hacker news with inline top comments    .. more ..    5 Aug 2017 Best
home   ask   best   2 years ago   
Launch HN: 70MillionJobs (YC S17) Job board for people with criminal records
1860 points by RBBronson123  2 days ago   503 comments top 111
newsreader 2 days ago 6 replies      
Former career criminal here. Spent 19 years of my adult life in a combination of jail and prison. Longest stint was for 14 consecutive years. Been working in IT for the last 17 years, mostly as a developer. Had a very hard time getting my foot in the door; was denied employment more than once because of my record. Not sure that my current employer is even aware that I have a record, and to be honest I have no plans to reveal that part of my life. Also, knowing that my criminal activities would have life-long consequences was never a deterrent. One thing I know for sure: Im not what I used to be. Today I live a peaceful and productive life with my wife, enjoy the company of family and friends, and try to stay up-to-date with technology.

I think that what you are doing is a good thing an applaud you for it.

ictoan 2 days ago 2 replies      
Hi Richard, great idea. I'm a UX designer and want to throw out some suggestions on how to improve the experience of the site.

First, use more cheerful/positive messages/visuals. It was a joykill when I checked out your website and there's a sad guy placing his hand on the forehead. Show what's possible. How successful people can be once they get a job.. rather than their current state (unemployment). Don't focus on the current stat, focus on the future desirable state.

Also, you need to put more focus on the jobs. List featured jobs to draw people in. Just list some jobs below the search. This will engage the user to explore the site.

nulagrithom 2 days ago 4 replies      
I went through an IT technical degree at a community college. Three of my classmates were timing their graduation to the year their felony fell off background checks.

These guys spent 5 years grinding it out at whatever shit job would hire them just to spend 2 more in school + working with the hope of getting a simple rack & stack job, all because of some mistake they made in their late teens/early twenties. It was the exact same story 3 times, and all involving drug offenses.

It really gave me a different perspective on the situation. I don't think these 3 people should've been sidelined for 7 years. They could've been productive members of society well before that. Keeping them out of the skilled/professional workforce is painful.

This could be a huge untapped pool of candidates, as long as companies are willing to take the risk. I hope it takes off.

lbhnact 2 days ago 3 replies      
Just want to add support. One of my childhood friends has a felony from when he was an overly-rambunctious teenager that he still gets punished for - including being kicked off AirBnB - for something he stole more than 20 years ago. Despite this, he's a very successful leader in mental health services management.

So many people deserve a chance to redeem themselves from being 'branded', yet are denied the exact opportunities that would allow them to do so. This problem goes back a long, long ways.[1]

Anything you can do to help is great. Best of luck!

[1] https://en.wikipedia.org/wiki/Branded_Man

iagooar 2 days ago 1 reply      
Love what you are doing. This is the kind of startup I love to see being pushed forward.

With lower entry barriers for tech startups, one would expect to see more startups that fight for a better world, instead of startups who fight for selling your data faster, or detecting your face better to overlay a duckface on top of it.

This is why seeing a startup like yours makes me hopeful.

Wish you best of luck!

MentallyRetired 2 days ago 2 replies      
One of the first things I came across was "Police Officer" in Tallahassee, FL. It's an external link. Part of the description even says:

"Have no convictions for any felony, perjury, false statement, or domestic violence. No DUI convictions past ten years. Other arrest histories are reviewed on a case-by-case basis."

I love the idea, but it needs a bit more work.

justin66 2 days ago 3 replies      
This presents an interesting dilemma here for an ex-con. Most people can eventually get their records expunged after they're out for a while, at which point we as a society demand that they start responding "no" to the questions about having a criminal record during the interview process. It's dishonest but it's how the legal system works.

If you're an ex-con who will eventually get his record expunged, is there any risk to participating in a job board like this? I'm guessing it is pretty small, and the advantages presented by the site will be worth it. Still, it's ironic that eventually users will probably be in a position (after expungement) where it is not in their interest to use the site anymore. I wonder if, when this site is successful, it will eventually want to team up with a more conventional job site to move some of those users over. Just a thought.

triangleman 2 days ago 3 replies      
In a past job I was responsible for hiring a few warehouse workers, and in one case I was actually relieved to find that the applicant was on probation for a drug charge, and was required to submit to weekly urine tests. Basically the state was paying to guarantee that this worker was staying clean, and so I was pretty confident about hiring him. I wonder if other employers would be interested in that kind of info as well.
rweba 2 days ago 4 replies      
I just randomly came across this very relevant TED talk given by a prison inmate yesterday:


I definitely feel that American prison policy leans way too far on the side of moral judgement and retribution than rehabilitation. In my personal opinion, anyone who has served their term has already paid for their mistakes and we, as a society, should be more concerned with helping them get back on their feet than with further punishing them for their mistakes.

I also think the practice of denying former felons the right to vote is completely ridiculous. So if you commit a felony at 18, you can't vote even when you're a 100? What kind of sense does that make?

hirsin 2 days ago 2 replies      
I think this is awesome, and I was relieved to see the focus on non-white collar crime. Some questions that I think are systemic to the entire area -

The companies hiring are at somewhat of an advantage (they can hire anyone, the employees have more limited options). How do you ensure they get a fair offer, and not, like migrant labor, receive a below market offer? Would the marketplace effect here help prevent that?(edit - looking at the website, duh, it looks like you've solved this - awesome - and found good companies.)

Your revenue model is based on companies laying to get access to these prospective employees - how do you get past the stigma (without breaching q1 above)?

I like the municipality revenue model - it would be awesome to see them as "reverse recruiters" we're they pay every time someone gets a job.

cletus 2 days ago 2 replies      
I'm super-excited to see this. I really hope it works out. Thanks for doing it.

Honestly I find how this country treats those with a felony record absolutely disgusting. The "Are you a convicted felon?" is a scarlet letter that never seems to disappear. While this might've originally been well-intentioned, IMHO it perpetuates criminality as I suspect what other choices do a lot of former felons have?

There was (is?) a campaign in Massachussetts to retroactively pardon a felony conviction for Mark Wahlberg. Apparently this makes it difficult to, say, get liquor licenses and so forth.

Personally I"m 100% against a commutation for the rich and famous. What we should be doing is freeing people from this stigma, particularly when the crime was a long time ago, especially nonviolent and likely not relevant to your job.

FYI Mark Wahlberg's felony conviction was violent and pretty egregious actually as it was IIRC a racially-motivated attack on a Vietnamese man.

inetknght 2 days ago 2 replies      
> So we created a "save haven" where all parties knew the score

Does that mean that employers know what offenses were committed, and how long ago? Or does it just mean that they know that the candidate has been convicted of something, but figuring out whether that's a liability to the business or not needs to be discussed?

hwoolery 2 days ago 1 reply      
I love the idea, and I really want your company to succeed. I don't really consider myself very easily offended or PC, but I thought it seemed a little stereotypical that the first two images in the hero were black people. I think that should be changed as quickly as possible if you don't want to get any backlash. My two cents : )
Unbeliever69 2 days ago 0 replies      

The REAL problem, however, is the quality of jobs available to felons. If this board is filled with nothing more than labor and call-center jobs then, you've only solved part of the problem. The true goal is to connect felons with sympathetic employers in ALL manner of jobs. There is nothing like a felony to destroy a person's sense of self-worth and the system is completely rigged against a felon. This is bigger than a technological problem. It is a problem of humanity and forgiveness.

Fjolsvith 1 day ago 1 reply      
Richard, another thought I had:

There is a tax break for businesses that hire a new parolee. Something like $4-5k tax credit for the first year of employment. Would be good to find out about that and let employers know - help encourage them to hire criminals.

javajosh 2 days ago 2 replies      
Hey Richard, love this idea. I firmly believe in the notion that once you've paid your debt to society you should be able to participate in society as anyone else would. That this is not the fact is atrocious to me.

Do you need a remote full-stack programmer?

Invictus0 2 days ago 3 replies      
Do you employ people with criminal records?

As an employer, I want to hire the best people so my company can be successful. Why would I hire anyone from your site when there are plenty of other candidates elsewhere?

Do you think people will try to use your site to disqualify potential hires (i.e. use it as a do-not-hire list so those registered with the site can specifically be avoided)? How will you prevent this from occurring?

Why would a company that doesn't care about criminal records advertise with you? Wouldn't it make more sense for them to advertise on a generic job board, take the best resumes, and sort out criminal history issues as they arise?

Does your site allow employers to see what a job seeker's crime was, or any other info related to that that other job boards wouldn't provide?

malandrew 2 days ago 1 reply      
With the immigration crackdowns by the Trump administration, we've seen more and more stories about labor shortages in agricultural jobs often performed by immigrants. The problem has reached the point where wages have been increasing. Do those with criminal records consider these jobs? Why or why not?

I would imagine that agricultural jobs would be low-risk for those types of employers since those with criminal records are unlikely to be interacting with customers or exposed to high value inventory. Both of which are characteristics of a job that would give employers pause about hiring someone with a criminal record.

slice_of_life 2 days ago 2 replies      
> 1 in 3 adultswith criminal records

I must admit I haven't ever thought about these numbers but it strikes me as insanely high. How can this be explained? Is it a feature of just America or is it reproducible in other countries as well?

ianbicking 2 days ago 1 reply      
I was curious about local jobs, so I put in "Minnesota" and get to https://www.70millionjobs.com/search/-/Minnesota but then when I put more search terms into keywords I keep getting the same results (including keywords that I can tell have associated jobs). I'm guessing it's falling back to ZipRecruiter entirely, but it's also not searching those entries.
efdee 2 days ago 2 replies      
I very much like what you're doing for those of us who've made wrong choices in the past. However, I am a little bit concerned what drives a company to go to a site -especially made for those people- looking for future employees.
KGIII 2 days ago 1 reply      
Are you sure those jobs all hire felons?

I browsed my State and saw jobs for physicians, pharmacists, and even a school psychiatrist.

Fjolsvith 1 day ago 1 reply      
Richard, a suggestion:

Have a way for parole/probation officers to search for jobs nearby for their charges. My PO was actually a helpful guy, as he figured if I was working, I was more likely to stay out of trouble. Just have some way for them to engage and provide assistance to new parolees.

aantix 2 days ago 3 replies      
Just curious, how do you know that the job postings you're listing accept those with criminal backgrounds?

Is this a list of curated companies? Or is there something that you're parsing out that denotes this acceptability?

brightball 2 days ago 3 replies      
A friend of mine finally had his record cleared of incidents from when he was 19-20. He took courses to learn to program but even now it's still hard for him to get a job because people want to know about the huge gap in his employment history from when nobody would hire him.
Iv 1 day ago 1 reply      
> our business model is based upon employers paying to advertise their jobs.

The only question I have is: why would they? I can see the reason why the job seekers would subscribe to your website but I don't see why employers would prefer it to other alternatives. Actually I can see one: to be able to identify which candidates have a criminal record and eliminate them from their pool.

Registering there as an employer can be an act of good will and generosity but that seems a bit awkward to make them pay for it, no?

BTW, you have to have a very solid security from the beginning. A leak of your database would not only threaten your business but negate most of the good you did.

jakozaur 2 days ago 5 replies      
Isn't yet another case that startup is trying to fix systematic screwup of law in the USA?

In USA once you got criminal record, by default it stays for rest of life with you. Implications of that may be even more severe than actual punishment.

On the other hand in most of the European countries criminal records are limited and after X years they disappear and you can't legally discriminate based on that.

Some ppl will do something stupid at some point in their life and get a criminal record. Not giving them another chance is a major problem and actually can cause a lot of damage for everyone.

blahman2 1 day ago 1 reply      
I gotta say, as fucking annoying as I find most of you people on other topics, I am so thrilled to see your support for a cause such as this one. You almost killed the cynic in me :) Go hackers!
stillhere 2 days ago 1 reply      
Why buy a domain name for a number that will fluctuate over time?
mattbgates 1 day ago 2 replies      
Hey, thanks for sharing this. I actually just wrote an article (not yet published) for an organization that helps inmates learn how to code while in prison so they can have some life skills for when they are done serving their time and get out in the real world.

I'm not talking about murderers or pedophiles or people who just probably don't belong in society at all, but when it comes to people with lesser crimes -- people who got greedy, people who were stupid and stole something, or even were involved with drugs (I'm an advocate for decriminalization), people who can be given a second chance and not resort to a life of returning to old habits.

The organization's URL is: https://thelastmile.org/

Another URL I came across: http://jobsthathirefelons.org/

Anyways, hope you don't mind, but I've added your URL to my article as well. I'd rather see productive ex-cons/former felons contribute to our society and not be relegated to a position at a minimum wage job for the rest of their lives, despite having massive amounts of skills and talents that can be used elsewhere.

RBBronson123 2 days ago 0 replies      
I'm looking forward to hearing your feedback and am happy to answer any questions about 70millionjobs, the challenges faced by people with criminal records, and ideas you may have to improve our site.
glitcher 2 days ago 1 reply      
Testing out the Job Search functionality, there seems to be some room for improvement for returning more relevant results first. Doing a quick test against a keyword search for "developer", I would much rather see all results with developer in the job title first. Instead seeing a lot of top results that are not relevant, some which I can't find a form of the word "develop" anywhere in the full job description, much less the job title.

Great concept and great start!

Scirra_Tom 2 days ago 1 reply      
1/3 adults with a criminal record in a developed country seems absolutely insane to me.

Edit: Well I need to get off my horse because it seems to be similar here in the UK as well: https://www.theguardian.com/money/2002/apr/14/workandcareers...

TallGuyShort 2 days ago 0 replies      
>> We expect additional revenue to come from municipalities, who spend tens of billions of dollars annually, when someone is rearrested.

I'm curious - while I agree that it also benefits the municipalities to help former criminals reintegrate into productive society, through what channel do you see expect this revenue to come? I know some tax breaks exist for hiring ex-cons, but dishing out funds to a service like this would be entirely new, right?

r0m4n0 2 days ago 1 reply      
I ran a search and a few banking jobs came up, one of which mentioned going through a fingerprint background check. I find it hard to believe the US Bank in SF would take me seriously for a teller opening if I had any sort of hangups in my background.

I guess this is more of a feature request but... It would be great if you could filter out job postings that were likely just scraped or aggregated from other places!

Nice work btw, a great start for a much needed service

darrenf 2 days ago 0 replies      
In the UK, Timpson[0] are a well known example of a national employer not only willing to hire ex-offenders but one that does so proudly, and indeed offer training to prisoners before they are even released. They have tried to convince other companies to follow their lead but with limited success. That said, we also have Clean Sheet[1] through which employers can expressly publicise their willingness to employ ex-offenders.

I find it extremely admirable. Best of luck with your approach.

[0] See for example this archived blog post: https://web.archive.org/web/20150222003545/http://www.timpso... or a search for "Timpson ex-offenders" https://www.google.co.uk/search?q=timpson+ex-offenders

[1] http://cleansheet.org.uk/

conanbatt 1 day ago 0 replies      
This is a great idea and I hope it does well.

From an economic standpoint, why IS it a problem? The lack of sense of safety could come with a discount that eventually evens out. I.E. a felon gets an offer with 30% discount, and after a year or so that he proves as normal as any other get his wages back. Not feasible with minimum wage jobs, and one could think this is really unfair, but its better than a straight no.

coetry 2 days ago 0 replies      
The work that you are doing warms my heart and I wish you the best of growth and prosperity.
forgotmyoldpw 2 days ago 2 replies      
Um, why are all of the photos on the site of African Americans? Yes, it's true that African Americans make up 40% of the prison population, but whites make up 39% and hispanics 19%. It seems the images you have chosen are an unfair stereotype.
riffraff 1 day ago 1 reply      
this is great stuff, I wish you success.

One minor suggestion: review the assets on your website, the second background image[0] for example is 12 megabytes, you can probably compress it to much smaller size.

[0] https://jobboardhq.blob.core.windows.net/assets/prod/2ttp/sh...

yequalsx 2 days ago 1 reply      
I think this is an important endeavor. In the U.S. we tend to be too much focused on punishment and retribution. No one benefits by preventing ex convicts from an attempt at a normal life. I hope you succeed and wish you well.

I do think you ought to remove the phrase, "...but despite having paid everyone back..." That phrasing comes off to me as a bit of a justification for what you did and seems to indicate a feeling that you should not have been sentenced. I don't know if this is your intent or if indeed such a belief is justified. It may be off putting to some.

dodgycrooks 2 days ago 0 replies      
Can you filter candididates by the type of crime they did?

I'd be fine with hiring people previously incarcerated for drugs offenses and other minor crimes.

However, there's no way I'm hiring any rapists or pedophiles, or other such scum.

jitix 2 days ago 1 reply      
Awesome idea! And a noble cause. But one word of advice - since this is a niche market you guys should focus on natural growth and profitability instead of getting too much VC money to fuel explosive growth.
quadcore 2 days ago 2 replies      
Business wise: what make a company want to hire someone with a criminal record?
Co_Reentry 2 days ago 1 reply      

Thanks for your effort in the reentry space! The struggle for returning citizens is real and constant and I love seeing things like this on HN. At one point I worked for a company apploi.com that had a similar business model but targeting a different demographic. I would love to share some things I learned from that experience. I also started a similar venture corestaffing.us that is hyper-focused on the Baltimore/Washington area. Let me know if you are interested in chatting!

mikekij 2 days ago 1 reply      
Hey Richard, I'm really glad to see you working on this. A family member of mine made some mistakes, and ended up spending time in prison. It's been really painful to watch him struggle to get a job, even though he's paid his debts and is a genuinely good person. I have tremendous sympathy for people in this position.

If any of your members are experts at embedded systems / firmware / cryptography, send them my way!

tomjen3 2 days ago 0 replies      
Will it be possible to limit job postings to groups of offenders? Eg only non-violent offenders, only people who have been out for at least x years with no new crimes, etc?
Powerofmene 2 days ago 1 reply      

I think this is a terrific idea and can see the need. Do you foresee any difficulties obtaining VC? Just a bit curious given the in depth background checks they complete on founders. I hope that you get the funding that you may need for growth because I think this meets a tremendous need.

Kudos to you for making the changes you have made and then using that to help others.

bebopmoptop 2 days ago 1 reply      
Wow, this is great! I was convicted of a crime in my late teens and spent a few years in the federal system because of my conviction. It was an interesting process attempting to gain employment.

It warms to my heart to see jobs that are more open to people with previous convictions - they're some of the most loyal and hardworking people I've encountered.

Keep up the great work!

mythrwy 2 days ago 0 replies      
What is the incentive for employers to use this site?

"Doing the right thing and second chances" doesn't count in this case because it's rare when talking business and isn't dependable.

One possible incentive, (and this is a bit concerning), is employers looking for people who can be paid less and abused more because they don't have many options.

wolco 2 days ago 0 replies      
I can see this concept being a huge success because it is solving a real problem. The difficult lift is the employer buyin.
bduerst 2 days ago 1 reply      
Have you thought about collaborating with CEO works?


mathattack 2 days ago 1 reply      
I went on to build a large financial services firm, but despite having paid everyone back, I ended up with a 2 year Federal prison sentence.

Ummm.... This sounds like a huge rationalization. "I'm sorry for breaking in and robbing your house. Despite giving the money back, I ended up going to jail."

danschumann 2 days ago 0 replies      
I'd definitely consider hiring ex-cons, as long as they had some sort of 'come to Jesus' moment where they changed their life. I used to do a lot of bad stuff, just didn't get caught for it ( mostly doing drugs ). I wouldn't want to hire former me, but now that I've changed...
ztratar 2 days ago 0 replies      
Shot you guys an email, but would love to offer your users free months on Boost (https://getboost.io). We're the only on-demand career coach that's affordable for all.
flanbiscuit 2 days ago 1 reply      
quick FYI, Your og:image is broken because I just tried sharing your site on facebook and all I saw were logos from other companies. When I go directly to the image you set in your og:image meta tag I get an error response


here's a direct link to FB's open graph debugger with your site already loaded into it:https://developers.facebook.com/tools/debug/sharing/?q=https...

7cupsoftea 2 days ago 1 reply      
YES!!!! This is exactly the kind of innovation we need. Great work! Let us know if we can help. We are at very beginning stages of supporting people that are re-entering and getting folks lined up with jobs in a safe and supportive way is a big part of that. Again, hats off!
ghostbrainalpha 2 days ago 1 reply      
This is a beautiful project.

Have you met the guys behind https://pigeon.ly/?

Are there any other problem areas related to the criminal justice system that you are not addressing, that you think a startup could help with?

kinnth 2 days ago 0 replies      
I don't come from the US but I also gained a record and it changed how I viewed life and how I was viewed for opportunities. Punishment is the worst way for people to move on. This is a great idea, well done.
tatotato 2 days ago 1 reply      
Goodness! This seems like an amazing opportunity - I have charges that will never go away under New Zealand's Clean Slate Act for buying from Silk Road when I was 17 years of age. This is truly progressive.
ahallock 2 days ago 0 replies      
It may be simplistic, but I believe if you've done the time, you should not have a criminal record hanging over your head when trying to find employment. For a third or fourth time offender, I may give pause, though.
clairity 2 days ago 0 replies      
i'm also working on the jobs problem (not in your niche however) and really don't find the idea of another job board very compelling. can i ask why you went that route?

in any case, best of luck! it's important work to be doing.

as a society, we should do everything possible to help people who make mistakes and want to get back on the happy path. (as a side note, i think punishment is way out of whack. we need more carrot and less stick for low-level offenders, and more stick and less carrot for white-collar crimes that affect many more lives, though it seems like you got a fair amount of stick in your case.)

eizo 2 days ago 1 reply      
Hi Richard,

This is a great idea with a nice social cause. Also,from a business perspective this is a good niche and large scale.Aside the mission and the targeted niche, how do you expect/plan to diferentiate in your product offering?

RobertoG 1 day ago 0 replies      
I'm impressed by the "1 in 3 adults" thing. I should check the numbers for my country.

Am I wrong or all that people can't vote?

renegadesensei 2 days ago 1 reply      
This is a fantastic effort. It is absolutely crucial that we do a better job of helping those who have served their time have a chance to become productive members of society.
distortednet 2 days ago 1 reply      
First time creating an account on HN. Wanted to to say what you're doing is important. I will be sure word gets around about this in the appropriate circles where it would be useful.
artur_makly 2 days ago 0 replies      
for branding, i would consider not using a fixed # in the name - as that will fluctuate. instead consider the spirit of the idea : perhaps "SecondChances.io" or better.. keep up the good work!
Nemant 2 days ago 1 reply      
Hi Richard,

What's your plan when the number of people with criminal records reaches 80 million, 90 million, etc? Have you already acquired the other domain names?

markhall 2 days ago 1 reply      
Richard, amazing idea and appreciate the candor from your personal experience. HN is a great community to spread the word of your launch, so thanks. Let me know how I can help
kharms 2 days ago 0 replies      
>I felt a new, for-profit, tech-based approach was necessary, so I launched 70MillionJobs.

I understand why you preferred to make more money, but what made it necessary?

tixocloud 2 days ago 1 reply      
This is a great initiative and hopefully will lead to a positive change for everyone involved. Will you also be thinking about training/education opportunities for applicants?
adventured 2 days ago 1 reply      
Great business concept and social good all in one.

With the unemployed persons per job opening at such a low present level (~11-12 year low), I bet you see a lot of employer interest.

austenallred 2 days ago 2 replies      
I would imagine the difficult aspect of this two-sided market would be employers.

Not to be obtuse, but what incentive would an employer have to hire someone with criminal records?

sharemywin 2 days ago 1 reply      
seems like a lot of what you'll need to do is on the employer education. please excuse my ignorance, I hope their not offensive, I'm just trying to help.

1. is there any extra liability for the employer if they knowingly hire someone formerly incarcerated and they commit a crime while working for them.

2. aren't some kind of tax credits for hiring formerly incarcerated incarcerated people.

3. is it only w2 or do you allow 1099 opportunities.

oliv__ 2 days ago 1 reply      
I did a double take when I read the first 4 words: Richard Branson is in YC? Launching a job platform?

Anyways, this is a great idea, I hope you succeed!

andrew_wc_brown 2 days ago 0 replies      
I love seeing startups who can actually transform lives. Its sad being a developer with no technical limitations but have no useful ideas.
losteverything 2 days ago 1 reply      
Is anyone elses reaction "What will they think of next?"

Anyone also surprised at the scope of positive and admission-comments?

Anyway, best of luck!!

Joeboy 2 days ago 1 reply      
Possibly interesting trivia: There was an '80s British TV series called Inside Out, about people doing what you're doing.
brndnmtthws 2 days ago 1 reply      
This is great. Not much else to say about it.
felon123 2 days ago 0 replies      
How bout a separate site for those falsely accused of heinous crimes without any evidence(like Brian banks)
gressquel 2 days ago 1 reply      
There are pictures african-american people on frontpage, about and guiding principles.

People MAY be offended. Just a suggestion.

Bakary 1 day ago 0 replies      
One in three adults have a criminal record in the US? Wow.
Snarketing 2 days ago 1 reply      
Silicon Valley CMO with a record here - would love to offer pro bono marketing help if needed.
deepnotderp 2 days ago 1 reply      
Just wanted to be another HN-er voicing my support for what you're doing :)

Good luck and i hope you're successful!

angersock 2 days ago 1 reply      
This is really cool, and I hope that your platform takes off! The SMS integration for texting is also a nice touch. :)

One thing I wonder about is if folks in our industry would be more willing to have an felon of some variety working with them than somebody who's been tarred with the racist/sexist/conservative label?

nsxwolf 2 days ago 2 replies      
"Richard Bronson" is an awesome name for this. It has real gravitas.
geff82 2 days ago 3 replies      
The good thing about people with a criminal record: you know what they did! You will never know this of the people around you who got away not being caught. Do I know if my neighbour did not rob a bank 10 years ago? No. So working with ex-criminals can be an encounter with honesty.
whataretensors 2 days ago 1 reply      
Love it. Doing good and making money at the same time. What a great idea.
dalbasal 2 days ago 1 reply      
Important (and inglorious) work. I wish you the best Richard, genuinely.
always_learning 2 days ago 1 reply      
Minor things like small drug offences etc. fine but major crimes? No.
freeslugs 2 days ago 2 replies      
Can you sort by criminal record? e.g. Only white collar crimes.
hgoldstein 1 day ago 0 replies      
A terrific long overdue idea
hgoldstein 1 day ago 0 replies      
Terrific idea. Long overdue
user5994461 2 days ago 0 replies      
How come 1 in 3 adults in the USA have a criminal record?
sigzero 1 day ago 0 replies      
That's nothing short of awesome.
dvt 2 days ago 1 reply      
This is awesome, congratulations on your launch!
stoic 2 days ago 1 reply      
Bless you, sir.
adalyz 2 days ago 1 reply      
very interesting concept, all the best :-), hope it picks up, we need more love in our society
sghiassy 2 days ago 0 replies      
Love the idea. Good luck!
vogt 2 days ago 1 reply      
this is cool. you should get in touch with Pigeonly (YC W15).
sagivo 2 days ago 1 reply      
happy to see you made it to YC, good luck!
pertymcpert 2 days ago 1 reply      
Best of luck!
MentallyRetired 2 days ago 0 replies      
Love it
w8rbt 2 days ago 3 replies      
State and federal governments do not get as much tax revenue either because these people are not earning at their full potential. So basically, it hurts everyone involved as well as society as a whole.
will_brown 2 days ago 4 replies      
Just because I believe the number of reported violent crimes suggests our prison population is underpopulated, doesn't mean I don't also believe the system may currently be overpopulated with the wrong sorts.

That's why I used numbers for sex crimes only, but more broadly we have ~2.2M inmates and 1.2M reported violent crimes per year, throwing out all non violent offenders it would still be hard to conclude our prisons are overfilled unless All cases had a max sentence of 1 year.

beegeezuz 1 day ago 1 reply      
Danihan 2 days ago 6 replies      
>Attitudes are changing quickly

Are they now? Tell me, which political party is planning on decriminalizing drug offenses?

ileze 2 days ago 3 replies      
spraak 2 days ago 5 replies      
> along with a healthy dose of racism

Er, when is racism ever healthy?

adnam 2 days ago 5 replies      
I wish we heard more stories like these. It might dissuade people from getting involved in drugs in the first place.
felon123 2 days ago 0 replies      
How bout a separate site for individuals who are falsely accused of heinous crimes(murder, rape) without evidence?
Out of all major energy sources, nuclear is the safest ourworldindata.org
648 points by mpweiher  4 days ago   621 comments top 90
payne92 4 days ago 17 replies      
I believe the politicization of nuclear energy (the resulting lack of investment & innovation) will go down as one of the major blunders in human history.

We'd be in a far, far better situation with greenhouse gasses if we (as a human race) had continued to invest in nuclear energy. There would have been mishaps along the way, but at a much smaller scale than we're experiencing now with deaths from air pollution and looming risk of a warming planet.

We'd have much, much safer systems with modern reactor designs.

simias 4 days ago 5 replies      
People are scared of nuclear energy for the same reason that they're scared of taking an airplane. Even though it's technically and statistically very safe, the perceived risk appears much greater.

In particular in both cases when something goes wrong it tends to go extremely wrong and you're completely helpless to stop it. In contrast getting in a car accident or slowly suffocating in coal power plant emissions seem manageable.

Personally I'm of the opinion that going all nuclear would be a mistake but on the other hand it's a great way to move away from coal and petrol while we're still figuring out how to scale renewable energies (and maybe fusion, but that's still a moonshot). It provides cheap, reliable and reasonably safe energy with very little CO2 emissions.

I'm more worried about global warming than Fukushima and I'd gladly trade even a dozen of Fukushima-type incidents in the next decades (highly unlikely) if it could stop global warming and its dire, hard-to-revert consequences.

In particular I genuinely do not understand why most ecologists seem to be staunchly anti-nuclear. I can understand asking for better funding in renewable R&D and planning for a transition but, at least in Europe, ecologists seem to favor dropping nuclear immediately, no matter the cost. For instance they applauded when Germany decided to completely stop producing nuclear energy, even if it meant more pollution in the short term. I find that hard to justify.

Animats 4 days ago 9 replies      
It doesn't kill many people, because even when there's a disaster, there's time to evacuate. But you lose an entire city once in a while.

Major reactor disasters so far:

- SL-1. Steam explosion due to control rod lifted too far during maintenance. Small experimental reactor, built in the middle of nowhere (Idaho Reactor Test Station) for good reason. Inherently unsafe design.

- Three Mile Island. Meltdown due to cooling water failure due to instrument confusion. Contained by good containment vessel. No casualties. That's what should have happened at Fukushima.

- AVR pebble bed reactor. Pebble jam, radiation leak into ground. Contained, but too much of a mess to decommission.

- Chernobyl. Meltdown and fire due to operational error during testing. Totally inadequate containment. Entire region evacuated and contaminated for decades.

- Fukushima. Loss of coolant and meltdown. Containment vessel too small, reactor cores melted through in three reactors. Containment problem well known in advance; Peach Bottom PA has same design.

A big, strong, containment vessel can keep a meltdown from becoming a major disaster and has done so at least twice.Size matters; a large containment vessel faces lower pressures when all the water boils to become steam. But a good worst-case containment vessel can cost as much as the rest of the plant.

Some of the recently-touted small reactor designs try to omit a containment vessel on the grounds that their design couldn't possibly melt down. That's probably not a good approach.

the_gastropod 4 days ago 3 replies      
It appears that these figures take into account _just_ energy production. They don't seem include the mining, enriching, construction of reactors, disposal of waste, decommissioning reactors, etc. When mining low-grade ore (which isn't uncommon, and is becoming more command as high-grade ore becomes more scarce), nuclear plants are as inefficient as coal-fired plants [1]. Nuclear advocates tend to ignore the full system, and focus on where nuclear shines: power production. The setup to get to that point is extremely costly.

[1] https://www.stormsmith.nl/i05.html

beat 4 days ago 4 replies      
Of course, this is only comparing to fossil sources, not solar, wind, or other renewables (except biomass).

I don't think this is going to matter in the end, though. The best, most optimistic arguments the nuclear proponents can make would still take 20-30 years to build out enough to make a standard-deviation difference in greenhouse gasses.

Meanwhile, solar/wind are already hitting production costs that rival or beat nuclear, with lower setup costs and other barriers to entry. A wide variety of storage are being actively developed (with real investor support) to cache cheap surplus production from solar/wind, making a mostly-solar grid viable. What will our solar/wind/storage grid look like in 30 years?

Nuclear as a stepping-stone to solar won't matter. It's faster and easier to just to straight to solar.

Tomte 4 days ago 10 replies      
Before Chernobyl blew up, nuclear energy proponents promised us, nuclear energy was safe.

When Chernobyl blew up, it was obviously a stupid Soviet design, with stupid operating personnel. But now we've got new reactors, they are safe! Nothing could ever happen!

Then Fukushima blew up. That was obviously okay, because it was a Tsunami in conjunction with a few other improbable acts, and we obviously can't expect the nuclear industry to plan for that!

So we're now in the next round. Again, we're totally safe. We've got passive reactors. Really disruptive (g) tech!

I'm sorry, I said it before and I said it again: proponents of nuclear energy have either been lying to us every single time over the last decades, or they can't really manage nuclear energy.

I don't care which one it is, and I don't care whether they believe nuclear energy is safe now. They have been playing with catastrophes of a magnitude we can't really comprehend, and the best they manage to do is "it could have been even worse" and "we promise this was the last time".

As far as I'm concerned, I'm all for making sure it was the last time.

cjsuk 4 days ago 12 replies      
Apart from the waste.

We really don't know what to do about it other than bury it and leave it for a few tens to hundreds of generations in the future to deal with with the hope that they will know what to do.

So it's the safest option. But only for now. We might just be dooming our descendants to deal with the mess and they might be in a worse state than we are now.

chris_va 4 days ago 3 replies      
There are a couple of things everyone should know when it comes to energy production:

1) Energy investment is primarily driven by cost, not perceived/actual safety. Safety regulations do affect cost, but not enough to significantly change investment (at least in the US, with the current conditions).

2) Base load power and intermittent (e.g. solar/wind) power are not the same thing, and are not comparable. The concept that "solar and wind will save us all" by themselves is fundamentally incorrect, and actually they make things worse in many ways.

Nuclear fear mongering has resulted in high levels of regulations around nuclear power, but even without that natural gas has an edge in $/kWh. There just hasn't been demand to build nuclear. On top of that, nuclear needs to run 24/7 to amortize high capital costs. With solar/wind, there is high variability in grid supply, so nuclear is significantly less cost effective, and is getting phased out in favor of low-capex plants (i.e. natural gas).

Barring some energy storage miracle, we'll eventually end up with ~35% renewables, 15% hydro, 50% natural gas in the US, with HVDC interconnect. No nuclear, no coal.

(source: I work in a Climate and Energy R&D group)

eloff 4 days ago 4 replies      
My understanding, which is admittedly drawn from HN "napkin math" , is that at current prices for solar and wind, nuclear is a non-starter. That trend is only intensifying. It seems to me that nuclear could have been a good option, but because we've neglected it for so long, squashed innovation with regulations (not necessarily complaining that it didn't need the regulations!) it is uncompetitive economically and will likely stay that way for the near future. Amazingly enough even coal is uncompetitive in many parts of the world now too. The future is starting to turn green under the invisible hand of market economics.
lootsauce 4 days ago 0 replies      
This report seems to discount the tail risks involved with potential future nuclear accidents. Lets ignore the very complicated question of risk tradeoffs vs other sources for the moment.

Nuclear power has extreme tail risk that is hard to quantify based on the few examples of it happening. For the thee major events we can reference how do we know we didn't simply get lucky?

With fukushima for example, "Japan's prime minister at the time of the 2011 earthquake and tsunami has revealed that the country came within a paper-thin margin of a nuclear disaster requiring the evacuation of 50 million people." [1]

Clearly the lack of deaths directly attributable to nuclear accidents does not accurately capture the risks.

So what exactly is the risk of a catastrophic event that has thankfully never happened but could? Its not clear but rather than rolling dice with those risks we can actually make better systems without those unquantifiable risks in the first place. That takes us to the tradeoff calculus.

Just in the realm of nuclear power there are far better approaches we should be investing in as opposed to traditional plants such as LFTR [2] which does not have proliferation, waste or meltdown risk.

Picking on coal is a little unfair at this time because coal is being supplanted by much cleaner natural gas purely on market forces and solar and wind are growing dramatically. Of course there are issues with these as well, scaling issues and their own kind of impacts but they do not harbor the same kind of unquantifiable massive tail risk of traditional nuclear.

[1] http://www.telegraph.co.uk/news/worldnews/asia/japan/1218411...

[2] https://en.wikipedia.org/wiki/Liquid_fluoride_thorium_reacto...

ThinkBeat 4 days ago 1 reply      
The discussion I have seen so far on this thread go something like this:

1. Nuclear is really safe. The best. 2. Someone brings up an incident that actually happened.3. Apologists excuse the incidents that happened because a. It wasnt designed right b. It was due to corruption c. It was bad planning. etc.

We live in the real world here. You dont prove nuclear is safe by excusing every accidentand actually using the disaster to prove how safe it is.

titzer 4 days ago 2 replies      
The ironic thing is, and I'll probably be downvoted for even positing this, but Chernobyl was the best thing that ever happened to that local environment, at least when you look how local wildlife has bounced back since it's been cordoned off as an exclusion zone.


xelas 4 days ago 0 replies      
Let's cut a crap, shell we? We can't solve climate change problem which might be acute for last 20 years, yet we believe somehow that we are able to solve storage issue of nuclear waste for next 100 000. Egyptian pyramids are ONLY 5000 years old! And we are not 100% sure what is written in there.

How do you warn next generation after 10 000 years, that some particular site is dangerous/radiaoctive? How do we keep something safe for 100 000 years? Is our Earth look same after 20 000 years, 50 000 years, 70 000 years? Will there be new volcano or shift of tectonic plates? Ice age? How do you keep such waste safe?

Even as of today, there is no final storage solution for spent nuclear fuel. There is one know being built in Finland, and it is just for waste produces in Finland. BTW, there is very nice movie about it: Into Eternity. You should look it!

thinkcontext 4 days ago 1 reply      
I find this line of reasoning a little misleading. Looking at nuclear's safety record isn't entirely the correct measure, its that the potential consequences are so extreme.

Consider Fukushima. In some ways Japan got lucky, it was entirely possible that an additional reactor on the site could have melted down and the holding pond could have breached. Because of this they were having to consider evacuating areas on the outskirts of Tokyo. Obviously, if that had happened we wouldn't even be having this conversation.

I don't claim that we have considered the risks appropriately, have a sensible nuclear policy, or are considering nuclear correctly wrt climate change. But to claim nuclear is the safest because direct deaths to date are lower is not the full story.

inputcoffee 4 days ago 3 replies      
Two important points:

1. What about wind and solar?

2. The death/unit energy misses out the fact that we spend a lot more to keep nuclear safe because we are worried about it. If we spent a fraction of the same amount on other energy, we might get similar safety results.

jesus92gz-spain 4 days ago 3 replies      
How can nuclear (fision) energy be safer than wind/solar/hydro? New efficient solar cells should be enough, environment friendly, and safer than other alternatives as long as the manufacturing of these are environment friendly as well. Also, everyone can setup their own solar plant at home, I almost did so, but the price of the materials and the setup are too high for me.

I'd like you to consider if nuclear material is useful for something apart from generating energy. It may be useful for other things we don't even know right now, and in the future we may have consumed all the resources.

DrNuke 4 days ago 0 replies      
YCombinator was investing in nuclear energy recently, so an update may be nice here, both at short and medium term level. Thanks in advance.
moomin 4 days ago 1 reply      
I'm something of a fan of nuclear power, but there's no way it's safer than a solar panel array.

Ah, they didn't include renewables. Colour me surprised.

have_faith 4 days ago 0 replies      
Is it the safest when projecting for increased usage? While also taking into account modern threat vectors to a nuclear plant? I have no idea, just thinking out loud.
FussyZeus 4 days ago 6 replies      
The brain is not designed to understand statistics. Nuclear accidents are theatrical and fun, and therefore get a lot of play on the media when they happen. Look no further than the media circus surrounding Fukushima to confirm.

Everybody is scared to death of Sharks, yet sharks killed only 1 person in the US last year. Cows killed 20, 75% of which were deliberate attacks, but almost no one is afraid of a Cow.

Meanwhile 17,775 people died in traffic accidents, yet people jump in cars like it's routine. You're literally 17,000% more likely to die in your own car than you are by a shark, but again, brains don't understand that.

chicob 4 days ago 0 replies      
Fission power's bad rep is bad for fusion power, the latter being way more safe in any respect.

Anyway, although it is a serious issue, to this day no cities had to be evacuated permanently because of air pollution.

Regretfully, nuclear energy has an aura of doom, and investment in nuclear power plants wrongfully reek of hubris.

Even if it isn't a renewable source, fission power is one of our best allies in tackling CO2 emissions. At least it may buy us some time before fusion power and the dissemination of renewables.

xg15 4 days ago 11 replies      
Can anyone explain to me why "deaths/tWh" is even a meaningful measure?

Of course nuclear energy has one of the highest Wh outputs, no-one is disputing that. However, what does that have to do with the risk of use? That seems like a measure very skewed to make arguments in favour of nuclear power.

I might as well argue that car drivers are safer than pedestrians because the average deaths/horse power is vastly lower.

Also, why did they leave away hydro, water and wind power in those "deaths per x" charts?

JoshMnem 4 days ago 0 replies      
Arguments for nuclear power tend to ignore a few things:

- They talk about ideal power plants, but not actual power plants. Are they assuming that when the world switches to nuclear, that every country will build these ideal types of plants and maintain them well?

- Pro-nuclear arguments don't talk about inevitable wars. When nuclear power plants are scattered across the world in countries that will eventually become unstable, the potential outcomes look different. We are living through an amazing time for peace in many countries, but it isn't a given that things will remain peaceful like this.

- Radiation has a cultural effect as well, and those plants and storage facilities make likely targets, since radiation disasters tend to cause people to panic.

- After there is no more power from given plants or fuel, there is less incentive to take care of the waste and cleanup.

I'm not entirely against nuclear power, but I think that it's more complicated of an issue than most nuclear proponents claim.

Energy efficiency and use reduction are two other areas to consider. If it's possible to change behavior and opinions around nuclear energy then it should be possible to change behavior and opinions about efficiency.

epistasis 4 days ago 1 reply      
Before we even get to the safety, and the disposal of the nuclear waste, we have huge difficulties with the basic economics and construction of nuclear in the US.

The two plants under construction, Summer and Vogtle, have been plagued by construction difficulties and cost overruns. The Summer plant was just finally cancelled today. It seems that the Vogtle plant is going to follow the same route.

The management competence and institutional knowledge needed to build these large, insanely expensive projects seems to have disappeared. The time for nuclear in the US is done. Other options are cheaper, faster, and more responsive. And that's ignoring the political aspect of it all.


bmcusick 4 days ago 4 replies      
Ctrl+F "Solar", "Wind". No matches found.

That's weird, huh? I'm all for a rational assessment of risk, but shouldn't they be on the list?

Actually, I've seen such comparisons, and solar and wind do pretty well. They don't kill anyone from air pollution and global warming, but manufacturing and maintenance isn't risk-free. When you install things on roofs, sometimes people fall off.

Most solar installation these days however are utility scale deployments in empty fields. It's pretty low risk, plus the same pollution and AGW benefits that nuclear benefits from.

As an aside, I wonder if anyone has done the math on storing high-level nuclear waste on the Moon, now that a fully reusable SpaceX Falcon Heavy is almost here. That might be cheaper than the financial and political costs of places like Yucca Mountain.

frabbit 4 days ago 0 replies      
As the article makes clear, this another technology that might be useful in the future, but is currently unusable thanks to the problem of the waste generated from it. There are no safe options for storing nuclear waste right now.

It really is time that we start looking at cutting back mindless generation and consumption of energy and that mostly means a big shift in lifestyle for North American and European consumers.

Either that or else you can all explain to your children and grandchildren (whom you love very much and would do anything for etc.) that you decided that living an hour's drive or more from work and commuting in every day while eating fresh dragonfruit and shrimp flown from the other side of the world was just fine.

Reduce. Re-use. Recycle. Time to start actually working on the first of those.

vbuwivbiu 4 days ago 1 reply      
I'm against centralized power generation of any kind. Make a household fusion generator that's safe and maybe I'll consider it, but until then I'm for solar because it can be deployed in a decentralized network (with batteries), and it's clean.

That leaves the problem of the mining and manufacture, which is still centralized. This problem can be solved with GM organisms. We engineer fungi and bacteria to grow on roofs and generate electricity. They'd use CO2 in the growing process too. We can grow batteries in a similar way. Bacteria, yeast and viruses can do anything. They're the ultimate nanotech, we just need to learn how to program them.

pbreit 4 days ago 0 replies      
I have not skimmed but didn't see wind, solar or hydro?
quantdev 4 days ago 0 replies      
Trying to understand risk by looking at historic data alone is wrong when you're talking about catastrophic ruin and uncertain tiny probabilities. Add the word weapon in the headline quote to see what I mean,

"Contrary to popular belief, nuclear weapons are the safest modern weapon"

Arguments that nuclear power are safe need to prove that while assuming the worst-case scenario, since the probability of such a scenario is a-priori unknown despite what much of this comment section seems to be claiming.

Solar is knowingly much safer because it is much easier to reason about.

meri_dian 4 days ago 0 replies      
China is charging ahead with nuclear in order to replace their outdated coal dependent energy infrastructure.


As they develop and improve their reactor technology their plan is to export safer, more efficient fission reactors to the rest of the world.

maho 4 days ago 0 replies      
While I mostly agree with the article's risk assessments, it unfortunately leaves out one major risk factor: Nuclear proliferation. If more and more countries have access to nuclear power plants, then they also have the possibility to divert significant quantities (SQ) [1] of fissile materials towards nuclear weapons.

I cannot find the source right now, but a talk given by non-proliferation experts outlined how accounting for fissile material in a reactor is about 99% accurate. But even 1% of nuclear fuel, on a nuclear-powered-world scale, is equivalent to hundreds of SQs per year, assuming current genration and next-generation reactor technologies.

A nuclear conflict, even if regional (only a few dozen discharges) can potentially have dire, world-wide consequences. The article should have at least touched on those.

[1]: http://nsspi.tamu.edu/nssep/reference/technical-safeguards-t...

egypturnash 4 days ago 1 reply      
[misleading headline]

> Here we limit our comparison to the dominant energy sourcesbrown coal, coal, oil, gas, biomass and nuclear energy; in 2014 these sources accounted for about 96% of global energy production. While the negative health impacts of modern renewable energy technologies are so far thought to be small, they have been less fully explored.

Taylor_OD 4 days ago 0 replies      
Most people who I've talked to about their fears over nuclear energy say they wouldn't want to be in the blast zone in case of a meltdown or near a potential terrorist target. Then I pull up the map of existing nuclear plants and more often than not they already live close to one. I've found its a fear thing for most people.
tehabe 4 days ago 0 replies      
One thing is simply missing from the piece. You can't really distinguish between the civil use of nuclear power and the military use.

Maybe there is some reactor design which can fix this but the reactors which are currently being build are not those designs. Also they are build for 60+ years. A lot can happen in 60 years.

Discussing an energy source just by pointing about future developments is not the answer. The EPR reactors in Finland and France are several times over budget and took much longer than planed to build. In the time you could have build wind turbines and solar cells all over the country with an equivalent or higher amount of power output. And according to the current statistics every added kilowatt would have been cheaper than the last one.

Also you might now say, but solar and wind are not always available. But at the same time you think that all problems with nuclear can be overcome but not the storage of electricity?

ricw 4 days ago 2 replies      
The quoted statistics are interesting, but irrelevant when it comes to the actual use of nuclear. Furthermore, why are solar and wind energy missing from these stats? They account for 90% of new power in Europe in 2016 [1], and I'd assume similar for the major world economies. I'd like to know who funded this study. It screams of nuclear industry backing...

For anyone still being in disbelief of nuclear being made obsolete:Why has not a single (!) private insurer been willing to fully insure a nuclear facility without government backing?! The reason is simple: the risk is too high, even for insurance companies worth billions.

TLDR: nuclear has, as yet, not worked using private financing.

[1] https://www.theguardian.com/environment/2017/feb/09/new-ener...

SubiculumCode 4 days ago 0 replies      
While the threats from coal and gas are regularly distributed through time (near constant rate of pollutants) the threat from nuclear energy are sporadic (ie meltdown, terror) and are thus harder to model and assess. Also agree with others that wind and solar are being discounted unfairly despite their growth factors.
qweqweqweqw 4 days ago 0 replies      
I've come to the conclusion that nuclear energy is a good thing when done correctly, sadly we seem to be plagued by 60 year old power plants with severe safety problems still running because the power companies don't care about safety, they just want to run them as long as possible until they fail.
neurotech1 4 days ago 0 replies      
Nuclear energy is only as safe as the people operating it. Admiral Rickover demanded a high personal standard for reactor personnel, and there was ZERO reactor accidents[0] because of those standards.

IMO Natural Gas/BioGas powered turbine generators are better option to augment wind and solar power generation. The GE LM6000 [1] gas turbine (based on a 747 GE CF6 engine) can produce 40MW+ of electricity. They could even recycle a surplus CF6 engine to reduce manufacturing resources required.

[0] https://en.wikipedia.org/wiki/Hyman_G._Rickover#Safety_recor...

[1] https://en.wikipedia.org/wiki/General_Electric_LM6000

nnfy 4 days ago 0 replies      
People are using Fukushima to rationalize their fear of nuclear, just like we did after Three Mile Island and and Chernobyl. As someone else confirmed by posting [1], the magnitude 9.0 earthquake and 15 meter tsunami have not happened for at least 100 years. We can tear the plant down in hindsight, but it was designed to withstand probable events, just like any safety standards. It may not be pleasant to speak of human life in this manner, but there is always a cost/risk balance in any human endeavor, and this failure does not necessarily indicate recklessness.


meri_dian 4 days ago 0 replies      
Flying used to much more dangerous than it is now. But we improved the technology and now it's safe enough that most don't think twice before getting on a plane.

Discussions of nuclear power somehow ignore the fact that, like any other technology, current reactor designs are not the final iteration. They can be improved upon.

Look the Chinese Pebble Bed reactor: https://www.technologyreview.com/s/600757/china-could-have-a...

If everyone aside from the Chinese ignore nuclear power, then the Chinese may be the ones making a fortune selling their advanced reactor designs to everyone else.

a_imho 4 days ago 1 reply      
I wonder how much nuclear suffers from PR. Clearly statistics are not really effective at changing opinions. But what would happen if popular Elon Musk/Steve Jobs type of public figure get into the lobby game with a nuclear company? Could that swing perception either way?
mncolinlee 4 days ago 1 reply      
Not true. In the short run, solar is the safest. A massive spill of solar energy is just called a nice day. In the long run, it's the most dangerous. The sun may eventually consume the Earth and much later, go nova.
1337biz 4 days ago 0 replies      
Logical arguments do not apply in that scenario. Other energy forms might kill people a slow, invisible death. But when a nuclear reactor melts down the pictures of death and drama will go around the world.
pinaceae 4 days ago 0 replies      
Funny humans care about their children.

