hacker news with inline top comments    .. more ..    5 Aug 2017 News
home   ask   best   2 years ago   
Regarding Marcus Hutchins aka MalwareTech doublepulsar.com
50 points by okket  2 hours ago   19 comments top 5
josh2600 13 minutes ago 4 replies      
I am not asserting that Marcus is or is not innocent, but 40 years for $2000 worth of crime seems egregious. If he were a formal spook he would likely earn a salary that paid him that amount per week.

In terms of the time, he would actually do less time physically harming someone in many circumstances.

Again, I don't know if Marcus is innocent or not, but 40 years for $2000 seems to imply that the people running AIG et al should be imprisoned for many lifetimes if the crimes were punished proportionately. Granted our justice system is not "fair", but the circumstances as described feel unduly harsh.

Edit: to be clear, if he actually created Kronos, and they can prove that, I think he's in a hard place, but I still think 40 years is a very long time.

afarrell 1 hour ago 1 reply      
It seems to me that the broader issue is one where HN readers individually writing their senators would have an impact for the time invested.

1) Legislators do not have the time to come to this situation with insight into how the cybersecurity community works. There are simply too many fields of human endeavour and people have to specialize to get things done.

2) This is not an issue like Abortion or the 2nd amendment. Senators can and do change their minds based on input from experts. See Sen. Lindsey Graham's approach to encryption[1]

3) Harm to the US ability to collaborate with its allies is a thing that senators will care about, especially hawks. Right now, they likely have two threats top-of-mind: ISIS and the Iran-Russia-Assad alliance.

throwme_1980 4 minutes ago 1 reply      
Please let the law inforcement agencies deal with this. Have faith in the system
armitron 9 minutes ago 0 replies      
His arguments hold no water (I would characterize them as clownish) and amount to little more than self-promotion and mob signaling. He made my fool list.
cosarara97 1 hour ago 3 replies      
40 years in prison is way out of proportion, guilty or not. Are there black hats in the US currently serving this kind of sentences?
Slight Street Sign Modifications Can Completely Fool Machine Learning Algorithms ieee.org
30 points by itcrowd  2 hours ago   20 comments top 9
mannykannot 1 minute ago 0 replies      
Whenever this sort of issue comes up, there are a number of responses pointing out that humans can be fooled too, and I am guessing that the generally unstated implication is that therefore it is not a big deal. Two important differences that this point of view overlooks are that humans are usually able to tell when they are not fully understanding their visual input, and they are able to respond appropriately, which includes acting cautiously and taking actions that will help resolve the uncertainty. Artificial visual systems that have, at best, only a rudimentary understanding of what they are looking at, are in no position to act this way, and can assign high confidence values to what we would regard as ludicrous interpretations of the scene.

These things will be fixed in time. There is nothing to be gained by pretending that they are not problems.

fennecfoxen 1 hour ago 1 reply      
Related, but different: Autonomous Trap 001


They used salt to construct a circle with a solid line on the inside ("do not cross") and a dashed line on the outside ("come on in").

Rjevski 1 hour ago 2 replies      
The right solution to this is to have an official database of signs and their GPS coordinates provided by the government or whoever is responsible for road safety, free of charge (you're not directly paying for having signs on the road, why would you have to pay for an electronic version of that?).

Road signs were made for humans because we don't have the ability to connect to the internet and fetch the data in less than a second, but autonomous card do, so why not use it?

ragebol 17 minutes ago 1 reply      
Yet humans are totally unphased by these modifications. What makes humans still excel at these edge cases?
jameshart 37 minutes ago 1 reply      
Slight street sign modifications can completely fool humans too. Luckily: 1) most people aren't assholes so don't want to cause traffic accidents; and 2) we have laws and police organizations to track down and punish assholes who do
bitL 16 minutes ago 0 replies      
Alright, so this is an image augmentation problem. Another training set with white noise variations, random unrelated pixellation/overlay texts can solve this. Simply your training wasn't general enough.
pacaro 33 minutes ago 0 replies      
I would assume that you could somewhat trivially defend against this by validating the top n hypotheses from your classifier against reference images.
dilemma 17 minutes ago 0 replies      
Sounds like Artificial Intelligence is Stupid.
cs702 30 minutes ago 1 reply      

Images with Zero Modifications Can Completely Fool Human Sight!

