We need the EFF and other "good" foundations to lobby for the end user - too many shady and corporate entities lobby against the end user, unfortunately.

71
phkahler 3 days ago 1 reply      
Fixed IP addresses for everyone. Also addresses that encode LAT/LONG. These are intended to increase traceability.
72
tammuz18 4 days ago 0 replies      
Is this some reverse-psychology attempt to point out how fascist it feels when the browser feels it's smarter than you and begins taking its own decisions?
30
Ask HN: Missing FCC comments?
21 points by godelski  2 days ago   8 comments top 5
1
yebyen 2 days ago 1 reply      
I had this happen too, my experience is the same as the other posters when I used comcastroturf to post a comment. There was no sign the FCC received it at all.

If you submit your comment directly to the FCC, you get a confirmation e-mail, you don't get signed up for any mailing list (comcastroturf tried to sign me up for a mailing list), and you will see it posted to the site after a day or so passes, when they have reviewed it.

It's very interesting that so many robo-comments in support of Axe'ing the Title II laws were posted to the site, if they are being manually reviewed by someone... it's almost as if the FCC already knows what direction they're going to take, and this comment period is just a dog and pony show so they can say they had one.

2
mkstowegnv 2 days ago 0 replies      
This is slightly off topic but because of this story I went looking for my FCC comments [1] and decided to search for all recent (last week) comments from my small-population, somewhat-limited-ethnicity zip code, and discovered hundreds of anti-neutrality comments with very unlikely surnames. Every one of the ten I sampled failed a zabasearch.com search and looking in the property appraiser's website different owners are listed for the addresses given. Apparently fake comments continue to be common e.g. [2].[1]https://www.fcc.gov/ecfs/[2]https://www.forbes.com/sites/tonybradley/2017/05/26/victims-...
3
lgierth 2 days ago 1 reply      
Apparantly FCC had to throttle their commenting system.

> IMPORTANT NOTE: these numbers STILL represent only a portion of the final totals, and due to the massive numbers, comments and emails will be delivered over several days.

https://www.fightforthefuture.org/news/2017-07-13-update-his...

4
infogulch 2 days ago 0 replies      
I submitted directly via the FCC website and it was posted the day after I submitted it.

I would assume posting directly via the FCC is more reliable and also carries more weight than submitting a filled out template via an api. (If they can tell the difference.)

5
csinchok 2 days ago 0 replies      
The best thing is to post your comment directly on the FCC's website. Downtime/batch posting of comments can mean that your comment could show up late, or maybe not at all.
       cached 16 July 2017 20:05:01 GMT