Nothing is scarier than birth-defects. Radiation causes very visible birth defects.

Hence people are very, very scared of radiation. And rightly so.

A windpark will not cause disfigured babies. Hence wind is better.

And: Nuclear is the most expensive energy source, by FAR. safety, waste, clean-up - super, super expensive. dismantle a wind park and it is gone, poof. dismantle a reactor and now you have a new problem.

Also very hard to weaponize wind or solar. Blow up a wind park and well, the wind park is gone. Steal a rotor and now you have a rotor.

etc etc etc.

What is sooo hard to understand about this?

jonbarker 3 days ago 0 replies      
A great documentary about this is "Pandora's Promise". In it quite a few previous sustainable energy (wind, solar) advocates lay out the problem: sustainable has too far to catch up and in order to get the developing world to high quality of life they need high energy consumption per capita fast. Only solution to this is a safe version of nuclear.
komali2 4 days ago 0 replies      
Now that is an introduction!

>The production of energy can be attributed to both mortality (deaths) and morbidity (severe illness) cases as a consequence of each stage of the energy production process:

A lot of people here may know what mortality and morbidity mean straight off, but I want to share this article as much as possible, and it does a great job reaching out to laymen. I also like how it starts right off with "more energy is good, here's a link demonstrating why, let's move on."

dijit 4 days ago 0 replies      
As a person who actually likes nuclear energy:

The issue I have with Nuclear is that we have not managed to fix the waste issue, and nobody seems to want to talk about it.

I'm not a huge fan of "salting the earth" for 10,000 years.

And when you say "it's safe", you're inherently ignoring that you basically have this toxic waste that is too costly to shoot into space and too dangerous to keep anywhere on earth for 10,000 years where it wont eventually harm the ecosystem.

internalfx 4 days ago 1 reply      
Can anyone comment on if the LFTR is legit?


_Codemonkeyism 4 days ago 0 replies      
Most relevant sentence from article

"Here we limit our comparison to the dominant energy sourcesbrown coal, coal, oil, gas, biomass and nuclear energy;"

danieledavi 4 days ago 0 replies      
We should try to use as much as possible renewable resources and save precious, expensive, rare elements to be used only for scientific research purposes and space missions (propulsion and power plants). We have many alternatives on earth but we don't have energetic alternatives on other planets and outer space.We are just wasting the opportunity to go far.
abritinthebay 4 days ago 1 reply      
This has been known for a long time in informed circles.

The problems with nuclear are waste and that we use vastly outdated designs and fuel sources.

Nuclear is not perfect, but we should not buy into a perfection fallacy when looking to get away from fossil fuels.

Solar is a better long term bet but a good progressive nuclear strategy that added a handful of small modern reactors could be massively complementary to it.

marcoperaza 4 days ago 0 replies      
We don't have to choose between energy abundance and good stewardship of the environment. Why do green activists and a majority of Western governments want us to? Attempts to force Western countries to cut emissions, without a corresponding transition to nuclear power, are unacceptable and represent a wealth transfer from rich countries to poor countries.
shams93 4 days ago 0 replies      
Wind works so well in places like Santa Monica the utilities were able to make it illegal to use wind power for your home. Fortunately they were not able to do the same to solar. We have home owners in california generating more energy than they use with their home solar panels, like my parents they generate more than they use even at the height of the summer.
anotherbrownguy 4 days ago 1 reply      
Isn't nuclear hysteria created mostly by American CleanTech industry?

Solar is not a reliable source to begin with so you can't use it to power anything critical. It has to be combined with something like nuclear or fossil fuels to have reliable power. But if we go nuclear, we will have 1000s of years worth of power. So, where exactly does Solar fit in?

kumarski 4 days ago 0 replies      
I've been writing about, thinking about, and exploring lithospheric energy extraction for the better part of 20 years.

I studied operations research during college in the hopes of working on India's nuclear supply chain.

The west choked us out of Uranium and Plutonium, similar to how the British choked us out of Rice during the Bengal Famine of 1943.






More than anything, the brown/black people of the world need the west to give in to our demands for the approval of our uranium desires to help us get to progress driven escape velocity Nitrogen + Steel economies.

tabtab 4 days ago 1 reply      
It's going to be politicized no matter what. Stop spanking humans for having human nature and lecturing them about being more rational. Politicians have to consider perception or they get voted out. It's just a technology that freaks people out on an emotional level and you can't stop that.
prewett 4 days ago 0 replies      
This article severely underestimates the number of deaths by nuclear power by not considering the deaths caused by leakage of radioactive materials over the course of the next 10,000 years. In fact, there really isn't any way to know that number for another 500 years at least.
dsfyu404ed 4 days ago 0 replies      
I find it amusing that HN is so divided on this issue yet quite unanimous distaste for how the middle east treats people and how the far east treats the environment.

Nuclear power will look a lot prettier when it's competing on price with socially and environmentally ethical solar cells and fossil fuels.

pps43 4 days ago 0 replies      
Comparison is incomplete without taking into consideration BDBA (beyond design basis accidents). Probability of an accident worse than Chernobyl is low, but not zero. Multiply it by economic loss from large densely populated area becoming uninhabitable, and it can easily flip the conclusion.
skndr 4 days ago 0 replies      
With a potential reduction in the Department of Energy's budget, this might not hold. There may not be enough funding to properly dispose of the waste. Not to mention that some of the effects of past storage aren't well-catalogued [0]:

Three years ago the D.O.E. sent the local tribes a letter to say they shouldnt eat the fish they caught in the river more than once a week.


Hanford turns out to be a good example of an American impulse: to avoid knowledge that conflicts with whatever your narrow, short-term interests might be. What we know about Hanford we know mainly from whistle-blowers who worked inside the nuclear facilityand who have been ostracized by their community for threatening the industry in a one-industry town. (Resistance to understanding a threat grows with proximity, writes Brown.) One hundred and forty-nine of the tanks in the Hanford farms are made of a single shell of a steel ill-designed to contain highly acidic nuclear waste. Sixty-seven of them have failed in some way and allowed waste or vapors to seep out. Each tank contains its own particular stew of chemicals, so no two tanks can be managed in the same way. At the top of many tanks accumulates a hydrogen gas, which, if not vented, might cause the tank to explode. There are Fukushima-level events that could happen at any moment, says Carpenter. Youd be releasing millions of curies of strontium 90 and cesium. And once its out there it doesnt go awaynot for hundreds and hundreds of years.

The people who created the plutonium for the first bombs, in the 1940s and early 1950s, were understandably in too much of a rush to worry about what might happen afterward. They simply dumped 120 million gallons of high-level waste, and another 444 billion gallons of contaminated liquid, into the ground. They piled uranium (half-life: 4.5 billion years) into unlined pits near the Columbia River. They dug 42 miles of trenches to dispose of solid radioactive wasteand left no good records of whats in the trenches. In early May of this year a tunnel at Hanford, built in the 1950s to bury low-level waste, collapsed. In response, the workers dumped truckloads of dirt into the hole. That dirt is now classified as low-level radioactive waste and needs to be disposed of. The reason the Hanford cleanup sucksin a wordis shortcuts, said Carpenter. Too many goddamn shortcuts.

[0] http://www.vanityfair.com/news/2017/07/department-of-energy-...

agumonkey 4 days ago 0 replies      
A French engineer, Jean-Marc Jancovici, has been claiming this for a decade, with many talks and documents. I'm only 80% fan of his reflection because he doesn't account much for human change and new technological reconfiguration.
melling 4 days ago 1 reply      
Strange, there have been lots of discussions about nuclear on HN and a lot of people here don't like it.

e.g. https://news.ycombinator.com/item?id=13234463

jonshariat 4 days ago 0 replies      
I"m not saying this is the main factor for not choosing nuclear but this should be considered: the one difference with Nuclear is that when a system fails, you can't use that area of land for a few thousand years.
unabst 4 days ago 1 reply      
The public's nuclear acceptance is not about day to day death toll. It's about broken promises and Armageddon.

Looking at the chart, I'd take gas over nuclear in a heartbeat thinking of what nuclear has done to Japan. Nuclear can both power and destroy a country. Gas and other options do not. Neither does solar or wind which are not even in that chart.

Say we have a new technology that is safer than nuclear, but had a one in a million chance to destroy Earth. It would be safest on paper, for however long paper and researchers still existed.

"But Fukushima was a horrible place for a nuclear power plant and it was run by incompetent people," you say. But that's exactly the point. If we make a list of all the plants in the world and the safety measures they undermined and their staffing situation, how many would be stellar? How many would even admit anything?

s0me0ne 3 days ago 1 reply      
Sure its safe when you dump all your waste in another state. If your state that created the nuclear waste had to keep it, it would be a different story.
lasermike026 4 days ago 0 replies      
The question is how can we do nuclear right? From outward appearances it looks like have been doing it wrong, Three Mile Island, Chernobyl, and Fukushima for example. French nuclear systems appear to get it more right.
xyproto 4 days ago 0 replies      
If only there was no connection to nuclear weapons, which are... unsafe.
lordlimecat 4 days ago 0 replies      
Not shown in the graph: Hydroelectric, which conjures up images of beautiful dams, rather than the hundreds of thousands of people who die at once when it fails.
jwildeboer 4 days ago 0 replies      
I stopped reading after "Here we limit our comparison to the dominant energy sourcesbrown coal, coal, oil, gas, biomass and nuclear energy"
PeterStuer 4 days ago 0 replies      
There is one huge problem with nuclear energy. Humanity has time and time again proven they can not handle that kind of responsibility.
CodeWriter23 4 days ago 0 replies      
Bullshit. Any energy source where we do not have the technology to clean up the worst case scenario is not the "safest".
VT_Drew 4 days ago 0 replies      
Can we just stop with this nonsense? If you have a byproduct that has be buried in special containers in the desert, and that land can't be used, and there are people actually trying to come up with symbols that indicate danger that could span all language and culture in case a meteor hits the earth and civilization slowly rebuilds then finds the site, then it isn't "safe" be any stretch of the imagination.
kaikai 4 days ago 0 replies      
No one seems to think disposing of nuclear waste is a problem until someone tries to dispose of it in their backyard.
deepnotderp 4 days ago 0 replies      
This assessment ignores the cm ecological cost of mining and waste disposal, both highly nontrivial concerns.
jdeibele 4 days ago 0 replies      
When they use .00 on all the figures it calls into question everything else about the article.
secult 3 days ago 0 replies      
Popular belief in any difficult topic is not a good indicator of anything.
oregontechninja 4 days ago 0 replies      
Check out NuScale if you want to see what a modern nuclear company is trying to achieve.
kzrdude 4 days ago 1 reply      
At the same time, it wasn't predicted that solar power would be this viable, was it?
MR4D 4 days ago 1 reply      
This is laughable. It's almost like saying that nuclear weapons are safer than sticks and stones because nuclear weapons have killed less people. Never mind that nuclear weapons have the possibility of making our species extinct.

Likewise for nuclear power accidents.

jlebrech 4 days ago 0 replies      
egl2016 4 days ago 0 replies      
tl;dr: if we assume deleterious effects from CO2-driven global warming and discount effects from long-term storage of high-level nuclear waste, nuclear is safer.
anorphirith 4 days ago 6 replies      
the only problem is where to get the uranium, I believe russia gets it from kazakhstan. france from niger. does US buys it from kazakhstan as well ?
swills 4 days ago 0 replies      
Clean, safe, too cheap to meter! /s
dredmorbius 4 days ago 0 replies      
The maps below correspond roughly to Zhumadian City, Henan Province, China. The region spans about 100 km east-west. It is presently home to over 7 million people.[0]


In 1975, it was the site, or perhaps more accurately, region, of the worst power plant disaster in all history: the Banqiao dam failure. News of this only fully emerged after over two decades.[1] You can spot the reservoir itself at the far left of the images, at mid-height.

In the disaster, a confluence of events lead to the deaths of approximately 171,000 people, with 11 million displaced. There's considerable uncertainty in those numbers.

The causes were multiple: siting, improper engineering, unheeded warnings, a (literal) perfect storm (tropical typhoon striking a cold front and lingering over the region for a full day, dropping over 1 meter of rain), improper emergency plans, failed communications, situational confusion, nightfall, and a hopelessly inadequate response and recovery. Of the deaths, "only" -- a term used advisedly -- 25,000 or so were due to direct flooding. The remaining 150,000 or so succumbed to starvation or disease in the weeks following the events.

And yet: the book as been closed. The cities in the floodplain are rebuilt. The dam itself has been rebuilt. Over 7 million people live in Zhumadian City, 95 millions in Henan Province total.

There is no disaster exclusion zone.

There is no disaster exclusion zone which will persist for the next three centuries.

There is no molten reactor core.

There is no coreium.

There is no radioactive waste which will persist for 10,000 to 1 million years.

The book is closed.

Proponents of nuclear power assume that we can assess risks with tails not of the decade or so of Banqiao, but of 100, 1,000, 1 million years. Utterly outside the scope of any human institutions, or of the human species itself.

Our models of risks and of costs fail us.

(They've failed us as well in the case of fossil fuels, and, quite possibly, for hydro power -- I'm not giving this example as endorsements of either, but to give the story of risk and closure, or its lack. Those are other stories, for other posts.)

The problems with nuclear power are massive, long-tailed, systemic and potentially existential. The same cannot be said of a wind farm or solar array. There is no significant 10,000 year threat from wind power, or solar power. We're not risking 30 - 60 km exclusion zones, on an unplanned basis, of which we've created at least four in the half-decade of significant nuclear energy applications: Hanford, Washington, Three Mile Island, Pennsyvania, Chernobyl, Ukraine, and Fukushima, Japan. And this is with a global plant of some 450 operating nuclear power plants as of 2017[2]

(This compares with over 7,600 power plants in the United States alone.[3])

None of these sites has been fully remediated. In the specific case of Hanford, the current management plan is budgeted at $2 billion, and there is no final management plan in place. This eighty years after the facility first opened.

If the total experience has been, say, 500 reactors, over 50 years, or 25,000 reactor-years of experience, and we've experienced at least four major disasters, then our failure rate is 0.016%.

The global share of nuclear power generation in 2012 was about 10%.[4] Which means that without allowing for increased electrical consumption within existing or extending to developing nations, the plant count would have to increase tenfold.

Holding the reactor-year failure rate constant would mean 80 core meltdowns per century.

Reducing that to the present rate of four meltdowns/century would require reducing the failure rate to 0.0008%. That's five nines, if anyone's counting.

Five nines on a process involving weather, politics, business, social upheaval, terrorism, sabotage, individual psychology, group psychology, climate, communications, response, preparedness....

And ... the involvement of the Japanese Mafia, the Yakuzi, in the management of TEPCO, who operated the Fukushima nuclear power plant.[5]

All of which played a tremendous role in how badly the Banqiao disaster itself played out -- everything which happened at Banqiao by dynamics could just as well have happened in a nuclear plant.

But it wasn't a nuke, it was a dam. And after a few hours, the waters receded, and after a few weeks, the land dried, and after a few months, recovery could start, and after a couple of decades ... even in what was still a poor country ... the recovery was complete.

Banqiao was a disaster, no doubt.

But what it wasn't was a nuclear disaster.



0. https://en.m.wikipedia.org/wiki/Zhumadian

1. http://www.sjsu.edu/faculty/watkins/aug1975.htm

2. https://www.nei.org/Knowledge-Center/Nuclear-Statistics/Worl...

3. https://www.eia.gov/tools/faqs/faq.php?id=65&t=3

5. http://www.iea.org/publications/freepublications/publication...

4. https://www.theatlantic.com/international/archive/2011/12/ya...

hristov 4 days ago 1 reply      
You have to be very careful about these studies, because most official government studies flat out lie about the effects of nuclear disasters.

The most egregious example is Chernobyl, where the official Soviet position was that only a single person died from the disaster. But studies from other nations say the death toll may be close to one million. Well believe it or not a lot of these studies that show how safe nuclear is actually take the official Soviet data about chernobyl as truth. (I am not sure whether this is the case for this particular study because their source is behind a paywall).

But similar (if not as outrageous) lies have also been said about accidents in the west. The official story about three mile island for example is that it caused no deaths, yet studies find drastic increases of all kinds of cancers in the affected area. See, for example, https://www.counterpunch.org/2015/03/27/cancer-and-infant-mo...

I usually believe that we should be guided by science and data in our public decisions, but the data surrounding nuclear is so distorted by governments that it is just not to be trusted. And now that we have truly safe alternatives like solar and wind, we can finally put that nightmare behind us.

cratermoon 4 days ago 0 replies      
Two words: Hanford Site
padseeker 4 days ago 9 replies      
ebbv 4 days ago 1 reply      
tinco 4 days ago 0 replies      
All the energy sources in this article except for nuclear are horrible for our environment and for our health. The important question is what do we replace them with. And if that is the important question, what good is this article if it shows only one solution, explicitly not comparing it with the other solutions?
App sizes are out of control trevore.com
724 points by trevor-e  3 days ago   440 comments top 68
vladdanilov 3 days ago 4 replies      
The situation is messy. Take Facebook.app. The reported size on the App Store is 377MB, the distributed .ipa is 241MB. But it is a universal app which includes fat binaries arm_v7 and arm64 and all the graphics 1x, 2x and 3x. App Thinning halves that size for end users. Yet the App Store reports the full size.

There's more. App Store also provides some sort of delta updates [1], which save a lot bandwidth, but failing to report it properly again [2].

App Thinning does not work for standalone image assets. It means you are forced to use Asset Catalogs where all PNG files are stored as LZFSE (previously zip) compressed BGRA bitmaps. It's good. But optimized PNG files can be 30-50% smaller on average. I'm fighting this [3] but not sure if there's a simple solution.

[1] https://developer.apple.com/library/content/qa/qa1779/_index...

[2] https://twitter.com/rjonesy/status/878051126704254976

[3] https://twitter.com/vmdanilov/status/892015508203216896

habosa 2 days ago 6 replies      
I am surprised at all of the app developer shaming in this thread. Is it really likely that every developer working on a popular BigCorp app is an idiot who imports 10MB libraries every time he/she faces the slightest challenge?

It's much more likely that app developers are optimizing for many things, including app size, but reducing app size has a bad cost/benefit ratio. Here are some decisions that may bloat your app:

 * Want your network calls to be fast and reliable? Better use that cool new HTTP library rather than writing your own. * Want to keep everything secure? Rule #1 of hacker news is never roll your own crypto so better import the best lib out there. * Want to delight your users and their fancy QHD screens? Time to include some high res images and animations. Oh and you can't use vectors, they kill performance. * Want to access new markets? Time to translate your strings into 80 common languages. Oh and some of these may require custom fonts to look right in your app. * Want your Android game to have blazing fast graphics? Import that native library, and don't forget multiple architectures. 
The biggest app I ever worked on was Google Santa Tracker. It was about 60MB. We spent a lot of time optimizing the app size in this year's version. We managed to drop 10MB while adding a few new games to the app. I'm proud of it, but if I didn't have the freedom to pursue app size I certainly would have taken the extra bloat to ship the new content.


jarjoura 3 days ago 4 replies      
Those numbers are mostly unfair. For some reason in the iOS 10 App Store, Apple started listing the complete fat (both 32-bit and 64-bit archs) submitted .ipa size. If you want to easily test that, clear your cellular data usage, update one of those apps (or install) and then go back to settings and see the actual bytes transferred.

Also, most everyone is using Swift in some small part, so that automatically includes the standard library. Then you have some companies who switched to Realm DB away from CoreData. Or then there's a whole subset of companies that have decided they want to go all in on Javascript and have brought in the whole React Native stack with it.

These apps in that list are also built by teams of 100s of engineers working at full speed. In reality, each one is its own little OS full of its own UI frameworks, testing frameworks, and nontrivial code.

Trust me when I say that everyone is plenty aware of how big their footprint is getting, and no one is happy about it. Apple won't even let you submit to the store if the actual single architecture binary is over 60MB.

kutkloon7 3 days ago 7 replies      
I never understand where this increasing size comes from. For videos or hi-res photographs, I understand.

There is however no reason that code, either compiled to a binary format or in a textual format, uses so much data. Heck, the memoirs of Casanova spans 3000 pages, and is 6,5 MB. People don't understand how incredibly large a megabyte is for simple code.

Surely the 275 MB isn't all useful data (I wonder what compression ratios you get on 'apps'), and it should be possible to cut it down to a few MB.

ghostly_s 3 days ago 2 replies      
There were a few articles with actual content on this topic covered on Daring Fireball in recent months. Not sure what this blog blurb is adding to the conversation.

1. https://sensortower.com/blog/ios-app-size-growth

2. http://blog.timac.org/?p=1707

3. https://blog.halide.cam/one-weird-trick-to-lose-size-c0a4013...

Apocryphon 3 days ago 5 replies      
It's pretty rich how these companies are well known for the rigor they apply to interviewing candidates on technical subjects, yet actually drop the ball in production with poor engineering like this. Where does that rigor go after the interviews are done?

Are there any examples of well-known apps from large organizations that aren't excessively large in size?

gok 3 days ago 3 replies      
Awesomely, this blog post of less than 200 words and one screenshot loads over 1.41 MB for me.

Software expands to fill all available resources.

jmduke 3 days ago 0 replies      
Worth pointing out: The author of this article works at Kayak, which has an iOS app of 176MB.


(As far as I can tell, the answer to "why is LinkedIn.app so large?" is not "because LinkedIn's iOS team sucks", but "because LinkedIn's iOS team works under a number of constraints, including app size, and app size is not a particularly powerful constraint to optimize for.")

dallamaneni 3 days ago 7 replies      
I have been replacing traditional apps with PWA's or mobile websites wherever possible (on Android). They hardly take up any space and also seem to behave well (drains less battery) compared to traditional apps.

I could replace the following with PWAs:

- Twitter

- Uber

- Lyft

- Google news

- Instagram

- Flipboard

- Shopping sites like Walmart, Wish

and many more.

Facebook and Amazon have no PWA's but have mobile websites. (Facebook mobile web works well with Opera. On other browsers it annoyingly redirects to play store to install messenger)

custos 3 days ago 3 replies      
I have a cheap phone, and due to this I can only have like 6 apps installed at a time.

I'm constantly removing Facebook/Messenger for situations like when I had to download Ticketmaster app for a concert ticket.

And with all these apps disallowing you from moving them to SD card, I can't even really use my 32GB SD card for them.

ajross 3 days ago 6 replies      
Folks: there's a built-in technology on your phone that allows you to load and run an app on-demand over the internet without dedicating any internal storage at all! It allows clean integration with many of the "native" features you expect like camera and notification and timers and stuff. And it's based on completely open standards with multiple, competing open source implementations.

No, seriously: uninstall that junk and just run stuff in the browser. It works much better than you think, the biggest annoyance being all the nag screens sites throw at you to get you to install their apps.

DamnInteresting 3 days ago 2 replies      
One of my first jobs was as a technician at a tech support call center. For a while around 1997-1998, a good 1/3 of our calls were customers who ordered a new system with a hard drive over 2.1GB, but Windows/DOS could only make partitions as large as 2.1GB. Customers wondered why they got a smaller hard disk than they ordered, not realizing the extra space was that Drive D under My Computer.

Fast forward to today, where my MacBook keeps nagging me that my "hard disk" (actually an SSD) is "full" because I only have 3GB of free space. In 20 years, what was once considered the maximum is now considered negligible.

Optimization is important, but regardless, software size is going to keep growing. Wringing hands over it doesn't help much.

pmoriarty 3 days ago 1 reply      
I remember when apps used to take less than 4k of memory, because 4k was all the RAM in your computer.

Then I remember downloading a 3 MB mp3 on my 9600 baud modem and being amazed at how much space was taken up by music that sounded realistic and not like just a bunch of beeps out of speakers that could only make beeps.

Then came the old joke about EMACS standing for "Eight Megs and Constantly Swapping".

Then I remember noticing that commercial software like games filled up a full CD's worth of space (back when software was distributed by physical CD's). After that it was common to ship software as multiple CD's, then multiple DVDs.

Now, is software even shipped on DVDs anymore? I just download everything, and, yeah, apps are still bloating, same as ever.

noahmbarr 3 days ago 3 replies      
Short a major customer outcry, Apple is largely incentivized to not fix this

(1) They substantial profits from memory upsells on their product lines(2) Larger apps take more horsepower to run so older models become less effective sooner!

twsted 3 days ago 2 replies      
Most of the time it's the same reason why web pages are MBs in size today: lazy developers that uses a new library for every feature they need, without a deeper analysis of costs and benefits.
laurencei 3 days ago 3 replies      
The problem is it's not really in Apples interest to get app sizes smaller.

Larger apps means you have more "need" to upgrade your phone to the latest version with more space, power, speed etc.

iamben 3 days ago 0 replies      
As someone with 16gb of space on my phone (before the OS), this has become really noticeable. It's a breath of fresh air when you install an app (like the habit tracker I installed the other day) and it's only 2mb...

It's worse knowing something like Facebook will cache a whole bunch of images, friend pictures and everything else.

davexunit 3 days ago 1 reply      
Is anyone else worried about the massive amounts of bundled third-party libraries that come with each app from a security, rather than a size, perspective? What happens when such a library receives a security patch? AFAIK it's up to each developer to keep all bundled libraries up-to-date, which means that, realistically, everyone is shipping lots of vulnerable stuff and they don't even know it.

"This shirt is dry clean only, which means it's dirty."

FraKtus 2 days ago 0 replies      
We released 2 apps on iOS and Android. One is 0.8 MB and the second just at 1.8 MB. Obviously we have not a lot of graphics embedded. We use mostly C and 2 cross platform projects SFML and Nuklear for the GUI. The GUI is more in the gaming style but for us it fits the bill and we render at 60 FPS on most devices including the iPad mini original of my daughter.
gregoriol 3 days ago 1 reply      
I tweeted some frustation about this a few days ago (https://twitter.com/GregoryOriol/status/889859849353383937).

What is surprising me, is that in the Facebook iOS app, there is a "FBSharedFramework.framework" that has a binary file of 215MB. What the fuck is this? How a single binary can get that big?

peapicker 3 days ago 3 replies      
This is definitely getting to be a major problem. I've removed several apps for this reason as well.

Code bloat = lost users

antfarm 3 days ago 0 replies      
LEGO's app for their new robotic toy is 1.03 GB.https://itunes.apple.com/de/app/lego-boost/id1217385613
saosebastiao 3 days ago 0 replies      
The Phillips Sonicare Kids app, which is nothing more than a simple game for kids to track brushing their teeth, is 245MB.

I guess the good thing is that it gave me an opportunity to teach my kid about tradeoffs. "Ok, so if you really want this app, we're gonna have to delete 4 of your other games on the iPad." Even a 5 year old could reason his way out of that one.

cakedoggie 3 days ago 1 reply      
People don't care about app sizes, otherwise it would be an issue.

Look at this poster, he doesn't care. He isn't going to remove any of those apps. There are runner apps that are a lot smaller, but he doesn't care about the size of the app enough to guide what he downloads.

Empty blog posts are empty.

"Why is there so much traffic, someone should do something, I hate driving these days."

coldcode 3 days ago 0 replies      
Our app downloaded is just under 100MB. Biggest part? Google Maps For Business at 30MB. Why do we use this monstrosity? We signed some marketing deal with Google. We have a replacement using Apple Maps thats about 2MB. But the beancounters won't let us use it because of the $. Not every size problem is some programmers fault.
pascalxus 3 days ago 0 replies      
the solution is, everyone should uninstall these apps. if everyone did that, i bet you they would fix the problem reallly fast.

This is why i uninstalled pokemon go -> it used up to much data and to much battery. Uninstall -> problem solved. unfortunetly, the vast majority of people don't care about app sizes, or how much data they use, etc.

cybrjoe 3 days ago 2 replies      
I was comparison shopping something this week and wanted to check Best Buy, so I went to the app store. 100+ MB and needed to be on wifi to download. What in the Best Buy app could be over 100 MB?

On another note, I just went to check some of my apps and iOS 11 got rid of the size from that view. You now need to dive into each app to see the size.

real-hacker 2 days ago 2 replies      
Another question has to be asked: do they have the motivation to reduce the size of apps?

Earlier this year, Wechat released a revolutionary (kinda) feature called 'Miniapp', it supports releasing apps within Wechat itself (a bunch of xml/js files). All major Internet companies published their own miniapp in Wechat, which include s the most-used feature of their full app, and only takes less than 1MB of space. Guess what? the miniapps are not adopted by most users, it became just a fad.

This means most users are not sensitive to the disk space used by an app. Apps know this, and thus don't have motivation to reduce the size.

real-hacker 2 days ago 1 reply      
A major culprit of the bloat is the monolithic 3rd-party libraries/frameworks. You have to import the whole thing, even if what you need is just one simple function. Of course, you have the option of carefully studying the code, and hand-pick the part of code you need, but most developers will not do this, due to poor ROI.

One way to solve this problem, is to promote modular library structures, and package management tools (pod, npm) should support importing fine-grained submodules, even single features of a library/framework, whenever possible.

crazygringo 3 days ago 0 replies      
It's not just the install size, but apps which accumulate and seemingly never delete data.

For a while I tried to get by with a 16GB iPhone SE thinking I keep everything in the cloud, so why would I ever need 64GB? Well every couple of months I'd have to delete and re-install NYTimes and reddit and some magazine apps because they just grew and grew and grew in storage until I had 0 space left. Like they simply cache everything you've ever looked at.

It's dumb, because other apps are intelligent -- they'll automatically purge cache data when storage gets too low. But not NYTimes. Not reddit. It seems pretty inexcusable, really.

TeeWEE 3 days ago 3 replies      
Normal apps are around 10 to 20mb, which is still big. But the reason for this is support for different screen resolutions. Images of different sizes are bundled with the app, even though the phone only needs on of them.

Vector graphics will solve this, but is not mainstream yet.

The facebook android app is 88MB (zipped), i did check the APK of why its so big:

90mb of code30mb of assetes (javascript, metadata, librtc, big json files (animations))30mb of resources (images)

Rjevski 3 days ago 0 replies      
Analytics and ads/tracking is one of the reasons. They're always writing/including more code to track every single click and pixel.
ringaroundthetx 3 days ago 1 reply      
In several interviews I've been questioned about the importance of my contributions throughout my entire career because the apps sizes were so small (typically 8 - 12 mb)

When asked it was clear they'd already made up their mind, and discussions about optimizations, how the app actually did anything, MVC, MVP or SVGs didn't change that.

And thats how you have large apps!

userbinator 2 days ago 0 replies      
No discussion of bloat is complete with a mention of the demoscene, where sub-MB applications generate immensely complex graphics:




(I'm aware that these sizes do not include the OS and its libraries, but apps on a mobile device also have a similarly rich environment of libraries they can use.)

msoad 3 days ago 3 replies      
One word: Swift

It's making app bundle sizes explode in size

akulbe 3 days ago 1 reply      
I have a limited understanding of how this works, but could it be that app devs are leaving debug stuff in the builds, and not removing that when it gets pushed to production?

Please, educate me. I'm all ears. :)

jorgemf 3 days ago 0 replies      
With text-only webs over 5MB I wouldn't expect less from mobile apps.
kmfrk 2 days ago 0 replies      
I hope someone might take it upon themselves to make a Wall of Shame to let me know which apps I should just uninstall if I rarely use them.

Although the updates aren't always huge, Slack has been an atrocious app on Windows and iOS for performance and indexing. Absurd that the biggest companies have, well, the biggest apps.

rootlocus 3 days ago 4 replies      
Six apps, six embedded web browsers.
draegtun 2 days ago 0 replies      
When i see articles like this it always reminds me of Carl Sassenrath's Fight Software Complexity Pollution - http://www.rebol.com/article/0497.html
bathtub 3 days ago 0 replies      
There was a time when people used more and more websites because they were fed up with desktop apps. Hopefully we see the same soon again.
fledder 3 days ago 0 replies      
275MB for LinkedIn is the complaint, to one-up that...I recently got an update for Hearthstone on iOS of 2.3GB. It adds one pack of cards.
Zigurd 2 days ago 0 replies      
Pile on the frameworks to speed development and to make mobile development more familiar-feeling for non-mobile coders. Instrument every user interaction. Use a cross-platform SDK. Squeeze every penny out of every ad network. Whoops! Bloated.
post_break 3 days ago 3 replies      
Pretty soon these will start to hit Apple's limit on downloads over cellular (something I still can't believe exists in 2017).
cipriancaba 2 days ago 1 reply      
Not sure that Apple has any interest into reporting smaller sizes.. They have interested in having lower download sizes (less strain on their servers) and users buying the bigger and better memory storage.. Along with the iCloud subscription of course..
jimbobjim 3 days ago 1 reply      
The reason the LinkedIn app is so big is the number of frameworks they use. 87 frameworks accounting for 248MB of the 277. The swift runtime takes up about 20MB, and something called VoyagerFeed takes up over 190. All the images actually only make up about 12MB. There's also about 0.5MB for each localisation.
titanas 1 day ago 0 replies      
Many apps are loaded with lots of A/B test, increasing the binary size .. because A/B testing
miguelrochefort 3 days ago 2 replies      
Things will only get worse. The application paradigm is unsustainable.


hamandcheese 2 days ago 0 replies      
People here seem to be blaming over eager use of third party libraries for a lot of bloat. Is there no such thing as dead code elimination for apps that would eliminate the unused portions of your dependencies?
foepys 3 days ago 0 replies      
Once upon a time I deleted music and videos from my phone to make room for newer music and videos but nowadays I catch myself removing apps. Not because of the space they are using but because of the app size itself. A once removed app is unlikely to be reinstalled.
apl002 2 days ago 0 replies      
There are more native capabilities now on devices which require more SDKs to leverage this functionality for cool stuff. The size of some of these SDKs are huge and bloat the size of your app.
necessity 3 days ago 0 replies      
Don't download them? Out of those apps the only one you actually need is Uber, everything else can be replaced with a web browser. I don't download anything larger than 5MB unless I absolutely need it.
r0ze-at-hn 3 days ago 0 replies      
The only real solution I can think of would be if apple actually incentivized app creators to reduce their size. They are actively harming the Apple ecosystem by preventing users from having a large number of apps which hurts Apple.

* Charge owners a fee for apps over a certain size "a processing fee" or whatnot

* Charge owners a fee based on the download costs. Under XMB and it is free. The more you cost apple to transfer your app to their customer the larger the fee.

* Penalize large apps in the app store search results or give bonus to smaller apps.

Or rather than straight up bonus's / penalize apps based on size go after specific things that cause bloat

* Apps that don't use pngcrush on their png's

* Shipping wav files and not acc

* ...

Maybe Apple doesn't even need to actually implement any of these, but just threaten to.

tehlike 2 days ago 0 replies      
I'm pretty surprised nobody mentioned proguard. Almost noone enables that, unless they have to, and that's part of the problem.
slaymaker1907 3 days ago 1 reply      
And supposedly we don't need PWAs according to Apple...
mahyarm 3 days ago 0 replies      
Swift induces large binary sizes through the language itself. You'd be surprised what a simple optional if let creates in assembly, or how it uses template specialization with pretty much every typed collection interaction or some other standard library interaction. That plus the 10-20+MB that the swift standard lib adds contributes a good chunk. Once ABI stability comes in and a bunch of in progress size optimizations come in, binary sizes will decrease quite a bit for swift using apps.

Apple also encrypts then compresses, which means the binaries you download in the app store are incompressible.

If apple wants to decrease IPA download size worldwide, they would let developers not encrypt their app and just sign them. That would be very relevant for developers of popular free apps. I'm guessing they encrypt then compress so they wont have to re-encrypt the binaries on the users phones once they uncompress an app.

Also all the SV big-co have A/B testing practices with weekly release cycles that induces large line counts in their apps.

I think everyone copied the facebook mobile dev style, which simulates what you can do in webdev. In webdev there is no cost to adding another team for another feature that lives in some section of the greater app, since it's just another webpage. You can create many a/b tests and rollback things nearly instantly. With the weekly cycle everything is under a feature flag and you'll see a bunch of half developed features sitting in the delivered binary turned off via feature flag. This induces code size and creates these kinds of issues you see today.

Also large apps start requiring management structures that I call hallways and elevators. A single indie app can make a equivalent of a 1 room hut of an app, which doesn't require any hallways, elevators, floors, boiler rooms, parking structures or stairs. If you look at the layout plan of a highrise, you'll start to realize a lot of the floor space is taken up by the elevator and hallways.

Once apps become as large as a highrise, then they start requiring code structures that help manage the chaos, such as reporting systems, rollback systems, well defined tree structures and so on. That and the shear amount of rooms they have create apps larger than they look.

Raynak 3 days ago 0 replies      
My phone currently only manages 2 non-default apps. If it could actually install to SD like it promises I'd be happy.
ourcat 2 days ago 0 replies      
Just wait until they start adding 100Mb+ (Core)ML data models after iOS 11 (with A9+ chips).
svenfaw 3 days ago 1 reply      
What blogging engine is this? Real nice and clean.
randyrand 3 days ago 0 replies      
It would be cool if users could specify a max size for an app, and then the app tries to meet that size or be deleted.
wingworks 3 days ago 0 replies      
Interestingly LinkedIn reports on the Play Store as only 20MB. Though once installed it uses 111MB.
aussieguy123 2 days ago 0 replies      
Why isn't rsync used to update apps, instead of passing archives around?
samdung 3 days ago 0 replies      
Im just guessing this is to corner of a good amount of disk space so the app does not stop working from lack of space.

An analogy is when downloading a torrent; the torrent blocks a chunk of space on your disk equivalent to the size of the file being downloaded. As the file is being downloaded it replaces junk in the blocked chunk.

Again all this is my speculation.

isseu 2 days ago 0 replies      
Why swift runtime is not included as part of ios ecosystem?
romulof 3 days ago 0 replies      
Didn't Apple implement delta updates for apps?
stormcode 3 days ago 0 replies      
Advertising APIs.
adamnemecek 3 days ago 5 replies      
I wonder is this is due to lack of generics in objc.
dineshswamy 3 days ago 0 replies      
I m building a product that would bring the size of the apps way down
Martin Shkreli is found guilty of securities fraud washingtonpost.com
534 points by fmihaila  7 hours ago   477 comments top 36
jjxw 6 hours ago 7 replies      
There seems to be a misconception regarding what Shkreli was found guilty of. The legal case here has very little to do with the pharmaceutical pricing controversy - it is a separate case based on a separate hedge fund that he managed. The gist of it is that he took people's money to start a hedge fund, lied to investors that the fund was doing fine when the hedge fund went belly up, but ended up returning everyone's money plus a sizable return when his separate pharmaceutical venture went well.

When fraud happens those affected don't usually get their money back much less a return on that money. However, it's pretty clear what he did is also fraud (false documents, not returning people's money when they asked for it) even if the fact that investors came out better makes the plaintiffs less sympathetic.

Clubber 7 hours ago 17 replies      
I use to hate this guy, then I saw the Vice interview on him. It was nice to see his side of the story.

I don't know much about this case in particular. It was kinda sleazy to see the congress question him about his price increases when they knew damn well it was perfectly legal and they haven't done anything to stop it. Shkreli seems to be trying to expose this hypocrisy, but the news loves their stories.

Vice interview:https://www.youtube.com/watch?v=2PCb9mnrU1g

sp527 6 hours ago 1 reply      
The government and media couldn't have asked for a better outcome. The actual criminals on Wall Street and in Big Pharma, who had the foresight to line the right pockets, go ignored and the outsider who drew the ire of the public - for a decidedly amoral business decision with poor optics - is very publicly castigated. It's a win all around for a monumentally corrupt establishment, which has once again deferred meaningful scrutiny.

Shkreli made the mistake of setting himself up as the perfect loudmouthed, flamboyant patsy.

discombobulate 6 hours ago 8 replies      
I quite like Martin. I talked to him a few time on YouTube, whilst he was live streaming.

He's whip-smart & knowledgeable. He does, however, have a couple of major flaws. 1) He trolls. Hard. 2) It seems he lies. Which I picked up from a previous news article. (He claimed to have ~$50mm under management @ his previous hedge fund. It was more like $1.6mm. Something like that).

I can forgive the trolling. It's over the top, IMO. But it is what it is.

The lying is another kettle of fish. You can't go around bullshitting ppl. &, as he found out, you can't go around bullshitting investors.

I think he loves money too much. The thought of being poor may have pushed him to do something stupid (ultimately his call!).

I hope he doesn't have too hard a time in jail. Losing his fortune (I believe he loses his shares from Retrophin. ~$65mm. That's already a punishment.

Edit: I don't know why I'm being downvoted. I'm being honest. Fuck you people, frankly.

kabdib 1 hour ago 1 reply      
A data point about medication:

I just paid for a pair of EpiPens; the generic version was $337 a pair (last I checked, the non-generic version was over $600). I have pretty good health insurance, so I didn't pay that much myself, but my employer paid the rest.

As a baseline, I had the pharmacist look up the equivalent medication for use with a syringe; a ten dose bottle was $5.99. I know, not the same thing. But this confirmed what I'd suspected for years.

I have to assume that the EpiPen delivery mechanism, which is really what we're paying for, is well debugged and optimized and essentially just a matter of ordering parts and assembling them; it would be mind boggling to have a COGs of more than a few dollars, or any significant conversion costs. The cost of the actual medication that the pens contain is apparently about sixty cents on top of that. Mylan is printing money.

Icing on the cake: The pens expire after a year. But you typically can't get pens that last that long, the ones I got already have a few months on them and will have to be replaced before the next school year ends or my son won't be able to attend class (the school is not allowed to administer "expired" medication).

This is an utter and corrupt racket. I'm writing my congressional representatives and senators. Again.

sqeaky 7 hours ago 2 replies      
Putting people like Shkreli into prison for a long time is vital to the long term stability of society. I wish money didn't buy options to avoid prison and I wish that people with his behaviors didn't so often accrue large amounts of money.
setra 7 hours ago 1 reply      
Note that this does not have anything to do with his pricing of pharmaceuticals. From a different article:

"Prosecutors say Shkreli looted his drug company to pay back investors in two failed hedge funds he ran. The defense says investors got their original investments back and even made hefty profits."

defen 6 hours ago 1 reply      
I'd like someone to do a reading of Martin Shkreli as "satirist of neoliberalism", and suggest that the reason so many people hate him so much is that he's a scapegoat for our collective feelings of guilt. Can anyone offer a valid critique of his raising the price of Daraprim, within the frame of neoliberalism, that doesn't just reduce to "that guy's a real jerk!"?
nodesocket 6 hours ago 1 reply      
Unfortunately Martin was made a scapegoat and they made an example out of him because of his arrogance and vocal personality. How did the executives that caused the financial crisis of 2008 get off completely free but a relatively tiny hedge fund manager get the book thrown at him? This was a witch hunt, no doubt about it.
fmihaila 7 hours ago 0 replies      
For those who can access it, this NYT article has more detail: https://www.nytimes.com/2017/08/04/business/dealbook/martin-...

(Edit: I posted this comment while the WaPo article had only a few paragraphs; it's now fully fledged.)

slap_shot 52 minutes ago 0 replies      
FWIW, Shkreli has said several times on his YouTube channel that he predicted he was serve 2 years and be done. From what I've heard, he'll be sentenced 3-5 and and serve 80% with good behavior. He had an excellent defense and this was probably known from the beginning.

Interestingly, I don't think he pretends that what he did was right - it just understood it was a means to an end: two years in white collar "prison" for 30-70MM when he had less than $1,000 in the bank and owed creditors north of 1MM.

0xbear 6 hours ago 1 reply      
I think it's fair to say that Shkreli would be left to his own devices had he not shown the audacity to charge what the market will bear. Meanwhile another person who similarly jacked up the price of a lifesaving drug beyond what many could afford, Heather Bresch, received no negative legal attention whatsoever. Ever wonder why? Because her dad is Joe Manchin. The swamp needs draining so bad.
norikki 6 hours ago 0 replies      
Can we please have a conversation on the abuse of Federal plea bargains and insanely high sentencing guidelines? Thousands of Americans every year plead guilty in federal court to crimes they did not commit because they face insanely high prison terms if convicted. Often Federal sentences are several times longer than ones in state courts for the exact same crimes.
aphextron 5 hours ago 1 reply      
>Rarely has a white-collar criminal defendant evoked hatred and scorn from public in the way Shkreli has. Shkrelis willingness to lie, step on people, flaunt his wealth and look down on others made him a villain that many wanted to see go down in flames, said James Goodnow, an attorney with Fennemore Craig, a corporate defense firm.

This attitude is just disgusting, and indicative of precisely what has gone wrong with our society. "White collar" criminals who steal millions are deserving of leniency and mercy. But the "thug" who stole $20 from a 7/11 deserves 20 years.

ptr_void 5 hours ago 1 reply      
He is live-streaming right now: https://www.youtube.com/watch?v=qvArpDQHf-Y
Alaura 1 hour ago 0 replies      
Sound's like a good thing tho, i mean we have seen his history and his past, a lot of things kinda conspired to see this coming in the end.
nsnick 5 hours ago 0 replies      
His mistake was taking money from rich people. If he had stuck to stealing from and killing poor people, nothing would have happened to him.
poisonarena 2 hours ago 0 replies      
I entered a livestream question session with this clown and asked him his opinion on CRSPR tech and he replied "It has not future because 'it doesn't work'".. Thats when I knew he was full of crap
roel_v 6 hours ago 0 replies      
So, are the gonna sell off his stuff and more in particular, is the Wu Tang album coming up for sale?
blizkreeg 5 hours ago 0 replies      
I have no sympathy for him as he appears to have lied to his investors and moved money around, which seems to be outside the law.

Raising the price of a drug though, as long as he can get away with it, is no crime, no matter how big the increase.

This makes me question though, did he raise the price of Daraprim so he could return money to the investors of his hedge fund?? If so, his entire defense (from his videos) of raising the price to meet his fiduciary duties to Turing's investors falls flat.

forkLding 6 hours ago 0 replies      
For those who haven't read the article, Martin is being charged on cheating his investors, he himself admits to his "broomsticks", not the immoral arguments he was previously known for.

Also that aside, he was quite a easy target.

grizzles 6 hours ago 0 replies      
I find it hard to believe that he got a fair trial this time around. He was already tried and found guilty in a trial by media a few years back. This investigation & prosecution are a direct result of his legal actions that didn't play well politically. BOTH presidential candidates condemned him. To me it's sad. The sacrificial lambing of Shkreli instead of lawmakers addressing the underlying problem of costly pharma is probably the most Venezuela thing I've ever seen happen in the US. They made the system, he's just trying to prosper ffs.
zokier 6 hours ago 0 replies      
Gotta love the narrative here. Jack up the medicine price and become americas most hated for a moment by general behavior.. that's fine. Make a fool of couple of hedge fund investors.. oh boy, now you fucked up
michrassena 6 hours ago 0 replies      
I've found him to be an interesting character, a potent symbol of the greed, arrogance, and indifference of the pharmaceutical industry. A PR firm couldn't have invented a better villain, young, brash, flouting decorum by his openly fleecing the public. He was the perfect scapegoat.

I think we all know nothing has changed, and his conviction today has no relationship to his role as CEO, but I wonder if public opinion of the industry will improve, as if the bad apple is rooted out.

MistahKoala 6 hours ago 1 reply      
I get the impression he isn't so much malevolent in his actions, rather he behaves as a libertine and someone who takes the view that the end justify the means.
ringaroundthetx 4 hours ago 0 replies      
In the federal venue, can he appeal the securities counts in isolation of the things he was found not guilty of?

Conspiracy charges are always weak, if you can afford a constitutional law to argue on expression grounds.

Has he expressed interest in appealing?

eurticket 4 hours ago 1 reply      
hand over the wutang
balls187 5 hours ago 0 replies      
> Prosecutors argued that Shkreli lied to investors in two hedge funds ... according to prosecutors.

If you were to scrutinize what founders of darling startups said to investors, how many "inconsistencies" would you find?

rajacombinator 2 hours ago 0 replies      
Jail time for Goldman/JPM execs: 0 and counting ...
thrillgore 6 hours ago 0 replies      
Okay real talk -- who's gonna get that Wu-Tang album he has?
llcoolv 5 hours ago 1 reply      
This really reminds me of "The stranger" by Albert Camus.
jedberg 7 hours ago 6 replies      
I understand that what he did was morally abhorrent, but I don't understand why it was illegal? Maybe a lawyer can give a quick summaray?
calafrax 5 hours ago 0 replies      
Great. They convicted one low level autistic freak with no connections over a couple million dollars. Brave day for justice.

What about the daughter of a senator who is the CEO of the company that quadrupled the price of epipens? Yeah, right, mission accomplished, nothing to see there.

samgranieri 4 hours ago 0 replies      
petrikapu 4 hours ago 0 replies      
I hope he gets HIV in prison
Mozillas Send makes it easy to send a file from one person to another theverge.com
569 points by Tomte  1 day ago   303 comments top 52
pmlnr 1 day ago 16 replies      
Remember why we were able to use Skype for this?Pepperidge farm remembers!

Joke aside I transfered a lot of files inside instant messengers and they worked quite well. Nearly everyone had at least a yahoo/messenger/skype/icq account, which made this rather simple, and, because nobody had the capacity/wasn't insterested/was actually p2p, it was perfectly fine. A bummer if the modem connection went down or you had to hang up because the family wanted to make a call, but hey, it was glorious. (no, this is not sarcasm, it really did work.)

nneonneo 23 hours ago 0 replies      
Neat. It uses client-side crypto (AES-128-GCM) to secure the file; the key is in the fragment portion of the URL so it doesn't automatically hit the server (assuming you trust the server JS).

The protocol is a little bit strange, though. The file metadata is transmitted as an X-File-Metadata header on upload, and includes the SHA256 hash of the original (unencrypted) file (as the "aad" parameter to the X-File-Metadata upload parameter). This is a little concerning for privacy; while the filename is easy to disguise, hiding the SHA256 sum requires modifying the file in some way. Of course, this might only be a concern for uploading known files, but it's still a bit of an infoleak.

It's also strange in that the key isn't checked in any way (even for sanity) before initiating a download, so if you mess up and leave it off (or corrupt some bits), you won't find out until the end of the download that you can't get the file. Worse, the file will be deleted, forcing you to ask your sender for another copy.

The client-side crypto has one other downside: there doesn't seem to be a standard way in JavaScript to stream a POST request yet. You could emulate it with e.g. WebSockets, but those are a lot more heavyweight and CPU-intensive (for the server) than simple POST requests. So, the current implementation just encrypts the entire file as one giant block, and then uploads it - placing the whole file in memory. Hence the 1GB soft-limit. Downloads are similarly limited.

Luckily, non-browser clients can do whatever they like, so I wrote a Python client that's compatible with the server, but uses streaming POST and on-the-fly en/decryption to save memory. Check it out at https://github.com/nneonneo/ffsend - feedback welcome!

supercanuck 1 day ago 9 replies      
It is kind of surreal that it is 2017 and we're still trying to solve such a basic computing problem.
falcolas 1 day ago 5 replies      
This is a bummer; using Safari:

Your browser is not supported.Unfortunately this browser does not support the web technology that powers Firefox Send. Youll need to try another browser. We recommend Firefox!