Examples: http://www.ritsumei.ac.jp/~akitaoka/index-e.html

A Virtual LAN using NATS, written in Go github.com
26 points by rapidloop  2 hours ago   1 comment top
crest 34 minutes ago 0 replies      
In effect this is still Ethernet over TCP, but other than that it's a cool idea. Now if only NATS would support SCTP...
Arrest of WannaCry researcher sends chill through security community thehill.com
572 points by rbanffy  18 hours ago   289 comments top 30
watty 17 hours ago 11 replies      
I've read a few articles but I feel like I'm missing something. What's with the sensational quotes like "I had folks afraid that their own involvement in investigating WannaCry would get them arrested."?

Everything I've read points that he created banking Malware "Kronos" which was sold on various "underground forums" (whatever that means). What's with the WannaCry conspiracies? He wasn't arrested for being a security research, he was arrested for being a malware creator selling malware. Why is this "sending a chill through the security community"?

Jtsummers 16 hours ago 0 replies      
I feel like no one here remembers when Dmitry Sklyarov was arrested under similar circumstances. The US government has no obligation to seek out every potential arrestee no matter where they are in the world for every single crime that the US has laws for. But if the target of an investigation (whether they know it or not) sets foot in the US, then we shouldn't be surprised when they are arrested. And this is just another case with Def Con (so no, it's probably not moving out of the US, it didn't 15 years ago), I'm quite certain that these sorts of things happen frequently for other crimes of (relatively) low priority that are just outside our primary focus on this forum (technology).

And is the US any worse for this than other nations? Probably not. They just get more publicity when it happens. But every nation that has a legal system will do the same thing. If the Russians or the Brits or the Germans or the Swiss decide that Jtsummers is a suspect in a crime, and I visit and they realize it, I shouldn't be surprised to find myself arrested and barred from leaving the country.

[0] https://www.cnet.com/g00/news/russian-crypto-expert-arrested... - may not be the best article, it's the first one that came up on Google for me.

chasil 17 hours ago 9 replies      
Realistically, DEF CON should move to the Caribbean.

Marcus Hutchins is a British citizen. Extradition before the event was feasible and would have been a far more honorable path than the snatch and grab that transpired.

British security experts might insist on Grand Cayman for any further conferences in the Americas.

devhead 17 hours ago 1 reply      
If your code is used in an exploit and that is now a punishable crime, maybe next the NSA will be in the hot seat since the code that was used in wanacry was their own. Or perhaps Israel for their effort in Stuxnet.I hope he takes it to trial and we find out what is really happening here. Pretty suspicious that this happens years after the fact and only weeks after he helped prevent the further spread of wannaCry. WannaCry being created on top of the leaked NSA exploits they held on to instead of responsibly disclosing to Microsoft.
noshbrinken 1 hour ago 0 replies      
Individual known for benevolent acts arrested on charges of other, malevolent acts chills community of benevolent actors?
mnarayan01 17 hours ago 1 reply      
As someone who's not sure where I stand on this, I feel like Hutchins supporters are doing themselves a disservice by overly-conflating this with WannaCry. I think there's potentially a good argument to be made along the lines of "Hutchins good work w.r.t. WannaCry is the only reason that anyone (including law enforcement) is aware of semi-historical Kronos, so going after him for Kronos is equivalent to going after him for WannaCry." Additionally, there may well be other arguments in his favor that I'm not even thinking of.

But those arguments need to be made (and the one I outlined would need decent factual details). That said...maybe glossing over (or even totally ignoring) Kronos is the best way for Hutchins supporters to go...but if it is, that seems an unfortunate reflection on society.

icpmacdo 11 hours ago 0 replies      
Another piece of information that seems very shady from the US is they tried to say he was breaking felony gun laws going to the shooting ranges on the strip and using that as a reason to stop his bail


wepple 17 hours ago 1 reply      
> It is unclear from the indictment if Hutchins would have been aware his work was being used maliciously

The indictment specifically states he sold the malware. Unless he was completely convinced the buyers of Kronos were using it for research into browser malware, it's pretty damned obvious.

I'd be interested to talk to malware researchers that are genuinely scared about this.

loteck 17 hours ago 0 replies      
Lot's of comments about moving DEFCON out of US jurisdiction. DEFCON officially flaunts the fact that both criminals and law enforcement attend the event.[0] If that is the approach of the con, this interaction is built-in.

This isn't about DEFCON.

[0] https://defcon.org/html/links/dc-faq/dc-faq.html

ajarmst 15 hours ago 2 replies      
Why? The arrest of a mall cop who was also doing burglaries wouldn't send a chill through the security guard community, except perhaps for those who were moonlighting as burglars.
qaq 16 hours ago 0 replies      
I think one factor not being accounted for is cybersecurity is a fairly big priority for law enforcement yet in a very large number of cases they are never able to find or prosecute people responsible. So they need to "make the numbers" to show that they are being effective and the easiest strategy is to go for easy targets.
purpleidea 4 hours ago 0 replies      
Time to move the conference out of the United States to somewhere more Neutral. Canada would be a good suggestions. Montreal is excellent.
duxup 16 hours ago 0 replies      
I guess I get the concern but it seems clear the accusation are unrelated to WannaCry and his involvement in another event.

We've seen bumbling investigations and misguided legal threats before... that didn't stop people and this one doesn't seem to yet be either of those.

betaby 17 hours ago 0 replies      
No need to do any malice in order to be arrested on Def Con


mirimir 10 hours ago 0 replies      
Leaving aside the particulars of this case, I must say that anyone who does anything that might plausibly be prosecuted ought to remain anonymous, and practice good OPSEC. In researching an article about such issues, just about every bust was the result of carelessness.
throwme_1980 15 hours ago 0 replies      
Please read his indictment application, there is clearly a reason why he was arrested. If 'researchers" are allegedly selling malware then yes they should worry. Simple
known 1 hour ago 0 replies      
Isn't he arrested for selling illegal key logger software?
shoefly 9 hours ago 0 replies      
I hope they go easy on him. He's done some bad, but recently some good.
csomar 14 hours ago 0 replies      
The article is light on details and leave an important question's answer very vague: Did Hutchins sell his product in an underground market to an unknown identity? How much was the compensation?

These questions answered would make the case a "clear-cut".

And there is a big difference between selling your code in an underground market for $250k* with bitcoin, and open sourcing it for free.

*I come up with this number as an example.

cagey_vet 9 hours ago 0 replies      
what bothers me actually is how these correlations were made, and by what process of deduction, if its not a snitch related frame
tryingagainbro 17 hours ago 3 replies      
Is it me or the DOJ so the flight manifest and then went to a grand jury to indict? He did what he did in 2014-2015 and the charges were filed in July 2017, a couple of weeks before Defcon...
calafrax 18 hours ago 0 replies      
> The indictment does not say Hutchins designed Kronos or sold Kronos. Rather, it says that he provided computer code to a second party to update Kronos.

> Overt Acts in Furtherance of the Conspiracy

> a. Defendant MARCUS HUTCHINS created the Kronos malware.


flipp3r 17 hours ago 2 replies      
Sad to see it confirmed that it's not worth the risk going to America to visit DEFCON. I hope they'll host it in Europe someday.. To see no statement by DEFCON on this whole thing is almost equally sad.
throw2016 13 hours ago 0 replies      
The lines between security researcher and malware creator is becoming increasingly murky.

When is it research, pretending to be a bad egg to get more info or actually being one?

As long as its was fun and games no one really minded, but now malware is used to hold schools and hospitals to ransom. Even criminals don't go after schools and hospitals. Extreme greed and criminality can't be minimized away as 'hacking'.