It would be nice to know what web tech they are using that isn't supported. Whatever it is, Chrome works.

EDIT: It requires support for the AES-GCM key type, with a size of 128.

dec0dedab0de 1 day ago 5 replies      
Otherwise technically illiterate people used to be able to do this with AIM direct connect over 15 years ago. It still blows my mind that AOL had a near monopoly in this space, and lost it by continually making the user experience worse.
false-mirror 1 day ago 2 replies      
I really hope Mozilla decides to expand on this.

One issue with the experiment is it has such a narrow use case. Disappearing after one download / 24hrs makes sending a file to multiple people--or just one person who drags their feet on the DL-- makes it really inconvenient to use. Even offering "1 download -OR- 24hrs" would make it far more useful.

mih 1 day ago 1 reply      
I always wonder how Opera Unite (in 12.x) versions would have fared had it gained traction. The sender had absolute control over what files were shared and how long they could be without needing to rely on a 3rd party to host content or setting up a complex service on localhost. Opera did kill it off the Unite service even before they migrated to Webkit/Blink, but it is something I remember fondly.
dmart 1 day ago 5 replies      
Hmm... it seems like most of the time when I want to transfer a large file to someone (or to another one of my own devices), I just want to do it immediately and only once, so there's no need to upload it to a third, temporary location.

Unfortunately it seems like most of the time a physical USB flash drive is the most efficient way to accomplish this. Seems absurd to me that in 2017 there's not a common, user-friendly way to just establish a direct connection between two web browsers and directly push files through.

amq 1 day ago 1 reply      
A really needed service, but I doubt it will last for long, because it's far from the core business and because it will potentially cost more than Mozilla is willing to dedicate.
vit05 1 day ago 0 replies      
I really don't get why people are criticizing and saying that there are better alternatives to this. Of course there is. This was not built to be the best way to send files, just to be the most practical one. Some people don't even know there is life outside of Facebook, they will never know about alternatives to send a file they could not send using email or messager. And this shows that Mozilla is starting building services layers on Firefox.
JD557 1 day ago 5 replies      
From the repo, it appears that it depends on S3.

It would be nice to be able to self-host this on a small home server for friends and family. That way, even if they shut down their server, you could still share files with your friends.

Sir_Cmpwn 1 day ago 6 replies      
A better approach in 2017 is something like File Pizza: https://file.pizza/

This uses WebRTC to transfer files peer-to-peer.

Sjenk 1 day ago 1 reply      
I did a quick scan of the article but is there any difference with wetranfser? The only things I found is encryption and it is 1gb less. But since Wetransfer is a dutch company they are not allowed by law to look in those files you send if I am correct.
redm 1 day ago 2 replies      
I find "burn after reading" downloads for a number of reasons, but generally, they often don't work as intended.

For example, modern email services (Google, MS, etc.) accessing links in emails and download the content and check it for malware. They probably mitigated this but its caveats like this that cause messages to be burned before the intended reading.

merpnderp 1 day ago 4 replies      
How is Mozilla going to keep this viable? Since they're using S3, it likely costs them roughly $.08/GB moved between users in bandwidth costs plus whatever fraction of a month the file is left there of the $.025 GB/month storage costs.
option_greek 1 day ago 2 replies      
They need to make the url human memorable. Something like /files/what/a/nice/day. This seems to be aimed more for sending over emails.
rythie 1 day ago 1 reply      
It's a nice idea, though I'd really like to just run one myself (inside the firewall), seems like that would be safer, at least in the eyes of users.
deanclatworthy 1 day ago 2 replies      
Surely this is going to be incredibly expensive in the long-run for Mozilla? I can't quite get what their play is with this service.
amelius 1 day ago 1 reply      
This will also be solved by IPFS, [1].

[1] https://ipfs.io/

iuguy 17 hours ago 0 replies      
Does anyone else find it ridiculous that a platform supposedly committed to open standards releases something that doesn't even work cross-browser?

For a cross-browser, self-hosted tried and tested alternative, there's 0bin: https://github.com/sametmax/0bin

millzlane 10 hours ago 0 replies      
I prefer https://send-anywhere.com/ they have a 4GB limit.
LinuxBender 1 day ago 0 replies      
My personal preference are browser agnostic methods[1] and giving the sender the choice to use whatever method of encryption they wish. I prefer the simplicity of 7-zip / p7zip, but others may prefer PGP.

[1] https://tinyvpn.org/

varunramesh 1 day ago 0 replies      
I use https://transfer.sh/ for this kind of ephemeral file transfer. They have drag/drop through website, integration with ShareX, and even an alias that you can add to your shell.
masthead 21 hours ago 0 replies      
Firefox is getting it right these days!From Container tabs to Snooze Tabs to Firefox send to Quick notes from the browser.This is all I wanted!
emcf 16 hours ago 0 replies      
hobbes78 9 hours ago 0 replies      
I still believe instant.io is better, as it's P2P and uses bittorrent underneath (actually, a web version of it)...
akilism 10 hours ago 0 replies      
booleanbetrayal 1 day ago 1 reply      
`brew install magic-wormhole`
kwelstr 1 day ago 2 replies      
Does anybody remember IRC's DCC send?
darkstar999 1 day ago 1 reply      
Can this link be changed away from clickbait Verge? Perhaps https://github.com/mozilla/send
nstart 1 day ago 0 replies      
Surprised no one mentioned file.io. They've been around for a while with the exact same use case + an API.
Abishek_Muthian 23 hours ago 2 replies      
If this picks up, email services (who own cloud sharing facilities) might put up a huge warning in red stating the security risk for their users in clicking that link. I wonder whether Mozilla feels having the file scanned by virustotal before encrypting violate user privacy.
pwaivers 1 day ago 5 replies      
Relevant XKCD: https://xkcd.com/949/
locusofself 1 day ago 1 reply      
Bittorrent "Sync" was a promising application until they tried to monetize it and made it worse (Resilio Sync).
ucho 14 hours ago 0 replies      
Makes me wonder when Firefox will be able to resume interrupted file downloads without addons.
izzydata 1 day ago 1 reply      
So what is this going to cost the user in the future? I can't imagine this will be a free service forever if Mozilla has nothing to gain from eating up tons of bandwidth.
edgartaor 1 day ago 0 replies      
Some times I use volafile.org. Keep your files for two days.Although it's not suitable for private files it's easy to use.
amelius 1 day ago 0 replies      
Does this allow one to send a file to an iPhone, and let the user store it somewhere, and view/play it?
martinald 1 day ago 1 reply      
Is this not exactly the same as WeTransfer?
praveenkrs 1 day ago 0 replies      
This was the best feature I like about the google talk desktop client. And was sorry to see it leave.
digitalengineer 19 hours ago 0 replies      
www.wetranfer.com : just upload add email and send. They even have OSX intergration. (Up to 2 gb free)
dingo_bat 1 day ago 0 replies      
Looks like a web implementation of Samsung link sharing. Cool. Hope to use it often.
caffinatedmonk 1 day ago 0 replies      
I built DnD, a self hosted file transfer program. It's like scp with a UI. Check it out on github: https://github.com/0xcaff/dnd
cdnsteve 1 day ago 1 reply      
Is there an API developers can use to leverage this?
mtgx 1 day ago 0 replies      
Is this using WebRTC?

Either way looks like a good promotion trick for Firefox if many people end-up using. Good job whoever came up with it and convinced Mozilla leadership to deploy it.

emcf 22 hours ago 0 replies      
Firefox Send is great service. Thank Firefox
longqzh 1 day ago 1 reply      
Can we access it from China?
altern8 1 day ago 0 replies      
Why, though.
albertgoeswoof 1 day ago 1 reply      
Well no, it's nothing like snapchat, what kind of title is this

Great that Mozilla are experimenting but this article literally adds nothing to the original Mozilla blog post and website and has no value whatsoever

whowouldathunk 1 day ago 3 replies      
Seems superfluous. In Windows 10 you can right click on a file > Share > choose any app or person to send the file. Or in the latest version you can just drag/drop a file on top of a person pinned to your taskbar.

Disclosure: I work at Microsoft.

brianberns 1 day ago 5 replies      
> Mozilla says it does not have the ability to access the content of your encrypted file.

This can't possibly be true. Since Mozilla is encrypting the file, they can also decrypt it (and must do so when the recipient downloads it).

Edit: I was wrong, but will leave this comment because the explanation is useful.

snakeanus 1 day ago 1 reply      
I don't really see the point. We have had temperately file hosting services for years. Moreover I find the fact that it requires JS and multiple 3rd party resources in order to work properly extremely annoying (all the other services that I know of do not require that).

I think that it would be better if Mozilla focused more on their important projects, such as Firefox, Servo and Rust.

NSA Unlawfully Surveiled Kim Dotcom in New Zealand thehill.com
452 points by jorkro  3 days ago   125 comments top 12
jonknee 3 days ago 7 replies      
The only mention of NSA seems to come from Kim... His logic appears to be that as a Five Eyes member the NSA and GCSB have some shared resources and that means the NSA used those resources to spy on him. That might be true, but he has no evidence that the NSA cares one bit about him. I seriously doubt the NSA was tasked with working a non-terrorism related piracy case, but that's me.


> Dotcom, who should have been protected from GCSB surveillance as a New Zealand resident, said the GCSB did not know because its equipment was being used by the NSA, which was "directly involved".

> The GCSB documents do contain an admission of NSA involvement, although it was not made outright. In response to the accusation the GCSB had accessed NSA networks, the bureau refused to answer on national security grounds and acknowledged that under High Court rules that doing so would be seen by the court as an admission it had.

> Dotcom said the details showed some other party was using GCSB systems and he believed it would be the NSA."The US government has requested my extradition. The NSA is clearly the most interested party."

> "The NSA has unrestricted access to GCSB surveillance systems. In fact most of the technology the GCSB uses was supplied by the NSA."

1024core 3 days ago 6 replies      
Since when did the NSA become the copyright industry's police? There were no security implications of Kim's operation; why was he targeted by the NSA?
will_brown 3 days ago 1 reply      
As long as the US wastes tax payer dollars doing investigations and enforcement of Hollywood copyrights, I'd like to see them pay some dumb as agent to do a comparison of the total number of copyright violations on YouTube vs the total number of copyright violations on Mega servers.

For fun they could do a comparison of the number of copyright complaints both YouTube and Mega received and the number of those complaints they have acted on. Maybe for extra bonus we can also compare the number of counterfeit products on Amazon (violating copyright or trademark).

toyg 3 days ago 0 replies      
I'm not shocked in the slightest - spying is likely the most harmless of actions performed by US and NZ against Dotcom.

It's still much more shocking to me how NZ authorities de-facto renounced their sovereignty, by letting US agents free to walk all over their laws when they raided him. They did that with glee, with the happiness of a servant who knows he's making a great job for his master and rewards will ensue. It made a mockery of the NZ justice system, all involved police chiefs and politicians should have been thrown in jail for treason.

gozur88 3 days ago 3 replies      
Unlawful in New Zealand. I'd be surprised if what they did wasn't legal under US law.
aptidude187 3 days ago 1 reply      
Can someone state in a nutshell why this guy keeps getting bullied by the government?
darawk 3 days ago 0 replies      
Oh look, the NSA using its extraordinary capabilities solely to ensure the military security of the United States. Kim Dotcom surely represented a strategic threat to our interests. /s
I_am_tiberius 3 days ago 0 replies      
Was Kim dotcom considered a national security risk because of Megaupload or because of other things he did / or planned?
philip1209 3 days ago 2 replies      
Putting aside the target of the surveillance -

Yes, the NSA is a spy agency. It's their job to spy outside the country. And of course the spying is illegal outside of the country - no country endorses being spied on by foreign governments.

Zorlag 3 days ago 2 replies      
mtgx 3 days ago 3 replies      
And now waiting for the other shoe to drop: FBI doing parallel construction with evidence obtained through that illegal NSA surveillance.
yuhong 3 days ago 0 replies      
Thinking about it, Watergate came after we left the gold standard. The more money being spent on the NSA, the more government debt increase and benefit contractors like Snowden.
Exa, a modern replacement for ls exa.website
721 points by r0muald  1 day ago   388 comments top 60
krat0sprakhar 1 day ago 3 replies      
Wow, the comments in this thread are quite harsh. Even though I might not use it, this looks like an awesome project - kudos to the author for finding (& implementing) ways to improve something as mundane as ls.

I've long been stuck on finding a suitable (perfect?) project idea to play with Rust but exa is making me think through again!

Thanks for sharing this and also for your screencasts. I'd definitely spend a lazy evening watching you program exa.

Perceptes 1 day ago 0 replies      
If you're interested in learning Rust by watching someone work, the author did several long screencasts of himself working on exa: https://www.youtube.com/channel/UCoBjY7TeCXzOULdiE40Ig1w
_jal 1 day ago 5 replies      
It is great to scratch an itch and make something behave exactly as you want it to be - kudos.

That said, this is very much not for me. Default-colorized is something I emphatically do not want; defaulting to relative units, ditto. It it were me, the first thing I would do is get rid of 'grid' display entirely - reading across just doesn't work for me. Etc.

More prosaically, `ls` is sort of like breathing for me - I do it so much during the average day that I don't even think about it. Can't say I immediately know every one of the switches, but probably 10 or so variants I use daily are pure muscle memory, and less frequently used things (extended attributes, symlink-deref options, etc.) I can remember without the man page.

So in that sense, `ls` is well into the same category as vi for me - I'm so accustomed to whatever warts there may be that switching would be much more painful than any efficiency gain.

SwellJoe 1 day ago 0 replies      
I just noticed the tests and the incredible lengths the author went to in order to effectively test exa. It's really impressive. GNU coreutils ls has a pretty good test suite, too ( http://git.savannah.gnu.org/cgit/coreutils.git/tree/tests/ls ), but this goes well above and beyond the call for something so new.
general_pizza 1 day ago 4 replies      
This is heavily influenced by personal taste, but I don't understand the value of having so many elements of the output colorized. File type seems a useful case, everything else in the output of `exa -l` just looks distracting to me. Just my 2 cents.
donatj 1 day ago 2 replies      
I set up $LS_COLORS like 15 years sgo in my .zshrc and haven't had to touch it since. Doesn't seem like a huge deal worth replacing it over.
khedoros1 1 day ago 9 replies      
> For example, exa prints human-readable file sizes by default (when would you not want that?)

When I've got two similar but non-identical files, and I think that the difference between their sizes might be important.

That's a silly nitpick, though. It's not like I lose ls by installing exa. Plus, it's a nice excuse to see if I can get cargo working around the corporate firewall.

otterpro 1 day ago 4 replies      
It feels like swiss army knife of 'ls' that tries to do everything in one, and I hope more features are added, such as showing directory size, which would be a killer feature. I hate using 'du' or 'ncdu'.

I installed in Ubuntu (and WSL) by downloading the zip file and also 1 dependency by `sudo apt-get install libgit2-24'

Edit: It's also fast, and I'm beginning to think Rust is really good for making speedy commandline tool, as I'm a big fan of 'ripgrep', another popular tool written in Rust.

andrewflnr 19 hours ago 1 reply      
There's only one problem with this thing: all the characters are on one hand with a qwerty keyboard! A bit more annoying than ls, where you can practically hit the keys simultaneously. (You want to nitpick the colors, do you? I'll show you what real bikeshedding is...) In all seriousness, though, it looks good.
untog 1 day ago 2 replies      
This is cool, but it doesn't solve (in fact, exacerbates) my usual complaint with `ls` - I don't know what the arguments are. The example on the site is:

 exa -bghHliS
Argh! I want to be able to say `ls --size` to get the file sizes. I don't want to remember a million arguments.

SwellJoe 1 day ago 0 replies      
I love it, but it's also kinda angry fruit salad.

Colors are good...too many colors is overwhelming. It might be that I'd come to recognize what the colors mean if I work with it every day, in the same way that I begin to recognize the flow of a program and when a color is "wrong" after using the same syntax highlighting in an editor for a long time. But, I couldn't tell you what any of the colors mean in my favorite editors.

It's more about recognizing when something has the wrong color compared to everything else with that "shape". e.g. a good example is that in shell scripts, I often put space between the var name, '=', and the value. That's not an assignment and can lead to subtle bugs (shellcheck will catch it, too, but I see it clearly in the editor because it doesn't highlight as a variable declaration).

So, what I'm getting at is that I'm pretty sure I'll always have to read the actual text to make any sense out of this output; the huge number of colors may just hinder readability. I don't know this for sure, but it's pretty jarring to look at even with a nice muted color scheme. I love colors in terminals, though, so I'll give it a go.

mavhc 1 day ago 11 replies      
exa is hard to type, bad choice of name for something I'd be typing many times a day
renox 1 day ago 8 replies      
I find quite funny that the author is so convinced that the use of colors is the "right default".1) I'm colorblind so my view of colors is different from yours.2) I find that any tool which use many colors suck: there will be a color combination which will be hard to read (for example git log: the sha1 keys are dark red on black, unreadable) but using just a few color is very nice (git diff: 3 colors, one for +, one for - and a third one for the rest, nice!).

Also I've seen two times that the color bytes broke something: an expect script was broken by grep's colors and colleagues of mine were very confused when two similar commands gave different output, the reason? Colors!

So colors by default?Thanks but no thanks.

assafmo 1 day ago 4 replies      
The main problem I can think of is that I'm so used to type cd and then ls... But OTOH it's as simple to fix as alias ls=exa


"exa prints human-readable file sizes by default (when would you not want that?)"

I actually use bytes a lot for certain progress calculations.

Also I get an error "exa: error while loading shared libraries: libhttp_parser.so.2.1: cannot open shared object file: No such file or directory" (Ubuntu 17.04)

swift 1 day ago 3 replies      
The feature I'd be most interested in here is the integration with git, but I don't see an example on the site that demonstrates that. If the author is reading this, could you please add one? (Or maybe point it out, if I'm just missing it?)
pierrec 1 day ago 3 replies      
>although Rust is cross-platform, I dont have a Windows machine to develop on...

Well, Windows VMs aren't hard to come by and they work quite well on any host platform (contrarily to some other OSes coughMacOScough)

A native windows version would be interesting, though I believe people generally shun any prolonged interactive use the windows command line, this kind of tool might be one of the possible remedies against the pain of using it.

pbiggar 1 day ago 2 replies      
This is really cool - bringing the great treatment of `ack` to ls. And can confirm how fast it is!

The unix philosophy is a great idea, but it doesn't really lead to a good experience. Glad people are making more integrated tools!

Oh, and It's in homebrew already: `brew install exa`

amelius 1 day ago 4 replies      
Does it take into account the background color of my xterm so things do not become unreadable?
tadzik_ 1 day ago 5 replies      
> exa is written in Rust, so its small

I suspected this would be total bullshit, and it is. Its small binary is a mere 3.4 megabytes. I wonder if I misinterpreted the "small" part.

swah 15 hours ago 0 replies      
Very interesting - thanks.

 /exa/src $ cloc . 41 text files. 41 unique files. 0 files ignored. http://cloc.sourceforge.net v 1.60 T=0.10 s (423.5 files/s, 64346.3 lines/s) ------------------------------------------------------------------------------- Language files blank comment code ------------------------------------------------------------------------------- Rust 41 1152 929 4149 ------------------------------------------------------------------------------- SUM: 41 1152 929 4149 -------------------------------------------------------------------------------

callaars 6 hours ago 0 replies      
I used it now for a year (maybe more, I can't remember) and I find it fantastic. It's great, and I can't imagine using plain old ls any more. No matter what people say, I love it.
pmarreck 21 hours ago 0 replies      
Receive the feedback, but ignore the haters and do what you feel is right for your brainchild.

I've learned some commandline tricks just from reading the comments!

rc_kas 1 day ago 1 reply      
What do all the colors mean? I wish he would make a little page explaining what I'm looking at and what each color means.
tym0 17 hours ago 1 reply      
I've been using k [1] to get pretty much the same functionalities but, being written in zsh, it's terribly slow. Your program looks nice but I would love to have an output closer to k in term of colour [2], at the moment it feels way to noisy to me.

[1] https://github.com/supercrabtree/k

[2] https://raw.githubusercontent.com/supercrabtree/k/gh-pages/f...

TomK32 20 hours ago 0 replies      
A multi-threaded program to list files. The times we are living in...

I'll give it a try for a few weeks.

Dowwie 17 hours ago 1 reply      
This is great. I'm switching to exa!

I had high hopes with this command but found the git features missing: exa -l --git --time-style=long-iso -T

Nonetheless, this displays

Hopefully, the author finds this worth the time to support..

dsego 22 hours ago 0 replies      
Looks very nice, I've been using K, which has some other cute features (https://github.com/supercrabtree/k), but I'll definitely add this to my arsenal.
0xTJ 1 day ago 0 replies      
This is cool, I was having trouble with libraries, so I'm switching my main Linux to Arch.
0x006A 1 day ago 2 replies      
so whats the replacement for sl in that case? can't live without it
Cockbrand 17 hours ago 0 replies      
I really dig the very useful output, but I'd also muchly appreciate an `ls` compatibility mode. Thus, one could put something like `alias ls='axa --compat'` into .profile and wouldn't have to re-train their muscle memory. F.e., I'm personally using `ls -altr` very often, and `axa -altr` will yield me an error.
rhianna86 1 day ago 0 replies      
This looks awesome. Anyone's gonna make a PR for ubuntu to add this?
hepek 1 day ago 4 replies      
./exa-linux-x86_64: error while loading shared libraries: libhttp_parser.so.2.1: cannot open shared object file: No such file or directory

Couldnt all the dependencies be statically linked for max portability?

sethammons 1 day ago 3 replies      
so... a mix up of the following:

which lsalias ls='ls --color=auto'/bin/ls

tree -L 2

git diff --stat

git status

steventhedev 1 day ago 2 replies      
Is this intended as a full on ls replacement? As in, does it respect the envvars such as lscolors? Will it silently ignore -h, or will it die violently?
yosoyalejandro 1 day ago 0 replies      
Very cool project, will replace ls for exa :)
h1d 23 hours ago 0 replies      
If you want colors, you can use grc to colorize command outputs not just ls, even MySQL terminal.

Some old HN thread.https://news.ycombinator.com/item?id=3858954

roadbeats 19 hours ago 0 replies      
I already installed & replaced my ls config. Thanks for making it!
d--b 18 hours ago 0 replies      
i know this may sound trivial, but I'd probably never use this just because typing exa is a lot more annoying than typing ls. The three letters are on the left side of the keyboard and on the three rows. Sure I could rename it to something I like, but then I won't be able to get used to it, because I won't be able to find it when I log on to other computers. It's a silly thing that has a serious impact on usability...
baby 14 hours ago 0 replies      
This is amazing! Now:

* can you use unicode icons to replace `d` and others with icons of folders and such?

* where are the color signification explained?

Froyoh 1 day ago 0 replies      
Wow Im quite overwhelmed by the colors
nightcracker 21 hours ago 1 reply      
For a command that gets typed as often as 'ls', choosing 'exa', which is typed with one hand only, even worse, with a repeated finger, is kind of a poor choice.
TedHerman 12 hours ago 0 replies      
Surprised no one has suggested replacing permissions display with emoticons.
kbutler 1 day ago 1 reply      
Interesting that they chose to keep the file name on the right-hand side like ls, and unlike every graphical file manager.

The name is the key field and so it should generally be the left-most column.

nardi 1 day ago 0 replies      
My first thought is that "exa" has all three letters in the left hand. Not nearly as easy to type as "ls".
xaduha 1 day ago 0 replies      
No one invented anything better than Commander-type UI for dealing with files. For non-trivial tasks I'd fire up vifm.
rv77ax 21 hours ago 0 replies      
The last thing I want in terminal is colours.
bsmit 1 day ago 3 replies      
What does "exa" stand for? That's what I want to know.
gesman 23 hours ago 0 replies      
$ exa -bghHliS ????

How about:$ exa . -- with the same outcome? :)

amelius 1 day ago 1 reply      
What is the usefulness/learning_effort ratio of this tool?
torus 16 hours ago 0 replies      
Nice, I like the -T option.
of 1 day ago 0 replies      
ohh i thought exa was a replacement for the word 'is'. i was like damn.... that's fucking cool.
dan-compton 21 hours ago 0 replies      
The name is too long.
polote 1 day ago 0 replies      
Why do you want to replace ls?
frahs 1 day ago 1 reply      
exa is harder to type than ls, but this looks really cool.
peacetreefrog 1 day ago 0 replies      
cool. i feel like this whole thread is the epitome of hacker news comments
git-pull 1 day ago 2 replies      
While it's not the intention to replace the binary itself, I'm just not a fan of the idea of substituting system built-ins in everyday behavior. Stuff like cd, ls, etc. I like to keep it to the basics.

Even just with PATHs or aliases, or a new binary entirely.

And I'm a person who is no stranger to dot-configs. I've never taken it as far as Z(1), https://github.com/rupa/z.

A system builtin is stuff you'd see stowed away in /bin. They are essential low level binaries you have to trust. If somehow a malicious ls got out there, nothing's stopping people from writing memory-safe malware that uploads your $HOME configs to some server in a far away land.

The more I say this, I guess defaulting to a substitute for a builtin command doesn't matter. The average developer relies on so much third party stuff in their shell, vim, package manifests, and so on that all these years could have done bad stuff, nothing has happened.

Maybe it's my defense mechanism firing that my own dot-config has grown so big I don't remember what the hell's in it anymore.

In fact, it's a common thing for terminal applications to accept environmental variables to use third party applications. For instance, $EDITOR, and less often (but no less useful): $PAGER. You can give it a shot with most(1) [1], I mention it in my book, The Tao of tmux [2] (available free to read online).

So also, regarding $EDITOR, if you prefer that being in GNU nano, Pico, Vim, or emacs, set it in your .bashrc/.zshrc:

export EDITOR=vim

Also, for git's editor, I don't remember if it falls back to $EDITOR, but you can do:

export GIT_EDITOR=vim

Another tool at your disposal for ls(1), which even FreeBSD supports, it $LS_COLORS:


edit: actually, BSD's ls(1) seems to be $LSCOLORS (https://www.freebsd.org/cgi/man.cgi?query=ls&sektion=1):

[1] http://www.jedsoft.org/most/

[2] https://leanpub.com/the-tao-of-tmux/read#leanpub-auto-read-t...

tariandbari 21 hours ago 1 reply      
To the author: As you are already making a much more user and human friendly version of ls (like making ls -h the default behavior) please consider placing the name of the file on the left most column

 inode Permissions Links Size Blocks User Group Date Modified Name
21214836 .rw-r--r-- 1 9.4Ki 24 ben staff 29 Jun 16:16 Cargo.lock

As a human I first care for the name, Currently I'm forced to scan the right most column (which position varies) and then travel back to the beginning of the line and read the rest of the metadata

axaxs 22 hours ago 0 replies      
i'm not going to be rude or hate exa, it looks really cool actually. I, for one, love the color coding. But trying to replace something as old and known as 'ls' probably isn't a realistic goal. I think talents would much better geared towards something missing, instead. Either way, keep up the good work.
jwilk 1 day ago 2 replies      
> Git support: View the staged and unstaged status of every file, right there in the standard view. Also works in tree view.

This is nearly impossible to implement securely.

Better don't run exa against untrusted directories.

kabdib 1 day ago 1 reply      
Color is one of the first things I turn off. So many tools color files in ways that are very difficult to read (dark blue against a black background, really?)

I'm colorblind, too, so your red/orange/green distinctions are utterly wasted on me. Raw color is a very flaky and low fidelity way to communicate to a user.

Animation, on the other hand: Give that super important file that's somehow busted or very active some kind of blink or a meaningful animation and you'll have my attention. I may hate the tool for it, but you'll have my attention...

Deep Learning for Coders Launching Deep Learning Part 2 fast.ai
715 points by jph00  5 days ago   91 comments top 19
metafunctor 5 days ago 5 replies      
Part 1 was great.

However, the first lesson took a bit of stamina to go through. Much of it was introducing basic Unix/AWS/shell/Python things I know intimately and have strong opinions and deeply set ways about. Shell aliases, how to use AWS, what Python distribution to run, running Python from some crazy web tool called notebooks (and not Emacs), etc. felt like I was forced to learn a random selection of randomly flavored tools for no good reason.

Yes, it's a random selection of tools. The good reason to bear them is that you'll learn how to implement state of the art deep learning solutions for a lot of common problems.

So, I ended up viewing the lessons not as "this is how you should do it", but rather as "here's one way to do it". And it does get much easier after internalizing the tools in Lesson 1.

Just something to keep in mind when branding this as "deep learning for coders". Coders have deep opinions about the tools they use :)

phunge 5 days ago 1 reply      
Highly recommended! The first course was the first thing I came across that helped me contextualize the DL field into something that might be relevant for my work. It's a great way to get your hands dirty.

One point of comparison is Cam Davidson Pilon's Bayesian Methods for Hackers, they have a similar vibe: practical applied advice from a field that tilts towards the academic...

ashkat 4 days ago 0 replies      
Thank you so much for this, for me Deep learning Part 1 was a top notch course that really helped me learn by actually doing things in variety of topics (e.g competing in Kaggle, creating spreadsheets to understand collaborative filtering & embeddings, sentiment analysis using CNN and RNN etc). I found the top down approach to very effective in keeping me motivated as I worked my way through the course.It took me 6 months of watching(and rewatching) the videos and working on problems to get comfortable.

I have done a few MOOCs: Andrew Ng's machine learning, Coursera ML specialisation, edx Analytics Edge and all of them were good learning experience but fast ai's deep learning part 1 really stood out.

For me, the combination of Deep Learning Book + Fast ai MOOC + CS231n (youtube videos & assignments) cover almost everything I want to learn about the subject.

@jph00, I'm half way through neural style transfer and I am loving it.

jph00 5 days ago 0 replies      
I somehow forgot to mention in the post - we're teaching a totally updated part 1 course (keras 2, python 3.6, Tensorflow 1.3, recent deep learning research results) starting end of October in San Francisco. Detail here: https://www.usfca.edu/data-institute/certificates/deep-learn...

I'll go edit the post with this info now - but figured I'd add a comment here for those that have already read it.

colmvp 5 days ago 5 replies      
My feelings on Part 1:

I felt like the setup of the first part was at time a little frustrating, since I started it during a time when Keras had switched to a newer version which wasn't compatible some of the utility code that was written. Add this to the newbie factor to notebooks, and it was a pretty rough first week or so to setup and get actual learning done. It took me a bit of time to realize notebooks were more like repeatable trains of thoughts than well-written production code.

The other thing is that some of the supplementary material was really long and at times made me feel like, why take this course instead of just going through a course mentioned in supplementary material (e.g. CS231n wrt CNN's)? I think I ended up spending hundreds of hours reading/watching/practicing CNN's by reading papers, watching Karpathy's 231n videos, and doing a couple tutorials from data scientists who elaborated on a specific problem they were solving. I guess at times when watching Part 1's videos and doing the notebooks, I didn't feel like I was 'getting it' as much or as fast as when I was getting the information from other means.

While the forum discussions can be helpful, it was also wadding through a ton of unstructured content. And the service they used for the forums hotmapped the find shortcut to their own built-in search, which was a little annoying. I don't know a great solution to having more structured data, but perhaps adding some of questions that were answered to the lesson's Wikipedia. Or maybe splitting the technical issues from the high level concepts.

Lastly, I think it was either HN or /r/MachineLearning but someone had suggested a book regarding Machine Learning and hands-on Tensorflow usage which I picked up, and I felt like my pace of learning really sped up afterwards. I think part of it was Tensorflow has a lot more written about it so when you encounter an odd problem, chances are someone else has something to say about it.

All criticisms aside, I think I'll try going through Part 1 a second time around prior to going through Part 2.

DrNuke 5 days ago 0 replies      
The n00best path to data science and machine learning state of the art is now complete, no excuses! 2015: Andrew Ng's Coursera MOOC; 2016: Kaggle competitions with xgboost and ensembles; 2017: deep learning code-oriented courses with fast.ai and GPU hardware for the masses. Thanks, very lucky to witness and try this.
daedalus13 5 days ago 1 reply      
jph00, I found the first course hard to follow because of some broken links and poorly organized content. One link that was necessary kept taking me to a password protected page. This is about a month ago.

It would be good if someone could revisit part.1 and make those minor editorial fixes if they haven't already done so.

I might be being too precious about my time, but I also found the first video about your teaching philosophy somewhat gratuitous; I wish I hadn't watched it.

natch 4 days ago 3 replies      
Afraid I may have missed the window on the chance to provide feedback to jph00 via this channel, but here goes.

Am watching Part 1 now and only two sessions in, but there are some tweaks I would love to see. First the positive: I really appreciate the approach of hands-on and teaching theory only as it's needed and in conjunction with applied work.

Would love to see a tiny bit of time spent on setting up tools for people who already have good Nvidia GPU systems. My Ubuntu system has python (2.7) and python 3.5 both installed, but no Anaconda... I don't know if I'm going to totally screw up my system if I install Anaconda over those working existing python installations, for example.

It would be great to hear the questions. I can barely hear a faint voice in the background as Rachel reads the questions (presumably from online) but it seems like it would be a very easy tweak to have her closer to a microphone. Maybe this happens in later sessions and I just haven't gotten to them yet.

It would be great if so many things weren't abbreviated in the code variable and function names. Examples: nb for notebook, t for ?, a for array(?), U, s, and Vh for ?, ims (?), interp (interpretation or interpreter or interpolation?), sp, v, r, f, k, trn (train or turn or something else?), pred (predicate or prediction?), vec_numba (?)... the list goes on. Yes if I knew the field these might be obvious but for some of them I'm still learning. "np" I understand since that's standard practice and you explained it. It would be really really easy to just spell out words in the code, as well as being a good practice in general imho, and, since you are trying to teach stuff, it would seem appropriate.

Those nitpicks aside I'm really stoked about the course and really appreciate everything you have been putting into it!

alexcnwy 4 days ago 0 replies      
Honestly can't recommend this course highly enough.

It's definitely not perfect - the notebooks are not commented and the material does tend to jump around a bit - but what it does do, it does extremely well.

This course will teach you how to actually build deep learning systems and build the kinds of things you read about PhDs doing...

BrianMingus 5 days ago 1 reply      
Latently (SUS17) also provides a more self-directed path to learning deep learning focused exclusively on implementing research papers and conducting original research: https://github.com/Latently/DeepLearningCertificate
edshiro 5 days ago 0 replies      
This is exciting! I went through Part 1 a few weeks ago (probably have to cover embeddings and RNNs again...) and felt it was totally worth it.

Part 2 seems equally strong in content (if not stronger). It's a beautiful time to be n00b in deep learning & AI, and learn via material like these. No excuses. Knowledge is power.

mcintyre1994 4 days ago 1 reply      
I've been looking to do part 1, so this is really cool - looking forward to this too! On http://course.fast.ai/part2.html the thumbnail for lesson 8 has specs for building a PC, with advice to use pcpartpicker. For part 1 I liked the idea of using AWS and only paying for a few hours, does part 2 have a hard requirement of a >$100s investment in hardware?
Omnipresent 5 days ago 1 reply      
For folks who've gone through part 1 and 2. Do you think the course provides enough material to tackle tasks like deep learning ocr [1] or custom object detection in images?

[1]: https://blogs.dropbox.com/tech/2017/04/creating-a-modern-ocr...

throwaway12017 5 days ago 1 reply      
What is the goal of these trainings? To get a taste so you understand the conversation? There is a lot more to data science than neural networks, and I'm skeptical that teaching one family of models will create a set of implementers that don't compare and contrast solutions.
cs702 4 days ago 0 replies      
Based on the feedback I'm reading here about Part 1, I'm going to start recommending these courses to non-academic friends who have expressed interest in learning more about Deep Learning.

THANK YOU for doing this.

bitL 5 days ago 0 replies      
Wonderful! You picked a really nice selection! Can't wait to do them all! Thank you!
cakedoggie 5 days ago 1 reply      
They don't even have a link to part 1 at the start of the article??
mikden 5 days ago 0 replies      
Looking forward to part 2 Jeremy!Part 1 was nothing short of excellent
Tsagadai 5 days ago 0 replies      
jph00, I would just like to thank you for the first course and now the second course. I've thoroughly enjoyed both and they have taught me a lot.
How the Collison brothers turned seven lines of code into Stripe bloomberg.com
588 points by coloneltcb  3 days ago   179 comments top 32
eggbrain 3 days ago 14 replies      
If you are wondering how Stripe could even start with just 7 lines of code, it's a bit misleading:

 With Stripe, all a startup had to do was add seven lines of code to its site to handle payments: What once took weeks was now a cut-and-paste job.
I.E. the simplicity of the Stripe platform (taking only 7 lines of code for developers) was how they succeeded, not that they built a startup at first with just 7 lines of code.

downandout 3 days ago 4 replies      
I don't know Patrick, but he has personally jumped in here on HN where appropriate, publicly given out his own email address to handle issues, etc., and continued to do so even after Stripe achieved a $1b+ valuation. While most of their billionaire Silicon Valley contemporaries are very hard people to root for, I am rooting for these guys. They seem like genuinely good people whose success is well deserved, and so far they have not let it go to their heads.
mschaef 3 days ago 5 replies      
~12 years ago, it was Patrick Collison that was named young scientist of the year for developing a dialect of Lisp called Croma:


I'm glad to see he has continued to do well.

smaili 3 days ago 3 replies      
Though not the primary focus of the article, this struck a chord with me:

> When bored in class, Patrick read books. I would line up the angles so I was hidden from the teachers view, he says, adding that he found out years later that an enlightened principal had instructed teachers to allow it.

fpgaminer 3 days ago 1 reply      
I hadn't worked with payment systems for a number of years, but recently added Stripe to a quick MVP I built (bitcoinvoice.com). It took two hours. I couldn't believe how easy it was, and how nice the UX of the whole thing was.

I imagined the usual song and dance of writing a bunch of back-end code to handle all their weird requests, worrying about double checking everything in the requests to make sure nobody can spoof them, etc, etc. Ya know, the dumb stuff that takes hours to write, hours to test, and days to wait for support to get back to you because their test servers are broken.

And then I imagined waiting days for them to approve my account for live transactions, requiring scanned copies of my driver's license with me flashing some sort of gang sign while reciting page 452 of the 1993 re-print of Moby Dick.

Nope. Turned out they have a synchronous API for processing payment so I don't need to handle callbacks on the backend. Turned out the front end code was, yeah about 7 lines (more with a few tweaks). And their documentation injects your keys into the sample code for you (wow)! On top of all that ... they had Go sample code!

And when I went to enable my live account, I'm pretty sure all they asked for was name and address, maybe TIN. Nothing else. No wait. Just ... bam, I was enabled and could start accepting live payments.

It was perhaps the most pleasant API integration I've ever done.

There are _some_ rough spots. They don't really explain Radar, their fraud protection very well. It wasn't clear to me if it was automatically included and handled. shrugs. And though they advertised support for Bitcoin payments, it turns out you have to use their async API to accept Bitcoin payments. I was willing to accept zero-conf payments, so I figured I could just keep using their synchronous API, but I guess not.

cylinder 3 days ago 1 reply      
Anyone who dealt with Authorize.net should have seen the opportunity in making these payments simpler... But I didn't.
wonderwonder 3 days ago 1 reply      
The article mentions this but for me the truly great aspect of stripe is that they targeted the developer. I have dealt with several payment systems and most of them have poor documentation and getting them to work is a lot of trial and error. They appear to be monoliths who survive because management has chosen them.

Stripe provides excellent documentation and support (on #stripe in freenode). It just makes my life easier.

(I have never used Braintree so I can't comment on it)

whipoodle 3 days ago 2 replies      
The bit about Amazon is the actual news contained in the story, if anyone here is interested in discussing that.
willlll 3 days ago 1 reply      
> Over the past couple of weeks, Stripe began handling a large, though undisclosed, portion of Amazons transactions. Neither company will address the scope of the dealwhich was only revealed by Stripes addition of Amazons logo to its websitebut it could help Stripe greatly increase its transaction volume.

So, reading into this, amazon presumably invested in stripe, then gave it some transaction traffic to juice the numbers to make an S-1 look better?

IgorPartola 3 days ago 1 reply      
For me, Stripe was a revelation because they eliminated fixed monthly costs. When I ran a side project that took credit cards, I found the cheapest option to be a $20/month merchant account + $20/month to Spreedly. Others had a few months free trials, etc. but ended up being more expensive over the first year.

Stripe, while being more expensive than these options per transaction, actually cost me a lot less to start out. While $40/month doesn't seem like a lot, for a hobby project that likely won't make that much money in the first months to a year, it's huge.

BigChiefSmokem 3 days ago 0 replies      
I love this. Simplicity and speed is what I fight for everyday at work but it seems I am the odd man out in my field. Everyone just wants to write over-engineered solutions that can launch space rockets with extra extra modularization you know just in case the Hubble fails again and of course fear of what may happen "in the future" in case "we ever need to scale".

How about we just focus on the job at hand for now and worry about things like scaling and robust API/interfaces AFTER we actually acquire customers and start making the money.

tzs 2 days ago 0 replies      
How well does Stripe handle expired cards? The payment gateway we use now allows sending an expiration date of 0000 on submissions that are marked as being a recurring or installment payment. This attempts the transaction without doing an expiration date check [1].

Stripe's documentation says that they automatically use the credit card update services of Visa, MC, and Discover to update expiration dates of cards they are storing, so that you don't have to worry about keeping the expiration date up to date.

However, from what I've seen using the Visa and MC updater services, a significant fraction of issuing banks do not support them and when requesting updated information on those cards nothing comes back, and these cards often still actually work fine.

Does Stripe having something equivalent to 0000, so that one can say "try to charge this recurring payment on this card, even if we do not have the current expiration date and the updater service did not give a response"?

[1] The expiration date on a credit card is the date that the card itself expires, not the date that the account expires. For new orders, online or in-person, an expired card should be a red flag because a person actually placing a live order should have their latest card. Seeing an expired card live could mean it is a stolen card.

balls187 3 days ago 1 reply      
Seems all kinds of shitty to have an article about "Two brothers" yet feature a photo where only one brother is in focus.
Kiro 3 days ago 1 reply      
The biggest thing for me with Stripe was that I no longer needed a card redemption agreement. Before that I had to deal with both my bank and the provider and it was a bureaucratic mess.

I still wonder how Stripe managed to get around that.

abalone 3 days ago 1 reply      
> Over the past couple of weeks, Stripe began handling a large, though undisclosed, portion of Amazons transactions.

Take this with a large, disclosed portion of salt. Amazon is big enough to pay essentially nothing in processor markup. Not to mention they sell their own payments service. If Stripe is actually handling any Amazon processing they are making no money on it, and quite possibly taking a loss to buy the volume.

Think Square's deal with Starbucks. They ended up losing $56M.[1]

[1] https://www.wired.com/2015/10/square-ipo-filing-shows-starbu...

nouveau0 3 days ago 1 reply      
How Two Brothers Fought Against All Odds And Things As Such As That: https://www.youtube.com/watch?v=ba9k5SWwE38
kodir 2 days ago 1 reply      
Dear Stripe team! I am trying to activate my Stripe account but after I press the "Activate Account" button, keep getting "An unknown error occurred" message.

Wrote about this in the "Feedback" form, but haven't heard back. Please help.

samblr 3 days ago 2 replies      
>>>> "Stripe made its debut in 2011 .... had spent two years testing their service and forming relationships with banks, credit card companies, and regulators so customers wouldnt have to".

Can somebody help throw light on:

how Paypal was lagging in 2011 when compared to stripe ?


how Collisons went forming better relationship with bank to build a system better than Paypal ?

heyrhett 3 days ago 0 replies      
"That figure has roughly doubled in the past five years"

So, 14 lines of code?

amichal 3 days ago 1 reply      
I am just now in the process of completing a migration from Paypal PayFlow (Recurring Profiles) to Stripe (Subscriptions)

While Stripe's API documentation is MUCH easier to understand on the face there is a lot of undocumented complexity hidden away in there that was documented in Payflow Pro (mostly -- in a hard to find 400 page pdf).

In the end it is worth it for our specific use case. But like anything involving money over time it is much harder then it seems. Obviously, WAY more then "7 lines of code" to do it even halfway right.

I have to give massive credit to both organizations support engineers who helped us move the card details across without us ever seeing them. In the end they even ended up having to do a complex customer_id mapping for us to get it done in a way that allowed us to recreate the behaviour we had in PayFlow in Subscriptions

bigtunacan 2 days ago 1 reply      
My comment/question isn't about Stripe per se, but rather the surcharges of payment processors in general. It seems like 2.9% + .50 is about average, but then I see a site like https://sendmoneytoschool.com/ and they are charging a $1.00 processing fee for credit card payments to put lunch money in my kids' school account.

Is there some way to get super low processing fees if you don't use something like Stripe? Or are they taking money from the school and the parents? I'm just wondering how low of a rate is is possible to get for your ecommerce credit card payments?

suhith 2 days ago 0 replies      
"I would line up the angles so I was hidden from the teachers view, he says, adding that he found out years later that an enlightened principal had instructed teachers to allow it. "

This is very cool, kudos to the principal.

basdevries 3 days ago 0 replies      
To add a bit of insight: most Payment-Service-Providers actually pay big retailers to be listed on their site, as it improves trustworthiness and brand awareness. So the Amazon deal might not be as favorable to Stripe as it might sound.
michaeloblak 3 days ago 1 reply      
Is there any service that will handle the backend of the Stripe integration for me? I'm talking about simple charging per product, ex. selling ebooks. Or Squarespace like websites are the only solution here?
rdiddly 3 days ago 1 reply      
"Theres such an improbability to their story - that these brothers from a little village would come to build what could well be one of the most important companies on the internet.

But is it, in fact, improbable? If you believe Paul Graham, the most revolutionary ideas are always going to come from off the beaten path -- from some backwater, either of geography and/or of ideas.

edpichler 3 days ago 0 replies      
"How Two Brothers Turned Seven Lines of Code into a $9.2B Startup"

This is how NOT to do headlines.

sumedh 2 days ago 0 replies      
> forming relationships with banks

So can you just call up the relevant department in the bank and start talking or do you need to know someone who knows someone in the bank.

vuyani 3 days ago 0 replies      
I opened the site and thought "oh, I didn't know scump is also a coder" :D
jv22222 3 days ago 0 replies      
We interviewed Patrick on TechZing back in 2012. Great guy.


maxxxxx 3 days ago 0 replies      
This headline really cheapens their accomplishments. It's not enough to start a successful business with a lot of work but it has to be just seven lines of code or over the weekend.
amelius 2 days ago 0 replies      
This is another example where a company did not do much out of the ordinary, but in hindsight, it appears as if they did.
jaggajasoos33 3 days ago 0 replies      
Clickbait title but I get the point. They simplified something that otherwise just too complex.
Bitcoin Exchange Had Too Many Bitcoins bloomberg.com
612 points by dsri  2 days ago   216 comments top 22
jstanley 2 days ago 4 replies      
Great writeup. Almost anything written by Matt Levine is worth reading.

This is a concise and accurate description of the fun that occurred with Bitfinex's handling of the BCH fork.

At least, it's fun if you weren't involved. If you naively held BTC on Bitfinex and were hoping to receive an equal amount of BCH you probably didn't think it was fun. If you carefully read Bitfinex's statements and decided to take advantage of their policy to acquire risk-free BCH, you probably think it's even less fun. But for the rest of us, it's fun.

cwkoss 2 days ago 2 replies      
Bit tangential, but I read an interesting theory this morning:

Because there is greatly reduced liquidity of BCH (most exchanges don't support, hard/slow to deposit into exchanges that do), supply of BCH is artificially limited at the moment. Proponents of BCH can trade their BTC for BCH at a rate greater than they believe it is worth to easily pump the value and 'market cap' (most market cap stats have no measure of this 'locked supply') to make BCH appear more popular than it is at a fraction of the price that would be necessary if selling was easy. This could sway more miners to choose to mine BCH over BTC, and in doing so, actually increase the real value of BCH.


gregschlom 2 days ago 4 replies      
"There is no single obviously correct solution to these issues. Instead, each decision was sort of weird and contingent and reversible: not the immutable code of the blockchain, but just humans sitting around and trying to figure out which approach would cause the fewest complaints. In that, it's a bit like the Dole settlement process -- only instead of a neutral judge making decisions based on written contracts and established precedent, it's the people running each exchange making their own judgment calls."

This is what I'm always repeating about blockchains: they're very valuable if and only if you cannot use the protection of contracts and laws when making a transation - for example because you're doing something illegal. In Every. Other. Case. systems based on trust, contracts and law (such as the banking system for example) are more efficient.

It doesn't mean that there isn't room for improving existing systems, just this is probably best done with regular servers and databases rather than a blockchain.

NelsonMinar 2 days ago 4 replies      
It is hilarious watching people try to reinvent financial institutions without any knowledge of or respect for history.
matt_wulfeck 2 days ago 7 replies      
> But BTC hasn't really lost any value since the spinoff, still trading at about $2,700. So just before the spinoff, if you had a bitcoin, you had a bitcoin worth about $2,700. Now, you have a BTC worth about $2,700, and also a BCH worth as much as $700. It's weird free money, if you owned bitcoins yesterday.

Doesn't this throw up any red-flags to the btc/crypto apologist? This type of behavior is not how healthy markets work.

jandrese 2 days ago 3 replies      
I really don't see how this fork is going to go down as anything other than a boondoggle. Right now the value of BCC is being propped up by having almost no way to actually sell it, but once an actual market opens I fully expect its price to crash hard.
colinbartlett 2 days ago 1 reply      
I always really enjoy Matt Levine's columns in Bloomberg. Very detailed and technical but always very carefully explained and readable.
runeks 1 day ago 0 replies      
> To use an imperfect analogy from corporate finance, you could think of the fork as a spinoff. For most of PayPals life, it was owned by eBay. Holders of the EBAY ticker owned the parent company eBay, which encompassed eBay proper as well as PayPal. On the day of the spinoff, eBay stockholders received, for each EBAY share they owned, one PYPL share. At the same time, they got to keep their existing EBAY shares.

This is a misleading analogy, because EBAY holders can only be granted PYPL shared because EBAY owned PYPL. So unless BCH was an existing entity before the fork, which was covered under BTC already, this analogy doesnt capture what happened here.

Were not talking about companies, were talking about distributed databases. Databases contain information, and can be copied, as opposed to a company. A better analogy would be someone scraping Twitter, making a copy called Twooter with all past tweets from Twitter, and then forking off from there with their own twoots. In other words: its a copy, not a stock split.

notlikethis1994 2 days ago 1 reply      
Yeah if you were paying attention to the short vs long interest for BTC on Bitfinex right before the hard fork, BTC shorts went up like crazy and everyone thought ppl were hyper bearish on BCH. It was actually because ppl were pulling this funny business to get free BCH from Bitfinex.
numbsafari 2 days ago 1 reply      
This would have been so much more fun if the contracts were all smart contracts using Ethereum.
Legogris 1 day ago 3 replies      
Excuse my ignorance, but this seems like the obvious solution to me:Distribute 1 BCH to each (actual) BTC holder on the exchange, completely ignore margin orders. So shorts don't owe and also longs aren't credited BCH.

Fair and no way to game. Why aren't exchanges doing this?

skywhopper 1 day ago 0 replies      
Good article. A blockchain can only protect systems that it encodes directly. And for the simple cash transactions that's easy enough. But humans can, have, and will devise all sorts of derivative financial instruments to amplify the utility of assets, and no mathematical system can encode all the arbitrary possibilities that implies into their structure beforehand.

Instead, we're back where we started where legalities and regulations matter and the reliability of your durable ledger is limited to the transactions it actually captures.

mannykannot 2 days ago 0 replies      
There are shades of the 'what happens to my self if I could be teleported without the destruction of the original me?' philosophical conundrum.
pishpash 2 days ago 3 replies      
So what's the explanation for the combined coins shooting up in value (if only for a little bit)?
tobyhinloopen 2 days ago 5 replies      
So I had some bitcoins at time of the fork. Do I have the other new coins as well? How can I spend, sell or buy them? Is there a multibit for bitcoin cash?
philanthropist 1 day ago 0 replies      
Finex may have played this badly, but it was clearly stated in their statement on how they were handling the fork. If you didn't like their approach, all you had to do was move your coins off the exchange and split them yourself. It wasn't (too) difficult to do, and I say that as someone who isn't really technical, but can follow simple instructions.
perfunctory 1 day ago 3 replies      
> The way short selling works is that X borrows a share from Y and sells it to Z. So Y owns one share, and Z owns one share, and X owes one share, and everything balances out and there's only one share outstanding.

Is that really true? That would mean that both Y and Z should get dividend payment, which doesn't make sense. I always assumed that when X borrows one share from Y, the Y does not own that share any more.

stordoff 2 days ago 0 replies      
This is veering off-topic, but is anyone else finding the Bloomberg menu nearly impossible to use/borderline broken? It activates on hover, but to actually click on a story you have to get past a secondary list of categories that also acts on hover (hiding the story you intended to click on). If you move the mouse diagonally instead, chances are you'll activate a different top-level menu. I felt like I had to dodge around menu elements just to be able to click on anything.
ohiovr 2 days ago 0 replies      
The article seemed to indicate a short squeeze condition without actually naming it that way, strangely enough. If so, it could get vicious for the short sellers. I am not invested in it, just thought to add my 2 cents
chaoticmass 1 day ago 0 replies      
Seems to me the problem is with the exchanges, not the bitcoin.
tpallarino 2 days ago 0 replies      
From the BCH Token Distribution Announcement:

All BTC wallet balances will receive BCH

They did not issue another post saying that this would not be the case and broke their distribution terms. Regardless of whether it was "free money" (it wasn't if you consider opportunity cost), they did not respect this simple and clear statement from their terms.


smaili 2 days ago 2 replies      
Here's what people tried to pull off:

1. Set up an account, borrow one bitcoin, sell it short, collect $2,700.

2. Set up another account, buy a bitcoin, spend $2,700.

3. When the fork happens, your long account ends up with +1 BTC and +0.8 BCH.

4. Your short account ends up with -1 BTC and -0 BCH (because Bitfinex doesn't require you to come up with the BCH).

5. Net, you have $0, 0 BTC and 0.8 BCH.

6. The 0.8 BCH were worth as much as $560.

7. That money was totally free.

Hy A Lisp-flavored Python readthedocs.io
610 points by tosh  2 days ago   206 comments top 28
IgorPartola 2 days ago 36 replies      
As a heavy user of Python, and someone who grew up with the "curly braces" languages, I have a question for y'all. Is this really readable?

 (setv result (- (/ (+ 1 3 88) 2) 8))
Or rather is it more readable than

 result = ((1 + 3 + 88) / 2) - 8
I just... Do you just get used to this, or is it something that you have to keep struggling with? Especially given that the latter is how we do math the rest of the time?

taneem 2 days ago 0 replies      
The online demo is amusing/creative: https://try-hy.appspot.com/
macdice 2 days ago 1 reply      
Interesting that it uses defun, like Common Lisp, the main Lisp-2 dialect, and yet it's clearly a Lisp-1, like Scheme. After (defun f (n) (+ n 1)), evaluating f shows that it's a function (just as in Python, which is a Lisp-1). My first thought, for what it's worth, is that if the namespace semantics is like Scheme it'd be better to follow Scheme idioms rather than Common Lisp, so code can be easily ported. On the other hand, this is only my first minute using Hy so what do I know. Looks really neat!
smaili 2 days ago 0 replies      

> Hy is a wonderful dialect of Lisp that's embedded in Python.

> Since Hy transforms its Lisp code into the Python Abstract Syntax Tree, you have the whole beautiful world of Python at your fingertips, in Lisp form!

etiam 2 days ago 2 replies      
There's even a couple of kernels for IPython/Jupyter.The best I've seen so far is https://github.com/Calysto/calysto_hy

I'd like to move to Hy for much more of what I currently do in Python, but so far I've been too lazy to find/create good editor support for it. For actual projects of some size the loss of context help, documentation, various completions, etc seems like too high a price to pay.

alschwalm 2 days ago 4 replies      
Hy is a great project. One unfortunate thing, though, is that no one has been able to successfully implement `let`, which makes writing idiomatic lisp almost impossible. I'm curious if anyone can actually prove it can't be done or is just very difficult (or too slow to be useful).
winter_blue 2 days ago 3 replies      
Since Python doesn't support multi-line lambdas, how do they support the analog in LISP? It's almost necessary for any dialect of LISP to support lambdas (i.e. functions) that contain a LISP 'do' [1] which lets you group statements. Do they chain together expressions/statements with continuations or something?

[1] http://www.lispworks.com/documentation/lw60/CLHS/Body/m_do_d...

kzisme 2 days ago 2 replies      
Shout out to @paultag (Author/Creator of Hy) - he's an awesome guy who has written some really cool stuff.
dvdt 2 days ago 0 replies      
One fun application: I used Hy to control my liquid handling robot,


yablak 7 hours ago 0 replies      
As a tensorflow dev, with several years experience writing clojure at a previous startup, I believe this is the most natural language for writing tensorflow models (or theano. basically any graph building dsl that has any real complexity and has been bolted onto python).

Suddenly TF's cond and while_loop and context controls all fit naturally into the language.

My favorite technical post in recent memory.

gcoda 2 days ago 0 replies      
Reason I am trying it - best "hello world" example ever.

(print "I was going to code in Python syntax, but then I got Hy.")

nathancahill 2 days ago 1 reply      
This is my go-to for toy projects over the last couple years. Great execution all around. Be aware, if you don't like puns, this isn't the language for you.
kronos29296 2 days ago 0 replies      
The entire thing is full of puns really too much of puns related to hy. Cool project. Python joined Erlang and Java with a lisp flavour of its own with Hy. Hope we get a let expression soon.
asimjalis 2 days ago 2 replies      
I have been using Hy as an alternative to Python. It is delightful to use. Highly recommended.
dmoney 1 day ago 1 reply      
Unicode identifiers make me uncomfortable. I have no idea how I would type that circular one in the "sharp macro" section (short of copying and pasting), and I'm imagining seeing those missing-character boxes all over the place.
sridca 1 day ago 0 replies      
A decade ago I wrote something like this using Racket (formerly MzScheme)! https://github.com/srid/boalisp
robobro 1 day ago 0 replies      
Has anyone ever used Hy for CGI stuff? It may be possible to port Hackernews to it, just for fun..
udkl 2 days ago 2 replies      
While both have their own personalities, has anyone done a side by side syntax and feature comparison of clojure and Hy ?
cuspycode 2 days ago 0 replies      
I used Hylang to program an Arduino Yn a few years ago, via cross-compilation. This was a very nice experience, since it allowed me to use the great Python ecosystem without having to be limited by Python the language.
partingshots 2 days ago 0 replies      
Now CS61A can finally go back to teaching purely in Scheme again.
amelius 2 days ago 1 reply      
Is this like clojure, but for python instead of java?
droidist2 2 days ago 0 replies      
How does this work with tooling though, like step debugging and refactoring in IDEs like PyCharm, or with iPython notebooks?
wodenokoto 2 days ago 1 reply      
Will this give me lisp in jupyther notebooks?
evanwolf 2 days ago 0 replies      
Next on the wishlist: an APL inside Python.
yoodenvranx 2 days ago 1 reply      
> Hy

This must be the worst submission title in the history of HN.

eanzenberg 2 days ago 2 replies      
tills13 2 days ago 0 replies      
hy more like why
Operation Luigi: How I hacked my friend without her noticing defaultnamehere.tumblr.com
681 points by adamch  1 day ago   158 comments top 35
devwastaken 1 day ago 3 replies      
This is the best commentary on a real-life social engineering hack I've seen. Whats really interesting is how he was able to be undetected mostly, because services like linkedin only had an optional requirement for forcing all devices to re-login when a password was changed, and that the hacked individual wasn't using 2FA on her email.
shalmanese 1 day ago 12 replies      
One of my favorite low key social engineering hacks is that I used to have a keylogger installed on every machine I own. Whenever a friend needs to hop on my machine to show me something, they'd log into an account they own and I would have their password.

Then I'd do the same Luigi-like low key messing with them for a while. My favorite was when a friend had a VNC server running on their machine with control capabilities. I would sit next to them and subtly jerk the mouse pointer right before they were about to click on something and it drove them mad for a good 20 minutes before I couldn't hold onto the giggles anymore.

edit: To add a bit of context, this was in the Windows 98 era, before the age of social media where we started putting all of our secrets onto our machines. And it was among a group of friends where everyone was trying to hack everyone else and pretty much anything was considered fair game. All of us were high school kids so there wasn't some super serious reputation we had to protect.

raybb 1 day ago 3 replies      
This post was at bit hard to read with the buzzfeed-esque jokes and writing style.

Here's my summary:

 1. Someone gets permission to hack their friend 2. They find their email / phone number online 3. They lookup old password leaks for the email (passwords don't work) 4. They end up setting up a fake page to phish their friend (it works) 5. They wait until their friend falls asleep to reset the twitter password 6. They make their friend follow a bunch of fake Mario accounts on Twitter 7. Friend notices, they meetup to swap stories (the friend doesn't follow the fake Mario accounts)

iiv 1 day ago 10 replies      
While slightly enjoyable (for the first few paragraphs) I couldn't finish reading it. The author is trying _way_ too hard to be funny.

I suppose it is written to another audience, perhaps the people that use tumblr find this funnier.

adtac 1 day ago 1 reply      
Quite long ago, I read a fairly similar article (without this ridiculous commentary, of course). It went something like this:

- a friend asks author to try and hack him

- author tries a bunch of things in vain, finally decides to use a rogue wireless AP and does a MITM

- identifies that notepad++ has automatic updates turned on and that it's over HTTP

- creates a custom executable and writes a script (or something) to serve this payload when notepad++ tries to download a EXE

- fakes an update (by returning true when notepad++ queries an HTTP endpoint for the latest version on startup)

I'd be really thankful if someone could link me to this post. My usually powerful google-fu has let me down this time (I tried all _sorts_ of things). Notepad++ and MITM are the only things I strongly remember.

darth_mastah 1 day ago 0 replies      
I found it really enjoyable and rather funny. I really liked the attention to detail as well, e.g. replicating last 5 searches in order to stay stealthy. I imagine that lots of effort went into the hacking exercise and the write-up. Nicely done.
pepelondono 1 day ago 0 replies      
I actually found this post really good. The buzzfeed-esque jokes are made this way with the only purpose of helping raise awareness about online security and how anyone with a minimum knowledge of the Internet can easily breach into your accs.
apathetic 1 day ago 0 replies      
> I use the incredibly cutting edge Inspect Element feature of the popular hacking software, Google Chrome, to edit the text of the email but keep the look.

I used do this to fake screenshots as well. People assumed I edited them with Photoshop!

Jonnax 1 day ago 4 replies      
Social Engineering is a thing to watch out for.I've learnt to never answer honestly when they're asking stuff like "Where were you born?" "What's your first pet" etc.

Instead I've made up some answers that I'll never tell anyone else.

However that doesn't really make those details secure.2FA is where it's at.

misingnoglic 1 day ago 1 reply      
This is the same guy who did a great blog post about finding his friends tinder accounts by spoofing a new tinder service. They're absolutely hysterical, and I hope he keeps doing more.
sleazybae 1 day ago 6 replies      
my notes from this article:

 * don't use linkedin * don't use hotmail * always use 2FA * use complicated and different passwords * security questions matter * avocado toast? * change passwords periodically

chefandy 1 day ago 2 replies      
"Hello and welcome to a blog post. I am writing it and you are reading it. Its amazing what we can do with computers these days."

Ugh. And I'm closing the tab. Appreciate the effort with humor, but you really should concentrate on being able to write something that's informative and enjoyable to read, and THEN try your hand at making your writing funny. The first sentence/paragraph needs to be a hook to get people interested, not some meta jokey blurb that doesn't have anything to do with anything.

taiar 1 day ago 0 replies      
I had no problems with the humor parts. Good article.
fiatpandas 1 day ago 2 replies      
It's possible to discover this girls full name, twitter, Instagram, Linkedin, etc (full identity) based on a few careless clues left by the author. Very irresponsible considering he has revealed her password habits and other personal vulnerabilities.

Loved the write up though.

nobleach 1 day ago 0 replies      
>There are entire criminal industries built on the idea that people use the same password all over the place because nobody cares enough to remember more than a few passwords because theyve got things to scroll on their phone okay.

Or... because having to remember more than 3 random combinations of arbitrary letters, numbers, and a subset of extended ASCII, is not a tenable solution. Of course people use things like l33tspeak. We can remember words. I wouldn't say laziness has anything to do with it.

refrigerator 1 day ago 0 replies      
If you liked this, the same guy has also written other stuff in the past - https://defaultnamehere.tumblr.com/post/139351766005/graphin...
TazeTSchnitzel 1 day ago 1 reply      
An opsec screwup in that post has told me what's possibly the real first name of Diana.

Opsec is hard.

trustworthy 6 hours ago 0 replies      
Well I enjoyed reading it, a little bit too much cringe, but still interesting articel!
modalduality 1 day ago 1 reply      
If there was no salt in the database, it looks Tumblr used a secret "pepper" (https://en.wikipedia.org/wiki/Pepper_(cryptography))? Why wouldn't they include a salt as well? Or did the database dump just not have the salt column?
cypher303 21 hours ago 0 replies      
Hey, I use inspect! I've run untrusted code every computing day of my life, so I guess that makes me a script kiddie. My advice, keep on script kiddie'ing, because it will definitely pay off.
djvdorp 1 day ago 0 replies      
This has gotta be the funniest blogpost in years, yet so legit that it makes one sad how easy it is to pull this off.
kutkloon7 1 day ago 0 replies      
I don't know if I'm in an especially good mood today, but it's quite a while ago I read something that I found as amusing as this.

I'm actually really impressed by the phishing approach.

h2onock 1 day ago 0 replies      
I really enjoyed this despite it being veeeeeeerry long, nice work!
peterwwillis 1 day ago 1 reply      
So basically we've learned that the best defense to getting hacked is to not become a target of bored script kiddies, because those bastards are as ingenious as they are terrible writers.
AJRF 10 hours ago 0 replies      
cwkoss 1 day ago 0 replies      
I hope they tried '3ertyui'.
rlglwx 1 day ago 0 replies      
Even with her permission he is still breaking the law. Unlawful access to a system is not the user's prerogative but the system operator's.
nsnick 1 day ago 0 replies      
So phishing?. He did it with phishing.
megamindbrian 1 day ago 0 replies      
I like the personality here.
saae 1 day ago 0 replies      
It is just great. Did you write that as it happened? It really unfolds like a novel.
jchw 1 day ago 0 replies      
This has been posted 3 times in the past 24 hours. And so has the last thing this person has posted.
callesgg 1 day ago 2 replies      
Can help it but i find the article kind of creepy.

Is he hacking her cause of romantic interests?

Is he hacking her for the thrill?

Is he hacking her to be able to write the article?

Is he hacking her to show her that he can?, or to show her that it is possible, or to show her the world she is living in?

tomxor 1 day ago 0 replies      
Hacked? cool, so what new unintended abilities has you friend gained?... yes i'm futilely rejecting the twisted definition perpetuated by the media and co.
westmeal 1 day ago 0 replies      
The part that perturbed me the most about his account is he didn't even backtrace the IP floppy disk log via the DHCP authenication backtrace. It's a rookie mistake, but so is misspelling 'nothin personnel kid'.
Why I left Medium and moved back to my own domain arslan.io
481 points by ingve  5 days ago   246 comments top 37
tyingq 5 days ago 8 replies      
"Writing comments to Medium posts feels awkward because each comment is treated as a blog post."

This is also awkward from the reader point of view. Trying to follow a comment chain on medium is frustrating as it only shows the first level, diving in switches pages, and often, a need to press a second "load all comments" button. Then the back button to wind your way back up.

Is there some sound reasoning for why it was set up this way? Some benefit I'm not seeing?

JoshMnem 5 days ago 27 replies      
I don't understand why people write programming blogs on Medium. I think that managing a live website with its own server (rather than only working on other people's projects) is a very important skill.

If you don't want to manage WordPress, try a static site generator like Metalsmith: https://github.com/segmentio/metalsmith

Deploy on Digital Ocean or Linode for $5/month. Free hosting options include Github Pages and Netlify.

pmontra 5 days ago 2 replies      
About the dickbars:

1) I uBlock them on my phone and tablet. Unfortunately there are plenty of random sites on Medium with their own domain. I don't follow any of them and get there from HN or similar sites. Blocking all of them doesn't make sense because I'll probably never get back to that domain. I agree with the author, the button in the middle of the page really sucks.

2) On desktop, the button and the dickbar never show because I'm running with NoScript and they are a JavaScript thing :-)

The author misses another inconvenient feature of Medium, the login. It's either by oAuth (I don't remember which providers) or by email. That means they send me an email with a link to click to login. In theory it's ok, because obviously email is safer and more convenient than a password stored in a password manager (/sarcasm). The first time I used it the mail didn't arrive until the day after, so I've been primed against it. Probably almost everybody just login with Facebook or something so, quoting the author, "Im not a part of his [Ev Williams] vision".

cupcakestand 5 days ago 4 replies      
To the point criticism of Medium, very detailed and the OP is picking the right issues of Medium.

While Medium looks so beautiful and clean at first glance it really disappoints when you use it on a daily base both as a creator and as a user. Everytime I use Medium, I am surprised that Medium is successful. Its appearance feels definitely premium and significantly of higher value than any other blog system but the usability is a nightmare.

So we are back to square one. Which blog system should we use? SSG on Github Pages?

shinzui 5 days ago 1 reply      
The best part of reading technical content is the discussion in the comments Medium makes that impossible.
Entangled 5 days ago 1 reply      
Medium is a blog platform and a news aggregator. I use it mostly for consuming news by using tags of interest. Good luck with that writing your own blog on your own server. Oh, and the daily newsletter is a delightful joy.

Discoverability is key to the success of Medium.





Or by topic




Mikho 4 days ago 2 replies      
Switched long time ago to Blogger--free to use your domain, change template design as you like as much as you like, connect external widgets like Disqus (my blog to check how Blogger may look: http://blog.babich.me/).

Also, a huge thing is integration with Google Photos and Google Drive. You may insert in a post photos from your Google Photo right by selecting them inside an image addition menu--no need in hustling with links, just look through Google Photos inside Blogger. BTW, it's possible to see photos uploaded via Blogger in Google Photos folder inside Google Drive (Google Photos app itself does not show photos uploaded via Blogger).

You also may connect FeedBurner (Google company) in Blogger settings and collect subscription emails and also automatically send emails to subscribers via FeedBurner when a new post is published. BTW, every tag used for tagging posts in Blogger becomes dedicated RSS feed. So, if you write about different topics (e.g. coding and travel), it's easy to set up for people to follow RSS or subscribe via email only to a topic they are interested in and not everything you write.

And it's all free!

Medium feels like long-form Twitter with all these replies treated as posts. This is a terrible experience. Especially when you follow RSS feed of somebody on Medium and comments & replies are delivered and treated in the feed the same way as posts. I guess it's due to the fact that Ev was also Twitter founder and has only one construct in his head as to posts and replies.

francis-io 5 days ago 2 replies      
Using something like Jekyll to create a static blog lets you put it on AWS S3. For all but the highest traffic sites the bandwidth cost is trivial and you totally remove all the issues with uptime and securing a server.
dhruvkar 5 days ago 0 replies      
I don't think this is an either/or situation.

Medium's value is in exposing new, (arguably) high-quality content to its readers.

Every so often, when you write an extra high-quality article, post it on medium as well, with a way for the reader to subscribe. It'll expose new readers to your writing and you still keep your content on your own platform.

edem 4 days ago 0 replies      
The OP forgot to mention the worst (IMHO) problem: Medium does not support multi-language content (more here: https://medium.com/@oleksiy/multilingual-content-management-...). If I write posts in English or Hungarian it is okay. But when I start to write in both my readers will see unreadable gibberish when they come to my page and half of the content will be noise for them and it can't be helped.

That's why I do it the other way around. I have my own domain and page which runs on a custom Jekyll / GitHub Pages setup and I import stories to Medium from my page.

This way I can keep using medium and get more readers for free but Medium will display the "Originally posted at ..." line at the bottom. Win-win! You should try this out and use Medium for what it is useful for.

alanh 4 days ago 0 replies      
A commentator on Arslan's post mentions Mediums foolproof wysiwyg editor. This surprised me. I find their WYSIWYG editor to be incredibly frustrating, counter-intuitive, limiting, and obnoxious.

Allow me to belabor only the last point.

Imagine typing the following sentence (Im using pipe | to show the cursor):

 Clifford is a big dog.
But it's missing something, so you move your insertion point:

 Clifford is a big| dog.
and you type <space>red. In any sane editor, the result will be exactly what you typed:

 Clifford is a big red| dog.
But on Medium, the result is:

 Clifford is a big red|dog.
Clifford is a big reddog? Ffffff. This happened because when you typed the first space after big, the result was not the insertion of a space but in fact the same as if you had hit the "right arrow" key:

 Clifford is a big |dog.
Not cool. I have a strong habit of inserting words with the surrounding spaces already inserted. How dare Medium forbid me to type the way I want?

I know that Medium does this because they are on a crusade to kill the usage of two spaces after sentence. That doesnt excuse insane frustration of the editing process. No wonder most Medium posts don't look like they have ever experienced the most cursory proofreading!

linopolus 5 days ago 1 reply      
I never understood how writers of any kind would let Medium (or Tumblr, or ...) rip all control off their hands.
sixQuarks 5 days ago 1 reply      
Moral of the story: Try to never rely on another company's platform for your business. It's hard enough creating a successful business, but to add a layer of risk on top of that is not smart.
s3nnyy 5 days ago 4 replies      
I feel one of the main reasons Medium is so successful is that they cracked discoverability and rank high on Google for any topic (sort of like Wikipedia). Hence, I am hesitant to move away from it although I really want to build a sustainable, long-term business on my own domain.

Any ideas on this?

amelius 4 days ago 0 replies      
This is good. Medium is, in a sense, the anti-internet. It centralizes where no centralization is needed.
illuminea 3 days ago 0 replies      
From a branding and long-term point of view, it's really important to "own" your content by hosting it on your own domain and even server space. The advantage of a platform like Medium is that it can increase the reach of your content, but it's too risky to go all in with them since who knows how long they'll be around, or what limitations they might add down the line.

But there's a way to have your cake and eat it too: you can publish first on your self-hosted WordPress site, and then republish automatically on Medium with a canonical tag pointing back to your WordPress site. This means you get the SEO and control benefits of WP, and the reach benefits of Medium.

I wrote a guide on how to make this magic happen: https://illuminea.com/ultimate-guide-to-wordpress-medium/. Of course this post is also reposted on Medium with the canonical tag :) https://medium.com/@miriamschwab/6425c2d5e5c4

ngsayjoe 5 days ago 1 reply      
I recently wanted to move my Tumblr personal blog to Medium however after a few days of nightmare and still unable to setup a custom domain despite having paid $75 fee i requested a refund and closed my account. Their customer service and documentation kind of sucks!
TheAceOfHearts 4 days ago 0 replies      
Personally, I never write comments on blog posts, but I participate in communities like Hacker News and a couple random subreddits.

I prefer including links to Hacker News or Reddit in the blog post. I'm not interested in handling authentication, moderating users, or dealing with spam. News aggregators usually do a great job with all those points.

The Webmention [0] spec solves this problem, but sadly, it hasn't been widely adopted. :(

[0] https://en.wikipedia.org/wiki/Webmention

bhalp1 4 days ago 0 replies      
At https://dev.to we have a similar product to Medium in a lot of ways. One thing we try to do is offer the benefits of Medium in terms of distribution, but also encourage users to easily make their own site the canonical source, because we don't want to force vendor lock in when you get to this point.

I'd like to think we also do a good job dealing with a lot of the UX issues that the author outlines :)

ewanm89 5 days ago 4 replies      
Why lose flexibility and switch to medium in the first place?
zabil 4 days ago 0 replies      
It's not easy to run a team (engineering) blog with static site generators.Authoring in markdown, reviewing, external contributions etc takes up a lot of time.

With medium we've encouraged the team to run personal blogs and add interested articles to the team publication. It's a bottom up approach.

In return, we get viewer-ship when medium recommends our articles on other (medium) blogs or via tags. Medium has a sense of community. Speaking strictly for myself, running your own site is tad selfish, it lacks as sense of community. Right now medium does that, We'd only move out of medium if there's something that does it better.

alanh 4 days ago 0 replies      
Not to be a horrible self promoter (it's just the ideas I care about), but my 2012 discussion of the problem with new blogging platforms still applies, from a general perspective, to Medium: https://alanhogan.com/the-problem-with-new-blog-platforms. (tl;dr is that eventually you will grow out of virtually any non-Wordpress platform, especially one you dont control yourself.)
erikb 4 days ago 0 replies      
I find the first part particularly interesting. I always contemplated of whether or not I should start blogging. And for me it always seemed an obvious choice between whether or not I want to host my own blog, which would mean a lot of energy and money investment, or if I should start a medium page, possibly losing control over my texts and page views.

When you now say that it's a hassle to setup and even costs money, why should anybody use Medium? Do people not know how much you already gift a page if you let them host your content? They should pay you and not the other way around.

luord 4 days ago 0 replies      
I had no interest in using medium, but this is one extra little reason for not fixing my unbroken pelican+GitLab pages setup.
Goladus 4 days ago 1 reply      
Why remove all your posts from medium.com? Why not post to both wordpress and medium.com?
denisehilton 4 days ago 0 replies      
Does medium allow you to monetize your content and put ads? If it's not the case then why do people write for Medium. What's there to gain?
owens99 4 days ago 0 replies      
Medium is blocked in China. And there are as many people learning English in China as the entire US population.

That's the biggest deal breaker for me.

skyisblue 5 days ago 0 replies      
One thing that really annoys me is embeded gists don't render in medium's mobile app.
pgeorgep 4 days ago 0 replies      
Interesting read. Personally, I prefer Medium for the convenience.
xerophyte12932 4 days ago 0 replies      
Irony: I am getting a "This site can be reached".
crispytx 5 days ago 0 replies      
My blog is hosted by Medium on my own domain and I think it kicks ass. All of the issues the author brought up in his post seemed pretty minor to me. Just my opinion, but Medium has the best blogging software out there, by far.
nvr219 4 days ago 0 replies      
Privacy Badger blocks most medium sites for me :)
maxraz 4 days ago 0 replies      
Setting up a domain was difficult. Really?
abiox 4 days ago 0 replies      
i generally avoid medium.com blogs because the ui is bad. i hate the comments system.
tomerbd 5 days ago 1 reply      
may I ask which theme you use? it looks very nice..
tomerbd 5 days ago 0 replies      
i did some google search for

"gatsby themes""gatsby disqus"

almost nothing useful turns out.. any ideas?

Researcher Who Stopped WannaCry Ransomware Detained in US After Def Con vice.com
561 points by Shinkirou  1 day ago   250 comments top 27
dang 1 day ago 1 reply      
Since https://news.ycombinator.com/item?id=14922563 adds significant new information (or at least I assume it does), the discussion can shift there now.
maxerickson 1 day ago 0 replies      
CNN got the indictment:

On Wednesday, 22-year-old Marcus Hutchins -- also known as MalwareTech -- was arrested in Las Vegas for "his role in creating and distributing the Kronos banking Trojan," according to a spokesperson from the U.S. Department of Justice.

The charges relate to alleged conduct occurring between July 2014 and July 2015.

According to an indictment provided to CNN Tech, Hutchins created the malware and shared it online.


jstanley 1 day ago 6 replies      
> "I've spoken to the US Marshals again and they say they have no record of Marcus being in the system. At this point we've been trying to get in contact with Marcus for 18 hours and nobody knows where he's been taken," the person added. "We still don't know why Marcus has been arrested and now we have no idea where in the US he's been taken to and we're extremely concerned for his welfare."

What the hell? How does something like this even happen? Surely they can't just take somebody away and keep it a secret?

downandout 1 day ago 5 replies      
FYI, if you've committed any form of cybercrime in the previous 3 years (edit: the statute of limitations is 5 years for most federal computer crimes, as pointed out below), you should avoid such conferences in the US for exactly this reason. You probably aren't as smart as you think, and there may be a sealed arrest warrant for you.

The FBI waits for these kinds of conferences to do exactly what they did here. Another Las Vegas DEF CON victim was Dmitry Sklyarov [1]. They won't bother with all of the problems associated with international arrest warrants and extradition if they know you're coming to them.

[1] https://en.wikipedia.org/wiki/United_States_v._Elcom_Ltd.

mnm1 1 day ago 4 replies      
No good deed goes unpunished. But why is DefCon still in the US? I think the creators of the conference might want to seriously think about holding it somewhere that isn't so hostile to pretty much everyone who attends.
samwillis 1 day ago 2 replies      
The Guardian has more:


He may have a shady past:

 According to an indictment released by the US Department of Justice, Hutchins is accused of having helped to spread and maintain the banking trojan Kronos between 2014 and 2015"

QUFB 1 day ago 3 replies      
This sends a clear message to the global whitehat security community: travel to the US at your own peril.
mholt 1 day ago 1 reply      
Bitcoin wallets associated with WannaCry have been emptied: https://arstechnica.com/gadgets/2017/08/wannacry-operator-em...
holtalanm 1 day ago 3 replies      
I'm curious what charges are being brought against him. For all we know, this detention is completely unrelated to WannaCry. We shall see.
sajal83 1 day ago 2 replies      
UK's National Cyber Security Centre on MalwareTech's arrest: "We are aware of the situation. This is a law enforcement matter and it would be inappropriate to comment further."


cromwellian 1 day ago 3 replies      
Reading the indictment, it seems like his partner ratted him out. Curious though, the indictment seems to list the redacted partner as doing most of the incriminating things (posting a video demonstration, advertising the sale on AlphaBay, etc), it merely accused Marcus as being the author and co-conspirator.

I wonder if his partner/friend got caught, and plea bargained to turn state's evidence against Marcus.

djvdorp 1 day ago 0 replies      
Maybe this is the reason he did not appreciate people revealing his identity online (basically DOXing him for fun, some journalist did it if I recall correctly). It really sucks when somebody that is trying to do well (stopping the WannaCry Ransomware as he did) is detained, even though we don't know more details at this points, this hits him rather personally and probably not for the good, I am very sorry for him and I hope he gets out soon and that all is well.
jessaustin 1 day ago 3 replies      
They're surprisingly clever, to arrest after DefCon. Typical stupid USA LEOs would arrest ASAP, so the unjust detention could be a cause clbre hyped up by half the talks.
danesparza 1 day ago 2 replies      
This reminds me of Kevin Mitnick: https://en.wikipedia.org/wiki/Kevin_Mitnick#Arrest.2C_convic...

Do we need to create some "Free Marcus" bumper stickers?

rocky1138 1 day ago 7 replies      
Why in heaven's name did he travel to the US?
c-slice 1 day ago 0 replies      
The bitcoin ransom wallets for WannaCry were just emptied today as well. What was the time difference between these two events? It seems possible that Hutchins could have had control of the wallets and fed seized the coins.
cjsuk 1 day ago 3 replies      
I'd like to know on what grounds?
mzs 1 day ago 0 replies      
better summary: http://www.reuters.com/article/us-usa-cyber-arrest-idUSKBN1A...

insightful thread also delving into wannacry: https://twitter.com/3L3V3NTH/status/893181445824446464

edit: there is a nice HN discussion already about the bitcoin: https://news.ycombinator.com/item?id=14918545

moomin 1 day ago 1 reply      
Maybe he violated WannaCry's terms of service. The DoJ are pretty down on that kind of thing.
cnkk 1 day ago 2 replies      
yeaaah let us arrest the good guys...
elorm 1 day ago 5 replies      
As much as this article contains very little information,this sounds very much like something the US will do.

Whenever someone has to be the butt of some global joke .....somehow the US has to be the one to step up. Taking someone into custody for 18 hours without giving the family or press any information. How different is this from Iran or North Korea?

Two things could've happened here IMO. They asked for the domain to turned over to them and were politely refused, or they're about to punish an accidental hero for white hat work/previous black hat work not related to WannaCry

featherverse 1 day ago 0 replies      
This is some seriously shady shit. The smart bet is we're not getting the whole story.

"Buy guns, lock your doors." - Bill Hicks

abhi3 1 day ago 5 replies      
Why are people in this thread so outraged without knowing any of the facts? For all we know there might be a legitimate charge on which he was arrested.

As per him being untraceable, if he was not read his rights then the FBI just jeopardized their own case. If no one knows where he is, it's more likely that it's what Marcus wants at the moment rather than what the FBI wants.

BigChiefSmokem 1 day ago 0 replies      
Trump's Dept of Justice is out of control.
AndrewKemendo 1 day ago 4 replies      
Traytorz 1 day ago 3 replies      
I like how this malware writer/researcher claims he "found" the address and "miraculously saved" everyone by grabbing the domain.

Not sure why everyone says he isn't the malware writer. What proof do you have that he didn't write it? Maybe he left a trail that you missed.

Krita Foundation in Trouble krita.org
529 points by gcp  3 days ago   225 comments top 28
dbrgn 3 days ago 10 replies      
Just a quick reminder, if everyone here donates just 3-5$, the expenses will be paid in no time :)

Krita is a great software, and even though I'm not an artist it's worth supporting.

gghh 3 days ago 3 replies      
I'd like to drop a note on how much I appreciate Krita. I'm not an artist by any mean, I'm a programmer and while I think I write/draw/sketch a lot on paper. A few months ago I switched from paper to digital hand-writing and bought an old Wacom Intuos drawing tablet. I'm on Linux and Krita works great with a stylus; very comfortable and intuitive, I haven't looked back.
DangerousPie 3 days ago 3 replies      
> The Foundation was created to be able to have Dmitry work full-time on Krita. Because we sell stuff, the tax inspector has determined that were a company, and should have paid VAT in the Netherlands over the work Dmitry has been doing in Russia. Even though there is no VAT in Russia on the kind of work Dmitry is doing.

As someone who has dealt with VAT in the EU a bit this sounds really odd to me. Even if the inspector determines that VAT needs to be charged on these services, shouldn't it be Dmitry who is paying them, not the foundation?

In other words, they should be coming after the person providing the services for the VAT that he neglected to charge, not after the foundation who just paid the invoices they were given.

_Codemonkeyism 3 days ago 2 replies      
I would like to leanr from the article, but it is low on facts (I may have overlooked them while reading).

What is the relationship between Krita Foundation (Krita) and Dmitry?

Is Dmitry an employee to Krita living in Russia? How can there be any VAT involved?

Is Dmitry a freelancer who sends invoices to Krita?Do those invoices include VAT? If they do, why does Krita need to pay VAT to Dutch authorities? Does he have a VatID on the invoice?

Do they just send money to Dmitry?

asah 3 days ago 0 replies      

Btw, a business model: let artists pay to enter their names in a directory of artists for hire. They can charge clients extra (eg fee) to pay for these ads. True, it would be ideal to include reviews etc but links to their portfolio are often good enough, and it further highlights the power of krita... If interested, contact me via my HN profile - I've done this before successfully, both for startups and at scale, and I don't need your money. :-)

Jonnax 3 days ago 5 replies      
That's really sad to hear.With how complex laws are, it's scary that going to a professional may not be sufficient.

But when you're totally unfamiliar with what the requirements are what can you do?

Do large law/accountancy firms give a guarantee for their advice in the case that it was incorrect?

sandGorgon 3 days ago 2 replies      
Can I buy something rather than donate ? Its hard for me to donate using my company account - but very easy to buy stuff. It doesnt matter even if its a license to email you 10 times a year.
sequence7 3 days ago 2 replies      
The link's not working for me, google text only cache:


lunchables 3 days ago 0 replies      
I have to admit, I really respect the absolute transparency.
ericfrederich 3 days ago 0 replies      
I just bought a Lenovo X1 Yoga which came with a Wacom stylus. I got it to be recognized in GIMP with pressure sensitivity. I was looking for other painting apps and forgot about Krita. I'll give it a try and see how I like it.

Good for them trying to get donations directly. They might get more money through GoFundMe or having a KickStarter for v4.0 or something. Those sites would offer a little transparency in that you can see how much they've already received... but try direct donations first.

Also, where is the BitCoin donation address?

amiga-workbench 3 days ago 0 replies      
Chucked some money their way, I suggest others do too. The last thing we need is less competition for Adobe.
i6ruce 3 days ago 1 reply      
Donated some euros.I hope they'll make some announcement if this donations helped them.
miscreanity 3 days ago 0 replies      
A simple solution would be to incorporate outside of such a convoluted and destructive tax regime. There are much friendlier locations.
skywhopper 3 days ago 1 reply      
This is a good reminder that for very small organizations, it's important for the founders themselves to understand at a basic level the relevant applicable tax laws and typical exceptions. The level of accounting consultancy a small organization is going to be able to afford is unlikely to be comprehensive, and all the right questions may not be asked when making plans. But if the founders who do know all that's going on have a basic understanding of the parameters of tax law, they will have a much better chance of figuring out what exceptions might be applicable to their organization. A few days or weeks of research early on could have saved many months of stress and many thousands of euros when the problems were discovered.
r1ch 3 days ago 0 replies      
I've been thinking about creating a Dutch foundation for one of the open source projects I work on in order to provide a legal entity to collect donations and apply for services like code signing in a organization name. This makes it a whole lot scarier!
Bromskloss 3 days ago 1 reply      
I had no idea that there even existed a foundation or that the development used money.
rexreed 3 days ago 1 reply      
Could all of this have been avoided with good accounting / tax advice to begin with? I don't mean to be that person that gives 20/20 hindsight, but this is the sort of legal and tax problem that gets many startups into trouble. A lot of startups just wing it with legal and tax advice and end up paying more in the long run with tax liabilities and legal problems.
neves 3 days ago 0 replies      
Maybe a little off topic. I've just learned about Krita. The birthday gift for my son was a Wacom board. How would the opinion of my fellow HR about the included software (Art Rage) compare to Krita for a 11 years old. I'm all for open source, but usability is a main issue here.
csomar 3 days ago 2 replies      
I don't get it. Isn't Dmitry the guy responsible for paying the VAT for the Dutch authorities?
hennsen 3 days ago 1 reply      
Cannot be loaded and seen. Can you put your text on some public blogging service instead of a weak small server that overloads when people on hackernews actually are interested on your thing?
JakiesKonto 3 days ago 0 replies      
software looks cool, will play around... love the idea of ur project - just donated 10 euro, hope you will be all good!
alexfisher 3 days ago 0 replies      
Why don't they have an Ethereum, Bitcoin, or other donation address?
valoriez 3 days ago 0 replies      
Donated, and tweeted about it. Join me!
vondur 3 days ago 0 replies      
Chris2048 3 days ago 1 reply      
Did the same accountant that advised them in the first place bag the 4k for cleaning up the mess?
col_rad 2 days ago 0 replies      
Donated 20EUR
esaym 3 days ago 1 reply      
I freaking hate tax. Especially those on the left yelling to tax the "rich" (very few are actually rich nowadays). This is the end result. Innocent companies go out of business (and then there is nothing to tax).
contingencies 3 days ago 2 replies      
Why not fold it and move to Bitcoin-only donations?

The authorities will have nothing to chase, the problem can't re-occur, accounting will be transparent, and accountants will not be required in future.

Seriously, Dutch should start a petition against their tax authorities for victimizing an open source project.

Malicious crossenv package on npm twitter.com
575 points by phpnode  3 days ago   228 comments top 30
danjoc 3 days ago 10 replies      
Friendly reminder, every time this happens...


"However, this is just a piece of an overall solution, and it brings with it a lot of the baggage that comes along whenever GnuPG or PGP get involved. Without a web of trust (sigh), a PKI (ugh), or some other mechanism to tie identities to trust metrics, this is essentially a complicated, very expensive, and fragile version of the shasum check npm already has."

I really like how the NPM simultaneously insults two legends in crypto and does _nothing_ to protect the node ecosystem, deferring to "better solutions" that don't exist and will never exist.

They've done literally nothing.


Last discussion was > 1 year ago. They simply do not care. Security isn't even an afterthought.

wolfgang42 3 days ago 4 replies      
This attack has been previously described in the paper "Typosquatting package managers":

Paper: http://incolumitas.com/data/thesis.pdf

Blog post: http://incolumitas.com/2016/06/08/typosquatting-package-mana...

Discussion: https://news.ycombinator.com/item?id=11862217https://www.reddit.com/r/netsec/comments/4n4w2h/

The paper also discusses possible mitigation measures, including prohibiting registering new packages within a certain Levenshtein distance of existing packages and using additional namespacing.

iamakulov 3 days ago 3 replies      
For everyone, heres a one-liner to check your dependency tree:

 npm ls | grep -E "babelcli|crossenv|cross-env.js|d3.js|fabric-js|ffmepg|gruntcli|http-proxy.js|jquery.js|mariadb|mongose|mssql.js|mssql-node|mysqljs|nodecaffe|nodefabric|node-fabric|nodeffmpeg|nodemailer-js|nodemailer.js|nodemssql|node-opencv|node-opensl|node-openssl|noderequest|nodesass|nodesqlite|node-sqlite|node-tkinter|opencv.js|openssl.js|proxy.js|shadowsock|smb|sqlite.js|sqliter|sqlserver|tkinter"
(More details: https://iamakulov.com/notes/npm-malicious-packages/)

devwastaken 3 days ago 1 reply      
This is something I've always been concerned about with the node/NPM environment. Any project, even the smallest ones, have hundreds of dependencies. All it takes is some small lines of rogue code, and your entire project is vulnerable. Especially in JS, where you can do network requests and various critical actions all in one line of code.
phpnode 3 days ago 1 reply      
NPM themselves recently launched a new package called npx [0] which will download and execute packages directly from the registry if you don't already have them installed. So if you make a simple typo like this:

 npx crossenv foo
instead of

 npx cross-env foo
you'd have got the malicious version.

[0] https://www.npmjs.com/package/npx

eropple 3 days ago 2 replies      
This is important. It looks like the organization is submerging; they've deleted their NPM account and the package and emptied their GitHub repo.

This should be signal boosted as hard as it can be managed, because this is rough stuff.

dankent 2 days ago 0 replies      
I've knocked together a quick tool that might help to spot such typosquatting:


(It's the first time I've published anything to npm so let me know if I have done anything wrong...)

It uses the list of package names from the all-the-package-names package and returns the 10 packages with the most similar names to the supplied parameter (using Levenshtein distance)

It also displays their rank based on dependent packages to give an idea of how they compare in usage.

I'm sure there are improvements that could be made - PRs welcome on the github repository.

lathiat 2 days ago 1 reply      
Just yesterday there was a thread about how the chrome plugin "user agent switcher" sends your entire browsing history externally. And it's still published.

The problem is not unique to the npm ecosystem, the main problem here is "web of trust" whether through GPG or even just things like 'download counts', etc.

fiatjaf 3 days ago 1 reply      
This is issue is not so hard to deal with.

1. For every big, important package, you can probably count on number of downloads/stars a library has to attest its trustworthiness.

2. For small packages, you should always look at the code directly. Search npm, see the GitHub repository link, click, read the source to see if it more-or-less does what you want. I think a lot of people do this already.

3. Typosquatting is still the only unsolved problem, but an addition to the npm CLI that checks if there are packages with similar names when you're downloading and alerts you -- maybe even suggesting the package that has much more downloads/stars -- should solve that.

diimdeep 2 days ago 0 replies      
http://dev.hacktask.org is look like SAAS for XSS attacks (free registration, use google translate)

screenshots: https://imgur.com/a/BGyME

I found it at https://github.com/leanone/v1/blob/2980984c003d8016ac48d3f87... redirects to https://dev.hacktask.org/p/58ad07f57e25ce001b19f776/

I created account (use google translate) and played with it, use this link to show me who you are https://dev.hacktask.org/client/59815d7f5ff1a2001b9ee398/

fpgaminer 3 days ago 2 replies      
Is there an api to query recent NPM packages, as well as get a full list of packages?

It'd be interesting to write a tool that monitors as packages are added to npm, compare them against the existing list, and check for potential typo-squatting. Like, remove dashes, check Levenshtein distance, etc.

I mean, NPM themselves should be doing that but ... since they aren't, might as well do it for them, ya?

kevinsimper 3 days ago 1 reply      
This is serious stuff and we will definitely see more of it in the future! As there are more and more node.js developers, it will be more profitable to run a scam like this and you only need to hijack one page that has a lot of dependencies, one package that is for example used by `express` to get access to a lot of users.

The only thing you can do is be careful and listen for projects like node security.

lsiebert 2 days ago 1 reply      
for every node package, see what node packages are 3 or less levenshtein distance away when it's uploaded, and go through all existing packages. Add an optional flag that will, if you try to install a package that has a package within that edit distance that is an order of magnitude more popular, give you warning and skip that package, an optional flag that errors, and a way to force it for a specific package. In the future, make the first optional flag the default, so people get warnings with instructions to override. Allow white listing of particular packages that may be problematic, and expect a shared white list Then, a year later after repeated warnings of the coming nodepocalypse, make the second optional flag the default, so if you haven't white listed or explicitly forced installing such a package, it will fail.

You will, of course break production for a few people who just didn't listen.

Alternatively, instead of edit distance, allow users to report problematic packages and do a similar thing. Do not provide a explicit award to users who report, so nobody would create fake malware just to report it.

In both cases, either implicitly or explicitly you are using the wisdom of the crowd to figure out the bad packages.

emeraldd 3 days ago 1 reply      
For reference: https://twitter.com/o_cee/status/892306836199800836

since the user appears to have been nuked...

xxxdarrenxxx 3 days ago 0 replies      
This is not unexpected if u take into account behind all the code are still humans.

Everyone can share everything for free, safe and sound in a happy world.

Didn't happen ever in the "real world", won't happen here. It's idealistic bias.

I'm sure many things have been written on this, but this is essentially an issue rooted in human behaviour.

It always comes down to having a or multiple arbiter(s) to maintain a standard. The issue with this in these type off ecosystems is that it's simply too big and too dynamic unless devs and the curators are on common terms release wise.

By now you basically are threading being an organisation potentially elevating privileges with just a small portion off devs to realistically deal with the scale off things. In this centralized state it can swing the other way, mainting heavy arbiting and release standards (Apple for example), creating a potential more stable and secure but closed system.

ben174 3 days ago 1 reply      
Looks like all the packages by this guy post to hacktask.net - a Chinese site.

Google autocomplete also suggests xss.hacktask.net

Looks like this guy is up to all kinds of no good.

RX14 2 days ago 0 replies      
In Crystal, we've decided that the dependency manager shards will have no centralised package repository, which we hope will solve problems like this. It makes forking shards very easy, it completely avoids name squatting, and it should help prevent typo squatting like this.

We also don't want shards to become yet another system package manager, used for installing executables to your PATH. Shards should never be run as root, unlike npm and pip.

albertgoeswoof 3 days ago 0 replies      
I wonder why they didn't obfuscate the code a bit more, they could have even positioned it as a reference package that helps resolve typos.

Would be interesting to know how many systems have potentially been hit by this, and if any leaked production credentials. I think it's unlikely to yield a lot of useful results due to then drag net nature of the project. A targeted attack might make more sense (e.g. On an open source library, targeting specific developers)

hitgeek 2 days ago 1 reply      
this is really bad for npm.

I think they hold some responsibility in allowing an obviously malicious package to impersonate popular packages.

I would like to see an official response with action plan. I recall this attack vector being discussed in the aftermath of left-pad.

an unfortunate irony is that the current post on the npm blog is "Securing the npm registry" from 12hrs ago.

smaili 3 days ago 1 reply      
Looks like it's being logged to npm.hacktask.net/log

Couldn't the developer have at least chosen a less suspicious domain name? :)

mjs 3 days ago 1 reply      
Google cache suggests no downloads, fortunately:


reaktivo 2 days ago 1 reply      
Another possible solution for this problem would be that for each module's `package.json` a list of node APIs that a module opts-out, like http, access to env variables, fs, etc. This would need to apply to the package itself and any dependencies it requires.
kentor 3 days ago 0 replies      
if you have yarn run

 yarn why crossenv
to see if you have it in your dependency tree

Veedrac 2 days ago 0 replies      
All of this seems fixable by just providing decent UI protections. Error when typo-squat domains near-alias more popular packages; force them to pass a flag to override.

Is there a reason this isn't done, or has it just not been allocated the time to build it?

unkown-unknowns 2 days ago 0 replies      
I wonder how it was detected. Also someone ITT said something about if they'd squatted the dependencies it wouldn't have been seen or something? Can't find back to that comment.
hatsunearu 2 days ago 1 reply      
I'm new to the JS ecosystem--who is Oscar and who is Kent?

Also who's hacktask?

dboy1612 3 days ago 0 replies      
Does anyone know if "hacktask.net" was used in all the rogue packages? Got a grep running through caches/projects.
partycoder 2 days ago 0 replies      
npx makes it even easier.Make a typo while running a command and you are done.
pneiman 2 days ago 0 replies      
Thanks for the heads up
infinity0 3 days ago 1 reply      
nodejs lack-of-QA comes back to bite them in the ass yet again. wasn't the first time nor will it be the last time, ditch this bullshit.
Show HN: TensorFire tenso.rs
555 points by antimatter15  4 days ago   82 comments top 40
antimatter15 4 days ago 8 replies      
Hey HN!

We're really excited to finally share this with you all! This is the first of a series of demos that we're working to release this week, and we're hoping you'll keep us to that promise :)

Sorry if it doesn't work on your computer! There's still a few glitches and browser compatibility problems that we need to iron out, and we're collecting some telemetry data with LogRocket (https://logrocket.com/) to help us do so (so you all know what kind of data is being collected).

We'll open source the library under an MIT license once we finish writing up the API docs, and fixing these bugs.

danicgross 4 days ago 1 reply      
TensorFire was a finalist of AI Grant. Applications for the next batch are open now! Get $2,500 to work on your AI project: https://aigrant.org.