The infosec community likes to be edgy but they need to clean up their act and not give airtime and cover to criminals, and its difficult to believe they don't know who these are.

thrillgore 17 hours ago 1 reply      
I would not be shocked if Defcon moved out of the US.
celticninja 17 hours ago 3 replies      
vkou 16 hours ago 1 reply      
He's not indicted for doing security research, he's indicted for stealing people's bank accounts.

The indictment may end up being bullshit, but it has not been for any of his white-hat, or grey-hat activities.

olegkikin 17 hours ago 2 replies      
I hope it goes to trial, and he is not found guilty. Should be a relatively easy case to win.
bdcravens 17 hours ago 0 replies      
Shouldn't it be "Arrest of malware creator sends chill through security community"?
DINKDINK 17 hours ago 0 replies      
I wonder if the location of the arrest influenced the prosecutors' decision: "We 'caught' him at a hacker convention where they broke a voting machine!"
Martin Shkreli is found guilty of securities fraud washingtonpost.com
693 points by fmihaila  18 hours ago   557 comments top 45
jjxw 17 hours ago 10 replies      
There seems to be a misconception regarding what Shkreli was found guilty of. The legal case here has very little to do with the pharmaceutical pricing controversy - it is a separate case based on a separate hedge fund that he managed. The gist of it is that he took people's money to start a hedge fund, lied to investors that the fund was doing fine when the hedge fund went belly up, but ended up returning everyone's money plus a sizable return when his separate pharmaceutical venture went well.

When fraud happens those affected don't usually get their money back much less a return on that money. However, it's pretty clear what he did is also fraud (false documents, not returning people's money when they asked for it) even if the fact that investors came out better makes the plaintiffs less sympathetic.

Clubber 17 hours ago 18 replies      
I use to hate this guy, then I saw the Vice interview on him. It was nice to see his side of the story.

I don't know much about this case in particular. It was kinda sleazy to see the congress question him about his price increases when they knew damn well it was perfectly legal and they haven't done anything to stop it. Shkreli seems to be trying to expose this hypocrisy, but the news loves their stories.

Vice interview:https://www.youtube.com/watch?v=2PCb9mnrU1g

sp527 17 hours ago 2 replies      
The government and media couldn't have asked for a better outcome. The actual criminals on Wall Street and in Big Pharma, who had the foresight to line the right pockets, go ignored and the outsider who drew the ire of the public - for a decidedly amoral business decision with poor optics - is very publicly castigated. It's a win all around for a monumentally corrupt establishment, which has once again deferred meaningful scrutiny.

Shkreli made the mistake of setting himself up as the perfect loudmouthed, flamboyant patsy.

discombobulate 17 hours ago 9 replies      
I quite like Martin. I talked to him a few time on YouTube, whilst he was live streaming.

He's whip-smart & knowledgeable. He does, however, have a couple of major flaws. 1) He trolls. Hard. 2) It seems he lies. Which I picked up from a previous news article. (He claimed to have ~$50mm under management @ his previous hedge fund. It was more like $1.6mm. Something like that).

I can forgive the trolling. It's over the top, IMO. But it is what it is.

The lying is another kettle of fish. You can't go around bullshitting ppl. &, as he found out, you can't go around bullshitting investors.

I think he loves money too much. The thought of being poor may have pushed him to do something stupid (ultimately his call!).

I hope he doesn't have too hard a time in jail. Losing his fortune (I believe he loses his shares from Retrophin. ~$65mm. That's already a punishment.

Edit: I don't know why I'm being downvoted. I'm being honest. Fuck you people, frankly.

kabdib 11 hours ago 3 replies      
A data point about medication:

I just paid for a pair of EpiPens; the generic version was $337 a pair (last I checked, the non-generic version was over $600). I have pretty good health insurance, so I didn't pay that much myself, but my employer paid the rest.