It should only take five minutes or so to apply.

zitterbewegung 4 days ago 1 reply      
Really cool demo. How does this compare to https://github.com/transcranial/keras-js ? Do the authors have a licence in mind?
mholt 4 days ago 1 reply      
This is amazing. I can't use GPU Tensorflow (natively) on my Macbook Pro because it doesn't have an NVIDIA graphics card. But I can... in the browser! Honestly didn't see that one coming.
smaili 4 days ago 0 replies      
Well done! Also important to note this project is one of the 10 recipients of the Spring 2017 AI Grants[1].

[1] https://aigrant.org/#finalists

motoboi 4 days ago 2 replies      
Could someone explains whats is going on here? What are the steps? Why those colorful artifacts appear before the final result?
nametube 4 days ago 1 reply      
"running networks in the browser with TensorFire can be faster than running it natively with TensorFlow."

could you elaborate on this statement ?. What kinds of architectures does this hold true for ?.

rjeli 4 days ago 0 replies      
Really cool - just want to point out that the flashing rectangles might trigger epilepsy. I'm not sure if they're intended, but on Chrome on Linux I get a bunch of 1 frame brightly colored rectangles flashing before the result. Might want to disable that or put a warning to avoid an accident.

That said, well done, very impressive project!

caio1982 4 days ago 0 replies      
Kudos for providing a minimum experience on mobile! I was afraid I would have to wait until I got home :-)
fabian2k 4 days ago 1 reply      
I've played around with doing some computation in WebGL, but it was rather tedious and difficult with my limited knowledge about the topic. It's possible, but you can't even rely on floating point texture to be available on all systems, especially mobile. And for anything more complicated, you probably need to be able to render to floating point textures, which is even more rare than support for plain floating point textures.

This only makes it more impressive when people do cool computational stuff in WebGL, but I'd wish there were some easier ways for non-experts in shader programming to do some calculations in WebGL.

hughes 4 days ago 2 replies      
Hmm, this seems to lock up & crash my whole browser (Chrome 59, windows, nvidia graphics) when I try to run any of the examples. It gets past Downloading Network, then gets about 5% through Compiling before getting stuck.
tambourine_man 4 days ago 2 replies      
Didn't work here, just a bunch of colored squares on Safari, Chrome or Firefox. The latter actually managed to hang my machine. I could ssh to it but kill -9 wouldn't terminate Firefox.Had to force reboot the machine, haven't done that in years.

Amazing and scary, this WebGL thing is.

iMac 2011, latest OS

Edit: worked on MacBookAir

sonofaragorn 4 days ago 0 replies      
This is really cool! Great work!

I wanted to download the resulting image but got a "Failed - Network" error :(

martinmusio7 3 days ago 0 replies      
Whenever I click on an image in the lower left corner it compiles the kittens. This shouldn't be like this, right? The NN is supposed to take example I'm choosing. (?)

And, as everyone else mentioned already: f*ing wow!

hackpert 3 days ago 0 replies      
Inference speed looks brilliant. Eager to read the source!

(Also, somehow I had a feeling before even reading that this project was by the people who made Project Naptha etc. Have you written/talked about this anywhere earlier?)

batmansmk 4 days ago 0 replies      
This is awesome!

Quick question: is the code compiled from js to webgl in browser as well, or do I need to compile beforehand?

I see this as a great way to learn and teach AI without having to bring a large toolchain.

Edit : it seems it is just a runtime for now for Tensorflow models!

fletchowns 4 days ago 1 reply      
I get an SSL error SEC_ERROR_UNKNOWN_ISSUER when I try to load this page. I tried removing https from the URL but then it's blocked by OpenDNS with message "This domain is blocked due to a security threat"
uyoakaoma 4 days ago 0 replies      
Failed when I uploaded an image

>> framebuffer configuration not supported, status = undefined

Dowwie 4 days ago 0 replies      
It is with great pleasure that I may present to you, Denali:


iXce 4 days ago 1 reply      
> as fast as CPU TensorFlow on a desktop

> You can learn more about TensorFire and what makes it fast (spoiler: WebGL)

Does this mean that using a GPU in a browser through WebGL yields the same speed than a desktop CPU?

jstsch 4 days ago 0 replies      
Seriously cool. Great work. I did get a glitch every now and then in the rendered output (say 1 out of 5 times) using Safari 10.1.2, MBP touchbar 2016 15", Radeon Pro 460 4096 MB.
arnioxux 4 days ago 1 reply      
Is the end goal to allow people to donate computing power for training? (a la Folding@home or SETI@home except just by visiting a webpage)

If so that's amazingly clever!

realworlddl 3 days ago 0 replies      
Nice demo! I made a shop where you can buy images like these (www.deepartistry.com). Would be happy to see more designs coming in.
narrator 4 days ago 1 reply      
I guess WebGL is now the "good enough" cross-platform vendor neutral replacement for CUDA.

Tensorflow should add a WebGL backend that runs in NodeJS.

zo1 4 days ago 1 reply      
>"Could not initialize WebGL, try another browser".

Happening in both Firefox and Chrome on Ubuntu. What exactly am I missing here?

dizzy3gg 3 days ago 0 replies      
So I could build a model using the Google Detection API then do the actual inference within the browser?
cpcarey 4 days ago 0 replies      
Amazing work! That was incredibly fast (2013 MBA 13" 1.7 GHz i7, Intel HD Graphics 5000 1536 MB, Chrome 59).
shams93 3 days ago 0 replies      
This would be an interesting way to generate a self-updating blog or an automated news site.
udia 4 days ago 0 replies      
Lots of potential here. Looking forward to seeing the source once it's released.
fulafel 4 days ago 0 replies      
Very nice to see webgl gpgpu apps, they have been slow in coming. Any plans for webgl 2?
jacquesm 4 days ago 0 replies      
Awesome demo. Happy to report it works without a hitch on Firefox/Ubuntu.
ruste 4 days ago 0 replies      
Nice, Leonid Afremov is a great choice of input art.
aluhut 4 days ago 0 replies      
Respect. This pretty much killed the PC I'm on now. Wasn't even able to get to the task manager :D

Windows7, Firefox 54(64bit)

ccheever 4 days ago 0 replies      
This is amazing. Very cool.
draaglom 4 days ago 0 replies      
This is really cool!!
gilbertstein 3 days ago 0 replies      
is there a way to download and play with it?
cs702 4 days ago 1 reply      
Where is the repo?
GChevalier 2 days ago 0 replies      
No GitHub?
setgree 4 days ago 0 replies      
I love it
synt 4 days ago 1 reply      
hey, stop it.

i'm running 55.0b13 (64-bit) firefox on windows 10 and clicking on that demo froze the browser, froze my box - hard reboot.

whatever you're doing some of it's wrong. bad wrong.

Reddit raises $200M at a $1.8B valuation recode.net
414 points by snew  4 days ago   435 comments top 50
stevenj 4 days ago 48 replies      
>the company is literally re-writing all of its code


>An early version of the new design, which we saw during our interview, looks similar to Facebooks News Feed or Twitters Timeline: A never-ending feed of content broken up into cards with more visuals to lure people into the conversations hidden underneath.

>We want Reddit to be more visually appealing, he explained, so when new users come to Reddit they have a better sense of whats there, what its for.

I fear this major re-design will be a mistake. HN is designed similarly to Reddit and if HN ever tried to do a major re-design, I think I would visit it less. I keep coming back to it because of its stories, comments, and its simplicity and minimalism. It has good content and is very easy to use and navigate.

t0mbstone 4 days ago 6 replies      
If you are going to re-design a site like reddit, your best bet is to keep the old version in place, but allow people to also view all of the same content in the "new" design.

For example, release the new design on new.reddit.com and let viewers migrate over to it at their own pace.

Once you have a lot of people using the new reddit instead of the old design, you can migrate the old reddit to old.reddit.com and put the new design up as the default.

WHATEVER YOU DO, DON'T GET RID OF THE CURRENT DESIGN, until you have adoption for the new design. Period. If you simply replace the old with the new, reddit is as good as dead.

koolba 4 days ago 6 replies      
> Still, he says making money is not our top priority, estimating the company spends only about 20 percent of its resources on its advertising business. Huffman declined to share revenue totals. The company is also not profitable.

I can't imagine giving $200M to a group of people who publicly say they're not focused on ensuring I get it back. Is this a VC investment or a charity?

Also, have they not achieved profitability after 10+ years because they don't know how to make enough money (i.e. ad sales team is weak), costs are too high (i.e. bad code so lots of infra or too many employees), or is it just not possible to be profitable in this space?

Chardok 4 days ago 2 replies      
I am of the opinion that trying to turn a profit on something like Reddit is a catch 22.

The concept of Reddit, which is user generated content curated by users, doesn't have a lot of need for a middleman, more of just a few moderators and admins to keep everything running smoothly. The power of the website is solely in its users and their content generation.

Unfortunately these slow changes have been eroding what was Reddit's strengths of free speech and open dialogue by turning the site into "advertisement friendly". That means killing all subreddits that could sour potential buyers and altering vote-counts to favor specific messages.

Combine this with the fact that they are supplanting viral marketing disguised as user posts (One from today even! https://www.reddit.com/r/gaming/comments/6ql2tu/made_my_deli...), allowing blatant vote manipulations (https://www.forbes.com/sites/jaymcgregor/2016/12/14/how-we-b...) or allowing entire takeovers (/r/politics during election cycle - hello CTR!) and you have a bloated replica of something that used to be an amazing social powered website.

SirensOfTitan 4 days ago 3 replies      
Within the context of redesigns I think there exists some value in looking at Facebook's failed card-based redesign back in 2013:


Essentially this big, beautiful design driven redesign ultimately never shipped because users spent less time on it. Certain design 'improvements' like increased padding between stories reduces density and as a result tends to reduce readership, for example. The internet as perceived by Engineers and Designers is quite different from the masses (even with Reddit's demographic differences from FB taken into account).

Reddit needs to be really careful with a redesign: data should lead the rollout efforts, not design. I think they are due for some UX improvements, perhaps around a gradual UI refresh; however, I have little faith in the product leadership at Reddit to pull this off. Huffman and crew need to be willing to can the entire redesign if user research and data come back negative.

huebnerob 4 days ago 2 replies      
Frankly, I love Reddit. If you pick and choose the right communities, it can be an amazing resource for everything from tech discussions, to local news, to emotional support. However, I will strongly agree with the perception problem, there's also a lot of bad on Reddit and its structure as a series of echo chambers doesn't help.
rdtsc 3 days ago 6 replies      
I don't understand this. Anyone remember a time when companies used their developers to update their site without having to raise hundreds of millions of dollars?

> An early version of the new design, which we saw during our interview, looks similar to Facebooks News Feed or Twitters Timeline:

So they will look like Facebook. Because nothing says cool and trendy like the social site your parents and aunts and uncles use. Now nothing wrong with aunts and uncles using the site, it's just that "fresh" and "cool" aren't exactly the first things that come to mind there.

> The company has about 230 employees, up from around 140 at the beginning of the year. Huffman would like to end 2017 with around 300 full-time staff.

That sounds odd too me as well, maybe I am not versed in startup culture. Having a goal of going from 230 to 300 people seems like a pointless metric (and wasteful). It's like saying "I want to write 1000 lines of code today".

I haven't seen much mentioned about moderation and admins and how they censor and manipulate content and talk about fostering better communities and so on.

> Eventually, though, Altman and Reddits other investors will want their money back and then some. Huffman says there are lots of ways for Reddit to exit, none of which hes focused on at the moment.

Well there is the answer. They are trying to sell it. "Hey, Psst! Wanna buy this cool site for $2B. It looks fresh like Facebook, and we just grew by 30% (230 to 300 employees) in the last few months. Close your eyes and imagine that hockey stick graph going up, and the value you'd be getting out of it".

arca_vorago 4 days ago 0 replies      
Good. Its about time for reddit to wither enough for a more user focused platform yo take it place.

Its the ol model I see time and time again. Site pulls in users by being generally awesome and doing things like not advertising, not censoring, etc. Then the site grows. Businesses start astroturfing because they can't advertise. Then the company slowly starts walking back on everything that made it special, for example, advertising, all while rapidly expanding the personell while hardly doing anything to improve the site for users. Aaaand right when advertising dollars are the best, try to capitalize or take public, followed by a big sale/buyout, and finally within finite time users feel betrayed and it withers and dies, but not until a competitor starts where they did, and usually follows the same path.

I stopped participating in reddit about the time sockpuppetry really started killing my favorite sub's, and personally I think the first and most greiveous mistake was moving away from text only.

The problem as it stands is none of the competitors stand out. I think hn is best, but scope is limited, /. does something's interesting but failed and lost its user base. Voat is too much of a reddit clone, and I just don't get the appeal of steemit etc.

Personally, we need to sit down and figure a better way to measure user worth. Right now I am leaning to a Slashdot style moderation/tagging system, along with a limited input per user at varying thresholds. Something that really interests be is automating logical maps of comments too.

annexrichmond 4 days ago 0 replies      
> Huffmans plan for the new funding includes a redesign of reddit.com the company is literally re-writing all of its code, some of which is more than a decade old. An early version of the new design, which we saw during our interview, looks similar to Facebooks News Feed or Twitters Timeline: A never-ending feed of content broken up into cards with more visuals to lure people into the conversations hidden underneath.

this sounds risky for a couple reasons. I hope this is a bit hyperbolic and they are only referring to the frontend. But anyway: rewriting everything from scratch is a monumental undertaking and can delay other important enhancements. Rewriting everything partially contributed to Netscape falling behind its competitors[1] and eventually to its irrelevance. The other reason it is risky is that maybe the site's simple and functional design is what made them so successful in the first place?

[1] https://www.joelonsoftware.com/2000/04/06/things-you-should-...

asb 4 days ago 5 replies      
The announcement on Reddit also says they are changing their privacy policy to remove support for 'Do Not Track' https://www.reddit.com/r/announcements/comments/6qptzw/with_...
wiremine 4 days ago 1 reply      
Seen a few comments focus on the "redesign" and comparisons to Digg, and wanted to add a few comments:

1. People may forget, but Reddit was a (the?) major winner in the Digg exodus.

2. I don't think Digg every got the subreddit style discussion boards down. I think the reddit "homepage experience" vs. the typical subreddit experience to be very different. Should be interesting to see which way they slide for the redesign.

3. The influx of new capital and the focus on the redesign sort of telegraphs that they want to grow reddit, which is a very large but idiosyncratic community.

If they do it right, the change will be very transparent and very incremental, ala the ebay background color change [1].

Should be an interesting thing to watch!

[1] https://articles.uie.com/death_of_relaunch/

virtualized 4 days ago 3 replies      
But.. but I began to like Reddit. Now they want to take it away from me by destroying it.

> Its going on a hiring spree


> redesigning its website

For no reason other than giving the unnecessary people from the hiring spree something to do.

> Huffman would like to end 2017 with around 300 full-time staff

The current number of 230 employees is already about ten times too many. What the hell do they need the additional staff for?

> The company is also not profitable.

Doesn't need to be because it could be run by ten people living off of donations.

cleansy 4 days ago 3 replies      
I would love to see reddit being more like a wikipedia than a facebook. If they cut the sales team out and ask for donations like WP does, they would do just fine. I was on reddit before I was registered on FB and quite frankly I love reddit.com way more than FB for many reasons. It's a shame that they go down the hypergrowth-unicorn model.
spike021 4 days ago 2 replies      
>An early version of the new design, which we saw during our interview, looks similar to Facebooks News Feed or Twitters Timeline: A never-ending feed of content broken up into cards with more visuals to lure people into the conversations hidden underneath.

Not sure why this UX concept needs to be applied to every kind of interface nowadays.

I think Reddit's current interface could be updated visually without changing its simplicity.

bionoid 3 days ago 0 replies      
Looking past the visual design, I think a more pressing question is what will happen to the API? From my perspective, it is Reddit's saving grace. It bridges the gap between available functionality and what moderators and users actually need. I personally run about ~30kloc of Python code against reddit 24/7, mostly to aid moderation of subreddits. This codebase has grown organically over the years, and truth be told, a major API change will require a major investment in my end. That is my own fault, for sure, but I know several other developers in the same boat.

Breaking the API will take away essential functionality from a very wide range of communities, moderators and users alike. Can they do a complete front- and back-end rewrite and still maintain a backwards-compatible API? If not, I am out, because a rewrite is simply way too much work.

edit: typo

Invictus0 4 days ago 0 replies      
I couldn't imagine a more futile investment. Reddit users are notoriously combatant. Ads on reddit have extraordinarily low CTRs. After bumbling around for the last ten years, reddit still doesn't know dollars from doge and is burning cash on ridiculous side projects like its gift exchange and its (already discontinued) entrepreneurship mini-series.
naturalgradient 4 days ago 0 replies      
I hope this redesign does not turn into a LinkedIn style disaster. Sometimes I wonder if these redesigns happen not for some well-argued business purpose but for overinflated departments having to justify their existence (which I strongly suspected in the case of LinkedIn's redesign which made the site unusable for months).
throw2016 4 days ago 0 replies      
I am not sure discussion sites like Slashdot, Reddit can run or scale as businesses. And retain credibility with the majority of their users.

As founder run sites with income to sustain the site it works but the moment founders become 'distant' and obsessed with commercial objectives the site sort of loses its focus and there is a slow decline.

Reddit only took off because it as seen an low key non-commercial alternative to the 'over commercial' Digg. Now it doesn't have that feel anymore and this can only end badly.

Even HN is not a profit making site, but delivers value to ycombinator outside of that.

pinaceae 4 days ago 0 replies      
well, good news for the HN community!

start your engines, reddit will do what so many user-driven content sites have done - light themselves on fire. slashdot, digg, they never learn.

yes, the network effect is a huge moat. but then you actively alienate your users and then it goes FAST.

good luck to the aspiring entrepreneurs going after this opportunity.

don't even need a strong business plan, not like you can make any real money - but you'll get funding for years to come :)

vlunkr 3 days ago 1 reply      
Honestly, how do you monetize Reddit? I'm curious what ideas they supposedly have. The crowd is too tech savvy to just throw more ads on it. They run ad blockers, and if you get aggressive like news sites do, the exodus will begin. It just seems like a community with little loyalty to the site itself, and distrust of obvious commercialization.
strgrd 4 days ago 0 replies      
Reddit, after the great Digg exodus:

> You chose to grow with venture capital and youve no doubt (I hope) taken some money off the table in your Series C round. I say this because this new version of digg reeks of VC meddling. Its cobbling together features from more popular sites and departing from the core of digg, which was to give the power back to the people.

aerovistae 3 days ago 0 replies      
lettergram 4 days ago 0 replies      
For reference, I feel the reddit post is significantly better:


rocky1138 4 days ago 1 reply      
A company as old as Reddit should be profitable.
mevile 4 days ago 0 replies      
I think Reddit is on track to becoming hugely successful and completely irrelevant.
scierama 4 days ago 3 replies      
I don't get why a company who keeps the entire Internet talking on a daily basis is only worth less than $2B but a company that lets teens take snaphots and share them is worth many billions.
jumpkickhit 4 days ago 0 replies      
That's seems like a very low valuation for a site that heavily trafficked.

What is their average time-on-site statistic I wonder, i'd expect it to be much higher than most other websites.

iamleppert 2 days ago 0 replies      
Oh god. I had the pleasure of seeing one of their new executives speak. An ex-Microsoft guy.

I won't be surprised at all when they alienate their userbase with a pointless redesign that adds nothing of substance.

The kinds of people that are working at Reddit now are the kinds of people who are not creative and incapable of creating something original. They are the kinds of people who join a tech company solely to ride off the coat tails of those who came before them with original ideas and substance.

Naturally, since they don't understand the original desire and intent they are not able to contribute anything new or original. So how they contribute is instead by a route redesign of something that already exists.

Redesigns are generally not about improving upon something that was there before. They are a political process for who can get control over something popular that someone already made.

idlewords 4 days ago 3 replies      
Can anybody name a successful ground-up redesign of a popular website? Or a successful from-scratch rewrite of a heavily used codebase?
ErikVandeWater 4 days ago 0 replies      
A lot of comments have dealt with the general idea of a redesign - but I haven't seen much on the specifics.

I would like to point out the twitter/facebook feed style as described is difficult to replicate, because with reddit, seeing the title of the post helps contextualize it so much. Without the title, many posts become meaningless because you can't guess the subreddit that the post is from - and a meme/gif in one subreddit can mean something much different than a meme in another.

lettergram 4 days ago 0 replies      
Interesting. Im super worried a redesign will kill the site.

However, at the same time (after thinking about it), I can see it as a necessary step.

Without a redesign it'll be hard for them to implement a way to make money. I assume, that is also how they increased the valuation; by promising increased profits.

ThomPete 3 days ago 0 replies      
I hope reddit have a strategy for implementing that change gracefully and how to deal with the most noisy opponents. I have helped a lot of companies redesign their communnities/forums/products. Its a serious minefield as a lot of people will protest (but most wil cope). even small changes can throw people into revolution mode. And its most often not the actual design which will get people complaining but the change itself. going to be very interesting to see how this will play out.
dcf_freak 3 days ago 0 replies      
I don't know if this is commonplace but i'm intrigued by these valuations. Anybody have link to the actual valuation? What method was used?
zitterbewegung 4 days ago 0 replies      
Others have commented "they are doing a Digg" and asking whats the new Reddit. The better question is do you want to be the next site to replace Reddit? I don't think social news sites are sustainable at all. Reddit used to play the game to avoid becoming Digg and keeping its user base happy. It didn't seem to be profitable or profitable enough for their investors so they are forced to broaden the user base by any means possible.
mark_l_watson 4 days ago 0 replies      
When I talked with Alexis Ohanian (after his talk at Google), I asked him about the switch from Common Lisp years ago. I assume the rewrite will not be in CL! He is a very nice guy and his feelings for social responsibility came through nicely in his talk.

I find Reddit one of the most valuable web sites I use, covering news and tech interests. I wish them well on the infrastructure refresh.

romanovcode 3 days ago 0 replies      
>An early version of the new design, which we saw during our interview, looks similar to Facebooks News Feed or Twitters Timeline: A never-ending feed of content broken up into cards with more visuals to lure people into the conversations hidden underneath.

So they are doing same mistakes as Digg. Interesting.

hydromet 3 days ago 1 reply      
>>the company is literally re-writing all of its code>> Wow.

Good to know they are "literally" re-writing code instead of "figuratively". Why is the adverb "literally" overused so often?

fasteddie 4 days ago 0 replies      
I'm really curious at what their cap table looks like at this point in time. With the various ownership rejiggerings by Conde Nast, and this and Sam's last round, wonder who has the power here
rottyguy 4 days ago 1 reply      
surprised the valuation is so low for a top 5 destination (per alexa).
dlwdlw 4 days ago 0 replies      
Ugh, trying to fix marketing issues with more engineering....
neuigkeiten 3 days ago 0 replies      
Wow, complete redesign? Sounds dangerous. Why dont they make incremental changes and ab-test the impact?
toephu2 3 days ago 0 replies      
Anyone know what Reddit's DAU is? This will help us give more context as to revenue potential.
free2rhyme214 3 days ago 0 replies      
I'm way more interested if they create their own digital asset than the money they raised.
payne92 4 days ago 0 replies      
Is all of the money going to the company, or is some of it going to cash out existing shareholders?
DrScump 3 days ago 0 replies      
I want Usenet newsgroups back.
ijafri 4 days ago 1 reply      
Either you die Young as a Digg, or live long enough to become Reddit.
Shikadi 3 days ago 0 replies      
Reminds me of digg.com Gl hf reddit execs.
god_bless_texas 3 days ago 0 replies      
Why does it take $200M to do these things?
fundabulousrIII 3 days ago 0 replies      
Reddit or 4chan, decisions, decisions.
Entangled 3 days ago 0 replies      
I came here to say something about Digg but there are already 70 references to Digg in the comments.
Summer Reading List ycombinator.com
446 points by craigcannon  1 day ago   272 comments top 38
jackschultz 1 day ago 13 replies      
I know this is a technical site, but for all of these I always get a little sad with how few fictional books are listed on these types of posts. Going over it, seems like there's just one, "The Nix" (may be more where I just missed them).

I like seeing fictional books since I can relate to the people writing them. If I enjoyed some of the fictional books that people talk about, then I'll go along with their non-fiction recommendations. Also, reading fiction shouldn't be treated like time wasted! I see that comment a lot by people who only read the non-fiction books, but I highly disagree with that thought. For another comment I guess.

One way to do that is to have different sections, one for fiction and one non-fiction. I'd love to see that here.

On that note, I've actually experienced that here, with some of the book recommendation threads, finding comments with books I also like and then reading the others. Always fun to talk to people who read the same as you.

ThomPete 1 day ago 1 reply      
If I may recommend a book that really will make most people change their perspectives it's "The End of Alchemy: Money, Banking, and the Future of the Global Economy"

Rarely have I read a book which made me think about a subject I thought I had a pretty good understanding of completely different. And if that is not enough it's probably one of the few books which doesn't have a moral/ethical agenda but merely seeks to inform about how the crisis happened (and what money really is)

For me it's one now on my list of books about important fundamentals in this world.


orthoganol 1 day ago 3 replies      
Sapiens is a very preachy, low-on-citations work... the Goodreads reviews are interestingly divided ("Dude it changed my whole world!" to "This is not a serious work."), but the early sections on pre historical humans are still interesting to read, and seemed mostly correct from what I remember from my college anthropology class.
baldfat 1 day ago 5 replies      
So I really like the description of "The Righteous Mind" WHY is it $2.50 more to get the Kindle version then to have a paperback book shipped to my home!

Kindle Version - $11.99

Paperback (Prime) - $9.32


capocannoniere 1 day ago 6 replies      
Am I the only one who would actually prefer these Amazon links to be affiliate links?

Affiliate links make me feel like I'm paying back the curator(s) for the awesome recommendations I'm thankful for. However minor that might be.

Do people feel like recommendations would be biased if the links were affiliate links?

makmanalp 1 day ago 3 replies      
Every time I see Sarno's book recommended, it's always controversial, with the "woo-woo" camp and the "it worked for me so I don't care" camp, though I think the people-who-I-respect-who-recommend-this ratio is way higher than most crank books, so it's interesting in that regard. Thoughts? (I haven't read it)
kilroy123 1 day ago 22 replies      
Slightly off topic, but how many books do you all read a month? I have a hard time getting past 1 a month.
DanielleMolloy 1 day ago 0 replies      
I'd like to recommend these lists of short reviews of books neuroscientist Christof Koch has (recently) read: http://www.klab.caltech.edu/koch/books-i-read.htmlhttps://alleninstitute.org/what-we-do/brain-science/about/te...

They are a captivating mixture of science, scientific theory, cognitive science, AI, science fiction and the like and quite an interesting inspiration for future books to read.

mehrzad 1 day ago 1 reply      
Do they ever choose any radical literature to test their beliefs? Kropotkin's The Conquest of Bread would be a good choice.
icco 1 day ago 1 reply      
For a far better reading list, longform.org + mailchimp put out a great one this year: http://readthissummer.com/
The_Hoff 1 day ago 0 replies      
https://blog.ycombinator.com/yc-summer-reading/ is the link to last year's. Anyone else sites would make their URLs consistent? It's always pleasant when you can go to the URL and change the 2017->2016 and it takes you where you want to go.
filiwickers 1 day ago 8 replies      
If you struggle to get diverse voices inside your field, maybe you should read from diverse voices outside your field. I understand it is hard and I also gravitate towards comfortable reading, usually meaning from people that look like me. This is the problem. Start being accountable to yourself about it.

2 of 19 the books in the list are by female authors (both recommended by women). Looking for some good books from women? Check out these:


* Radical Acceptance, Tara Brach

* The Death and Life of Great American Cities, Jane Jacobs

* Freedom Is a Constant Struggle, Angela Davis

* Rising Strong, Bren Brown

* Cleopatra, Stacy Shiff

* The New Jim Crow, Michelle Alexander


* Anything by Ursula Le Guin

* Ancillary Justice, Ann Leckie

* Too Like the Lightning, Ada Palmer

* Citizen: An American Lyric, Claudia Rankine

... so many more

thisrod 22 hours ago 0 replies      
I'm currently reading Southeast Asia in the Age of Commerce by Anthony Reid. It's well written history, and the topic has some interesting aspects.

The view of Europe from 20 thousand kilometres is quite insightful. The big patterns stand out, as power shifts from the Spanish to the Dutch and then to the British. The different things that those people are trying to achieve in Asia neatly summarise the different things that they might have valued at home.

It's also interesting to see a long term situation where land is abundant, and labor is the scarce resource. Women get liberated (or so Reid claims). Battles are fought in order to take the other army from its land, not the land from the army. Labour productivity is so high, and construction materials so easily available; 3 days after an event like Hurricane Katrina, the city has been rebuilt and life is back to normal.

idlewords 1 day ago 2 replies      
Pretty cool to see Sheck Exley on this list. He's a pioneer of cave diving, which has a lot of great (and terrifying) lessons about safety, risk, and human factors for programmers to steal.
Dowwie 1 day ago 1 reply      
These are safe books. Where's Marx's "A Critique of Political Economy"?
arnioxux 1 day ago 3 replies      
No opinion on "The Man Who Knew" but kind of bummed that it will now beat "The Man Who Knew Infinity: A Life of the Genius Ramanujan" in autocompletion.
adamnemecek 1 day ago 0 replies      
I wish there were also a reading list for technical books/textbooks.
b_emery 1 day ago 1 reply      
I haven't read Behave by Robert Sapolsky, but I did read 'A Primate's Memoir' a while back and it was fantastic. A memoir of his time in Africa studying baboons, well written and entertaining. One of those books that I was sad to finish. You can learn a lot about human behavior and society by studying baboons.

Two books I've read this summer that would fit on this list are This will make you smarter from edge.org, and Waking Up by Sam Harris. The first is a collection of the essays from edge.org about what everyone should have in their cognitive toolkit [1]. Consider it a list of a) the many ways one can go wrong when trying to think scientifically, and b) some of the many concepts to consider when trying to solve a problem or understand something. Waking Up was good from the point of view of understanding the science behind 'the self' and meditation. I've started meditating because of this book, and it's a useful guide for avoiding the, shall I say, less rational aspects that are out there.

[1] https://www.edge.org/responses/what-scientific-concept-would...

ryanjodonnell 1 day ago 1 reply      
I would add "The Three Body Problem" and following two books in its trilogy to the list. Sci-fi series by Liu Cixin. Won the Hugo award and is recommended by Obama and Zuck. I felt so small after reading that one :)
gordon_freeman 1 day ago 3 replies      
'Healing back pain' is an interesting entry to the list. I just recalled my friend lent me this book and a reminder to now read it. Anyone who has read this book can share their thoughts?
rosstex 1 day ago 0 replies      
Does anyone have recommendations for summer reading for teaching assistants to undergraduates? I want to become more engaged with current pedagogy techniques.
ThomPete 1 day ago 0 replies      
One of the most intriguing lists I have ever read was this one:


I still have a few books left to read but most of these are amazing books.

moonka 1 day ago 0 replies      
Powerhouse is an incredible book. The author does a great job of weaving in interviews as well as narration to paint a good story of how CAA came to power. I highly recommend Powerhouse as well as his other books, Live From New York (about SNL) and These Guys Have All The Fun (about ESPN).
champagnepapi 1 day ago 0 replies      
Chaos Monkeys: Obscene Fortune and Random Failure in Silicon Valley by Antonio Garca Martnez

Read this recently. Thought it was pretty good.

matahwoosh 1 day ago 0 replies      
compiled in a Goodreads list (https://www.goodreads.com/list/show/114264.YC_s_2017_Summer_...) like you were going to actually read those ;)
cschmidt 1 day ago 1 reply      
It looks like an interesting list. Anyone else remember the Global Business Network (GBN) book club, with Stewart Brand? It was a great resource for so many years. Sadly, it seems to have dropped off the internet with the demise of GBN.
jdp23 1 day ago 1 reply      
17 books by guys.2 books by women. Both recommended by women.
jonbarker 1 day ago 0 replies      
Summer is almost over. Just a nit-pick. I'd like to add to this list "The Master Algorithm" by Pedro Domingos
spicylad 1 day ago 0 replies      
If you haven't read Infinite Jest, you should. I admit it isn't for everyone, but it's definitely worth suffering for.
eizo 1 day ago 0 replies      
Recently read and highly recommended:- Platform Revolution- The Economic Singularity- Benjamin Franklin: An American Life
gonzofish 1 day ago 0 replies      
Nexus was an awesome read, haven't started book 2, but it's free for Kindle & Prime users
bbleciel 21 hours ago 0 replies      
money and technology, self-help, and the arc of humanity. wish programmers would read things that challenge their views rather than just reaffirm _
notadoc 1 day ago 1 reply      
I'd love a good HN summer fiction reading list, particularly with a sci-fi focus
romanovcode 1 day ago 1 reply      
Summer is nearly over BTW.
esseti 15 hours ago 0 replies      
it would be good to know why each book is worth reading.
desireco42 1 day ago 1 reply      
HomoDeus is really most excellent continuation of already epic Sapiens.

If you didn't read any of those, they are long but well worth the time.

kentt 1 day ago 9 replies      
I'd consider Healing Back Pain: The Mind-Body Connection to be fiction as well. Too long, shouldn't read: if you believe, your back pain will go away. I'm surprised to see the anti-scientific pseudoscience promoted.
soneca 1 day ago 2 replies      
Do americans only read books on summer?
Monsanto leaks suggest it tried to kill cancer research about weed killer baumhedlundlaw.com
345 points by givan  1 day ago   113 comments top 18
ourmandave 1 day ago 1 reply      
Isn't this right out of the Big Tobacco playbook when they "scientists" in lab coats producing studies that smoking was healthy?

The Tobacco Industry: The Pioneer of Fake News


Zarath 17 hours ago 1 reply      
It's weed killer. Literally poison. Can we just curb our faith in science just a little bit and use some common sense. It's incredibly likely that ingesting poison is bad for you. Let's leave open the possibility that it isn't, but I personally require that people prove it's safe rather than continuing to ingest it until proven otherwise.

It's honestly just baffling to me that people find it surprising that consistent, low doses of poison may cause cancer.

eadz 1 day ago 5 replies      
It is a real shame not to be able to trust "science" anymore. We'll have to come up with a new word for what we used to call science because I don't think corporations and media set on manipulating public opinion and laws will give it back.
tptacek 1 day ago 7 replies      
I don't know what Monsanto did or didn't do and don't have any particular rooting interest for Monsanto, but I think it's worth noting that the published science for the carcinogenicity of glyphosate (the "weed killer" we're talking about here) is extremely flimsy.

Most publicity about "cancer" and "Monsanto" is traceable back to an IARC report that the World Health Organization (IARC's parent) essentially retracted. The report itself concerned dozens of different pesticides and herbicides and mentioned glyphosate only in passing. The studies it referred to equivocated about any link between glyphosate and human cancer.

(I'm going from memory here and someone will probably correct me on this, which will be great!)

It would be surprising if glyphosate turned out to be toxic, because it straightforwardly targets a metabolic pathway that plants have and the entire kingdom of Animalia lacks.

California recently added glyphosate to its list of chemicals that it's required to alert consumers about. But of course, that list is long and includes substances that virtually nobody controls their own exposure to, such as acrylamide --- a known human carcinogen --- which is universally present in cooked foods.

Finally, and this is obvious, but we're reading articles on a plaintiff lawyer's website. That's fine, but you're clearly not going to get the whole story from them. For instance, the lawyers are happy to leave you with a headline about Monsanto trying to "retract a cancer study". But they're of course going to leave out the fact that the study in question was the Sralini study, of "Sralini affair" fame; you can look this up in Wikipedia to see what I'm referring to.

akvadrako 16 hours ago 0 replies      
Y'all should take this with a grain of salt. Monsanto is hated as a company; the media just loves to vilify them. I've been suspicious of any anti-Monsanto news since looking into their lawsuit[1] against a farmer who grew illegally obtained patented seeds. The media and commenters made a big deal about predatory behavior but they it was clearly the farmer being an asshole. Anti-science/GMO nuts just latch on to anything without a care where the evidence points.

[1] Monsanto Canada Inc v Schmeiser

olliej 1 day ago 0 replies      
Given the number of ghost written publications shouldn't there be a slew of retractions?

It's unethical, and generally a violation of journal rules to publish another's work listed with yourself as an author.

Then there's a journal editor that they pay, who they worked with to get a paper retracted, surely that should result in a re-review of everything involved there as well?

Has anyone done the work to determine which papers are involved and start the retraction notification process?

mgh2 20 hours ago 0 replies      
Here is a study of 12 diseases correlated with glyphosate, it is not official as in a published journal, but given that even pubmed states there are not enough toxicity studies, that most safety papers are not independently funded, and scientists who dare to say the contrary are shut down, I rather be more cautious than sorry: https://people.csail.mit.edu/seneff/glyphosate/NancySwanson....
tnorgaard 20 hours ago 0 replies      
I see there is a few posts repeating the common interpretation that glyphosate is not dangerous because it only targets metabolic pathway only animals has, so for the sake of discussion here is another viewpoint: https://www.youtube.com/watch?v=kVolljHmqEs (disregard the clickbait title), summary: Glyphosate is not bad for your body, but it does kill everything in your stomach, and that is not so awesome.
jonplackett 1 day ago 0 replies      
News-flash, company people have known was evil for ages, actually is still evil.
_Codemonkeyism 17 hours ago 0 replies      
It's interesting how the discussion of Monsanto shifted. The discussion was about how Monsanto changed the seed/weed business from a buy model to a subscription/license model for farmers - which is a disruptive fundamental change.Now the discussion is mainly ab Glyphosate.
_Codemonkeyism 17 hours ago 0 replies      
Walking by a Bayer - Monsanto owner pending regulatory approval - building every morning, with people streaming in and I'm reminded most people will work for anyone who pays them.
jgalvez 1 day ago 1 reply      
Michael Clayton anyone?
nerpderp83 1 day ago 0 replies      
Shouldn't this be illegal in some form? It is morally reprehensible to use "money as free speech" to suppress scientific truth.
brndnmg 1 day ago 0 replies      
yawn, oh no they wouldn't do that would they? sips coffee
ionised 12 hours ago 0 replies      
Colour me surprised.
43224gg252 1 day ago 2 replies      
Of course they did. Anyone on the internet about a year - 2 years ago remembers every time you mentioned monsanto they would send shills in to defend them and call you a tin-foil hat conspiracy theorist.
ada1981 1 day ago 3 replies      
Who actually likes Monstanto? I imagine a vast majority of the American people would support an outright shutdown of their business.
znpy 1 day ago 2 replies      
Uh... My grandpa used to use Roundup in order to kill weeds in his cultivation land.
Btrfs has been deprecated in RHEL redhat.com
367 points by alrs  2 days ago   335 comments top 34
josefbacik 2 days ago 5 replies      
People are making a bigger deal of this than it is. Since I left Red Hat in 2012 there hasn't been another engineer to pick up the work, and it is _a lot_ of work.

For RHEL you are stuck on one kernel for an entire release. Every fix has to be backported from upstream, and the further from upstream you get the harder it is to do that work.

Btrfs has to be rebased _every_ release. If moves too fast and there is so much work being done that you can't just cherry pick individual fixes. This makes it a huge pain in the ass.

Then you have RHEL's "if we ship it we support it" mantra. Every release you have something that is more Frankenstein-y than it was before, and you run more of a risk of shit going horribly wrong. That's a huge liability for an engineering team that has 0 upstream btrfs contributors.

The entire local file system group are xfs developers. Nobody has done serious btrfs work at Red Hat since I left (with a slight exception with Zach Brown for a little while.)

Suse uses it as their default and has a lot of inhouse expertise. We use it in a variety of ways inside Facebook. It's getting faster and more stable, admittedly slower than I'd like, but we are getting there. This announcement from Red Hat is purely a reflection of Red Hat's engineering expertise and the way they ship kernels, and not an indictment of Btrfs itself.

justin66 2 days ago 3 replies      
I am as happy as anyone that XFS is finally getting the position of honor it deserves on enterprise Linux (something like 15 years later than it should have, grumble grumble) but it doesn't really take the place of what btrfs was trying to do. Only ZFS is in a position to do that. I wonder if there are any plans for supporting the native port on RHEL.
stargrazer 2 days ago 4 replies      
Considering the size of disks now-a-days, the chance of bit rot is high. And (I don't have the original source) on SSD, bit rots probability is higher still. So... ZFS and BTRF have meta-data as well as data checksumming. From what I've read, XFS may have metadata checksumming, but not on the data side of things.

I consider checksumming important. Do others? What is the solution? What other file systems offer that sort of capability?

Snapshotting is a second go-to function. Particularly when it is integrated into the LXC container creation process. (There was a comment elsewhere here which said LXC is on it's way out.... huh? what?)

buserror 2 days ago 3 replies      
Well I used btrfs as a root filesystem for quite a while, until I realized it was pig slow for sync() -- I mean, it would take AGES to do and apt-get upgrade for example. I ended up having to do some tasks using 'eatmydata' [0] to make it all better, risking filesystem corruption in trade for speed.Also, at the time, there was no functioning fsck.

So I moved back safely to ext4 and never looked back!

[0]: https://www.flamingspork.com/projects/libeatmydata/

bedros 2 days ago 7 replies      
I think this is a political move disguised as technical move

oracle pays the developers of btrfs [0]

redhat hates the guts of oracle, since oracle released oracle linux, which is a clone of redhat enterprise (based on centos)

so, redhat wants to cripple btrfs and hurt oracle.

However, btrfs is my favorite FS, been using it on my home computer and backup drives for at least 6 years, before it was included in the kernel, love the subvolumes, snapshots, and compression; never had issues with it.

[0] https://oss.oracle.com/~mason/

[Update] Chris mason no longer at Oracle since 2012

JoshTriplett 2 days ago 4 replies      
Has anyone here tried bcachefs (http://bcachefs.org/) for some of the same use cases as btrfs? What do people think of its current state?
cmurf 2 days ago 1 reply      
Unsurprising. Red Hat has not hired upstream Btrfs developers for years, where SUSE has hired bunches. Meanwhile Red Hat has upstream ext4, XFS and LVM developers.

If you're going to support a code base for ~10 years, you're going to need upstream people to support it. And realistically Red Hat's comfortable putting their eggs all in the device-mapper, LVM, and XFS basket.

But, there's more:https://github.com/stratis-storage/stratisd

Btrfs has no licensing issues, but after many years of work it still has significant technical issues that may never be resolved.page 4

Stratis version 3.0Rough ZFS feature parity. New DM features needed.Page 22https://stratis-storage.github.io/StratisSoftwareDesign.pdf

Both of those are unqualified statements, so fair or unfair my inclination is to take the project with a grain of salt.

lathiat 2 days ago 0 replies      
This is specific to RHEL7, notably that they won't backport any further kernel updates and won't move it from Technology Preview to release. Red Hat wasn't really driving btrfs development at all from what I am aware of.

Btrfs has been deprecated

The Btrfs file system has been in Technology Preview state since the initial release of Red Hat Enterprise Linux 6. Red Hat will not be moving Btrfs to a fully supported feature and it will be removed in a future major release of Red Hat Enterprise Linux.

The Btrfs file system did receive numerous updates from the upstream in Red Hat Enterprise Linux 7.4 and will remain available in the Red Hat Enterprise Linux 7 series. However, this is the last planned update to this feature.

Red Hat will continue to invest in future technologies to address the use cases of our customers, specifically those related to snapshots, compression, NVRAM, and ease of use. We encourage feedback through your Red Hat representative on features and requirements you have for file systems and storage technology.

X-Istence 2 days ago 4 replies      
More importantly Red Hat has deprecated FCoE in RHEL, which is big news, because at a previous $JOB they went all in on FCoE because it was supposed to be the future.
RX14 2 days ago 2 replies      
I've done many bad things to BTRFS, used it on multiple drives of differing sises, used it on drives connected over the cheapest USB to SATA adapters I could find, used it on disks with consistent corruption for over a year, and it's handled it gracefully.

I've also been using btrfs as the backend to docker for a long time on my desktop PC and never noticed any problems. BTRFS has been rock solid for me. I don't doubt it is more unstable than other filesystems, however it seems i haven't been unlucky enough to experience any issues.

When using BTRFS, i've always stuck to the latest kernel releases, and run a scrub + balance every month. This is the advice I heard from people who used btrfs, and I wonder how many of the people who complain about data corruption do these steps. Perhaps their corruption bugs are solved in a newer kernel version. I've had multiple scrubs pick up data corruption, which other filesystems wouldn't have found.

The only time btrfs corrupted my data was when I used the ext4 to btrfs conversion tool, it created an unmountable FS and then I just migrated my data manually.

jorrizza 2 days ago 2 replies      
Strange decision, as systemd-nspawn[1] specifically mentions and supports btrfs as a CoW filesystem for its containers. And as far as I understand, systemd is primarily developed by Red Hat employees. So either they'll add support for CoW alternatives, or they'll remove btrfs support from systemd-nspawn all together.

[1]: https://www.freedesktop.org/software/systemd/man/systemd-nsp...

josteink 2 days ago 7 replies      
Deprecated? In favour of what?

Will Redhat too (like Ubuntu) start shipping ZFS?

sparky_ 2 days ago 1 reply      
That's too bad. The subvolume [0] features were an interesting paradigm. Kind of let you have a virtual filesystem-within-a-filesystem.

[0] https://en.wikipedia.org/wiki/Btrfs#Subvolumes_and_snapshots

kureikain 2 days ago 2 replies      
I have used Btrfs in production and I would say it's great. It's super easy to just add an extra EBS volume and attach to a Btrfs volume and now you have more disk space. Performance is good enough for me as well, I used it as storage for InfluxDB and Docker.

Luckily this is only Redhat, not Btrfs itself.

parasubvert 2 days ago 0 replies      
Concourse (which is a CI/CD system that orchestrates Docker containers) recently switched from btrfs to overlay to fix performance and stability issues.

For those with morbid curiosity on the many stability issues with btrfs as a container file system, this is chronicled in Github: https://github.com/concourse/concourse/issues/1045

alexdowad 2 days ago 2 replies      
I tried btrfs and got bitten by bugs; not doing that again. Judging from this move by RH, it looks like I wasn't the only one.
headlands 2 days ago 1 reply      
The default file system for the root partition of SUSE Enterprise Linux is Btrfs. So RHEL have stopped supporting it. It is the only filesystem that implements many of the features found in ZFS.
ericfrederich 2 days ago 0 replies      
I ran Fedora some years ago when btrfs support was added. I thought the idea to be able to roll back after a yum update messes things up was cool... in practice, it's a lot more complicated than hitting some "rollback" button in the system update gui.
snvzz 2 days ago 1 reply      
On a non-totally unrelated note, Matt Dillon recently updated the HAMMER2 design document.


erikb 2 days ago 0 replies      
Why is there no explanation for this? It seems weird to deprecate something that most people haven't even started using yet.
sargun 2 days ago 0 replies      
This is disheartening to hear. We recently (<3 months ago), introduced Btrfs into part of our fleet. This probably made us one of the larger Btrfs users. If Btrfs falls out of general favour, I'm afraid it may impede our ability to keep using it.

Given our use-case, multi-tenant containers, there weren't many choices which had sane snapshotting support, as well as quotas and some level of subtrees. ZFS on Linux has its own share of issues. I won't say that Btrfs was without issues -- there is still a lot of performance work that needs to be done, especially in a multi-tenant workload, but it looked like there were solutions available.

XFS is an excellent filesystem, and it may work well for our usecase in the near future. It's exciting to see new XFS features landing, like reflinks, and collapsing ranges. Hopefully, folks like Redhat continue trying to bring XFS to the future.

beagle3 2 days ago 0 replies      
Btrfs brings IMO too little to the table, considering that ZoL is quite mature; It always seemed to me like it's the "we can't have ZFS so..." solution, but unlike Gnome (being the "can't have KDE" solution), it does not yet deliver, after a long long time.

The next fs to make a difference, post ZFS, is likely HAMMER2[0] - it's supposedly already stable for single node use (the ZFS / XFS / ext4 use case), and is advancing towards the multinode-at-the-underlying-fs-level, a first.

[0] https://gitweb.dragonflybsd.org/dragonfly.git/blob_plain/HEA...

pmlnr 2 days ago 0 replies      
Great... So can I please have something that can do transparent compression? That is my sole reason for using btrfs. (My personal stack is on ZFS with Debian and I'm never going to look back from that, even if I sometimes have speed issues due to SATA instead of SAS system underneath it; ZFS compression and snapshots are incredibly powerful.)
shmerl 2 days ago 1 reply      
That's weird. What do they have against btrfs?
0xFFC 2 days ago 1 reply      
Wow, I thought their long term plan was to switch to Btrfs. Now it is deprecated? What happened there?
mhd 2 days ago 0 replies      
Is JFS still a thing in the Linux world? I remember using it for some partitions not because it was particularly high performant, but because it was supposed to have very few worst case scenarios
louwrentius 2 days ago 1 reply      
Sounds to me that Btrfs is done for long-term. So now what?
seesomesense 2 days ago 1 reply      
Not surprised. I have been using BTRFS for years. Unfortunately, one gets the feeling that not too much development has been going into it.
vbezhenar 2 days ago 1 reply      
I don't think this matters much. If you want btrfs, you'll likely be able to get kernel module from EPEL even if they'll stop shipping it. It's like deprecated and unsupported LXC which could be used just fine and which doesn't have usable replacements.
jmspring 2 days ago 11 replies      
It's OT but how many people actually use RHEL? Or CentOS (more likely).

I'm not a fan of systemd, but have really loathed CentOS/RHEL compared to Debian/* for years.

snakeanus 2 days ago 1 reply      
Still waiting for bcachefs. It's like btrfs except it does not suck. It also has proper encryption.
kodfodrasz 2 days ago 0 replies      
I wonder if this is a response to Oracle's Java9/Jigsaw push, where RedHat was forced to give up its position.
drawnwren 2 days ago 1 reply      
I know this says redhat.com, but title is still a bit misleading. Btrfs has been deprecated on RHEL, but it is still under active development on its own.
pmontra 2 days ago 4 replies      
Offtopic, but if anybody from RedHat and especially Mozilla read this, go to that page with an Android phone, possibly with a small screen:

To RedHat: do something for that menu at the left. It stays in the way when scrolling and zooming. The X to close it is not immediately visible on a small screen. Expected behavior: the menu scrolls away with the page and doesn't stay fixed in the way of the reader.

To Mozilla: open the page with Opera and copy what you see there. Tldr: autofit the text in the screen width. Maybe Chrome does the same. Btw, reader mode doesn't kick in.

3D metal printing is about to go mainstream newatlas.com
391 points by phr4ts  4 days ago   158 comments top 35
Animats 4 days ago 4 replies      
There are many services printing metal parts. Shapeways has been doing it since 2009. There are several workable processes. [1][2] This new machine competes with the ExOne Innovent.[3] That uses a single-step process (no oven needed) but is slower.

Desktop Metal's big claim is that they can lay down "up to" 8200 cm/hr of metal. The "up to" weasel words are a problem. They're vague about the layer thickness. 3D printing has a basic trade-off between speed and precision. Most of the commercial vendors go for high enough precision that you can make working parts. Desktop Metal doesn't offer many pictures of their finished parts, but I did find one.[4] That looks like it was made with layers of about 0.5mm. The furnace step provides some surface smoothing. That's not bad for casting.