As a baseline, I had the pharmacist look up the equivalent medication for use with a syringe; a ten dose bottle was $5.99. I know, not the same thing. But this confirmed what I'd suspected for years.

I have to assume that the EpiPen delivery mechanism, which is really what we're paying for, is well debugged and optimized and essentially just a matter of ordering parts and assembling them; it would be mind boggling to have a COGs of more than a few dollars, or any significant conversion costs. The cost of the actual medication that the pens contain is apparently about sixty cents on top of that. Mylan is printing money.

Icing on the cake: The pens expire after a year. But you typically can't get pens that last that long, the ones I got already have a few months on them and will have to be replaced before the next school year ends or my son won't be able to attend class (the school is not allowed to administer "expired" medication).

This is an utter and corrupt racket. I'm writing my congressional representatives and senators. Again.

circadiam 6 hours ago 1 reply      
I first met Martin over a skype call and he was very humblehis identity online is just a brand.

2 years later, I stumbled into him again and asked him for advice on affording a cancer drug for a relative. He helped me find the charities and also introduced me to a contact at the pharma company.

The internet prefers headlines over reality.

sqeaky 17 hours ago 2 replies      
Putting people like Shkreli into prison for a long time is vital to the long term stability of society. I wish money didn't buy options to avoid prison and I wish that people with his behaviors didn't so often accrue large amounts of money.
setra 17 hours ago 1 reply      
Note that this does not have anything to do with his pricing of pharmaceuticals. From a different article:

"Prosecutors say Shkreli looted his drug company to pay back investors in two failed hedge funds he ran. The defense says investors got their original investments back and even made hefty profits."

nodesocket 16 hours ago 1 reply      
Unfortunately Martin was made a scapegoat and they made an example out of him because of his arrogance and vocal personality. How did the executives that caused the financial crisis of 2008 get off completely free but a relatively tiny hedge fund manager get the book thrown at him? This was a witch hunt, no doubt about it.
defen 17 hours ago 1 reply      
I'd like someone to do a reading of Martin Shkreli as "satirist of neoliberalism", and suggest that the reason so many people hate him so much is that he's a scapegoat for our collective feelings of guilt. Can anyone offer a valid critique of his raising the price of Daraprim, within the frame of neoliberalism, that doesn't just reduce to "that guy's a real jerk!"?
fmihaila 18 hours ago 0 replies      
For those who can access it, this NYT article has more detail: https://www.nytimes.com/2017/08/04/business/dealbook/martin-...

(Edit: I posted this comment while the WaPo article had only a few paragraphs; it's now fully fledged.)

azm1 5 hours ago 0 replies      
Why would this guy should go to prison when no one(except one guy in us) went to prison after the massive financial crisis in 2008?I know its naive/rhetorical question but thinking about it, its crazy to me.He did no financial harm too.
0xbear 17 hours ago 1 reply      
I think it's fair to say that Shkreli would be left to his own devices had he not shown the audacity to charge what the market will bear. Meanwhile another person who similarly jacked up the price of a lifesaving drug beyond what many could afford, Heather Bresch, received no negative legal attention whatsoever. Ever wonder why? Because her dad is Joe Manchin. The swamp needs draining so bad.
dayaz36 4 hours ago 0 replies      
Although technically true, the title is a bit misleading. He was acquitted from 5 of the 8 counts he was convicted of. Of the 8 counts, count 7 carried the biggest wait. This was in regards to the Retrophin securities fraud accusation where he was accused of a ponzi scheme amounting to over $10M. This was the only thing that would of brought him significant jail time but he was found not guilty. Count 7 carried more wait than all the other counts combined and was the heart of the case against him. Right now the case has gone from a felony to basically a parking ticket. All the articles talking about "facing 20 years" are sensationalist nonsense. That is a theoretical maximum. He will most likely receive NO jail time and will probably just have to pay a small fee.Of course you will not get any of this context from all the sensationalist headlines out there like "MARTIN SHKRELI FOUND GUILTY! FACING 20 YEARS PRISON SENTENCE!"...
jonplackett 2 hours ago 0 replies      
Does anyone know if they were already in the process of prosecuting him for this or is it a way to get him on something in response to him buying and hiking he prices of aids drugs, since that wasn't actually illegal.
zokier 17 hours ago 0 replies      
Gotta love the narrative here. Jack up the medicine price and become americas most hated for a moment by general behavior.. that's fine. Make a fool of couple of hedge fund investors.. oh boy, now you fucked up
norikki 17 hours ago 0 replies      
Can we please have a conversation on the abuse of Federal plea bargains and insanely high sentencing guidelines? Thousands of Americans every year plead guilty in federal court to crimes they did not commit because they face insanely high prison terms if convicted. Often Federal sentences are several times longer than ones in state courts for the exact same crimes.
aphextron 16 hours ago 1 reply      
>Rarely has a white-collar criminal defendant evoked hatred and scorn from public in the way Shkreli has. Shkrelis willingness to lie, step on people, flaunt his wealth and look down on others made him a villain that many wanted to see go down in flames, said James Goodnow, an attorney with Fennemore Craig, a corporate defense firm.

This attitude is just disgusting, and indicative of precisely what has gone wrong with our society. "White collar" criminals who steal millions are deserving of leniency and mercy. But the "thug" who stole $20 from a 7/11 deserves 20 years.

grizzles 17 hours ago 0 replies      
I find it hard to believe that he got a fair trial this time around. He was already tried and found guilty in a trial by media a few years back. This investigation & prosecution are a direct result of his legal actions that didn't play well politically. BOTH presidential candidates condemned him. To me it's sad. The sacrificial lambing of Shkreli instead of lawmakers addressing the underlying problem of costly pharma is probably the most Venezuela thing I've ever seen happen in the US. They made the system, he's just trying to prosper ffs.
ptr_void 16 hours ago 1 reply      
He is live-streaming right now: https://www.youtube.com/watch?v=qvArpDQHf-Y
nsnick 16 hours ago 0 replies      
His mistake was taking money from rich people. If he had stuck to stealing from and killing poor people, nothing would have happened to him.
ajarmst 8 hours ago 0 replies      
It's almost like you shouldn't trust people with narcissistic personality disorder with your money or nuclear launch codes.
slap_shot 11 hours ago 0 replies      
FWIW, Shkreli has said several times on his YouTube channel that he predicted he was serve 2 years and be done. From what I've heard, he'll be sentenced 3-5 and and serve 80% with good behavior. He had an excellent defense and this was probably known from the beginning.

Interestingly, I don't think he pretends that what he did was right - it just understood it was a means to an end: two years in white collar "prison" for 30-70MM when he had less than $1,000 in the bank and owed creditors north of 1MM.

forkLding 17 hours ago 0 replies      
For those who haven't read the article, Martin is being charged on cheating his investors, he himself admits to his "broomsticks", not the immoral arguments he was previously known for.

Also that aside, he was quite a easy target.

blizkreeg 15 hours ago 0 replies      
I have no sympathy for him as he appears to have lied to his investors and moved money around, which seems to be outside the law.

Raising the price of a drug though, as long as he can get away with it, is no crime, no matter how big the increase.

This makes me question though, did he raise the price of Daraprim so he could return money to the investors of his hedge fund?? If so, his entire defense (from his videos) of raising the price to meet his fiduciary duties to Turing's investors falls flat.

accountyaccount 10 hours ago 1 reply      
Wait wait wait, he committed fraud... but everyone he defrauded actually ended up getting a 3X return on their investment because he just took money from another one of his ventures?

I mean, illegal sure, but seems like he still held up his end of the bargain.

michrassena 17 hours ago 0 replies      
I've found him to be an interesting character, a potent symbol of the greed, arrogance, and indifference of the pharmaceutical industry. A PR firm couldn't have invented a better villain, young, brash, flouting decorum by his openly fleecing the public. He was the perfect scapegoat.