It's nice, but it's not clear that it's 100x, or even 10x, better than the competition.

[1] https://www.youtube.com/watch?v=rEfdO4p4SFc[2] https://www.youtube.com/watch?v=2vsaSzrhvcw[3] http://www.exone.com/Systems/Research-Education-Printers/Inn...[4] https://embedwistia-a.akamaihd.net/deliveries/5c8aec78d82aa1...

chroem- 4 days ago 4 replies      
It's like the brogrammer world just discovered powder metallurgy.

This exact technology has existed for decades but hasn't seen widespread use because it has serious problems. I don't see any evidence that Desktop Metal solved these issues either. The resulting parts have high shrinkage, poor dimensional tolerance, and poor mechanical properties. The sintering process leaves voids inside the material that serve as stress concentrations, causing the material to fail well below its rated strength. Also sintered parts tend to fail catastrophically rather than yielding since the adhesion between particles is much weaker than the yield strength of the metal.

ph0rque 4 days ago 9 replies      
$120k for the prototype printer, $360k for the production printer... still about two orders of magnitude away from being practical for me to set up a microfactory in my garage. Maybe by the time my car is self-driving and earning me money instead of sitting in my garage, I can get that microfactory set up affordably.
50something 4 days ago 1 reply      
This is another Ric Fulop company, notoriously the founder of A123 Systems [1]. That company also raised "a ton" of money but ultimately blew up, filing for bankruptcy. I'm skeptical of this new endeavor because of both economics and technology.

[1] https://en.wikipedia.org/wiki/A123_Systems

coredog64 4 days ago 3 replies      
> The company has raised a ton of money in the last few months...

> ...Desktop Metal's Studio machines are also a ton more practical to have in an office.

> But there's a ton of metal options...

I'm guilty of this too, but I think there are more ways to describe a plethora of items than "a ton". Unless, of course, there are actually 2000lbs worth.

sevensor 4 days ago 2 replies      
I don't think they make enough of this point:

> Depending on the nature of the part, it might be necessary to do some post-print surface finishing like sanding or bead blasting to smooth out the layeredsurfaces

If this is anything like the powder-bed parts I've handled, the layers are going to be pretty rough. I wouldn't be surprised if they need some degree of post-machining. Don't sell your CNC mill just yet.

Furthermore, 15% shrinkage during sintering? What's the dimensional tolerance on the finished part then? I'm guessing it's not great.

simias 4 days ago 0 replies      
From the video:

The production system is cloud-connected

Seriously, that's a selling point nowadays? I have to buy a hyper expensive piece of hardware and if the company goes under I might not even be able to use it anymore?

Not everything needs to be on a bloody cloud.

1024core 4 days ago 2 replies      
What is the strength of such a part, compared to a regular cast part? Say I 3-D print a spanner. How well will it hold up against a spanner that was cast and heat treated?
biggerfisch 4 days ago 1 reply      
> but the only affordable printing materials are cheap ABS plastics

Not very true at all. You can get PLA for $20/1kg or less. Even resin for SLA printers is often possible to find for affordable prices, especially considering that you can sometimes use less material without the need for infill.

I'm really not even sold on the idea that so many people "need" metal printers. Seems like most people would be way better off with the incredibly cheaper plastic options.

WhitneyLand 4 days ago 0 replies      
Any reason not to set default skepticism to high for Loz Blain and NewAtlas?

>...it's going to compete with traditional mass manufacturing

>...the hype is real

The team, tech, results, deals already signed, all seem really impressive in their own right. No hyperbole needed to get a more views.

It's not my area, if someone tells me this really has a shot at competing with mass manufacturing in the next 5 years I retract everything.

WalterBright 4 days ago 0 replies      
A forging is 3x the strength of a casting of the same part from the same material. That's why when upgrading the power of your muscle car, forged parts are the way to go.

What's the relative strength of 3D printing?

rrggrr 4 days ago 1 reply      
I'm told the metal powders are still more expensive than equivalent traditional materials, and that in some cases (Ti) can be explosive. Anyone know what the real economics are in terms of materials and energy costs?
QAPereo 4 days ago 3 replies      
Other than the temperature a relatively compact oven is potentially reaching, what's the breakthrough here other than the successful funding?
kutkloon7 4 days ago 0 replies      
As a layman, I am skeptical. This is very similar to the promises that were made regarding 3d printing of other materials, and those weren't quite fulfilled.

Like many hyped new techniques, they end up as techniques that are almost good enough to be practical.

plasticchris 4 days ago 1 reply      
4 furnaces per printer... reminds me of factorio
edanm 4 days ago 0 replies      
While (potentially) impressive, it's not clear to me that this will really replace production. I mean, it's faster than other printers, but still far away from regular production speeds.
Dowwie 4 days ago 2 replies      
I've watched a few DIY foundry videos on YouTube where makers melt down aluminum cans and scrap metal into chunks of metal, ready for re-use. I wonder if these 3d printers will be able to use reclaimed metal created from a similar type of process.
nealrs 3 days ago 0 replies      
It's been about 10 years since I left Caterpillar --- but I don't think you can weld (reliably) on PM / sintered parts. This was one of the concerns the crotchety old manufacturing engineers brought up when I proposed replacing some expensive machined bosses with a much cheaper PM part.

Then again, those guys really loved to say stuff like "no, that's not how it's done." - so maybe they're wrong / tech has improved significantly.

Glyptodon 4 days ago 1 reply      
Printing with improved PMC (which is what this sounds like) doesn't seem that revolutionary to me... I know there was a Kickstarter a while back for metal-based PMC-like filament to use in regular 3-D printers (for kiln firing later), and I think somebody already makes a device to print using PMC itself. While doing so precisely, strongly, and cleanly enough for mechanical applications, and with a much broader spectrum of metals, is great, the prices seem rather far from the headline hype. (Not that the current options I mentioned don't leave much to be desired.)
achow 4 days ago 1 reply      
> Each production printer can produce up to an incredible 500 cubic inches of complex parts per hour.

That is 124 iPhone 6 sized solid blocks per hour. Incredible indeed!

steveklabnik 4 days ago 0 replies      
I don't know much about how Desktop Metal works; how does this compare to things like ExOne?
zdmc 4 days ago 1 reply      
In case anyone else was wondering about the power requirement for the sintering furnace: 208V 3-phase, 30A. The 3-phase requirement may be an impediment to some hobbyists; they should probably offer it with a buying option of their own branded inverter.
smnplk 4 days ago 1 reply      
But could it print a CNC machine ?
alvern 4 days ago 0 replies      
This may bring the per part costs closer to what prototyping costs come in at for CNC machining or Metal Injection Molding.

I don't see this being used with a lot of exotic materials yet, but for stainless steel this is great.

visarga 4 days ago 3 replies      
Doesn't oven treatment induce slight deformations?
microcolonel 4 days ago 0 replies      
The idea of an "office-friendly sintering furnace" would have been comedy a decade ago.
tintan 3 days ago 0 replies      
What advantage does metal printing offer over casting a 3d printed wax/resin?
sharemywin 4 days ago 2 replies      
How does this compare to a metal CNC machine? Cost and Speed?
Iv 4 days ago 0 replies      
The game will radically change when metal printing arrives at the point where it can print coils and make stators and rotors.

Wake me up when metal printing reaches that point.

bandrami 4 days ago 0 replies      
So, about those good manufacturing jobs...
pier25 4 days ago 1 reply      
So now anyone will be able to print a real gun with complete anonymity.
jkoll 4 days ago 0 replies      
Is this an ad?
pluio 4 days ago 0 replies      
nmyk 4 days ago 0 replies      
Guns for everyone!
HugoDaniel 4 days ago 0 replies      
GitHub was down github.com
395 points by thepumpkin1979  4 days ago   239 comments top 31
kaikai 4 days ago 5 replies      
I would love to see a chart of traffic to other sites when GitHub goes down. My bet is that HackerNews and Twitter both get significant spikes from all those bored developers.
alexchamberlain 4 days ago 0 replies      
When I break our GitHub webhooks, I joke it's time for people to practice our Disaster Recovery (DR) procedures. In all seriousness, this is a good opportunity to practice work without GitHub. Any service can go down; can you deploy a critical bug fix without it? If not, why not and what can you do to fix it?
kmfrk 4 days ago 3 replies      
I had to change a username from capitalized to uncapitalized and use my updated remote afterwards, apologies if I broke it for everyone.
_Marak_ 4 days ago 2 replies      
If anyone is interested, I've been working with a git host that is actually distributed across a p2p network using SSB.




It's been working fairly well so far. We are using git-ssb to manage a few projects instead of putting them into Github.

slap_shot 4 days ago 1 reply      
Status now shows Major Service Outage:

12:32 EDTMajor service outage.


luhn 4 days ago 4 replies      
Pages Builds Failure Rate spiked to over 2000%. I don't know how that's possible, but it seems pretty bad.
tambourine_man 4 days ago 6 replies      
Insert remark on why we use a centralized service for a distributed source control system, etc. No one seems to care, unfortunately
rcthompson 4 days ago 1 reply      
Looking at the status graphs, it seems like there was some clearly anomalous data starting around midnight, about 9 hours before the actual outage "began". Maybe a gradual botnet ramp-up, and 9:27 AM is when it got bad enough to overload some critical service? (Or really any other threshold-based failure scenario.)
sashk 4 days ago 1 reply      
What was happening to Github for a week or so in late June - early July? I see "The status is still red at the beginning of the day" for a whole week.


relaxitup 4 days ago 1 reply      
Do these general Github outages affect GH Pages as well, or is that service portion segmented to some degree?
leesalminen 4 days ago 0 replies      
I think it started as minor as I was receiving a unicorn once per 10 pages. It's currently happening on almost all.

Of course, I'm trying to dig into a WebKit issue and need the issues to load!

pmoriarty 4 days ago 6 replies      
Where is github hosted?

Do they use AWS or another commercial cloud provider, or do they have their own servers in data centers (hopefully scattered around the globe)?

If AWS, are their services spread among multiple availability groups? I'm just wondering how this could happen.

pramodzion 4 days ago 0 replies      
Github is back online.
Cafey 4 days ago 0 replies      
It has leveled up to a major outage!
loomer 4 days ago 0 replies      
Anyone have any knowledge of what specifically happened?
peterwwillis 4 days ago 1 reply      
Dang. It's too bad their customers' source control files aren't distributed and decentralized, or they could keep working and ignore this.
AlphaWeaver 4 days ago 2 replies      
I saw a comment earlier mentioning that GitHub allegedly doesn't release post mortems publicly? If this is true, that's upsetting.
yellowapple 4 days ago 0 replies      
My apologies. I knew my Perl 6 wrapper for GLFW was bad, but never realized it'd be so bad that GitHub would choke to death on it.
ibgib 4 days ago 1 reply      
Are there any other major sites that are down?
DevKoala 4 days ago 0 replies      
This is happening too frequently now.
vishesh92 4 days ago 0 replies      
It just became a major service outage.
Osiris 4 days ago 0 replies      
It's starting to work again for me. I was able to approve a PR and merge it.
xxkylexx 4 days ago 1 reply      
Looks like I am still able to push to/pull from my repos without issue.
macawfish 4 days ago 0 replies      
Whatever happened to gittorrent?
tevonsb 4 days ago 6 replies      
Thoughts on the cause?
GrumpyNl 4 days ago 1 reply      
How does this affects all your dependencies?
adtac 4 days ago 0 replies      
>GitHub is having a minor service outage

It's definitely not minor.

moomin 4 days ago 0 replies      
I knew I shouldn't have released the new version of my project yesterday. :p

Sorry everyone

ProAm 4 days ago 8 replies      
Githubs uptime is pretty bad. Isn't it under 95% for the year now?
__s 4 days ago 0 replies      
In the face of a lack of information, HN comments begin to throw around unfounded speculation & tongue-in-cheek jokes run rampant. I suppose that in the absence of information, many stay silent, & the remaining see a thread lacking comments

& now we've got this meta one in the mix

0xbear 4 days ago 3 replies      
How many more can we expect before they develop appreciation for testing _before_ they push to prod?
Mozilla launches voice search, file-sharing and note-taking tools for Firefox techcrunch.com
382 points by denchikceo  3 days ago   203 comments top 34
albertzeyer 3 days ago 4 replies      
Some more information in the official blog post: https://blog.mozilla.org/blog/2017/08/01/new-test-pilot-expe...

I was especially interested in the Voice Fill (speech recognition) technology. Landing page: https://testpilot.firefox.com/experiments/voice-fill

It seems the project is here: https://github.com/mozilla/speaktome/

This seems as if it actually is a webservice. From the code (https://github.com/mozilla/speaktome/blob/master/extension/c...), I see: const STT_SERVER_URL = "https://speaktome.services.mozilla.com";

Actually, I think this can be very easily done fully client-side, with good accuracy. Even on Android, the voice recognition can run client-side / offline.

I wonder if the project is in any way related to their DeepSpeech project (https://github.com/mozilla/DeepSpeech). Maybe they use DeepSpeech on the server-side? At some other place they call it Pipsqueak, not sure if this is yet something else.

And maybe also related is their common voice project (https://voice.mozilla.org/). Recent discussion here on HN (https://news.ycombinator.com/item?id=14794654).

Some more information also here: https://research.mozilla.org/machine-learning/

jacquesm 3 days ago 3 replies      
Browsers should be browsers, not a way to get a whole bunch of trojan horse software installed on your machine.

If I wanted voice search, file sharing and/or note taking I would find the appropriate piece of software for that task and install it separately.

All this does is increasing the attack surface of the browser in a ridiculous manner providing features that only very few will use. File-sharing? What could possibly go wrong?

And in the meantime Thunderbird, a stand-alone program that had a decent following got the axe in favor of more browser bloat.

I really no longer understand Mozilla's mission.

notheguyouthink 3 days ago 21 replies      
I just wish it was .. faster.

Lately I've been moving away from Google everywhere I can. I moved everything but Google Voice. Yes, even Google Search - I've moved to DuckDuckGo. On windows however, I had to fall back to Chrome, because I was just shocked at how slow Firefox was.

Opening pages like Twitch.tv proved to be shockingly slow. Furthermore, my habit of opening many tabs in the background like I do in Chrome/Safari was massively slower in Firefox because while Chrome doesn't autoplay new-hidden tabs, Firefox does - I imagine Chrome feels faster there because it's not running nearly as much stuff at once.

Pretty much everything of Firefox felt slower for me. And this is from someone that really wants to get away from Chrome! On OS X, I've long switched to Safari and DuckDuckGo, and been quite happy. I've had zero complaints about performance with Safari.

So.. I don't know what they need to do, but I'm really hoping they do something.

dmitriid 2 days ago 3 replies      
Didn't they say not a few months ago that "the reason Firefox has fallen behind is that we focused on stuff that wasn't browser-related like MozillaOS etc."?

Learning from own mistakes anyone?

woranl 3 days ago 2 replies      
Mozilla should focus on building the browser instead of building app that competes with other developers. They need to start listening to the developers community and stop being arrogant and ignorant. You build the foundation, and developers build the app.
JepZ 3 days ago 0 replies      
Sorry, but I will not use any speech recognition service until it becomes a pure on-device service.
romanovcode 3 days ago 2 replies      
I hope Firefox succeeds and destroys Chrome.
paulio 2 days ago 3 replies      
I find it hard to believe that speed is really the issue here. I suspect it's more likely it's the aggressive advertising scheme in which Google push for Chrome.

I think these projects which Mozilla test/launch are an indication that even they don't know how to stop the eroding of Firefox market share.

If I were Mozilla I'd be seriously worried about Electron.

rudedogg 3 days ago 5 replies      
Slightly off-topic, but does anyone use a Vim plugin for Firefox? I keep trying to switch, but the scrolling of VimFX drives me crazy. Here's an issue outlining the behavior: https://github.com/akhodakivskiy/VimFx/issues/830

Are there any other Vim plugins without this issue?

bad_user 3 days ago 3 replies      
I wonder what happens to the previous Test Pilot experiments.

I loved the experimental home page and the Tab Center [1]. I really hope it continues to live.

[1] https://github.com/bwinton/TabCenter

robfreudenreich 3 days ago 1 reply      
I don't know here Mozilla got their inspiration, but Send looks pretty similar to our E2E encrypted file sharing app Whisply: https://whisp.ly

PS: Whisply even has more features and a detailed description how its encryption works: https://whisp.ly/static/whisplyTechnicalOverview_20151201.pd...

r3bl 3 days ago 3 replies      
I've seen all the promo videos, and some questions remain unanswered:

1. What's Send encrypting with? It doesn't show anything related to setting up a password during the video.

2. What's Notes syncing with?

3. What's Voice using to analyze the voice commands?

SubiculumCode 3 days ago 0 replies      
Wowsers. The Nightly version of Firefox is FAST.
SwellJoe 3 days ago 3 replies      
Somehow, I assumed "Notes" would be "notes for this page". But, it's just a notepad...no awareness of where I am. That's much less interesting/useful than I thought it would be.

Is there a browser plugin out there that provides a notes sidebar for the page you're currently on, and allows flipping through the notes with a link to the pages they relate to? Because that'd be awesome. Googling only reveals some kitschy "post-it on a web page" type note things, which is definitely not what I want.

mynewtb 3 days ago 0 replies      
Opera 12 called and it's rotating in its grave. Unite was such an amazing feature. And notes were available in Opera even before I started using it. Opera, I miss you, it still hurts.
nkkollaw 1 day ago 0 replies      
Looks like a good waste of resources to implement things people don't want in a browser anyway, in a desperate attempt to get people to consider using Firefox again.

If I was Mozilla I'd allocate programming time to catch up with Chrome now that they don't have the phone OS thing anymore, instead of creating more distractions.

They really blew it. I remember a few years ago when I used both Firefox and Thunderbird as my default browser/email client...

Dirlewanger 3 days ago 3 replies      
I wish they'd stop focusing on the flavor-of-the-week technology gimmick bullshit and focus on making Firefox the better performing browser. Chrome outperforms it in nearly every way by margins that grow with every release. My reasons for sticking with FF grow fewer every day.
jeshwanth 2 days ago 0 replies      
Voice fill is awesome feature. Kudos to Mozilla :)
quanticle 3 days ago 2 replies      
Is Mozilla committing publicly to supporting these new features for a significant period of time? I've been slightly wary of integrating new Firefox features into my workflow ever since they cut off support for Firefox Hello in Firefox 49.
sysdyne 2 days ago 1 reply      
When is the end of life for these features?
mrspeaker 3 days ago 5 replies      
I feel like I must be reaching the "get off my lawn" phase of my life, because I can't even comprehend a situation where I'd ever want to talk at my browser... maybe when I'm at home alone and, couldn't type for some reason? Certainly not in the office. Am I missing a use case, or am I just old now?
15charlimit 3 days ago 2 replies      
But why?

It's a browser. All it should do (and do well) is display content.

I don't want a bunch of extra garbage tossed in because it sounds good on some marketing slide.

Chrome has been and continues to eat FF's marketshare alive because it has been both faster and lighter. More junk is not going to help FF beat them.

jug 2 days ago 0 replies      
I dont need any of this in a browser, and if I did, it feels like extension territory. Werent Mozilla over this? Here I am, looking forward to Project Quantum technologies.
retox 3 days ago 1 reply      
I just want to browse the web!
hexmiles 3 days ago 4 replies      
what will happen to test pilot after the non-webextension are not allowed?

As far i know must of these feature are implemented as extension and i don't thing webextension have the api to do a lot of thing that are in test pilot.

petre 2 days ago 2 replies      
What would be useful in FF is a content blocker, especially in the mobile version. Not pocket, file sharing apps, voice, notes. There are web apps for that.
dijit 3 days ago 0 replies      
I was interested in Send until I realised it wasn't p2p.


visarga 2 days ago 0 replies      
I only want a sweet WaveNet-based TTS voice. Baidu's DeepVoice seems promising.
erikb 2 days ago 0 replies      
I don't know about other users but I use FF less and less. I don't need all this additional stuff. And it was painful how we lost features like the firebug plugin.

It's a pity considering a few years back I was the greatest FF fan.

eridius 3 days ago 1 reply      
send.firefox.com says that my browser (Safari) is unsupported. Anyone know what particular "web technology" the site uses that Safari doesn't support?
sunseb 3 days ago 1 reply      
This browser is more and more bloated... :-(
znpy 3 days ago 1 reply      
Mozilla is doing everything but what is supposed to do:make Firefox blazing fast.
free2rhyme214 3 days ago 0 replies      
None of these will get me to switch. Chrome is still faster than Firefox, sorry Mozilla.
cannonedhamster 3 days ago 0 replies      
Firefox is the browser I really want to like, but can't use. I recently tried to switch back, I kept running into problems with webpages not working, figured it must be an add-on, removed them all, still frozen pages persisted. A web browser that chokes on pages frequently is dead in the water for me.

Then there's the lack of compatibility with their mobile browser for extensions, so most of my extensions didn't work on Android tablets. It was definitely faster than it had been the last time I used it, but at this point, it needs to be significantly better than Chrome to win back users and it's not there except for a small group of people.

I do feel that the Voice Fill is a step in the right direction. I'd prefer that the notes application was a dedicated product with an add in that tightly integrated with the browser, a webapp in a wrapper would be fine really.

Hacking Voting Machines at Defcon horner.tj
301 points by maxerickson  4 days ago   237 comments top 21
vowelless 4 days ago 12 replies      
I used to think electronic voting was the logical next step. But now, I think voting is too important to be left to electronics. It should be done on paper.

We trust billions of dollars every day to electronic banking, so why not a vote? Electronic banking comes with many types of federal guarantees to protect against fraud. The government can step in to investigate and prosecute the fraud as well. But there is no such guarantee for the voting to select the government itself!

But it takes so long to aggregate the votes if done with paper ballots. Precisely the point. Electronic voting allows scalable attacks where the number of weak points is dramatically reduced. It is very hard to scale attacks on paper ballots. You would need a coordinated effort in many voting stations to make it work as opposed to hacking a more central electronic system.

That is why I moved from thinking that electronic voting is the logical next step to thinking that we probably need to revert back to paper ballots.

Klathmon 4 days ago 3 replies      
Electronic voting is dangerous and is a very bad idea. Voting should be done on paper, using pencils, put into ballot boxes, and counted by people.

Paper works, and it works well. It's a system that has worked well enough for thousands of years, and we have figured out most of the issues with it during that time. Anyone that can count can validate a single precinct. You can have one person, or 100 people all standing there watching a ballot box all day for tampering. You can have a whole group of people count the results, or just a few.

In a traditional paper system, swaying a single precinct with "blackhat" methods takes a lot of physical resources, a lot of time, and in most cases a lot of people. Then multiply that by every precinct in the country, and it quickly becomes pretty much impossible to do and get away with. Plus it leaves a physical "paper trail" (in the form of payment for people, communications, and physical materials or the receipts for those materials).

Electronic voting gives us very few benefits, and a significant amount of downsides. And it doesn't matter if it's FOSS, it doesn't matter if it's vetted, it doesn't matter what safeguards are put in place, all it takes is one mistake. One fuckup, and someone can now choose the leader of a nation, and in some cases that leader can change the rules of the next election, meaning it only takes one single mistake to ruin it for many many generations in the future.

And replacing a system where literally everyone can validate a system on voting day if they want to with a system where only a fraction of a fraction of people can even read and understand the code, let alone validate the code (and can't actually validate the hardware, or make sure what is running on the hardware is actually that code, or make sure that the hardware is even what it says it is), and it takes a magnitude more time to do so, just isn't a good idea.

cyborgx7 4 days ago 1 reply      
The Chaos Computer Club did some extensive educational work a couple years back to make sure we keep our paper ballots here in Germany. And this work keeps going to this day. I'm very greateful, seeing all the issues we are avoiding because of this, but the fight against misinformed or malicious politicians is still going on.

A very important factor in their work was making sure people called them "voting computers" instead of "voting machines". Most people have a sense by now that computers are hackable and insecure, if only through movies where hackers can hack every system. Calling them machines gives people the sense they are a unhackable mechanical appliances.

iainmerrick 4 days ago 0 replies      
I think the key problem with electronic voting is the possibility of a "class break", as explained here by Bruce Schneier: https://www.schneier.com/blog/archives/2017/01/class_breaks....

If there's a flaw in the system -- and there will be flaws, the only question is how soon they're found -- there's a risk that the whole thing can be compromised in one fell swoop.

Whereas pen and paper voting, counted by hand, is slower and less accurate and has plenty of its own flaws, but there's no simple way to compromise the entire vote at once. You'd have to fool a whole bunch of different people in different ways, and/or recruit them into a huge conspiracy.

Other countries use pen and paper and it works fine. Electronic voting machines should be banned.

Canada 4 days ago 1 reply      
After more than a decade of security researchers raising the alarm over critical electronic voting machine vulnerability, I hope this finally causes some real demand for verifiable ballots.
tcbawo 4 days ago 1 reply      
I am not a fan of electronic voting as it exists today. But, I expected to see someone advocate a blockchain-like trail to ensure election integrity.

Also, why don't we have automatic voter registration? Let's pay this cost once and move on.

cobookman 4 days ago 1 reply      
I'm for both. Aka you submit your ballot on paper. Have a machine and people both count the vote. If the machine count has a different outcome vs people then you know you've got an issue.

By outcome I mean something like machine had person A winning, people count has person B.

corpMaverick 4 days ago 1 reply      
In my country a losing presidential candidate has been able to convince part of his base that there was electronic fraud using an 'algorithm' even though the whole process was done manually. Imagine if it was really done electronically. That is why I am convinced voting should be done with paper and pencils.
thrillgore 4 days ago 2 replies      
Put us back on paper ballots. Christ, some systems should be as simple as possible.
tribby 4 days ago 0 replies      
I like paper voting but there should be a holiday and the vote should be mandatory even if only to check off "none of the above." The reason I like electronic despite its flaws is someone can do it while on the toilet, and here in the US where there is low turnout and voter suppression, that's about where I want the bar to be.
em3rgent0rdr 4 days ago 1 reply      
Where is the memory card physically stored? Is that something that a hacker could easily gain access to without being noticed?
elbac 4 days ago 0 replies      
There is an excellent podcast series on the subject of electronic voting, where several experts give their opinions.


After listening, I became convinced that electronic/internet voting is a terrible idea.

alistproducer2 4 days ago 2 replies      
I'm old enough to remember the when e-voting was brought about by the Bush administration. At the time those of us on the far left were convinced that Bush was the American incarnation of Hitler (seems quaint now, doesn't it) and Diebold e-voting machines were going to precipitate the end of democracy.
bdz 4 days ago 0 replies      
I'm more surprised that you can buy voting machines from eBay
jvandonsel 4 days ago 1 reply      
A voting machine with frickin' open USB and Ethernet ports?
em3rgent0rdr 4 days ago 0 replies      
Voting needs something called "homomorphic encryption", which allows simple arithmetic to be performed on encrypted data without decrypting it.
UltimateFloofy 4 days ago 0 replies      
Very nice. Voter McVoteyFace deserves an upvote.
miheermunjal 4 days ago 3 replies      
this just re-stresses the point to COMPETITION in the electronic voting space. If you had a monopoly over the systems, what encouragement would you have to upgrade them? There are all sorts of ways to innovate "e-voting", and all of them are objectively improved over the current US methods
lngnmn 4 days ago 0 replies      
One word: Microsoft.
5trokerac3 4 days ago 1 reply      
Depending on how conspiratorially minded you are, being able to exfiltrate/alter voter rolls could be seen as more of a feature than a bug.
dec0dedab0de 4 days ago 7 replies      
Every time this comes up, it seems to me that the obvious answer is that we should get rid of the secret ballot. If everyone's vote is public then everyone can check that their own vote was counted correctly. I know the argument is that people may face pressure at home and be afraid to vote, but is there anyone left who doesn't tell everyone how they voted? Maybe I'm living in a bubble, but I know exactly who all of my friends, and family voted for, none of them ever tried to keep it a secret.
The first Bitcoin Cash block has been mined blockdozer.com
373 points by TekMol  3 days ago   326 comments top 29
aresant 3 days ago 14 replies      
Most fascinating to me has been Coinbase's position throughout this.

Which was essentially they are treating the new Bitcoin cash as a shitcoin, aka not supporting it.

They took the position that if you want your "free" Bitcoin Cash, move your BTC out of Coinbase.(1)

This led to the inevitable service decay & delays that CoinBase has become well known for in the bitcoin community whenever leading up to a high volume event. (2)

And yet their internal PR team has given somewhat measured responses that "if Coinbase decides to support Bitcoin Cash in the future, it will distribute the balances that accrue at the time of the August 1 fork." (3)

The article w/that nugget goes on to state that when Ethereum split "Coinbase eventually let customers withdraw their share of the new currency, known as "Ethereum Classic," even though it still does not allow it to be bought and sold on the Coinbase site."

Seems like a risky bet not to just say something closer to "Hey if Bitcoin Cash is a thing and worth more than 1% of the original BTC we'll support it. If it's not at the end of 90 days we'll give you a way to take it out either way."

Judging by the volume of concern and disdain from newbies in the Bitcoin forums a lot of people got woken up by this event and what it means to have your decentralized currency controlled by a central authority.

(1) https://blog.coinbase.com/update-for-customers-with-bitcoin-...

(2) http://bitcoinist.com/mass-exodus-from-coinbase-spawns-12hou...

(3) http://fortune.com/2017/07/31/bitcoin-fork-coinbase/

fpgaminer 3 days ago 2 replies      
Something very important that I don't see advertised, with regard to BCH. The primary client, BitcoinABC, completely changed consensus rules a mere 5 days before the hardfork:


The important bit:

> Enforce strong replay protection (require SIGHASH_FORKID and SCRIPT_VERIFY_STRICTENC compliance)

That completely changes the consensus rules of BCH. Again, 5 days before a hardfork. 5 days.

I just ... I can't wrap my brain around why _anyone_ in their right mind would think that BCH should be worth anything, if this is the acumen of the development team.

Why would any exchange trust the code? Why would users trust the code?

If BCH is any kind of experiment, it's not an experiment of big-block vs small block (Bitcoin has had bigger block functionality for over 6 months now). It's an experiment to see if cowboy programmers can patch a live $40 billion network willy nilly and convince everyone that that's okay.

brndnmtthws 3 days ago 5 replies      
To me, it seems like Bitcoin Cash (BCH) is just a cash grab (no pun intended) by a minority of misguided Bitcoin enthusiasts. From what I can tell, the main reason for the resistance to Segwit is that it reduces the power and influence of miners. That's why the people who are pushing BCH are also invested in mining. Miners earn money from transaction fees, and therefore have an incentive to artificially inflate the fees by delaying transactions (transactions are processed in order of highest to lowest fees).

There's a great blog post which summarizes the situation here: https://www.linkedin.com/pulse/why-heck-bitcoin-might-split-...

JohnJamesRambo 3 days ago 1 reply      
It has a lot more hashrate than I expected, I've been pretty surprised. Last number I saw was 3.9% and 247 petahash/s and climbing. I hope it can survive, I actually prefer it to the segwit Bitcoin plan and it seems to follow the original Satoshi plan.
Animats 3 days ago 2 replies      
That gets the chain un-stuck. The difficulty starts off with the old, huge value. The next difficulty adjustment will be at ceil(478560 / 2016), correct? That's 1248 blocks ahead. Check me on this, please.

If mining of that chain is very low, it will take a long time before the difficulty adjusts downward. So far 6 blocks have been mined on that chain.[1] Rate is maybe one per hour, instead of the usual one every 10 minutes. That puts the difficulty adjustment maybe six weeks out. We'll have to see who mines on that chain. The hash rate may go up or down, depending on what the big miners do. Mining will be unprofitable until the next difficulty adjustment, because the price of the coin is lower than the "mainstream" coin. Confirmations will be really slow. After the next adjustment, the chain will work better.

Something similar happened to some altcoins. Some big miner mined for a while, made some money, ran up the difficulty adjustment way up, and then stopped. Block generation then stalled. This thing self-adjusts, but adjusts to big changes in hash rate very slowly.

[1] http://blockdozer.com/insight/

TekMol 3 days ago 3 replies      
1.9 MByte in size / 6985 transactions.

This is about twice as much as is possible in a block of the old Bitcoin chain.

This will become super interesting.

bsmith 3 days ago 2 replies      
sixdimensional 3 days ago 4 replies      
As someone who missed the Bitcoin boat, I admit to having to read up to figure out what was going on here.

From what I read, Bitcoin Cash is an alternative cryptocurrency like Ethereum, but based on a change to the original design of Bitcoin algorithms, which increased the basic block size of the transactions. It seems this was done to increase transaction performance.

Also it seems there were competing proposals in the community about how to accomplish the goal of increasing transaction performance, "SegWit2x" and "BitCoin Cash" - and the folks who started the BitCoin Cash fork didn't agree with the SegWit2x strategy.

Anybody else more in the know, can explain it like I'm 5?

Is this a good thing or a bad thing? Are people exploiting this via some sort of arbitrage or whatever to try to make money again? It seems risky?

EDIT: Removed quotes around the word "fork".

jahbrewski 3 days ago 3 replies      
Can someone provide a summary explaining the significance of this event?
dorianm 8 hours ago 0 replies      
Also https://pointsproject.org for those interested in new curriencies
mathieutd 3 days ago 1 reply      
Interesting to see that the backlog in unprocessed transactions on the original bitcoin chain is exploding at the same time: https://jochen-hoenicke.de/queue/#24h
xbeta 3 days ago 2 replies      
ELI5: For folks who moved BTC out of Coinbase before the hard-fork, what's the next step? Said I want to keep both BTC and BCC. I had a hardware wallet, what are some implications that I move my BTC now to my hardware wallet?
jnordwick 3 days ago 2 replies      
Not surprisingly, when BCH started, it ran up about $150 and at the same time, BCT fell by a similar amount (approx $2800 to $2650). And as BCH slowly falls, BCT is slowly climbing. Which makes sense if you view this as an equity spin-off.

I would expect this relationship to hold -- that for every dollar BCH gains, BCT is prevented from gaining a dollar. Unless somebody has some good reason this wouldn't be the case.

At the same time ETH ran up from about $205 to $225.

xbeta 3 days ago 1 reply      
Quick Question:Sorry, don't know much about Bitcoin, but does this mean Block #478559 is the last block that was forked? Or the first block that was forked?
provost 3 days ago 2 replies      
Interesting -- It still shows "NO UNPLANNED CHAIN SPLIT DETECTED" on https://www.btcforkmonitor.info, which a lot of folks are using to monitor the fork (from the other HN thread).
whytaka 3 days ago 2 replies      
Does this mean Coinbase wallet holders have officially missed out on the fork?
burger_moon 3 days ago 1 reply      
Are there any reputable exchanges which you can buy bitcoin cash from yet?
agorabinary 3 days ago 2 replies      
Despite having a higher hashrate than expected, the price of BCC is crashing towards 1/10 of a bitcoin. The network effects and name recognition of Bitcoin are too strong.
jamiegreen 3 days ago 2 replies      
Forgive the naive question, but how does the whole 'free Bitcoin Cash' thing work? I have a small amount of Bitcoin in the Exodus wallet.
konschubert 2 days ago 0 replies      
Is it possible that all these forks will eventually just become alternative cryptocurrencies just like Etherum or Litecoin?

People will use whatever fits their use case and there will be well-oiled exchanges arbitraging the valuations.

I'm probably neglecting some of the short term effects of a splitting chain here.

techaddict009 3 days ago 1 reply      
Finally BTC has been hard forked and BCH & BTC are live.

Some fun facts:Forked should have name XBC as per ISO bt thats already taken so they named BCH

1st BCH block 478559 & BTC Block no 478559 where mined by ViaBTC

ViaBTC dedicated BCH block to her daughter by adding comment on 1st Block of BCH "_M*/ViaBTC/Welcome to the world, Shuya Yang!/q30c"

hughw 3 days ago 0 replies      
Does this take the pressure off the planned hard fork for Segwit2x? Big blockers now have what they wanted. Seems like BTC could now be the small-block paradise Core wants.
mrfusion 3 days ago 1 reply      
I'm confused by all this. What happens if you have a small paper wallet from a few years ago? That means you also have bitcoin cash now?
aphextron 3 days ago 1 reply      
tl;dr what does this mean?
mikeschmatz 3 days ago 0 replies      
So, if you held 100 BTC before the fork, now you get to have 100BTC + 100BCC? Nice! Can we fork it few more times please? Me likes free money :-)
ringaroundthetx 3 days ago 0 replies      
with an ounce of confidence, maybe people will be too greedy to sell it off.
solotronics 3 days ago 0 replies      
the tyranny of the miners.
Inside Patreon, the economic engine of internet culture theverge.com
379 points by panic  1 day ago   389 comments top 23
pillowkusis 1 day ago 11 replies      
I have seen so many content creators go full time and create awesome work because Patreon gives them a format to incentivize their followers to pay them. The economics are beautiful turns out just 1,000 people (a pittance on internet mass media websites) donating $5 a month will totally change the way you run your life. And even better, these artists are independent in a way no artist has ever been before. Youre not beholden to advertizers. Youre not beholden to the whims of a few patrons (church or people). You only need the loyalty of people who value your work.

Before Patreon, internet content creators (from the BBC to a little indie band) were in a dangerous place. Paygates couldn't sustain growth but ad-supported free media couldn't sustain revenue (now more than ever with ad-blockers). Now there is an answer.

I am totally convinced Patreon (or the patreon model) is the future of content creation. Ethical, decentralized, economically viable flourishing of the arts.

If anyone at Patreon reads this, I would love to come work for you, please contact me sparrowmaxx at googles email service. :)

neaden 1 day ago 9 replies      
I like patreon but at the same time I'm a bit uncomfortable with how the interaction aspect of it sometimes works. Lots of artists are essentially charging for interaction with them rather than a product. From the article: "In this system, its almost impossible to separate a work of art from its creator or, at least, its creators public persona. Is there a future for someone who wants to be a musician, but not a personality? No. I dont think so, Hollens says. I dont think the reclusive thing is going to happen anymore. Thats not the world we live in." While that works for plenty of artists I'm sure there are others that can't handle it. In addition it seems really exhausting.
AmIFirstToThink 1 day ago 2 replies      
barf. yuck.

I found that article physically repulsive.

Patreon, if you are listening, don't buy into all the power that the article wants to shower upon you. They want you to influence your exercise of that power, and they want you to use that power to do their bidding in limiting free debate of ideas.

Patrons and the person that they support, that's it, that's all there is to it. The silver coin is being given by hands of patrons and taken by hands of one that is being supported, that silver coin shouldn't have opinions, emotions and desires. Stay neutral, that is the greatest challenge of our time, stay neutral. If a crime is being committed then co-operate fully with law enforcement, but don't give in to the pressures from lobbying groups with their own agenda.

Don't get carried away into the corrupting power the platforms like youtube, facebook, twitter exercise on the discussion carried out on these platforms. They have absolute power, and you can see that once you use it, it's addictively corrupting. Stay neutral, it is going to be hard to do, I hope you find the power within you to do so.

Good luck.

raesene9 1 day ago 0 replies      
Personally I like the patreon model, and think it works really well.

Bundling together payments for different creators into one place is handy and I'm guessing helps reduce fees, so smaller payments work better.

I only have to provide payment details to one site, so that's nice and easy too.

I get to support creators who's work I enjoy without having to endure web ads, which I dislike.

From the creators standpoint it seems to provide a nice even revenue stream. Whilst I don't know any personally, I'd guess it must be nice to have an idea of the base income you're going to get in a month, rather than relying on something more variable like advertising or ad-hoc tips.

drewg123 1 day ago 13 replies      
Unless I'm missing something, they seem to only have a monthly contribution model.

There are many times where I find a content creator helpful (for example a video tutorial on how to fix my broken washing machine), and I'd like to reward them. But I don't want to do it monthly, as I'll probably never watch another thing from them. So I'd like to be able to easily leave a one-time tip.

Can Patreon do this, and it's just not obvious?

nilved 1 day ago 3 replies      
A lot of creators I appreciate use Patreon, so I signed up to donate to them. They started sending me spam emails. It was like I was paying extra (giving Patreon a cut) for the privilege of getting annoying emails. Now I just donate directly to the creators, and I have a checklist that I go through every month.

I think something like Patreon is a great idea, but having a centralized company handle it and take a cut is not the way to go about it.

fernly 1 day ago 1 reply      
The article is well-done but speaks mostly from the artist's side. From the patron-side, I think an important factor in Patreon success is that it gives the donors the good feels for very little cost. I fund several web-comic artists whose work I enjoy at a trivial level, $0.25 per new comic for instance, or for some, the minimum $1/month. For a few $ a month, I get regular doses of warm fuzzies from knowing I am actually helping good artists continue to make art.
just2n 1 day ago 1 reply      
I'm in favor of directly funding creators. I hate everything about ads. That said, I don't see any real value Patreon provides over other payment services, especially given their cost.

I definitely don't want politically driven judgement calls made on my behalf as to whether or not that creator should even be allowed to have my money, when that person hasn't actually done anything illegal. It's my money, and no business has any business telling me who I can and can't give money to, or why, and to step into that position is to trivialize competition. It's a bad move on Patreon's part, and it's completely antithetical to the service they should be providing: making it easier to find content you like by creators you like and then fund it so there's more. They don't do the former, and the latter is more and more only for "Patreon approved" creators. What is it they do that makes them invaluable or irreplaceable, because I'm not seeing it.

I've given thousands through Patreon but I've stopped using it for many reasons. I feel pretty justified in that decision just looking at their behavior, both lately and in the past. They've allowed pages to remain up for people who are provably doing nothing but harassing others (and advertising that behavior as the "activism" their Patreon page is funding), but taken others down just because they run a service which on principle refuses to police discussion but which isn't breaking any law because Patreon dislikes what people on that service say/do. Now they've removed someone because they disagree with something that person has done unrelated to their content creation being funded through Patreon (again, not even illegal behavior), and it looks entirely politically motivated.

I don't support Lauren and never have, but this kind of moral grandstanding and virtue signaling from Patreon just isn't acceptable to me, and definitely not from what is a glorified payment processing web interface. Tim Pool as usual has a fairly solid take on it, and I mostly agree with him: https://www.youtube.com/watch?v=3_yIp7eQO1c.

This piece looks like a pretty desperate PR move.

Sir_Cmpwn 1 day ago 4 replies      
Patreon is starting to take off for open source, too, which is great. I set one up and it offsets a good deal of the infrastructure costs for my projects. Many FOSS Patreons have pretty low figures - please go looking for them and support your tools!
dugditches 1 day ago 11 replies      
I asked this before, but it wasn't really the place:

1.To those who donate to Patreons, how do you budget/think about/justify your donations?

2.Do you have a set budget? What if you really want to support someone suddenly, do you stop supporting someone else to do so, or reduce how much you give them?

3.When do you stop/reduce Patreon support? How long do you typically support someone? Until you feel they no longer need it?

vinceguidry 1 day ago 2 replies      
If anybody at Patreon is reading this, here's some feedback.

I spend maybe $20 a month on Patreon. The main thing keeping me from spending more is the interface makes artists appear more money-grubbing than they might want to.

I don't want to scroll down someone's feed only to find half of the content is locked. This is a negative user experience and makes me want to click off the site and go do something else.

Suggested fix is a checkbox or setting that allows me to hide content that I'm not at the right patron level to see.

__s 1 day ago 0 replies      
I've got a pretty niche patreon where I post a stream of consciousness devlog for Luwa. Only 1 subscriber, but it keeps me motivated having an outlet & knowing _someone_ thinks it's worth 5 dollars a month for me to flail around hand writing WebAssembly after work
jmcgough 1 day ago 0 replies      
What I've found interesting is the number of smut games and comics creators that are thriving (sometimes making their creator 6 figures a year) because of patreon.
cdcox 1 day ago 0 replies      
I do wonder how Google, Facebook and the ad sphere sees Patreon. A fair number of creators I've seen use Patreon to go ad free. It seems small but growing with strong network effects, and a clear path to profitability. In a lot of places on the internet it's almost a household name. It also is relatively platform agnostic and there is a lot of room for it to grow into. This seems like it might be a deep threat to the current power players of the internet and the current structure of the internet.

On the other hand, you could have said the same thing about Kickstarter a few years ago, but then it hit its growth limits and became just another, still slowly growing but no longer earth changing, feature of the internet landscape.

gregjw 19 hours ago 0 replies      
Patreon's office caught fire yesterday! But everyone and everything is completely fine.


vijayr 1 day ago 1 reply      
this article (no affiliation with the author, just happen to enjoy his work) is also worth a read


kareldonk 1 day ago 2 replies      
There should be no middle men. Only a direct P2P model will truly benefit everyone.
RangerScience 1 day ago 0 replies      
There's a part of me that just wants to set up a Patreon, link to it from a few places with enough content to have a profile (Github, Medium; if I ever finish an article), and if it starts getting traffic, do more of that content. See what happens.

(Unlikely to be anything without marketing, but, why not? Cost of the effort is low.)

contingencies 13 hours ago 0 replies      
I think the hyperbolic title needs an injection of reality. My 2c. Patreon ... added it 1 year ago to a commercial-friendly (LGPL3) library, in finance of all areas, that I've ploughed hundreds of hours in to over 8 years ... 14,000+ downloads per month ... and nobody has ever given a cent.
bcheung 1 day ago 0 replies      
It's funny, and a bit unfair, how they can get away with having adult content and not being labeled `high-risk`.

Most adult credit card processing takes 10-15% before the business even sees anything, and they are only taking 5% total and providing a service.

In many ways it's an anti-trust issue because competitor platforms geared specifically towards adult content can't get those same rates.

Jerry2 1 day ago 2 replies      
How long before Youtube bans private videos and destroys Pateron's business?
Applejinx 16 hours ago 0 replies      
I'm https://www.patreon.com/airwindows and I'm writing audio DSP plugins in AU and VST form, for a living. Here are my observations over the past year of relative success on Patreon.

I'm in the top 3.2% of all Patreon, sitewide. That amounts to only a little over $700 a month (I'm using it to replace a for-pay business model that wildly oscillated from $400 to $3000 a month). It's growing.

I'm having to put out twice or three times the work, but I'm happier with a 'free/patronage' model because what was happening to me under the for-pay model was, I got locked into a 'hype cycle' versus other developers and companies. The sense I had was, my industry sector is dying. The way we treat customers is worsening, and it's a race to DRM-based, extremely invasive monthly software rental and a degree of dishonesty that didn't sit well with me. I feel that I bailed 'in time' to turn my ten years of reputation and experience into just-barely a subsistence using Patreon, and that if I hadn't done so, I would have been run out of business by competitors using every sort of deceptive and customer-abusing practice, and the epitaph would've been 'A shame, he was one of the good ones. Tough business'.

As such I feel I have a real-world view of what Patreon actually is. It's a form of payment processor that can let you bill for basically 'goodwill': the strong point is, it lets you render your income more predictable, at the cost of not being able to exploit individual creations which might be more valuable.

Never, NEVER get sucked into the 'just 0.1% of all living humans donating one cent a month will make you rich!' argument. If you have a hundred thousand known fans, MAYBE you can get a hundredth of them to give to you. You've got no control over what 'the crowd' will do. I don't know how many times I've revealed on HN that I'm creating mass quantities of code with an open-source (planned MIT license) future, on Patreon, and of the 347 patrons I've got, ALL of them are from my existing connections who already use my software. I'm looking to do an experiment with Facebook ads where I literally link to my entire library as a free zip to download and say 'I'm paying Facebook to tell you that I made this for you'. Haven't done it yet, don't have high hopes for it.

ALL your traction on Patreon comes organically from what you're already doing. In no way does it find you patrons: it's your shopping cart software. That does have one unusual consequence: since they aggregate patronage together and bill people in a lump sum, I've never seen anything more effective at enabling content that is routinely censored by credit card companies. Anyone who knows anyone who's tried to run an internet content business with NSFW material as part of the mix (I know a bunch of cartoonists) knows the dangers of getting banned by Visa and Mastercard (IIRC, particularly Visa won't touch you if you're dirty-minded). Patreon is a layer of abstraction that has enabled a startling opening up of opportunity for censored content, and that's shown in the NSFW side of Patreon. It's still not a 'free ticket to money' as you still have to generate your own attention, but obviously if you're good at NSFW content and distributing it free then the internet will beat a path to your door, and Patreon is accepted (in fact, the paywall model seems popular among NSFW creators with few objections to the idea. Premium content may not last long before being 'liberated' but I rarely see objection to the basic concept of a paywall around the freshest source of the creator's output).

I've been keeping records of what constitutes the top 1% of all Patreon, because I was keeping records of where I stood (started out at top 10% almost immediately because I had ten years of existing relationships w. customers). About a year ago, the 1% mark sat at around $2350 a month, with total creators between 41,000 and 45,000. It's been dropping, and as Patreon approaches 78,000 creators the 1% mark is dropping below $1890. This is while key patreon accounts are hitting new records for monthly income. It's definitely the internet power-law thing in action: the number of participants doubles, but most people are doing worse: the distribution is NOT staying the same, it's getting more skewed towards the outliers. I'm guessing this is partly caused by a flood of people who think it's an internet lottery ticket and not a way to bill masses of existing customers

Summary: Patreon is probably even less prone to 'discovery of worthwhile projects' than Kickstarter, because the mode of engagement is different: rather than seek out 'discoveries' it's a method of inserting benevolent digital leeches onto people's credit cards, very much like DRM-based rental schemes but less coercive. Because it can be used in a 'strictly voluntary' way, the revenue you'll get seems to be a quarter to a tenth what you'd get on a 'direct sales' model, but the consistency of a massed small-donation model combined with billing people's credit cards gives you a steadiness of income that is a LOT more easy to live with than boom-and-bust product development (which I did for a decade, pre-Patreon).

If you can budget for a growth month-over-month that's a little better than, say, the growth of index funds, and you've got created product with a decent number of people already aware of what you do, it's great. I have no regrets about going Patreon. I passed up an opportunity to do my whole 'for-pay' model over again to a market at least twice the size of my original (my whole decade of for-pay work was Mac only, and I relaunched targeting PC VST) but I'm glad I did. It let me double down on my positioning as a product maker, and completely avoid spending any time on being an internet cop. I just give everything away now, and the patronage gradually gets closer to minimum wage ;)

For now, I am your audio DSP waitress, on roller-skates. I always figured that was what ten years of creative work was worth ;)

model_m_warrior 1 day ago 2 replies      
In my years on the internet I find the content works itself out, so I'm unsure why I'd pay anyone anything. Half the reason I like most of it is because it's free.
Stack Overflow Sunsetting Documentation stackoverflow.com
368 points by ingve  1 day ago   206 comments top 39
jon889 1 day ago 15 replies      
Ever since StackOverflow started closing strictly off topic questions that were interesting and still related to programming (closed as not constructive, or locked and marked as having "historical significance" such as https://stackoverflow.com/questions/1995113/strangest-langua...) the sense of community there pretty much disappeared. There's not much incentive for knowledgable people to visit a site that is boring, and now StackOverflow seems to contain a lot more questions asked by noobs (I've done this about subjects I don't know) that go unanswered.