I think we all know nothing has changed, and his conviction today has no relationship to his role as CEO, but I wonder if public opinion of the industry will improve, as if the bad apple is rooted out.

donatj 10 hours ago 0 replies      
I'm sure it's been said but was it ever possible for him to get a fair trial?
MistahKoala 17 hours ago 1 reply      
I get the impression he isn't so much malevolent in his actions, rather he behaves as a libertine and someone who takes the view that the end justify the means.
eurticket 15 hours ago 1 reply      
hand over the wutang
ringaroundthetx 15 hours ago 0 replies      
In the federal venue, can he appeal the securities counts in isolation of the things he was found not guilty of?

Conspiracy charges are always weak, if you can afford a constitutional law to argue on expression grounds.

Has he expressed interest in appealing?

roel_v 17 hours ago 0 replies      
So, are the gonna sell off his stuff and more in particular, is the Wu Tang album coming up for sale?
balls187 16 hours ago 0 replies      
> Prosecutors argued that Shkreli lied to investors in two hedge funds ... according to prosecutors.

If you were to scrutinize what founders of darling startups said to investors, how many "inconsistencies" would you find?

rajacombinator 13 hours ago 0 replies      
Jail time for Goldman/JPM execs: 0 and counting ...
poisonarena 13 hours ago 0 replies      
I entered a livestream question session with this clown and asked him his opinion on CRSPR tech and he replied "It has not future because 'it doesn't work'".. Thats when I knew he was full of crap
calafrax 16 hours ago 0 replies      
Great. They convicted one low level autistic freak with no connections over a couple million dollars. Brave day for justice.

What about the daughter of a senator who is the CEO of the company that quadrupled the price of epipens? Yeah, right, mission accomplished, nothing to see there.

thrillgore 17 hours ago 0 replies      
Okay real talk -- who's gonna get that Wu-Tang album he has?
Alaura 12 hours ago 0 replies      
Sound's like a good thing tho, i mean we have seen his history and his past, a lot of things kinda conspired to see this coming in the end.
jedberg 17 hours ago 6 replies      
I understand that what he did was morally abhorrent, but I don't understand why it was illegal? Maybe a lawyer can give a quick summaray?
bobsgame 7 hours ago 0 replies      
"Martin Shkreli is found innocent of 5/8 security fraud charges."
llcoolv 16 hours ago 1 reply      
This really reminds me of "The stranger" by Albert Camus.
samgranieri 15 hours ago 0 replies      
stevenh 13 hours ago 2 replies      
I wish people would stop using the word "modulo" like this.
petrikapu 15 hours ago 1 reply      
Java blocking queues for concurrency beginners geek-programmer.com
23 points by am_sandeepa  4 hours ago   1 comment top
erokar 3 minutes ago 0 replies      
Not nice of Java to block the queues. Especially since we're talking about concurrency beginners. It's hard enough for them as it is.
Porting 4.5K lines of C to Go kowalczyk.info
210 points by ingve  15 hours ago   109 comments top 15
to3m 13 hours ago 6 replies      
> As far as I can tell you cant step through tests in the debugger

Rant time. What to do when you write a test framework.

1. When test fails, print everything possible: desired expression, desired value, actual exression, actual value, line and file of failing call. When printing line and file, make the format configurable, with the default being the prevailing standard for the system, so that people can get clickable links in their text editor or terminal with a minimum of hassle.

About 90% of the time, this will give people everything they need in order to at least get started on fixing the failed test

2. Don't make it hard to use the debugger. The remaining 10% of the time, people will need to step through the code. Some measurable fraction of the other 90%, they'll also end up needing to do this, because it looked like it was something simple but actually it was more than that. So don't make this hard

3. See steps 1 and 2

This might sound obvious, but it clearly isn't, because I've used several test frameworks that make running in the debugger rocket science, and print literally nothing but your own message (if even that) when the test fails. Like, you do 'assert.equals(x,y)', and it doesn't even show you what the values of x and y are, let alone figure out that maybe "x!=y" would be an obvious thing to print.