The same also goes for questions that are almost duplicates. Or are basically but have been inactive so you want to get further information. And when interesting discussions get moved to chat. The whole place is just boring and too heavily controlled. I"m not surprised something that required community failed there.

shubhamjain 1 day ago 6 replies      
It's possible to overanalyze the outcome but in my opinion, the reason is rather simple: search results. In my programming-related searches, I never saw a result pointing to StackOverflow documentation. Whatever I wanted to know was already answered in a SO question. Take npm documentation for instance, which has covered topics like, "Configuring", "Publishing" npm packages [1].

As much as I loathe the state of documentation of some projects, I'd rarely open a specific website for help - I'll just Google, "publish npm package", "configure npm package", for which, none of the search results point to a StackOverflow documentation page.

[1]: https://stackoverflow.com/documentation/node.js/482/npm#t=20...

dmitriid 1 day ago 1 reply      
Color me not surprised at all

Besides the obvious reason, not showing up in search results, there is another glaringly obvious one. Well, obvious to anyone except Stackoverflow: their documentation site is horrible.

There was no structure to the docs, no way to create structure or promote relevant parts of the documentation.

Let's open Python docs. Right now it looks like this:

- Getting started with Python Language

- Incompatibilities moving from Python 2 to Python 3

- List comprehensions

- List comprehensions

- Common Pitfalls

- Generators

- Classes

- String Formatting

- Functions


Yes, there are two `List Comprehensions`. I mean, wat.

As you go into each "Chapter", they all consist of random sections, and the table of contents (called Topic Outline) helpfully hides all links to all sections saying something like "13 more examples" that you have to click to expand.

And the list of problems just goes on and on and on. All of these issues have been raised numerous times and dismissed out of hand by SO developers.

bluetomcat 1 day ago 0 replies      
I participated in creating content for SO Documentation on the C language and shortly after its inception I was convinced that it is going nowhere. Too much emphasis was put on "examples" and many low-reputation users saw this as an opportunity for gaining easy reputation points. Most of the examples were poor and short without any insight on the underlying concepts. There was no incentive for quality content because every topic had to have only a short introduction and a gazillion "examples".

The whole format was just wrong, very wrong.

staticelf 1 day ago 1 reply      
I think in order to have a succesful project like this, you must allow it go through a longer span of the passage of time. People need to create new projects, write docs for it etc. It felt like SO Documentation was pretty much invisible and now they are just shutting it down.

However, I didn't really see the need for it anyway since most larger projects already have their own documentation and don't want to host it on a third party site. Smaller projects just have some examples on the readme. So who is SO Documentation targeted for?

I think a good use case for SO Documentation could be writing tutorials and guides on how to setup stuff. How to install stuff etc.

davidsong 1 day ago 0 replies      
I edited some examples written in Python to tidy them up and make the page PEP-8 compliant, so it actually serves as a good example of Python code. My edit was rejected for being too trivial, and after that I never used Documentation again.
maaaats 1 day ago 1 reply      
I wonder how the reputation affected how it all played out. Lots of people threw in minor edits, irrelevant topics etc. in hunt for the insane amount of reputation it offered. After a few weeks the reputation gain was tuned down, but what happened the first days is kinda set in stone. The structure, topics etc., all which is hard to change without a concentrated and directed effort from a lot of people.
gravypod 1 day ago 5 replies      
This is slightly off topic, but could be related to this. Does anyone have a good way to keep programming documentation offline and searchable for all of the languages and libraries you use? I'm primarily a Python, Java, C, Assembly, and PHP person. For Assembly I can just keep a copy of the ISA book but that does not really make it searchable.

Recently I had lost internet and had work that needed to be done. I ended up having to go to a coffee shop because I knew the name of a few functions I wanted to use but I didn't remember the calling semantics. I could have just tried it until it worked but I just took the excuse to go to Dunkin Donuts, grab a coffee, and work there.

Do they plan to release their Stack Overflow Documentation files? It would be a good way to start something like this. Make an offline and searchable version of this dataset with a uniform offline and searchable version of Python, Java, etc docs.

manigandham 1 day ago 1 reply      
As a few other meta posts said, rename it to "Examples" instead of (official) documentation and it probably would've done well... but then again, isn't that what a lot of SO content already is?

I've never wished for better documentation instead of a clear example for my specific scenario, and it seems the existing site already has that well covered.

jon_richards 1 day ago 0 replies      
I think the problem is that official documentation is good for 99% of the job. The other 1% is most easily filled in by searching individual problems, which usually results in a stack overflow question, never stack overflow documentation.

My inspiration on how to fix documentation came from Dark Souls messages. In the game, you can't communicate directly with other players, but you can leave messages on the floor that may show up in other players' games. The game intentionally has tricks like fake walls, so messages like "Illusory wall ahead" are common. You can vote a message positive or negative, affecting how frequently it shows up in other games. Unfortunately the player base is also somewhat sadistic, so you often get fake messages (often with another just behind it saying "Liar ahead").

I wish someone would make a browser extension that just allowed you to place little notes on webpages and vote on other peoples' notes. So many documentation problems could be solved with a simple "change <X> to <Y> to make this example work". Documentation maintainers could then just look at the notes on their page to see what they needed to change, instead of waiting for people notifying them of the problem in an official bug report or periodically checking stack overflow looking for issues.

bandrami 1 day ago 0 replies      
Unfortunately StackOverflow hasn't aged well over the past few years, mostly because of way, way, way overzealous killing of "duplicate" questions. (IMHO, if it's not literally a word-for-word retyping of a previously answered question, it's not a duplicate.) But whatever the theoretical merits of it, this no longer works now that every system is following the CADT release model. A question that was answered perfectly well 18 months ago requires a completely different answer today, but the re-asking of that question today gets squelched with visitors being pointed to now-obsolete answers.
Perceptes 1 day ago 2 replies      
Great example of why you shouldn't rely on a third party service's proprietary system as the exclusive host of your content.
norswap 1 day ago 0 replies      
As someone else said: search results.

But also I never saw a link ON Stack Overflow point to said documentation. I wasn't even consciously aware of it, even though I must have seen the announce when it launched.

Really, I don't know why they needed so much firepower on that anyway. Just a glorified wiki + maybe paying some good known documenters to kickstart the site with a few very high quality guides would have been enough to get the ball rolling (given internal promotion).

duskwuff 1 day ago 0 replies      
Good. About time.

Good writing needs to be organized from the top down. Stack Overflow's Documentation tried to create documentation from the bottom up, and the result was predictably a jumbled mess.

This outcome really shouldn't have come as a surprise. Other projects have tried and failed to crowdsource documentation before -- Wikimedia's WikiBooks is a prime example.

exception_e 1 day ago 0 replies      
I was very skeptical about this early on. IMO, documentation is best left close to the code. Collaboratively editing is what git and project wikis are for (esp in open source).
trey-jones 1 day ago 0 replies      
I'm glad they're being so open and honest about what the problems are and the reasoning behind the decision. I was excited about Documentation when it was announced. It sounded cool. But I've never used it.

I guess contributing to full "improved" documentation with examples is actually a lot more work than just answering someone's question.

torrent-of-ions 1 day ago 1 reply      
"To sunset" is the worst verb I've seen a long time. Why not just "discontinue" or "phase out"?
dgregd 1 day ago 0 replies      
After hours of bug hunting I can spend a few minutes to share my solution on SO. Documentation writing is so much different task. Additionality for many people English is a foreign language.
iamthepieman 1 day ago 0 replies      
i am an infrequent but consistent user of stack overflow. I used to answer questions before my area of expertise became riddled with 0 vote questions. I still go there to get answers especially on technology that's new to me. I even participate in moderator elections and the yearly surveys.

So while I'm not a power user, I use Stack Overflow and yet I was not aware of Documentation until I read this sunset notification.

midnitewarrior 1 day ago 0 replies      
I've never heard of this site, nor have I seen it in any search results. Now that I look at it, it looks very useful! I may have used it if I had known about it.

Perhaps get a better marketing department?

omegote 1 day ago 1 reply      
I've just written a well formed question in stack overflow and within the first minute it already had a downvote and a comment questioning the wording. In order to avoid a worse hit in my karma I've deleted if. It's a shame what stack overflow has become. I wish they could get some stats on how quickly new questions are downvoted to Oblivion by big users (I'd rather not give names but I'm sure you know some). Dictatorship.
executesorder66 1 day ago 0 replies      
Damn. This was the closest thing I have found so far, to something like the Arch wiki, but for general sysop/devs.
fidz 1 day ago 0 replies      
I find starting something is easier than closing / shutting it down. We know several metrics to start something. Demand, high chance of success in the future, niche market, etc. But how do you think about shutting down something? I mean, how to distinguish "failure", "must struggle a little bit more", and "buying more time"?

To close something seems like not trivial.

bsder 1 day ago 2 replies      
Speaking of sunsetting: I wish there was a way to sunset a StackOverflow question as "no longer true" or "superseded by new version".

Rust and Android Studio, for example, are particularly bad about getting relevant, working current results buried under mountains of not terribly old stuff that is now deprecated or moot.

EADGBE 1 day ago 1 reply      
It was promising, but they really didn't give it enough time to take off. That's sad.

There's plenty of libraries out there that could benefit from something like Documentation.

bluetwo 1 day ago 0 replies      
When I heard about the documentation project I was excited, but when I went to use it I was sad. They really didn't know how to build instructional systems.
johnnyRose 1 day ago 0 replies      
This was an idea which sounded great on paper, but was doomed from the beginning. As mentioned in the post, most users lack the confidence to contribute to something called "Documentation," even though the idea seemed closer to "Examples of Documented Features."

It's always sad to see an idea with such potential fail (not that the experience lacked value), but I think they made a good choice pulling the plug.

meri_dian 1 day ago 0 replies      
I love SO, but the danger with it replacing documentation for developers is that the temptation always exists to just copy and paste code from SO without actually understanding the nuts and bolts of why the code works. SO should complement documentation, not replace it.
tarr11 1 day ago 0 replies      
>>> In order to hire more people, we need to make more money.

Feels like that's the crux of it right there. A lot of the problems in this thread could have been fixed, with time, focus and money. But if there's no path to profitability...

leksak 1 day ago 0 replies      
One thing that irked me was the vast number of topics. A lot of them were unfit for the format
aaron695 1 day ago 1 reply      
> We still think Stack Overflow Documentation is a good idea

I personally think it's a bad idea. It's what users think they want rather what they'll use.

The classic RTFM is a classic because humans don't want to and won't. They just want a direct colloquial answer, cause human. AKA classic SO

trumbitta2 1 day ago 0 replies      
This is the first time ever I hear about the service. I guess there was still a market to be found, after all.
fusiongyro 1 day ago 0 replies      
Documentation was a bad idea. The only problem Documentation might solve is that Stack Exchange Inc has a bunch of developers and they have to keep them busy doing something. All the thrashing and weird incentives and bullshit flows from this truth: the users and community don't need anything like this Documentation.
Chris2048 1 day ago 0 replies      
I think documentation writers should aim to supersede SO questions, and maybe add the question content near the content in the docs.


Q: what is foo?

A: foo is Y : <example>

The doc writers can then put above into docs, along with form of original question ("what is foo"), such that the SO page is no longer needed.

Through such a mechanism, SO could improve official docs rather than just be a Q&A repository..

iamjk 1 day ago 0 replies      
That was quick...
Chris2048 1 day ago 0 replies      
Perhaps the actual Q&A side of things could have been collapsed into "agents" that showed you the relevant content in the documentation?

Shame this ended..

sriram_iyengar 1 day ago 1 reply      
Sad ! Learnt a lot from it though.
shp0ngle 1 day ago 0 replies      
Well, that didn't last long :/
alexanderbisc 1 day ago 0 replies      
I exactly don't know whether automated suggest edits is best. I am not sure that most of the edits will be of good quality.
Ask HN: Who is hiring? (August 2017)
432 points by whoishiring  3 days ago   844 comments top 668
davidjgraph 3 days ago 8 replies      
Worldwide, REMOTE, Full time, $100k-$170k. Senior software engineer on https://www.draw.io

We're a small, all engineering team looking for a strong developer with experience building complex web apps in Vanilla JS.

You will need to be a strong starter and able to work effectively in a remote team (no offices here).

Everything you produce will be open source, https://www.github.com/jgraph/draw.io. We're 7 digit annual revenue from licensing the tech (much of this is profit) and have no external investment or debt.

There's no real hierarchy in the team, no performance reviews and the rest of the crap that bored commercial folks invent. But you will be expected to deliver high quality code, well tested with heavy attention to detail.

We don't do roadmaps, either, it's ready when it's ready. Timezone-wise, we're all central and Western Europe. The majority of your working day needs to overlap ours. We're not saying what time difference is the limit, but as you go past +/- 4 GMT, you'd need to be thinking about moving your working day hours to work here.

Apply with CV to jobs@jgraph.com

fuzzieozzie 3 days ago 1 reply      
CompilerWorks | San Francisco Bay Area | Full-time, remote | $110k-$220k driven by your productivity


CompilerWorks is a bespoke compiler company, with our core product centered around compiling on dialect of SQL to execute on a different backend - e.g. would you like to run Oracle PL/SQL on a Postgre database? You can with CompilerWorks.

We are driven to solve interesting engineering problems where compilers are useful. We have found many interesting applications in the world of databases/datawarehouses and "big data."

Let us know if you are interested info {at} compilerworks.com

fortysixpercent 3 days ago 0 replies      
Replicated | Associate Engineer | $90k - $110k + equity | Los Angeles | https://www.replicated.com

Replicated is modernizing the deployment framework for enterprise applications. We are looking for entry-level engineers eager to work in backend development to help build our product.

In this role you will be working on the cloud based and installable aspects of the Replicated product.

Experience that will be useful for this role includes golang, SQL, js, React, Docker and Kubernetes. The most important element though is a demonstrated passion for software development.

This role will be exclusively onsite in Los Angeles.

If you are interested please email austin (at) replicated (dot) com

fazanhabib 3 days ago 0 replies      
Automation Logic | DevOps Engineer| London | ONSITE, 50k - 80k www.automationlogic.com

About Automation Logic -

Automation Logic is a leading professional services business delivering technology-enabled transformation to enterprise clients through the delivery of Cloud, Automation and DevOps solutions.Headquartered in London, United Kingdom, Automation Logic has successfully delivered over 55 Cloud and Automation projects for some of the largest and most prestigious organisations in both the public and private sectors across Europe.

What we're looking for - the essentials

- Demonstrable experience in cloud-automation with a Devops background- Configuration management practices in Linux-based environments - Scripting ability in Python and Ruby - A passion for open source technologies and the open source community - Experience of Agile / Scrum methodology - Knowledge of various cloud technologies including VMware, AWS, Cloudstack and Openstack - Experience with configuration management tools including Puppet, Chef, Ansible and Salt - The ability to solve complex, multi-system problems The ability to learn new technologies quickly

Please contact me at fazan@automationlogic.com to apply :)

GamingPro 3 days ago 1 reply      
Stealth Gaming Startup | Senior Back-end Engineer (PHP) | World | Remote | Full-time, Salary: $180k - $220k, https://goo.gl/eo9kob

Stealth Gaming Startup | Senior Back-end Engineer (NodeJS) | World | Remote | Full-time, Salary: $180k - $220k, https://goo.gl/ardSgY

Stealth Gaming Startup | Senior Front-end Engineer (Angular) | World | Remote | Full-time, Salary: $180k - $220k, https://goo.gl/CXqBrQ

Recently launched Games/Betting (stealth) startup based in the EU is seeking world-class software engineers. We are expanding the companys initial offer, building new real-time browser games. The company is seeking to grow the team adding outstanding talent (full-time and/or contractors).

If you are up to the challenge, email your CV / GitHub / LinkedIn / StackOverflow, etc to: gaming.startup.eu+HN@gmail.com with the position you are interested in as Subject.

antonber 2 hours ago 0 replies      
Highrise - Durham, North Carolina | Lead Backend Developer (Scala) | ONSITE | Full-time | Relocation to Durham | https://highrise-inc.workable.com/jobs/513323 | Highrise connects the world through games

Highrise (http://appstore.com/highriseyouravatarcommunity) is the leading avatar-based social network on iOS. Every day, over 100,000 people use our application to make friends, keep in touch, decorate avatars and rooms, and chat. We are committed to providing a warm and comforting environment for people from all walks of life in Highrise.

As Lead Backend Developer, you'll be the first non-founder engineer on the backend team. The role is highly independent and will be working closely with our cofounders on all things backend. We have a strong engineering culture with an extremely capable and experienced team. The entire Highrise mobile app was built single handedly by our CTO, with the entire server backend written by our VP Eng. We are looking for an engineer and developer of the same caliber to join our team to take Highrise to the next level.

The role is fast-paced and independent, with a focus on results rather than on direct oversight or management. The role will require learning new tools, languages, algorithms, techniques and much more. Our backend is modern and highly performant. The stack uses Kubernetes, JRuby, Scala, Akka, and MongoDB, so experience with any of these technologies is a plus. To support the next round of growth we plan to migrate the JRuby codebase to Scala, and you will be the lead architect of this new Scala backend. In short, this is the perfect role for a self-starting engineer who loves to solve challenging problems in a fast-paced environment.

More here: https://highrise.workable.com/j/B30762210C

wahnfrieden 3 days ago 0 replies      
Top Hat | https://www.tophat.com/careers | Toronto, ON, Canada | ONSITE Full-time

Top Hat is hiring!! We are looking for smart software engineers to join our team. Some of the roles we have available are: Senior Android Developer, Junior DevOps Engineer, Senior DevOps Engineer, Senior Platform Developer, and Full-stack Web developer (Python, Django, Javascript, React.js/Flux, AWS, Ansible). Salary ranges based on experience from $80K to $130K.

Were a pretty awesome growth-stage startup in the education space - we make the classroom more interactive, fun and engaging for both students and professors. We raised our Series C round in order to take on the textbook industry, which you can read about here: https://www.bloomberg.com/news/articles/2017-02-15/top-hat-r... - Union Square Ventures joined us this round, who along with our previous investors make up some of the top VCs in the world (having funded companies like Kickstarter, Twitter, Shopify, Salesforce, Box.net, etc.).

Top Hat helps professors make every lecture count by transforming mobile devices into powerful engagement tools, inside and outside the classroom. Recently, Top Hat has been building out interactive textbooks and creating a way for professors to collaborate on authoring new content and sharing it through our marketplace. In summary, we have a great dev culture and some really cool problems to work on!

If you are interested in our open positions apply here: https://app.jobvite.com/j?bj=oqatYfwL&s=hn

plusepsilon 3 days ago 2 replies      
WriteLab | ML Engineer | Berkeley, CA | ONSITE, SALARY: 100K-130K

We at WriteLab (writelab.com) are building ML tools to give immediate writing feedback for students and English language learners. There is plenty of room to impact the product by designing and implementing new features, usually starting with data collection. We use all the good stuff in deep learning and NLP including: SpaCy, scikit-learn, TensorFlow, etc.

Strong background in machine learning and experience deploying ML models in production is a must. NLP and DL experience is a strong plus.

Interview process: initial video call with NLP engineeronsite interview to discuss previous experience and go through an NLP / ML problemlunch with CEO

Apply at Angelist (https://angel.co/writelab/jobs/243578-machine-learning-nlp-e...) or email me at motoki@writelab.com.

jeffnappi 3 days ago 0 replies      
ClearVoice | Front-End Software Engineer | Phoenix, AZ or REMOTE | https://www.clearvoice.com | Full Time

ClearVoice is a Content Marketing Platform and Marketplace. We make creating great content easy for everyone. We have indexed over 100M online articles and have identified and ranked 200k+ authors. We use this index to power our transparent freelancer marketplace. We supply all engineers with Macbook Pros and quality tools. Competitive pay, fantastic weather and low cost of living in Phoenix (or wherever you live)!



Ruby/Rails - Platform API

Python - Search Index


Currently looking to hire:

* Front-End Software Engineer ($100k-$110k)


Interested in another role not posted?

E-mail jeff __4t__ clearvoice.com

gghh 3 days ago 0 replies      
SUSE | Software Engineer | Nuremberg (DE), Prague (CZ) or REMOTE | Full Time

Linux kernel developer (process scheduling)

In the SUSE Labs department, we are looking for a kernel developer with experience in subsystems related to process management, such as the scheduler, PREEMPT_RT, locking and signal handling. You will develop and maintain the in-kernel process scheduling infrastructure, as well as tracing and debugging infrastructure (ptrace, ftrace, signal handling, ...), both in the SUSE enterprise products and upstream. You will also work with the PREEMPT_RT community on the RealTime patchset to the Linux kernel, with an ultimate goal of having PREEMPT_RT support directly available in mainline kernel.

How to apply

Preferably, submit all relevant information in a single PDF file, so that no important detail is lost in transit. Give us some time to process your application. Expect the interview to be done over phone. Form submission for this position at https://jobs.suse.com/job/nuremberg/kernel-developer-process...

navahq 3 days ago 0 replies      
Nava | Infrastructure Engineers, Fullstack Software Engineers | Washington DC, San Francisco SF, New York NYC | On-site - Full-time | $100k-$160k+ + equity + benefits

We're a small team of engineers, designers, and product builders that were brought in to help fix Healthcare.gov in the winter of 2013. Our revamped application is used by millions, converts 35% better, and halves the completion time.

It turns out theres a lot more to reimagine within government services, which is why were partnering with both the Department of Veterans Affairs and Medicare. With the VA, we are working to modernize their appeals system, making millions of veterans lives better through the process. Today, the average appeal takes 5 years to process; we can fix this. For Medicare, we are designing and building the architecture for Medicare's historic transition towards value-based care.

Its surprising how much can be done by a small group of empathetic people with deep technical experience, working closely with dedicated civil servants in government. Weve started Nava as a public benefit corporation to radically improve how our government serves its people, and we believe that the services our government provides should be clear and reliable. If you feel the same way, we'd love to hear from you.

Learn more about working here and apply if you're interested: http://navahq.com/careers

jzhen 3 days ago 0 replies      
Thinknum | New York | Multiple Positions | On-site - Full-time | $90k-$140k + equity

=== Who We Are ===

Thinknum is one of the fastest growing profitable SaaS companies in the world. Economic activity is coming online - companies are selling products, hiring employees, marketing and moving operations to the web. Thinknum captures the data trails that are created (e.g., How quickly is UberEATS growing on a restaurant-by-restaurant basis vs Grubhub?). We work with hundreds of financial institutions and corporations. Our office is in Midtown and we offer full benefits.

=== Who We Are Looking For ===

Director of Marketing

Were looking for a Director of Marketing that can help position our product and generate new qualified leads. You will help deliver our story, vision and product innovation resulting in increased coverage and awareness globally. The ideal candidate will have at least three years of experience marketing a SaaS product. Expertise in public relations, branding and using marketing analytics to make data-driven decisions is essential.

ReactJS Front-End Engineer

Were looking for an experienced ReactJS front-end engineer to implement features that enable users to intuitively answer questions on companies they are analyzing. You will need experience in ReactJS, CSS and an eye for great design.

Site Reliability Engineer

Were looking for a SRE that will support enterprise level applications hosted in the cloud. You need to have extensive experience in web application development and exposure to Amazon Web Services, Redshift and Postgres. Experience with container management and micro-services architectures such as Docker is a requirement. Enthusiasm for security best practices is a major plus.

=== Interested? ===

Interested in any of these positions? Drop me a note at jzhen@thinknum.com with Hacker News and the position title in the subject line.

Learn more about us: https://www.thinknum.com/

jdevonport 3 days ago 1 reply      
Airfinity | Data engineer | Brighton, UK | http://airfinity.com

Working to organise and understand the world's event, attendee and sponsor data. Currently hiring for multiple roles in our data science and engineering team based across London and Brighton.

We are looking for versatile engineers looking for their next big challenge.

We are a year old and have secured several rounds with a rapidly expanding team working on our event data products across London & Brighton locations.

Salary Range 45-55k + Equity + Benefits, Flexible Working, Based Brighton Offices

If you would like to talk please either reach out to me directly and mention HN [james at airfinity .com] or through our Careers page. https://www.airfinity.com/careers

rsyring 3 days ago 1 reply      
Level 12 | Full Stack Web Developer - Python, React, SQL | Louisville, KY | REMOTE, SALARY:$75K-115K, https://www.level12.io/careers/

We have openings for mid & senior/lead level positions.Please see our website for what is probably the most detailed job description you have ever seen. No plain, repetitive, HR riddled job description here, we want you to know what you are really getting into:


- We have a commitment to transparency and offer a no surprises experience throughout the interview and hiring process.

- We practice and preach sound development practices. You are likely to learn and grow as a developer while working here.

- You will have the option of working from home or our office, whatever suits you best. Lets make the most of our time and minimize commuting when not necessary.

- We have a no-drama office policy. We value and cultivate enjoyable working relationships among team members.

- We emphasize work/life balance and adopt policies that make sure our people dont get burnt out. For instance, our PTO/Vacation policies are designed so that you actually use them.

- A commitment to Agile Principles while not being enslaved to any particular methodology.

- You have the skills and experience (3-6 years) to be a mid-level or senior-level (6-10 years) full-stack web application developer.

- You like building full stack web applications with technologies like Python, React, SQL, etc.

- You are committed to automated testing of all the software you write (our apps typically have 92%+ test coverage).

- You recognized that there is a lot of idealism in the software development community and are not disenchanted with the the day-to-day realities of programming.

- You like working independently but can take direction from the team lead and contribute to a team as needed

- If you apply as instructed, we will give you a yay or nay response. No black holes here!

s3nnyy 3 days ago 1 reply      
Wealthport.com | Senior Computer Science / Machine Learning Engineer, Scala Backend Engineer, Data Preparation Expert | Zurich | SALARY: 100k-120k CHF | ONSITE | EU-Passport holders only

We solve on of the biggest problems in e-commerce: Normalizing product information. Using machine learning an NLP we transform broken, badly-labeled, unstructured data into useable, categorised and normalized data. See: https://www.slideshare.net/wealthportadmin/getting-started-w...

We are obsessed with functional programming. We use mainly Scala (backend) and we are researching a lot on NLP and ML. We look for:

- Senior Machine learning Researcher / Engineer - you will read & write papers on machine learning and/or implement algorithms in our core product.

- Senior Backend Scala engineer - you will build or well-tested backend and our core product.

- Data Preparation Export (Data Science) - you will help our customers adjust their data to our platform.

The interview process:

1) 15 min call with our tech recruiter (who is a former engineer)

2) Technical call with CTO

3) Onsite day solving a programming task with us.

Send us a short intro about yourself to:


kmtpaca 3 hours ago 0 replies      
Datanyze | San Mateo | San Francisco Bay Area | ONSITE

We're hiring at Datanyze! We're a small, profitable Silicon Valley startup looking for A+ talent. Our mission is to empower modern sales and marketing professionals to make smarter data-driven decisions.

I love working here because of the awesome people who've created an amazing, one-of-a-kind product. We also have some great benefits, like working from home on Tuesdays, and we're dog friendly. :)

We're hiring... https://www.datanyze.com/careers

* Software Engineer | https://jobs.lever.co/datanyze/555d1ae1-1bec-4ea1-8c27-18ac9...

* UX Designer | https://jobs.lever.co/datanyze/7deae848-47f9-4903-97d2-5eb1c...

* Inbound SDR | https://jobs.lever.co/datanyze/e080d6a6-c570-4182-807e-6011e...

* VP of Sales | https://jobs.lever.co/datanyze/bc63d71a-4ee7-4cc0-9869-a1451...

* VP of Finance | https://jobs.lever.co/datanyze/03b733da-5a81-44f7-b851-5284a...

* Sr. Customer Success Manager | https://jobs.lever.co/datanyze/a2f39154-37af-4ee7-bf0e-72d44...

mapd 3 days ago 0 replies      
MapD | San Francisco (city) | Backend Developer, (ONSITE/REMOTE)

MapD (https://www.mapd.com) is a Google Ventures/NEA/Nvidia/Verizon Ventures/Vanedge/In-Q-Tel backed Series B startup that builds a lightning-fast open source GPU-accelerated database and visual analytics platform that takes advantage of the massive parallelism and high memory bandwidth of GPUs. We can literally run queries orders of magnitude faster than other systems (http://tech.marksblogg.com/billion-nyc-taxi-rides-nvidia-tes...) and since the results are on the GPUs, we can easily visualize the result sets with the native GPU rendering pipeline. Check out our Tweetmap demo (http://www.mapd.com/demos/tweetmap) or our billion-row taxi demo (http://www.mapd.com/demos/taxis) for an idea of what the system can do.

Were looking for:

Backend Developer - Someone with strong experience in C++ and database/systems programming. Knowledge of CUDA/OpenCL, LLVM, X64 Optimization, and/or OpenGL a major plus.

Were a growing Series B company (~40 people) with deep knowledge of databases and GPU Programming. Benefits and equity are competitive ($115K-$170K).

Please email jobs@mapd.com if you're interested!

sankethkatta 3 days ago 0 replies      
Smartcar API | Frontend, Sales | Mountain View, CA | ONSITE | https://smartcar.com

We're a small team (9 people) making a big change in transportation. Technological additions to vehicles are kicking off a new era of better transportation which is affordable, greener, and safer. The automotive industry is undergoing the most disruptive changes since its inception. We believe the future of transportation is Autonomous, Electric, Shared and Connected. Smartcar is building an API platform to solve the "connected" part of it.

We recently launched https://teslabot.ai to show a sneak peak of what our platform can do.

The positions we are hiring for:

+ Business Development with 2+ years of experience selling to enterprise.

+ Frontend Software Engineer with 2+ years of experience with any modern frontend framework (React, Angular, Ember, ...). Our backend stack is Node.js, Postgres, Redis, Docker, AWS.

If you are interested in helping us modernize transportation and enjoy working in a collaborative environment, we'd like to meet you. Compensation is $95K to $130K + equity.

If you want to learn more, email me at sanketh@smartcar.com or call me at 530 475 2882. No recruiters.

janpaul123 2 hours ago 0 replies      
Remix (YC W15) | Backend, frontend, full-stack, algorithm engineers, and more | San Francisco | ONSITE, VISA

Join us in building a real-life SimCity.

Today, cities use pen and paper to make planning decisions that affect millions of people's lives. We think there's a better way. We've built a web-based platform that helps city planners make much smarter decisions.

Originally started at Code for America, we're now working with 200+ cities including Atlanta, Sydney, Boston, Miami, San Francisco, Reykjavik, and Seattle. All in just two years. Learn more about our product at http://remix.com.

Were looking for engineers across our stack to write robust code that drives the worlds first transit planning platform. We use:

- Mapping: OpenStreetMap, Mapbox, Mapzen, Leaflet, TWKB, GTFS, PostGIS, ogr2ogr

- Back-end: Ruby, Rails, Python, Flask, PuLP, COIN-OR Branch and Cut solver (CBC), Cython, Sidekiq, PostgreSQL, Redis

- Front-end: React, Webpack (with Hot Module Replacement), ES6/Babel, LESS, CSS Modules, Yarn

- Testing: CircleCI, RSpec, Approvals, WebMock, puffing-billy, Capybara, Jasmine, Happo, Browserstack, Overcommit, Codecov (>75% coverage front+back-end)

Youll work on (for example):

- The scheduling algorithm that turns a Remix map into work sheets for bus drivers

- Visualisations for use in public meetings, such as the Jane (Jacobs) isochrones tool (https://blog.remix.com/remixs-isochrone-visualizes-travel-ti...)

- Our geo-database of open data (transit and census)

- Live-updating costing models and simulations

- Our demographics tool that helps transit agencies serve their communities equitably (per the Civil Rights Act of 1964)

Go to http://remix.com/jobs to apply and to see all our openings (design, data, sales, customer success, etc). We are committed to a workplace that reflects the community we serve. We especially encourage women, people of color, and others who are underrepresented in the tech industry to apply.

pldpld 3 days ago 1 reply      
Ona (https://ona.io/) | Nairobi, Kenya | Senior Software Engineer | ONSITE | Full-time

We build a data management platform and tablet health application used globally to improve child and maternal health, governance, agriculture, access to infrastructure, and government accountability. E.g. our software routed patients during the ebola crisis in West Africa, counted votes during a Libyan election, is surveying national infrastructure post-earthquake in Nepal, and scheduling vaccines in Bangladesh, Indonesia, Pakistan, Indonesia, Zambia, and other places soon.

The stack you'll work with depends on the project, active stacks: Clojure/Script + Om, Django + PostGIS, Tomcat + CouchDB, see our FOSS at https://github.com/onaio/ and our 2016 roundup https://blog.ona.io/general/2016/12/30/year-in-tech-at-ona.h...

In the interview we'll ask tech and background questions to get to know each other, then we'll write and extend code together, https://ona.io/jobs/senior_sw_eng.html jobs+swe@ona.io@ona.io

fazanhabib 3 days ago 0 replies      
Automation Logic | DevOps Engineer| London | ONSITE, 50k - 80k www.automationlogic.com

About Automation Logic Automation Logic is a leading professional services business delivering technology-enabled transformation to enterprise clients through the delivery of Cloud, Automation and DevOps solutions.

Headquartered in London, United Kingdom, Automation Logic has successfully delivered over 55 Cloud and Automation projects for some of the largest and most prestigious organisations in both the public and private sectors across Europe.

What we're looking for - the essentials

Demonstrable experience in cloud-automation with a Devops backgroundConfiguration management practices in Linux-based environmentsScripting ability in Python and RubyA passion for open source technologies and the open source communityExperience of Agile / Scrum methodologyKnowledge of various cloud technologies including VMware, AWS, Cloudstack and OpenstackExperience with configuration management tools including Puppet, Chef, Ansible and SaltThe ability to solve complex, multi-system problemsThe ability to learn new technologies quickly

Please contact me at fazan@automationlogic.com to apply :)

nicpottier 3 days ago 1 reply      
Nyaruka Ltd - Senior SDE - Go / Python / React / Postgres - REMOTE - $90-$150k


We are a small team that build an open source platform used for large scale messaging, primarily used by UNICEF in developing countries.

You can see some of what we work on on Github: https://github.com/nyaruka

You can play with the platform here: https://textit.in/

We are a fun group of passionate engineers who want their work to do good in the world. We are spread across the world, some in South America, some in Africa, some in the US. We work on interesting problems which span making a visual programming language that non-programmers can pick up scale to huge numbers of interactions. Lots of fun problems to solve.

Would be particularly interested in female candidates based in Europe timezones due to the location of some of our largest customers in sub-saharan Africa.

Email: info@nyaruka.com

andrest 3 days ago 0 replies      
The Farmer's Dog | Software Engineer | New York | ONSITE, SALARY:90-140k, https://www.thefarmersdog.com/

The Farmers Dog is a VC backed (we just raised $8.1m Series A from Shasta Ventures) direct-to-consumer pet health brand on a mission to disrupt the $60 Billion pet food industry. Our products are human-quality, personalized and manufactured on demand.

Even though we don't sound like a typical tech company we take pride in software development. Were building a subscription based e-commerce business from the ground up and have plenty of interesting problems to solve. Our aim is to offer a seamless subscription experience through on-time production, customized products and best in class customer support. We have CI and CD processes in place, and make use of docker-based microservices via Iron.io. We have plenty of challenges to tackle from predictive analysis to optimizing fulfillment operations.

We're looking for a mid/senior Software Engineer who's comfortable writing backend code and dealing with docker and aws. Our stack is react (and redux), node, postgres, docker and aws.

If this sounds like you reach out at info+hn@thefarmersdog.com

beliu 3 days ago 1 reply      
Sourcegraph (https://sourcegraph.com) | Software Engineer | San Francisco, CA | REMOTE, Salary: $100-200K + equity

Sourcegraph is the best way to read and understand code. As a programmer, you spend hours every day trying to answer simple questions like "How do I use this library?", "What functions already exist?", and "What's going on in this changeset?" Sourcegraph makes exploring the world's code as painless as searching and browsing the web.

We're a small team founded by Stanford and Palantir alumni. Our users and customers span programmers across the world, influential open-source authors, and major companies. Our technical challenges include scaling code analysis and search to every codebase in the world.

Stack: Go, TypeScript, GraphQL, Docker + Kubernetes

Jobs page: https://about.sourcegraph.com/jobs

xando 3 days ago 1 reply      
Hey, a friendly reminder. Im parsing the thread, all job offers added here are also available on the map on


https://whoishiring.io/search/36.0440/-90.8984/4?source=hn (just HN items)

If you post here, please use the below format to help me with parsing. If you wont, no worries, I will do my best to get all the things right.

 1) {company} | {job title} | {location} | {attrs: ONSITE, REMOTE, INTERNS, VISA, SALARY, company-url} Google | Software Developer | SF | VISA https://google.com DuckDuckGo | Software Developer | Paoli PA | REMOTE, VISA, SALARY:100k-120k Facebook | Web-developer | Zurich | SALARY:120k CHF Google | Site Reliability Engineer | London | SALARY:120k GBP, VISA, REMOTE

 2) {company} | {job title} | {location} Google | Site Reliability Engineer | Sydney Facebook | Web-developer | Zurich
Im using this regex to test the first line, you can test it here https://regex101.com/r/relwQD/3

Check bellow for the SALARY regex.

and you can test it as well https://regex101.com/r/SRWkMz/2/

riteshr 6 hours ago 0 replies      
AlphaSheets (YC F3) | REMOTE or ONSITE | San Francisco, CA | Frontend Developer (React) | Full-time (contractors welcome too)

What we're building: collaborative, programmable spreadsheets. Think Google Sheets, but like this: http://www.alphasheets.com/videos/headliner.gif.

We aim to be the Slack of spreadsheets - enabling you to do anything in a spreadsheet. We've gotten excitement from wall street quants, marketing analysts, pharmaceutical scientists, and insurance analysts. We envision a future where tens of millions of people see AlphaSheets as their tool of choice for data analysis.

1 yr+ React experience is a must. We have a React+ES6+Flow / Haskell stack. We love seeking leverage through good architecture, languages (Haskell!), frameworks, and tools. (Doesn't matter at all for this position if you don't know Haskell.) We're well funded so we're not going away overnight. Our culture is one of efficient, open, and inclusive communication. You'll be joining a founding team from MIT.

Email our VP Eng (Ritesh Ragavender) at ritesh (at) alphasheets (dot) com

famousactress 3 days ago 1 reply      
Elation Health | Full Stack Developer | San Francisco, CA | Full Time

At Elation we make tools for physicians and their patients that improve the efficiency and fidelity of their relationship, and help to make the delivery of excellent, proactive healthcare possible.

We've got a number of roles available in engineering, product, design, sales, and customer experience. See them all here: https://www.elationhealth.com/careers/

Specifically I'm closely involved with trying to fill our engineering positions. We're looking for folks at a variety of experience levels interested in working on full-stack projects. For these roles we're looking for folks to join our SF team, but we do have a mix of remote and local devs and do open REMOTE positions fairly frequently -- so feel free to reach out if you're curious about those as well!

Stack is Python/Django/MySQL/ReactJS/Elasticsearch/Redis/AWS. Team culture is awesome. High empathy, low ego. Lots of interactions with passionate users, and generally in the company of people who care a lot about the quality of the product experience.

Apply online or reach out to me directly if you have any questions or are curious! I'm always happy to chat with folks about healthcare, startups, whatever. Contact info's in profile.

rdli 3 days ago 0 replies      
Datawire | Senior/Principal Software Engineer | Boston / Remote possible | Full-time

Datawire is a company focused on building open source tools for organizations adopting Kubernetes and microservices. We're looking for a C++/Go hacker who can work on Telepresence (www.telepresence.io), our open source tool for fast, local dev of services on Kubernetes and Ambassador (www.getambassador.io), our open source API Gateway built on Lyft's Envoy L7 proxy.

We're working on figuring out the best ways to make state-of-the-art tech (Kubernetes, microservices, Envoy, Docker) accessible to developers. Big bonus points if you like to write about technical things, know Kubernetes and/or have prior experience in a microservices architecture, and also know Python / Kotlin / JavaScript (we're a polyglot shop).

Salary $100K - $150K, plus equity and benefits, depending on experience.

Email careers@datawire.io.

ni-recruit 7 hours ago 0 replies      
Native Instruments GmbH | Python Developer, Senior Software Developer C++, System Administrator, Software Test Engineer| Berlin, Germany | ONSITE | Full-time

Native Instruments is a leading manufacturer of software and hardware for computer-based audio production and DJing. Our mission is to develop innovative, fully-integrated solutions for all musical styles and professions. We push technological boundaries and open up new creative horizons for professionals and amateurs alike.

We're looking for people with both the left and right brain fully engaged exceptional individuals with strong analytical minds and a passion for music and technology.

Agile Coaches to actively promote agile thinking in our company, and to support our teams to develop their skills and reach their goals.

Python Developers to build & maintain highly reliable and scalable APIs to be consumed by our music production and DJing applications.

C++ Developers to help us evolve our MASCHINE, KOMPLETE, and TRAKTOR software.

Software Testers to reduce uncertainty about the state of the product so the team can take the right decisions.

Linux loving System Administrators to administer and improve our network and server landscape.

Find out more and apply here:https://www.native-instruments.com/en/career-center/berlin


patientco86 3 days ago 0 replies      
ATLANTA, GA, Full time, Onsite, $100-$120K Full Stack Software Engineer at http://www.patientcolife.com

UNLIMITED PTO, Flex hours, catered lunches, casual environment, 100% paid healthcare premiums for individuals.

As a software engineer at Patientco, you will do what you were born to do write code that delights your users!

You should care deeply about how your software is experienced. This means considering how both healthcare patients and providers use your products and how your peers will interact with your code.

You should enjoy variety (and we arent just referring to the food and drinks we keep stocked in our kitchen), as you should expect to move up and down the software stack. You will be writing the PHP that powers our statement engine, digging deep into the back-end to write and tune SQL and dabbling in the client-side JavaScript, HTML and CSS of our web app.

Sound like you? Apply with CV to http://patientco.applytojob.com/apply/uGumZ5/Software-Engine...

edmack 3 days ago 0 replies      
SketchDeck | Mid level full stack engineer in Sunnyvale ONSITE

Hello! We're looking for an engineer to help grow our tech-enabled design agency. You'll work directly with our designers and clients, suggesting and building your own ideas to contribute to company growth. We're a small supportive team and excited to talk to HN candidates :)

$100k - $160k (depending on experience!), stock, benefits


rememberlenny 3 days ago 0 replies      
18F US Department of Interior | Front End Engineer | Remote | FULL-TIME

Compensation/Grade Level: GS-13 to GS-15

Key Requirements: U.S. Citizenship is required.

Security Clearance: Public Trust - Background Investigation Required

Link: https://18f.gsa.gov/join/front-end-engineer/

The Innovation Design Team will manage the U.S. Extractive Industries Transparency Initiative (USEITI) data portal and expand work begun in collaboration with 18F, as well as extending those efforts to other datasets and initiatives throughout ONRR. The Front End Engineer should be well-versed in modern development practices and data tools.

Objective #1: You will contribute high-quality, well-tested, maintainable code across an entire project lifecycle, using modern software development best practices

Objective #2: You will find and create tools and resources to help ONRR address their data management needs.

Objective #3: You will act as an agent of culture change within ONRR

sm123 4 hours ago 0 replies      
Realty Butler | Vancouver, BC (ONSITE) | Good base + equity

Currently hiring for a number of technical and non-technical roles, you can find them here: https://realtybutler.co/careers/ or at https://angel.co/realty-butler/

We're growing rapidly as we expand our services to REALTORS across North America, this is an opportunity to join early in this journey as we build, grow and deliver something remarkable.

ni-recruit 7 hours ago 0 replies      
Native Instruments Inc. | Backend Developer | Los Angeles, California | ONSITE | Full-time

For more than 20 years Native Instruments has been known for the world-class craftsmanship of software and hardware musical instruments supporting the most renowned performers, producers and DJs around the globe. Based in Berlin, Germany and growing rapidly in Los Angeles, were expanding our Digital Services team to reach a new generation of passionate music lovers. Join us in creating the future of music.

Read about us on Resident Advisor (link: https://www.residentadvisor.net/features/2527).

Native Instruments is a world-renowned Music Technology company, which builds the end to end integrated solutions that many world class musicians, producers, and DJs around the world rely on.

Backend Developers work on big data solutions for our digital services and solutions and help build the best possible online sound and music environment. .

Find out more and apply here:https://www.native-instruments.com/en/career-center/los-ange...


s3nnyy 3 days ago 0 replies      
Quatico.com | Java Backend or Full-stack | Zurich | SALARY: 100k-120k CHF | ONSITE | EU-Passport holders only

- Salary range: 100 - 120k CHF (7200 - 8000 CHF after taxes)

- Days of vacation: 25

- Probation period: 3 months (by Swiss law)

- Company site: https://www.quatico.com/home/ueber-uns/jobs/software-enginee...

- Description of company and job: Quatico has a true "engineering over management" culture. They are doing three main things: 1) Platform integration (leverages Magnolia, AEM) to build first headless CMS, behind you can have Hybris, SAP etc (and you don't need to touch the SAP "crap"). 2) Tailored web apps with heavy number crunching on the server - they build the software analyzing all the weather data in Switzerland for "Meteo Schweiz". They more often than not build bug-free software and value good software craftsmanship practices.

- interview process:

1) Phone screen

2) Coding task (skipped depending on first impression)

3) Onsite half day with us (we pay expenses)

Send us a short intro about yourself to:


Fleming_1 3 days ago 0 replies      
Everwise | New York, NY | Sr. Software Engineer | Full-Time| ONSITE | $140k - $170k + equit | https://www.geteverwise.com/careers/

We at Everwise, a Sequoia-backed company, are reinventing talent development by connecting professionals with the people and resources they need to be successful at every stage in their career. We work with some of the top companies in the world, including Salesforce, Lyft, GitHub, Virgin, and Apple.

We're a diverse engineering team based in NYC, who come from all walks of life. We have successful start-up experience and embrace processes and technologies that amplify output. Day-to-day we leverage Ruby, React, Redux, AWS, and Postgres. We're very adaptable and looking for someone who welcomes the opportunity to solve a broad range of problems using a wide array of technologies.

We are seeking a talented senior engineer who has experience developing web or mobile clients from the ground up and is passionate about doing work that matters. You'll be working closely with a number of teams, including Product, to make a real impact here.

What You'll Do-Develop and maintain Everwise's SaaS cloud-based web applications-Identify scaling bottlenecks and propose solutions-Research, test, and benchmark new technologies-Design and communicate coding standards and architectural plans-Lead design of front-end framework using React and application framework using Rails-Work closely with Product/UX to deliver simple and intuitive desktop and mobile solutions

What we are looking for:-5+ years of experience with large scale, high traffic/performance web applications-Experience with Ruby on Rails or related MVC web frameworks (Python/Node.js/php etc.)-Experience with Javascript (familiarity with React is a plus)-Expert experience with object-oriented programming and design patterns-Significant experience building scalable, distributed systems-Significant experience with Sql/NoSql and database technologies as they relate to application development.-Understanding of unit and functional testing best practices-Command of DevOps, CI, and deployment engineering (Docker, Ansible, Nginx, and Unicorn are bonuses)-Cloud experience including redundancy, security and scalability strategies

If you are interested in learning more, please email me at stephen@geteverwise.com, or apply on our site https://www.geteverwise.com/careers/

giessel 3 days ago 0 replies      
Moderna Therapeutics | Data Scientist | Cambridge, MA | Full time, onsite | http://tiny.cc/mdtxdatasci

Moderna Therapeutics is a biotech built around one key idea: what if messenger RNA could be a drug? Cells in our bodies use mRNA to turn the information stored in DNA into protein machines that carry out all aspects of our biology; when this process is broken, it can lead to diseases like cancer. By introducing mRNA molecules into cells we can directly fix these problems, and enable a revolutionary new class of medicines.

We are looking for a motivated data scientist to join our Computational Sciences research team. There are opportunities to make an impact across the company, from leveraging data generated by our automated production processes to cutting edge application of machine learning and neural networks on biological sequence data. The ideal candidate would be as comfortable at a terminal as in an biology seminar- but exceptional candidate from all backgrounds will be considered.

Moderna Therapeutics is a clinical stage 6-year old company that has raised a collective $1.9B in private financing. In the last year and a half, we have started 7 Phase I Clinical trials and have 5 more in the immediate pipeline, with many more to come. Please, give the position a look!

rchoate 8 hours ago 0 replies      
Boston, MA | Full-time, ONSITE | Site Reliability Engineer | Wayfair.com

The mission of our Site Reliability team is to ensure customer facing applications are highly available. This team develops and maintains a strong full stack platform foundation for our applications to run on. SRE also partners with Development Organization to help architect customer facing applications that scale as well as operate well in production. Right now, we have many high priority recruiting needs across Site Reliability all roles and at all levels.

Site Reliability Engineer https://jobs.wayfaircareers.com/jobs/ocHi5fw0/Site+Reliabili...

Cloud Reliability Engineer https://jobs.wayfaircareers.com/jobs/ouwo5fwd/Cloud+Reliabil...

Senior Site Reliability Engineer Platform Engineering https://jobs.wayfaircareers.com/jobs/orii5fwQ/Senior+Site+Re...

I get a referral bonus if you apply through me. Email my username @ wayfair

rymohr 3 days ago 0 replies      
Kumu | Senior Software Engineer | REMOTE | https://www.kumu.io

Bootstrapped data viz platform that helps people understand complex relationships, primarily through network, systems, and stakeholder maps.

Were currently working with some of the worlds top organizations including The Omidyar Group, Gates Foundation, Hewlett Foundation, USAID, Stanford ChangeLabs, 100Kin10, Democracy Fund, World Bank, Humanity United and more.

 - Full-time remote position - Salary $60-80k - Equity 1-2% - ARR over $200k - Flexible hours within a small, mission-driven team - Annual adventure retreats - Stack: react, redux, rails, webgl, webpack/babel, aws, git/github, IE11+ - Bonus points for experience with: graphs/networks, couchdb, elasticsearch, redis, d3
Youre probably a great fit if:

 - Youre a talented web developer (both frontend and backend) - Youve mastered multiple programming languages and frameworks - Youve built and maintained a complex library, single page web app, or product - You work well setting your own priorities and working with lots of freedom - Youre excited about (or at least dont mind getting dragged into) snowboarding in Bend, rock climbing in Utah, surfing in Costa Rica, or whitewater rafting in Colorado.
On a day-to-day basis youll be working with Ryan [1] and Dan [2]. Youll be involved throughout the entire development process, from initial brainstorms and sketching to the final stages of testing and release. We move fast and ship often, and try to break work into weekly deliverables to keep everyones expectations and progress in check. We do a hangout at the beginning of each week to reconnect and revisit everyones immediate priorities.

If youre interested, please send a SHORT email to careers@kumu.io telling us why youre excited to work for Kumu. Experienced developers only. Lengthy and/or generic applications will be ignored. Thanks!

[1]: https://twitter.com/rymohr

[2]: https://twitter.com/_danprince

little-wheel 8 hours ago 0 replies      
Little Wheel | Full Stack Developer | London | ONSITE | 45k-60k

Little Wheel builds in-house software for a gambling syndicate. This software distributes profitable play strategies to players, and keeps track of bets placed, flow of money and earnings. You'll be working on automating more of our processes by expanding our models, improving user engagement, and integrating notifications and Monte Carlo simulation into our system.

We've already made two successful hires from Hacker News, and we're looking for full stack developers.

We ship code regularly (usually weekly) and it has an immediate impact. It's a product-based role where you can directly influence product decisions. There's close and direct interaction with business users and product owner. We have varied problem spaces and you'll be working on greenfield projects - no legacy systems.

Stack: C#, SQL, ASP.NET, Entity Framework, JavaScript, HTML.

Hiring process: phone call, in-person interview (technical questions, mini project, career motivation discussion).

Pay: 45k-60k, depending on experience/skills/role.

More detail: https://www.littlewheel.co.uk/hiring/

Apply: email dan@littlewheel.co.uk with a CV/GitHub/anything interesting, or if you'd like any more information about the role.

vitiell0 3 days ago 0 replies      
Cooklist | Cofounder / React Native / Django | Dallas, TX | Remote | Equity 10% - 40%

Cooklist shows you recipes you can cook with the groceries you buy. It can connect to 81 grocery chains like Walmart, Safeway, Kroger etc. and automatically download every purchase a user makes into the app. It uses NLP to match each product purchased to recipe ingredients. Over 1,000,000 products are matched to 1,000,000 recipes with 90% accuracy.

Ive built Cooklist over the last 8 months and its now live in private beta. Hundreds of users are participating in the development process. 10,000+ purchases have been downloaded in the last week. You can see a demo video at https://cooklist.co Im looking to bring on a strong technical cofounder to lead the development of the mobile apps. If youre interested in working on this idea or would like to try the beta, email me at daniel@handground.com

The last project I created was the Handground coffee grinder (raised 300k on Kickstarter): https://handground.com You can also find me on Github: https://github.com/Vitiell0

late2part 3 days ago 1 reply      
Crowdstrike | Irvine, Sunnyvale, Seattle, DC, Minneapolis, London, Pune, Bucharest, Remote within USA, UK, CA, AU or NZ | Fulltime | ONSITE or REMOTE | http://www.crowdstrike.com/CrowdStrike Stops Breaches. We're a rapidly growing company that just raised $100M from awesome investors like Accel, CapitalG, Warburg Pincus, March Capital, and Telstra - https://www.crowdstrike.com/resources/news/crowdstrike-close....We're growing our team of software and devops engineers to help scale our automation of our software and systems. Give us a shout if you're interested in the following areas, with other information listed at http://www.crowdstrike.com/careers/

 * Data Center Technician * Linux Systems Engineer/SRE * Virtualization Engineers (manage ESXi and other systems) * Pentesters * Kernel Software Engineers * Securing systems internally and externally with a focus on automation and visibility * Cassandra/Elastic/Spark/Splunk Scaling and Automation * Chef/Python/AWS/Openstack Scaling and Automation * Public, Private, Hybrid Cloud and Datacenter Growth at Scale
We have a real devops approach - very egalitarian and enabling of engineers. There's tremendous mutual respect and as a result, we get a lot of leading edge stuff done very efficiently.

Come join us! See us at http://www.crowdstrike.com/careers/. You're welcome to ping me at alan dot hannan at crowd strike dot com for any questions. I manage a team here and enjoy my job and coworkers. Im hiring for the first 3 positions listed above.

sdalezman 3 days ago 0 replies      
PlatformWatch | Full Stack Developer | NYC | $80-110K + equity + benefits | Full-time, REMOTE |

Im the CTO/co-founders at PlatformWatch (https://www.platformwatch.com/). Were building a platform that will change the entire software procurement lifecycle; including how you discover, purchase, manage and optimize SaaS applications. We're obsessed with building great experiences - whether that's for our users, employees, or engineers.


* don't shy away from tackling hard problems

* can work comfortably across the stack

* have experience with JavaScript, Python, or Go

* have 3+ years experience

Bonus Points:

* enterprise SaaS development experience

* production machine-learning experience

* previous experience leading engineering teams

If you're interested email shlomo (at) platformwatch (dot) com

ryantbrown 3 days ago 0 replies      
Senior Full Stack Engineer | Sacramento, CA | $80k-$110k | ONSITE | https://grin.co

Grin is looking for full stack engineers to help build the next generation of influencer marketing software.

We offer a competitive salary, equity and a great environment.

The ideal candidate is someone who wants to get in early and own large pieces of functionality across many services/platforms. They should love working with the newest versions of everything and be problem solvers who can plan, design, prototype and publish game changing features.

PHP (7.1 / Laravel)JavaScript (ES6 / Node / Vue 2)MySQL / RedisSQS / Algolia / Stripe (many more services)

Email ryan@grin.co.

alexpeattie 3 days ago 0 replies      
Peg | Full Stack Developer | London | ONSITE | fulltime | https://peg.co/hiring | 35k-55k + equity

We're on a mission to shift $1BN in advertising budgets towards independent content creators, so we're after someone with frontend and backend development skills to help make that happen.

We're looking for one dev with 1+ years of experience building software professionally, and another with 3+ years; but above all we're after people who are excited about building world-class software, getting their hands dirty with tough problems, and constantly learning.

Our stack is Rails 4.2, Angular, a PostgreSQL DB (now quite big, hundreds of millions of rows), Redis/Sidekiq, Gulp for builds - the whole shebang is at https://stackshare.io/peg/pegWe recently moved into lovely new offices near Aldgate East, if you'd like to drop in and chat more about the roles, drop me a line: alex@peg.co

felixge 3 days ago 0 replies      
Apple | Backend (Go, PostgreSQL) engineer | Shanghai, China | ONSITE | Full Time

We're a small team that is having a huge impact on the mass production of Apple's products.

If you're an expert in Go or PostgreSQL (ideally both), we'd love to talk to you. But perhaps even more importantly, you should be a good communicator and fast learner. Relocation is possible. My e-mail is in my profile.

You might also enjoy enjoy this recent blog post of mine that gives you a small glimpse on the kind of things my team is up to: http://felixge.de/2017/07/27/implementing-state-machines-in-... (The example is not the problem domain we're working in, it was made up for the post)

danking00 3 days ago 0 replies      
Hail @ Broad Institute of MIT and Harvard | (Junior | | Senior ) Software Engineer | Boston, MA | ONSITE, https://hail.is, SALARY:80k-150k

The Broad Institute of MIT and Harvard was launched in 2004 to improve human health by using genomics to advance our understanding of the biology and treatment of human disease, and to help lay the groundwork for a new generation of therapies.

The Hail team's mission is to build tools to enable rapid analysis and exploration of massive genetic datasets (10s of TB and tripling yearly). We are committed to open science and everything we do is open source. We currently develop in Scala, Spark, Python and C/C++ but will use any tools we need to get the job done.

We're looking for skilled engineers who have a solid CS/engineering background, can quickly write clear, correct code and, for the senior position, have experience working on large, complex projects. You don't need experience in biology or our particular technologies. We work in a highly multi-disciplinary environment (with biologists, bioinformaticians, doctors, operations and mathematicians). Self-improvement is a fundamental part of our culture; we want to grow great engineers. You must be excited to be challenged and learn new things.

Questions? Want to apply? Visit broad.io/hailjob2017 !

bojo 3 days ago 0 replies      
AlasConnect | Software Engineer 1 | $75,538 - $100,477 | Fairbanks - Anchorage - Palmer, Alaska | Onsite | Full-time

AlasConnect is a subsidiary of Matanuska Telephone Association, a telecommunications company which services part of southern Alaska. AlasConnect itself is a Managed Service Provider (generally Microsoft) and has offices and clients throughout the Fairbanks, Anchorage, and Palmer areas.

I run a small team of developers which supports and writes software for both companies. The MTA side has a bit of C#/.NET and is fairly enterprise-y, although various new projects are being written in Haskell as we standardize our tooling. On the AlasConnect side we are slowly gearing up to full time Haskell consulting and software development shop.

* Functional programming experience would be nice, but not required. Happy to train passionate people into Haskell.

* No internships. This is a mid-career position, so a few years of practical software engineering experience is required.

* We are not in a position to sponsor visas, and therefore can only consider people authorized to work in the US.

* Unfortunately onsite is a hard requirement at this time.

If you are interested the official position requirements and forms are listed at http://alasconnect.com/jobs.html under the Software Engineer 1 heading.

Please mail all applications/resumes to hr@alasconnect.com

If you have any questions or concerns before applying you can contact me directly at bcj@alasconnect.com (Brian).

k1w1 3 days ago 1 reply      
Aha! (http://www.aha.io) | Rails / Front End / UX | REMOTE

Aha! is looking for experienced Ruby on Rails, Javascript and front-end engineers to develop rich interactive experiences in React with a Rails backend.

Aha! is the #1 tool for product managers to plan strategy and roadmaps. Aha! is profitable, you can work from anywhere in North America and we offer excellent benefits. We use our own product to manage our work (which is especially rewarding), we deploy continuously and we are developing in Rails/ES6/React/d3.

Our entire team is remote - in US, Canada and Mexico so we can collaborate during the work day.

http://www.aha.io | email: engineering-jobs@aha.io

Rezo 3 days ago 0 replies      
Cloudcraft | Frontend Engineer | Earth | REMOTE (only), FULL-TIME or CONTRACTOR https://cloudcraft.co

We're looking for experienced Frontend or FullStack Engineers with modern JavaScript and React experience.

Cloudcraft provides tools for software teams working with AWS. Join our small, 100% remote, engineering team and you will have the chance to make a big impact and take ownership of projects and your own work.

Our ideal candidate is self-motivated, has excellent written and verbal communication skills and has worked professionally with React or equivalent frontend experience. Functional programming and previous experience with AWS services, graphics programming (including games) or SVG rendering are a big plus.

Our stack consists of JavaScript (100% ES6+), with React on the frontend and Node.js on the backend and literally every single AWS service due to our product's unique nature. You'll have the opportunity for a lot of learning and experimenting on the job!We're bootstrapped, profitable and growing. Work from anywhere in the world, we don't care. I'm in NYC. To apply please email jobs@cloudcraft.co with your resume or any links you'd like us to check out, and include "HN - Cloudcraft" in the subject line. No recruiters or agencies, please.

msolo 3 days ago 1 reply      
Broad Institute of MIT and Harvard | Cambridge/Boston, MA | Software Engineer | ONSITE, VISA

We're a small team of software engineers, computational biologists, mathematicians, clinicians, and geneticists building cutting-edge tools and methods for interpreting massive genomic datasets.

We are looking for friendly people with demonstrated experience in web tech, an eye for design, and genuine excitement to learn new things. Our stack: React, Redux, D3, SVG, GraphQL, node, Docker, Kubernetes, Google Cloud/Container Engine, Python, Scala, Apache Spark, Elasticsearch.

In this role, you'll receive domain-specific training at a world-class research institute. Your work will be 100% open source and highly visible in the genetics/genomics community. The tools you will help build are used by tens of thousands of researchers and physicians around the world who cure disease and make biological discoveries. Come help shape the future of human genetic data visualization and discovery!

email: msolomon@broadinstitute.org

greghughes 1 day ago 0 replies      
Football Radar, London UK, ONSITE https://www.footballradar.com/careers/engineering-data-scien...

Football Radar are hiring! We are currently recruiting for the position of Systems Engineer, JavaScript Engineer, and Backend Software Engineer. Our stack includes Docker, Scala and React, but we prefer the best tool for the job.

Football Radar was founded with one clear mission: to become the smartest company in football. We provide world-leading insights to clients across industries, underpinned by sophisticated and wholly unique football analysis.

Our engineering department comprises twenty people split into focused teams working on a broad set of problems across trading, modelling and football analysis. We cultivate an agile working environment; planning milestones and user stories, heavy collaboration, and understanding every aspect of the domain is all part of the day-to-day.

Apply at https://www.footballradar.com/careers/engineering-data-scien...

supriyab 3 days ago 0 replies      
Course Hero | Senior Software Engineer: Business Infrastructure | $130K - $158K + equity | Redwood City | Full-Time Onsite

Technology is revolutionizing the way we learn, and Course Hero is committed to increasing the accessibility of educational resources so students are empowered to thrive academically. We're growing fast, we're profitable, and we're looking for new team members to help us plot our course towards future success.

We're hiring a Senior Software Engineer on our Business Infrastructure team. Our team is small, so you'll experience projects from start to finish, solve complex technical challenges, and work closely with product managers and designers to craft product features our customers love.

The Business Infrastructure team keeps the engine running at Course Hero-- we do everything from scaling our in-house payments infrastructure to building core functionality for our site and automating processes to help our internal teams move fast! Oh, and we built Course Hero's first microservice. Join us to build more and make your mark in ed-tech.

Apply at http://grnh.se/phbwyq1.

aaroneous 3 days ago 0 replies      
ShopPad | Front-end developer | Oakland, CA | Onsite | Full time $90k - $120k | https://www.theshoppad.com

You: An experienced, front-end developer with a strong aesthetic. You'll be working in HTML, CSS, JavaScript and Photoshop/Sketch/etc. With customers like Tesla Automotive, Nine West, Acer, GE, and Starwood Hotels, your impact will be seen by millions every day. Those with entrepreneurial or eCommerce experience are strongly encouraged to apply.

About ShopPad: The largest provider of apps and services for Shopify's eCommerce platform. Founded in 2012 by two experienced entrepreneurs, backed by some of the best angels in the bay, and headquartered in Oakland a few blocks from BART. Competitive salary, meaningful equity, health/vision/dental/commuter benefits, work remotely every Thursday, fully stocked kitchen, team outings, smart & fun co-workers.

Please send your resume and cover letter briefly explaining why you're interested to careers-417@theshoppad.com

rbrcurtis 3 days ago 0 replies      
Genesys (http://www.genesys.com/) | Madison, WI | ONSITE | Full-time | Front End Web Developer | SALARY $70k to $110k+ depending on experience.

I am looking for a front end developer to work heavily in ember on our PureCloud product (a SaaS omnichannel communications platform). No ember experience needed, you just need to have some experience with modern SPA frameworks of any variety. Any level of experience is welcome.

Feel free to contact me at ryan.curtis@genesys.com.

plsoucy 3 days ago 0 replies      
TapClicks | Software Engineer (intermediate to senior) | Montreal, QC | ONSITE, VISA, SALARY: 50-100k CAD + stock options

* Intermediate to senior software engineers (back-end (LAMP/PHP 7), front-end (Angular) and full stack)

We build a unified reporting dashboard mostly targeted at marketing agencies, with connections to 150+ third-party platforms from which we get data through APIs and FTPs in some cases. We also offer a workflow management tool to help make our clients more efficient.

TapClicks is #87 in the Inc 5000 list of fastest-growing private US companies for 2016, and has offices in San Jose (Silicon Valley), Nashville and Boston.

We're looking for people in the Montreal area or willing to move to Montreal. We're open to sponsoring VISAs for great candidates.

Email me at plsoucy@tapclicks.com if interested. Thanks!

geekjock 3 days ago 0 replies      
Hammer | Senior Software Engineer | San Diego or Remote | Salary: $100-$165k | hammer-corp.com (undergoing redesign)

Hammer is a bootstrapped, profitable software company that's tripling in size every year. We help car dealers manage their inventory and automate their advertising. Recently, we launched a new customer messaging tool for brick-and-mortar businesses.

We are looking for an experienced developer to help build our next generation of web and mobile apps using Rails, Elixir, React, and React Native. As an early hire on a small team you'll have a huge stake in what we build and how we work.

Our engineering team is small, distributed, and largely asynchronous. We value a calm, collected environment where you can focus on doing great work. Aside from a couple of weekly check-ins or project updates, you'll be able to work interruption-free.

You can expect top-of-the-market pay, flexible hours, and a balanced 40-hour work week.

If you're interested, email me at abi+hn@hammer-corp.com!

rchiba 3 days ago 0 replies      
TINT | Senior Full Stack / Frontend / Backend Engineers | UX/UI Designer | https://www.tintup.com | San Francisco | REMOTE (US/Canada/India) | $90K - $170K

APPLY HERE: https://www.tintup.com/jobs?lever-source=hackernews

Were looking for engineers and a UX/UI designer to join our small 24-person team. We offer a competitive compensation package, and have a flexible remote work policy.

Over 5,000 brands use TINT to power their content marketing. We are proudly profitable, not dependent on investor funding. Every Friday we work on hack projects that we think will push the business forward. Our current stack is Backbone, Rails, MySQL, and AWS.



on the positions: https://www.tintup.com/jobs?lever-source=hackernews

on TINT company culture: https://www.tintup.com/about

on a few of our customers: https://www.tintup.com/clients

on what it's like to work here: https://instagram.com/tint/


BENEFITS (besides the competitive salary and equity...)

TEAM TRANSPARENCY - We calculate compensation based on a formula that we all agree on. Cap table is made available to all employees. Business financials are known by all teammates. Even cofounder meeting minutes are sent to the team.

FLEXIBLE REMOTE WORK - We have a flexible remote work policy that allows employees based in San Francisco to work remotely for extended periods, and for engineers to join us remotely full-time.

PERSONAL DEVELOPMENT PROGRAM - A monthly stipend and program designed for self-improvement. Every month, we individually choose goals to accomplish and are given a stipend to accomplish them.

APPLY HERE: https://www.tintup.com/jobs?lever-source=hackernews

ocharles 3 days ago 0 replies      
CircuitHub (https://circuithub.com) | Full-stack (Haskell, Elm, NixOS) engineer | London, UK | Full Time

Join our growing team to work on a variety of problems across CircuitHub's entire stack. No direct experience with factory automation or electronics is necessary but we like curious people willing to learn.

Our stack:

* Haskell API server using GHC 8, Yesod, Opaleye, and many other libraries from Hackage.

* Elm front end.

* PostgreSQL for data storage, with querying via Opaleye & Rel8.

* AWS / Heroku for hosting.

* NixOS for development environments, continuous integration and deployments.

* Functional reactive programming for standalone GUI applications.

* Prometheus and Grafana for metrics and instrumentation.

What we look for:

* You enjoy figuring out what to work on and teaching yourself whatever you need to get the job done.

* You enjoy working as part of a team and you're also happy working on your own.

* An ability to move quickly and and respond to changing requirements.

* Pride in your work, taking ownership of features and collecting requirements from end users.

Interested? Get in touch! https://circuithub.com/careers/haskellers

cik 3 days ago 0 replies      
Couban | Various Development Roles | $80k-130k | Toronto, Canada | ONSITE, Full-Time | www.coubansoftthing.com

Stack: React, Django, ElasticSearch, Others

Couban is building the next generation of security intelligence software, a platform that enables real-time collection and interactions with security event data. We're a tiny team based out of Toronto, Canada, but punch way above our weight.

We're looking for someone to help us work on the same stack - but for a client, not the core business. After 4 months on the alternate stack, you're promoted to core - working on the product team.

Interested? admin [at] coubansoftthing [dot] com

shuoz 3 days ago 0 replies      
Mira | Co-Founder & CTO | Full-Time | San Francisco, Onsite | $60K - $80K, Co-Founder Equity

Mira is an Angel funded insurtech startup which recently joined 500 Startups. Our technology streamlines the life insurance buying process, and we are using machine learning and digital medical, financial and behavioral data to create a better risk underwriting model. Mira focuses on higher risk applicants, and is currently distributing online for 15+ life insurers. www.MiraFinancial.com.

Join our team to build a world-class company and transform the $4.6 trillion insurance industry. We are looking for a technical co-founder with exceptional talent and drive, who enjoys constant challenges. This is initially a very hands-on technical role, and grows into a managerial role over time. You will have autonomy over the entire technology stack, and will work closely with Miras Founder/CEO at the 500 Startups office in San Francisco.

Learn more at http://bit.ly/2f3Be3f

jrwoodruff 12 hours ago 0 replies      
TechSmith | UX Designer | Okemos, Michigan | Onsite, full-time | https://www.techsmith.com

TechSmith, makers of Snagit and Camtasia, has been creating software that people love for 30 years. We're looking for an experienced designer to help us create the next thing our users will fall in love with.

As a UX designer here, you'll collaborate with product owners, software engineers, researchers and designers to solve complex problems around creating and communicating with video and images.

As an employee, you'll enjoy a generous benefits package that includes health insurance, 401(k) match, paid time off, a healthy work-life balance and too many fringe benefits to list, including free snacks and beverages, catered lunch every Friday, company-sponsored outings, happy hours and a whole lot more.

We're a West Coast company with Midwest hours and cost of living. We've been a self-funded, private company from the beginning, and we use that advantage to invest in ourselves and our employees for the long-term.

Find out what we're about and apply here: https://www.techsmith.com/careers/open-positions/details/?p=...

justboxing 3 days ago 0 replies      
Hi, I'm manually curating the VISA OK i.e. Work Visa / Work Permit Sponsorship Jobs in this thread and posting them at http://www.visaok.in/

The vast majority of employers aren't strictly adhering to @xando's regex and I've come to terms with manually curating and posting the VISA OK Jobs 1 by 1 for now. Please bear with me -- all VISA OK Jobs listed here will be listed on http://visaok.in/ in about 2 to 3 days.

If you are a job seeker looking for a WORK VISA, feel free to let me know what changes and updates you'd like to see on the site. Bug reports also welcome.

email: theblogdoctor @ gmail

ksowocki 3 days ago 0 replies      
Occipital (https://www.occipital.com) | Boulder, CO, San Francisco, CA | ONSITE | Full-time | iOS Engineer, Computer Vision Engineer, Platform Software Engineer - Mixed Reality, Unity/Unreal Engineer, Business Development, Sales Director

At Occipital, were working on spatial computing - using computer vision to 3D reconstruct and understand your surroundings so that software can operate over real world spaces. We believe it will power the next generation of augmented reality and some of the key parts of virtual reality as well.


romanr 3 days ago 0 replies      
HITASK.COM | Growth Hacker | REMOTE | https://hitask.com

Popular SaaS product looking for a growth hacker, marketing lead.Ideal candidate will be passionate about internet business, enthusiastic, energetic "can do" attitude person who will bring initiative and new ideas to the table.

You are Result-Oriented Growth and Marketing Professional:- Must understand specifics of Task management and Project management software- Must be an expert in SaaS marketing

We offer base for $1,000 plus growth-based compensation. You are looking at $100,000-$300,000 a year total.

contact us directly at recruit@human-computer.com (this is our office email, not 3rd party recruiter)

a_metaphor 3 days ago 1 reply      
Cruise Automation | C++ Engineers, Data Scientists, Android Engineers | San Francisco | ONSITE


Description: We're the driverless car company. We believe in improving peoples lives by making transportation safer, more accessible, and more convenient.Our team is small and we move quickly. Were currently testing a fully driverless solution on city streets in San Francisco. We're looking for smart, ambitious people to help build the worlds largest fleet of driverless cars.

We are looking to hire C++ engineers across the entire company so please check out our open roles!Check out this video of our car driving fully autonomously through SF!


Technologies: C++ on ROS Visa Sponsorship: We can transfer Visas Contact: Anthony@getcruise.com

kerianne 3 days ago 0 replies      
Flexport | Software Engineers & Senior Software Engineers | San Francisco | flexport.engineering | flexport.com

Flexport's mission is to fix the user experience in global trade and bring the world free trade through technology. Here at Flexport, we share a vision where any two businesses can trade with each other without regard for geographic distance, logistical complexity, or regulatory challenges.

We are the first licensed customs brokerage and freight forwarder built around a modern tech stack. Our services include air & ocean freight, trucking, fulfillment, and cargo insurance. By automating these services and delivering them through an online dashboard, weve dramatically reduced costs and improved reliability.

Our services put clients back in control of their logistics and supply chain needs. We offer faster freight quotes, lower prices, improved visibility and notifications, and advanced analytics. Our lean team of ~35 engineers are building products flexible, maintainable products that are reshaping this fragmented industry.

If you're a self-starting engineer with an interest in product ownership & taking autonomy over core products & features, let's chat.

Check out all our openings: https://www.flexport.com/careers/department/engineering

email moira@flexport.com

SJES 12 hours ago 0 replies      
Cyber Security Developer - 100% Remote. Raising the Floor - US is hiring a remote Cyber Security Developer, 8 month contract, full-time hours.Position Details: * Work with the development team to secure the Global Public Inclusive Infrastructure (GPII) architecture against attacks and intrusion.* Advise on regulations and laws the GPII needs to comply with, including a specific list of concrete technologies and processes that need to be implemented in different scenarios where the GPII applications will be used with (public cloud, on premises servers, etc.) so the application is compliant. * Identify common threats that the GPII may be vulnerable to, assessing the extent to which we have strategies for protecting against them, and devising and co-implementing an architecture for protecting against those issues that we dont currently address, e.g., credentials theft, etc. * Work with the infrastructure team to set up an automated, periodic security audit system using a security scanner/reporting tool (e.g. Nessus, Metasploit, etc) and expose / synthesize results. Apply:Please refer to the following document for more details:https://docs.google.com/document/d/1mzi281pkbt5av7b8gI8D22r-...And then submit your resume to jobs@raisingthefloor.orgAbout Us:At Raising the Floor, were an international coalition of individuals and organizations dedicated to ensuring that the Internet, and everything available through it, is accessible to people with accessibility barriers due to disability, literacy, digital literacy, or aging, and regardless of their economic resources.
bryanh 3 days ago 0 replies      
Zapier | Infrastructure & Frontend & Product Engineers | Earth | REMOTE (only)

Zapier is sort of like Legos for the internet -- anyone can automate anything. We believe talented people can be found anywhere in the world, not just SF or NYC.

We're mostly Python/Django, React, AWS, working towards k8s, but we're not dogmatic about tech. Any questions, please email me (see profile), to apply please see the job posts below:

[0] https://zapier.com/jobs/infrastructure-engineer/

[1] https://zapier.com/jobs/product-engineer/

[2] https://zapier.com/jobs/frontend-engineer/

hobonumber1 3 days ago 1 reply      
SoundHound | All roles available in Santa Clara/San Francisco. Engineering roles only in Toronto. NLP only in Sacramento/Baltimore | ONSITE - http://soundhound.com/careers

I'm a Senior Software Engineer at SH. We've just raised $75 Million from NVIDIA, Samsung, KP and others to take on Amazon and Google in AI with our "Collective AI" Houndify platform. Our open Houndify platform has the worlds fastest speech recognition and most sophisticated natural language understanding. We've had a lot of interest from partners and there are a LOT of really interesting projects being worked on requiring complex problem solvers who can work well independently.

Things have come a long way since our leaked demo video took top spot on Reddit a year ago!


If you have any questions you'd like to ask an engineer here just email me: tilo at (company name) dot com. I respond to all emails but please like the thread says no recruiters! And we have hired from this thread in the past.

nworbrecneps 3 days ago 0 replies      
Mixmax | Full-Stack Engineer or Fall/Spring/Summer Interns | On-site San Francisco (relocation provided), remote an option w/experience | https://mixmax.com/careers

We're a profitable fast-growing startup looking for all types of engineers: full-stack, backend, site reliability, data, machine learning.

Mixmax is the future of email and external communications. Just like you use Slack to talk within your team, you use Mixmax to talk to people outside of your team. Primarily, we help sales and recruiting teams achieve more and with greater consistency by automating their most common workflows and integrating with their existing toolchain - Gmail, Inbox, Salesforce, Slack, text messaging and more.

You'll work on a modern cloud-based web app built on universal/isomorphic Javascript using open source technologies, including: React, Node, Mongo, Elasticsearch, Electron (more: http://stackshare.io/mixmax/mixmax-for-web)

Check out our engineering blog: https://mixmax.com/engineering

Email careers@mixmax.com and lets chat!

ericzundel 3 days ago 0 replies      
Square, Inc. | Software Engineer, Payments | Atlanta | ONSITE , https://squareup.com/careers/jobs

Square's Atlanta office is hiring an engineering position for the backend services that power our payments platform.

What we do:Develop and support routing and gateway support between Squares products and payment processors in the US and abroad.

Design and refactor these systems for high reliability and scalability.

Why it's cool: Our system is critical: without it, Square products couldn't exist.

The Atlanta office has a history of working on mission critical projects. Infrastructure used throughout Square was designed and developed here. Were continuing to increase our footprint here.

Our work environment includes lots of Silicon Valley style perks, plus all the advantages of working in a smaller office where everyone knows each other.Square products are widely used by the general public, so you constantly run into people who use our products.

Who we're looking for:Experience with Card Payments would be terrific!Engineers familiar with Java, Go, Ruby or another high level OO language.At this time, we are looking for developers with at least a few years industry experience.

Tech we use: Java, Go, Ruby, Objective-C, Ember.

If this matches your background and interests, I'd love to talk to you -- email zundel@squareup.com, hiring manager for this position in the Atlanta office.

roger_lee 3 days ago 0 replies      
Captain401 (YC S15) | San Francisco, CA | Full Time | ONSITE

Captain401 is a Y Combinator-backed company that offers an easy and affordable 401(k) retirement plan for the modern workforce. We've built an automated, paperless 401(k) that makes it possible for small and medium-sized businesses to offer a 401(k) benefit to their employees -- something that only 14% of them are able to do today. In doing so, we're empowering businesses of any size to safeguard the financial futures of their employees.

Were also backed by top Silicon Valley investors: http://blogs.wsj.com/venturecapital/2016/02/24/captain401-ra.... If youve been wanting to dive into an early stage startup, this is the perfect time to start talking to us.

We have a lot of open roles, so we'd love to hear from anyone interested to working with us. Specifically, we're hiring for:

* Technical Recruiter

* Product Manager / Head of Product

* UI Engineer / Front-end Engineer (Knowledge of ES6/JavaScript, CSS, and product and design chops)

* Full-stack Engineer (We use Node.js, React.js, Golang, and PostgreSQL)

* Content / SEO Manager

Reach out to careers@captain401.com, or apply at https://captain401.com/careers

vikp 3 days ago 2 replies      
Dataquest | San Francisco, CA | Remote or onsite | Full-time

At Dataquest, we teach data science interactively online to hundreds of thousands of students worldwide. We're focused on teaching skills and building intuition from the ground up with our project based curriculum. Unlike most educational options, we focus on motivating students to learn, not just content delivery.

We have students go from no programming knowledge to jobs at companies like SpaceX, Amazon, and Microsoft, and you can read their stories here -- https://www.dataquest.io/stories . Best of all, we do it at a low monthly cost of $29 or $49.

We're a bootstrapped company, which we think is extremely important, since it aligns our incentives with our students.

Our open roles are a great opportunity if you're passionate about teaching, if you're burnt out doing work that doesn't feel like it has a direct impact, or if you want to peek inside a profitable bootstrapped company.

Please email vik@dataquest.io if you're interested.

Open roles:

* Data Science Instructor (75k-105k) -- outline our curriculum, teach concepts, and analyze data to continuously improve how students learn. This is a chance to make a direct impact on students around the world, while teaching and learning interesting concepts (neural nets, data pipelines, etc).

* Data Analysis Instructor (70k-95k) -- teach data science concepts to non-technical people. Ideally, you have experience with SQL and Excel, exposure to teaching, and, most importantly, are passionate about building intuition by crafting good explanations.

* Devops (75k-100k) -- maintain and enhance our backend infrastructure that allows students to run code and have it automatically checked for correctness. Develop our deployment infrastructure and make architecture decisions. Work with Python 3, Docker, and Kubernetes.

* Data Journalist (60k-80k) -- Help us teach data science on our blog (dataquest.io/blog) that gets hundreds of thousands of monthly uniques. Work with technical experts to build compelling content that has value to students learning data science.

kdavis 3 days ago 1 reply      
Mozilla | Machine Learning Research Engineer | Berlin, London, Paris | https://mzl.la/2qGIwic

Do you dream of harnessing your machine learning knowledge to enrich users lives and to improve their privacy and security while opening up models and data to the world?

If so, you should join Mozillas Machine Learning group!

As a Machine Learning Research Engineer at Mozilla you will:

 -Design & deploy machine learning algorithms & models to the open Internet (Initial STT focus) -Define research & experiment strategies that iteratively move towards their stated goals -Stay on top of the latest machine learning research -Present internally and/or externally on internal and/or external research of note -Integrate pertinent research into current projects -As part of Emerging Technologies, work with the Mozilla organizationfinance, legal, product, etc in shepherding our work to completion
Your professional profile:

 Requirements -A thorough understanding of deep learning algorithms -3+ years of machine learning research+engineering experience -Ability to apply machine learning to solve business problems -Authority in one, or proficiency in more than one, programming language (Python, C++...) -Technical fluency, ability to clearly discuss algorithms, architectures, and trade-offs Preferred Qualifications -PhD in Machine Learning, Mathematics, Physics, or other quantitative field -Experience with TensorFlow -Project management skills

GeocachingHQ 10 hours ago 0 replies      
Geocaching | UX/UI Designer | Seattle, WA | Full-time, ONSITE (with remote options), Relocation Offered for Out-of-State Candidates

Perks: 6 Time Winner of "Best Place to Work" from Outside Magazine, Health Insurance Premiums 100% paid for, Unlimited Ski Lift Tickets, Outdoor Gear Closet, and great work/life balance.


About Geocaching HQ We are the global headquarters for the game of geocaching. Our apps and Geocaching.com website allow a global community of millions of people to join in a real-world treasure hunt.

Our mission (and yours should you choose to accept it) is to inspire and enable discovery, exploration and adventure. Basically, everyones job here is to enable millions of people to have fun outside. How cool is that?

Position Overview: We want to maximize the ease-of-use for all of our products, so our users can spend less time figuring out how our applications work and more time playing outside. The UX/UI Designer for Web will assist in all phases of product development, including research, ideation, validation and high-fidelity visual design.We need you to make the cool, innovative things that will turn Geocaching into a trend-setter on the international stage.

What you'll do: Work as a critical member within a team of product owners, producers and developers to deliver world-class experiences Create what it takes to articulate the design, including whiteboard sketches, user flows, wireframes, interactive prototypes, animations and redlines Interview users, gather requirements from stakeholders, present your designs, and explain the reasoning behind design decisions Contribute to the growth of the UX team through critiques, brainstorms, discussions and recommendations

Apply today at www.geocaching.com/careers.

Interview process includes pre-phone screen questions, 1st Phone Screen w/ HR, 2nd Phone Screen w/ hiring team + portfolio review, Skype Interview (if out of state), and In-person Interview.

shakefon 3 days ago 0 replies      
Currently hiring for 2 roles in our team at Walmart Labs:

Walmart Labs | Staff FE Tools Engineer | Sunnyvale/San Bruno/Carlsbad, CA or Portland, OR | ONSITE | Full Time

Become part of Developer Experience Tools team at Walmart Labs. Lead UI development for the tools team, work on a full stack data insights solution to help improve developer productivity. React, JavaScript, node.js, CSS.

APPLY: https://careers.walmart.com/us/jobs/816064BR-staff-software-...

or email me if you want to discuss role further: dstevens@walmartlabs.com

Walmart Labs | Staff Mobile Tools Engineer | Sunnyvale/San Bruno/Carlsbad, CA or Portland, OR | ONSITE | Full Time

Develop cutting edge mobile tools to help mobile app teams release quality apps faster. React Native, JavaScript, node.js

APPLY: https://careers.walmart.com/us/jobs/844209BR-staff-mobile-to...

or email me if you want to discuss role further: dstevens@walmartlabs.com


Both roles: REMOTE considered for exceptional candidates!

skinanalytics 3 days ago 0 replies      
Skin Analytics is a healthcare company building a clinical quality diagnostic service for melanoma using Artificial Intelligence. Weve a clinical study running across 5 UK hospitals including the Royal Free and Oxford University Hospital Trust.

Based in Old Street in London were currently working with Vitality Health, leveraging dermatologists while we finish the clinical validation for our AI system. We have a strong pipeline of future partners for our service across a number of channels.

Were looking for someone with devops experience, able to take an idea from the drawing boards to production and scale. Youll be on your own to begin with, but the team will expand under you as the company grows. We have existing codebases in Python and Javascript, in an AWS environment, but it would be up to you to set the tech direction for the company going forward.

Requirements for the role:Frontend and backend system development, testing and deploymentKey technical role and potential client-facing duties in this capacityEstablishment and adherence to deadlinesAbility to manage your tasks and times efficientlyUse of online project management software

Key technical requirements:Full Stack development experience or desiresFront-end JavaScript and Angular developerNodeJSCouchDBAWSGit on Bitbucket

Benefits:Be an integral part of a business which will improve the survival rate for the second most common cancer for 24-40 year oldsHealth insurance with Vitality HealthPotential for share options after initial period*Great office located among the cafes and bars of Old Street

To apply get in touch at: recruitment@skinanalytics.co.uk

raimondious 3 days ago 0 replies      
Scratch | Senior Backend Engineer | Cambridge, MA | Full-time | On-site

We are seeking a curious and enthusiastic software engineer to join our Scratch team at the MIT Media Lab. Scratch (scratch.mit.edu) is a free visual programming language and global online community where children can create and share interactive media such as stories, games, and animations.Here at the Lifelong Kindergarten research group (MIT Media Lab), we are passionate about creating technology that enables kids to think creatively, work collaboratively, and reason systematically. Were looking for engineers who enjoy collaborating as much as coding and who thrive in an environment of continual iteration and improvement. Located in the MIT Media Lab, the Scratch team works amid a giant pit of LEGO bricks so a love for creative making (and tolerance for a bit of a mess) is a must!

Our Stack:* Node.js* Redis* Elastic Search* Percona MySQL* Ansible* Fastly* Travis-CI* Jenkins* GitHub


adjohn 3 days ago 0 replies      
IOpipe | Frontend Design Engineer | Fully Remote - US Only | $90k - $120k + Equity | https://iopipe.com

IOpipe is building a platform to help develop and operate serverless applications. We are a fully remote, venture backed team of 8, based in the US. Looking for design oriented front-end engineers to work on a realtime dashboard that makes sense of millions of events per day, per user. You'll be working with react, and a gql API.

Apply with CV to hiring@iopipe.com

frequent 3 days ago 1 reply      
NEXEDI | Lille/Munich/Paris/Plovdiv | ONSITE | 4/12 months INTERNS We are looking for new colleagues to help improve our FOSS software solutions and contribute to research and industrial projects. If you are passionate about open source software and like one of our topics on http://www.nexedi.com/jobs get in touch with us! Candidates will do a programming challenge followed by an interview. We're currently looking for:

 - Nexedi | Big Data Machine Learning Python Developer | Munich | ONSITE - Nexedi | Web Mesh Network JavaScript Developer | Lille | INTERN - Nexedi | Artificial Language Processing Python Developer | Lille | INTERN - Nexedi | Connected Cars JavaScript Developer | Lille | INTERN - Nexedi | Site Reliability Python Developer | Paris | INTERN - Nexedi | Out-Of-Core Numpy Python Developer | Munich | INTERN - Nexedi | Big Data Machine Learning Python Developer | Lille | INTERN - Nexedi | Linux JavaScript Port Developer | Lille | INTERN - Nexedi | AI Business Bot Python Developer | Munich | INTERN 
About Nexedi: We are a small international team of about 35 programmers (headquarters in Lille, France) creating free software since 2001. We run our own stack with ERP5 (Business Suite), SlapOS (Cloud Deployment) and Wendelin (Big Data/Machine Learning) being the main solutions for which we provide customization services (our code is free, our time isn't). We have time to tinker, need to think out-of-the-box/ram/space and work mostly autonomous. We all use Chromebooks, our hierarchy is as flat as the area around Lille, our offices are paperless and we have no meetings. We mostly hack in Python and (vanilla) JavaScript. If you're looking for fame or gain, we're not the right place. For purpose and leverage, we might be worth considering. Join us!

iamclovin 3 days ago 0 replies      
Envoy.com | Backend Engineer (Ruby/Elixir/Phoenix), iOS Engineer, Android Engineer, Frontend Engineer | San Francisco | ONSITE,VISA https://www.envoy.com

We on a mission to make the office feel effortless. We create technology that does its job, so people can focus on theirs. For us, it started with the front desk. Signing in with paper and pen used to be the norm, but Envoy set a new standard. Its simple: Now, visitors everywhere are signing in on iPads. To date, Envoy has helped our customers like Slack, Box, Github and Pinterest welcome over 14 million visitors in more than four thousand offices worldwide. But visitor management is just the beginning: Were building a world where you know instantly when packages are delivered; where your office unlocks automatically when you arrive; where you can book a meeting room, simply by walking through the door.

If this world sounds exciting, we'd love for you to help us build it.

~Apply Here~

Backend Engineer: https://jobs.lever.co/envoy/34d9a082-f5a0-4695-92c3-e7657b0b...Android Engineer: https://jobs.lever.co/envoy/189b6b93-94e0-4144-933f-4355085f...iOS Engineer: https://jobs.lever.co/envoy/0b08f513-c4fc-486a-a5e5-d9859e2f...Frontend Engineer: https://jobs.lever.co/envoy/42f7c541-7617-4f36-a1ce-f5734727...

or get in touch! arun@envoy.com

eosrei 3 days ago 1 reply      
Udacity | Multiple Positions | Mountain View, San Francisco, Berlin, Shanghai, So Paulo, New Delhi | ONSITE, FULL-TIME | https://www.udacity.com/

Udacity's mission is to democratize education. We're an online learning platform offering groundbreaking education in fields such as artificial intelligence, machine learning, robotics, virtual reality, and more. Focused on self-empowerment through learning, Udacity is making innovative technologies such as self-driving cars available to a global community of aspiring technologists, while also enabling learners at all levels to skill up with essentials like programming, web and app development.

Tech: Docker/PostgreSQL with Golang, Python, Node.js, React, Java, Ruby, Haskell depending on team.

All open positions: https://jobs.lever.co/udacity?lever-via=24S9Caa8CS

transfix 12 hours ago 0 replies      
Transfix | Software Engineers (Front-end and Back-end) | NYC | On-site & Remote

Transfix is creating a marketplace to connect shippers with truck drivers. We recently locked in $42M for our Series C! We're in a $400B industry that's ripe for automation. We're dedicated to reducing the amount of miles being wasted by optimizing the way shipments are handled from creation to delivery.

We're looking for mid-sr (3+ yrs) front-end and back-end engineers to join our team! We're also looking for engineering managers.

Tech stack: Aurelia.js, react.js, es6, ruby on rails, postgres, AWS

Process: Recruiter Screen (20min) > Tech Screen (1-1.5hrs) > On-site Interview (3-4hrs) [Varies slightly for take-home]

If interested, please apply on our jobs site (https://jobs.lever.co/transfix) or reach out to Michelle at jobs@transfix.io

bbfrhd 3 days ago 2 replies      
Ad Hoc LLC | DevOps, Front-end, UX, Design, Product | Washington, DC | REMOTE https://adhocteam.us/join/

We build government digital services that are fast, efficient, and usable by everyone.

Ad Hoc brings small teams of highly skilled professionals from the private sector to build government software right the first time.

Ad Hoc is a remote-first company. Our team is located all over the country, in places like Washington, DC, Baltimore, Philadelphia, Providence, Boston, Portland (ME and OR), St. Paul, Seattle, Chicago, Albuquerque, San Francisco, Los Angeles, and Asheville, NC. We invite applicants with diverse backgrounds to join our team. We offer a competitive compensation and benefits package.

If you have questions, feel free to contact me (bob@adhocteam.us) and I'd be happy to answer if I can or connect you with the right folks in our recruiting pipeline.

Peroni 2 days ago 0 replies      
StreetTeam | Full-time | ONSITE | London, UK | 80k-90k + equity | https://getstreetteam.com

StreetTeam is building a global platform which enables everyone to buy product from people they trust. We're growing fast, breaking new ground and are well funded by some of the best in the business.

We need an Engineering Manager to support our engineering teams to work the way thats best for them as we grow the company. People are our most important asset, and we need to ensure that they have the right feedback, coaching, and range of experience to find their mastery and be successful at StreetTeam. Full spec: https://street-team.workable.com/jobs/514362

StreetTeam believes in freedom and ownership with the focus entirely on the value you create there are no set hours, meetings are optional and you can take as much holiday as you need. We only care about the results you deliver.

Email me directly if you fancy having a chat - stevie.buckley [at] getstreetteam [dot] com

chloe- 3 days ago 0 replies      
GitLab | Engineering and Non-Engineering Roles | Remote Only | Full-time | https://about.gitlab.com/jobs/

We're currently hiring recruiters, a security specialist, sales development reps, and director level positions, see https://about.gitlab.com/jobs/ We're a remote only company so everyone can participate and contribute equally. GitLab Community Edition is an open-source Ruby on Rails project with over 1000 contributors.

dons 3 days ago 1 reply      
Facebook | C++/OCaml static analysis | | London, UK | Onsite | Full time

Work extending the open source Infer static analysis suite support for C++. We use Clang for the front-end and have an open role to work on this in general. The code is all OCaml. Expertise in C++ is highly desirable. The requirements are roughtly C++ AND (OCaml OR Haskell OR Static Analysis OR Formal Methods).

The work will be mostly open source.


jadeklerk 3 days ago 0 replies      
Panasonic Automotive | Senior Software Engineer | Denver | Full-Time | On-site

Panasonic is building a connected vehicle system for car-to-car, car-to-operator, operator-to-car, and accident/weather/etc detection. We're still a fairly small team within the larger Panasonic, but we're growing and are looking for someone senior to take the frontend.

The frontend app is Go in the back and react/redux in the front using google maps to do some of the heavy lifting, and several custom layers on top of gmaps. The app (back and front) has to stream data at super high rates over websocket (alongside traditional REST) (cars send a lot of data!) and have it available in near real-time, so there are many interesting high-data-flow visualization, correlation, and aggregation problems that ends up happening in or near the frontend. The future probably holds a fair amount of svg drawing work, which should be pretty cool (graphs, animations, that sort of thing).

Auxilliary technologies include Karma/Jasmine/Enzyme for testing (which is also quite interesting on this project, given the high data flow and reliance on drawing tools), webpack and babel for build, concourse.ci for CI and automated deploy, AWS as our IaaS.

If you're interested in talking to an engineer about what we do, hit me up at jadekler@gmail.com.

If you're interested in applying or talking to a recruiter about the job, hit up Jessie at jesseyjean@gmail.com.

Raphomet 3 days ago 0 replies      
Lob | YC S13, YC Continuity | Senior Software Engineer | Full Time, ONSITE | San Francisco, CA

Our first API was to programmatically send physical mail. Our second, announced 2 months ago, (https://venturebeat.com/2017/05/31/ycs-continuity-fund-leads...), is CASS-certified address verification. Our long-term goal is to provide the building blocks for developers to automate the offline world through APIs.

I'm the head of engineering at Lob. In between my last job and this one, I spoke to 42 organizations before I found what I was looking for in Lob: an exceptional team at the beginning of its growth phase, and also a company with a track record of being deliberate about its culture and which is intentionally building a good place to work.

We are a small and mighty engineering team with a ton of product and infrastructure problems to solve as we keep pace with rapid growth. So, we're currently looking for experienced software engineers who can take ownership of entire projects. We hate contrived interviews, so our process rewards practical problem solving (based on real problems we've faced) and excellent communication.

Apply at https://lob.com/careers if this intrigues you!

HoyaSaxa 3 days ago 0 replies      
Narmi (Techstars NYC '17)| Full Stack Engineer (Front End Focused) | New York, NY (NYC) | ONSITE | https://www.narmitech.com

Narmi is helping reinvent banking in the United States. We create a more accessible and useful financial ecosystem by powering the online banking, mobile banking, and open banking APIs for the 10,000 credit unions and community banks in the United States.

Narmi was founded by two Georgetown University alums who previously worked as CEO and CTO of a $18 million credit union and also at some of the largest banks in the world.

Even if you don't think you are an exact fit for one of our current openings, we'd still love to talk.

We are always looking for well-rounded engineers that have expertise in python (django and django-rest-framework), vue.js, react native, ansbile, terraform, visual design/UI/UX, and/or security.

The interview process entails a call or two to get to know each other, followed by an in-person interview that includes a code pairing session.

Some keywords: * Full Stack Engineer, Full-stack Engineer, Full Stack Developer, Full-stack Developer * Front End Engineer, Front-end Engineer, Front End Developer, Full-end Developer * Banking, online banking, mobile banking, open banking APIs, * New York City, New York, NY, NYC, Manhattan

You can learn more on our website and apply via email: jobs @ our domain. Make sure to mention you found us on Hacker News.

contingencies 3 days ago 0 replies      
Infinite Food | Hackers / Mechanical Engineers / Applied Materials Scientists / Food Scientists and Technologists / Multilingual Multiplatform Mobile App Developers | Shenzhen | $neg + equity available | Full-time or REMOTE | http://8-food.com/

Work on what you want, within reason. Help define the company and take ownership of your chosen field.

Registered in Hong Kong, we are a small, mainland China based, international team in the mid prototyping phase, approaching prep-for-manufacturing on a novel series of distributed food service locations supporting automated food preparation and retail. You can look at them as scaled down factories, robotic chefs or one large distributed just-in-time custom food manufacturing system including the associated logistics network. Fresh ingredients and personalized customer orders in, tasty cooked food out.

We are in perfect unison with the largest trends in the sector (convenience, personalization, mobile ordering, commodification of last mile delivery), are already oversubscribed for our next investment round and have recently doubled down by moving to Shenzhen. We have great experience with China, less in manufacturing, lots in complex systems and emerging technology, and multiple successful exits globally.

Mandarin speakers well regarded, but Chinese knowledge is not required. Clear written technical communication in English is mandatory. Skills and experience first, qualifications a distant second. We respect execution.

Email in profile, please include 'Candidate: <Desired Job Title>' in subject. No recruiters.

jrudolph 3 days ago 1 reply      
Meshcloud| Frankfurt am Main, Germany | Full-time | ONSITE, Senior positions available Remote | www.meshcloud.io

Meshcloud provides public IaaS, CaaS and PaaS cloud services based on open-source technology. This enables our customers to avoid vendor lock-in, execute an effective hybrid cloud strategy and save cost. In cooperation with data-centers, we offer multiple cloud locations in Europe and Germany. Our federation technology enables customers to seamlessly switch between different providers and integrates different cloud platforms (currently OpenStack and Cloud Foundry).

At Meshcloud you will be working in a start-up atmosphere with a passionate and talented team. We use a wide array of technologies and offer lots of room for creativity and professional growth. If you're excited about freeing developers from proprietary cloud technologies, shoot me a mail because we are hiring for multiple roles:

- Junior and Senior Front-End Engineers (TypeScript, Angular 2, Bootstrap 4, SCSS)

- Junior and Senior Backend-End Engineers (Java, Spring Boot, Mongo + MariaDB, HATEOAS APIs)

- Integration Expert (Go, Python, Java, ... we're looking for a true Polyglot Engineer)

You can view our open positions at https://www.meshcloud.io/en/careers/, or feel free to email me directly at jrudolph at meshcloud dot io. Please include Stackoverflow and Github Profile if available.

davmyth07 3 days ago 1 reply      
Cabify (www.cabify.com/jobs) | Madrid, Spain | Full Ti