This may not sound like a big deal with my stupid little example, but after you've written several tens of these you will start to see my point.

st3fan 1 hour ago 1 reply      
> As far as I can tell you cant step through tests in the debugger

Really? In Visual Studio Code this is as simple as:

1) Set a breakpoint in your test

2) Hit the "Debug Test" button

See http://wopr.norad.org/~stefan/delve.png for this in action. Look how great this looks. And how you can see all your variables in the upper left section. How you can expand structs and inspect them.

In my experience this works really really well.

jclulow 11 hours ago 1 reply      
> Too many people have a bad habit of including go in their repository name, presumably to not confuse people with non-go version of the code.

Note that this is actually a perfectly reasonable thing to do. If I had two clients for some particular API, one written for Node and one for Go, it absolutely makes sense to name them "node-whatever.git" and "go-whatever.git".

Part of what makes naming things hard is needing to come up with a more "creative" name for every little module, especially once you throw in the constraint that apparently eight characters is too long and four characters is just right.

mkup 1 hour ago 1 reply      
There's a C++ library for Win32 (and other platforms) GUI programming with built-in layout engine, wxWidgets. It's a bit old, but works quite good, large DPI aware etc. Unlike Qt, it aims to be slim, provides native look and feel for all controls on all platforms, and avoids creating its own leaky abstractions. Necessary workarounds for old versions of Windows are included too.

Probably it would be easier to create Go language binding for wxWidgets rather than reimplementing all that stuff from scratch. wxWidgets already has Python, Perl and Ruby bindings, and besides Windows supports Mac (Carbon and Cocoa) and Linux (GTK, X11 and OpenMotif).

krylon 12 hours ago 3 replies      
> However, win32 doesnt have anything to help you layout things on the screen. Manual positioning is painful.

Ooooh, yes, I remember that. My first experiences with GUI programming was a tiny little of Perl/Tk, then Gtk 2 in Perl, Python, and Ruby.

And then I started working as programmer, doing maintenance on an line-of-business application suite written in C/Win32, and I was shocked people would actually put up with this. Fortunately, the overwhelming majority of my work dealt with the deepest guts of those programs, and I only needed to deal with Win32 directly on a few occasions.

fithisux 29 minutes ago 0 replies      
My only problem with porting from A to B is how to keep B updated when A changes. Manual step destroys it all.
assafmo 14 hours ago 1 reply      
Sounds very uneventful... A few porting bugs and language differences but not a lot.

At least it sounds like a great way to learn about flexbox internals.

Arnavion 12 hours ago 2 replies      
>`a | b` can be written as: `if !a && b { a = true }`

`a || b` ...

The repository does have multiple cases of `a || b` and none of the `a = true` kind, so perhaps the author realized it after writing this blog post.

tigershark 14 hours ago 4 replies      
This is what really struck me:"The API is still a bit awkward by Go standards. Too many methods, not enough direct access to variables"Does he really mean that proper go code has direct access to fields rather than encapsulating them???
leastangle 13 hours ago 1 reply      
> As far as I can tell you cant step through tests in the debugger

Maybe I am missing something, but that is not correct. You can debug tests the same way as you debug any other code. Even works with the mentioned/used Go extension for VS Code.

4ad 1 hour ago 0 replies      

 Go is so close to C. Wouldnt it be great if there was a program that could take C code and turn it into Go code? There are few attempts to do that: https://github.com/rsc/c2go https://github.com/elliotchance/c2go https://github.com/cznic/ccgo elliotchance/c2go seems to be the most promising. I didnt try any of them as neither seems to be usable yet.
Actually, we used github.com/rsc/c2go to port our Go compilers and linkers from C to Go. It was 100% mechanical translation. No manual steps needed to achieve correctness.

github.com/cznic/ccgo was used to port sqlite to Go. It passes all the (very comprehensive) sqlite test suite.

They work very well. The code produced is not very idiomatic Go, but it's not some monstrous impenetrable computer generated code either. It's quite similar to the original C code and it's readable and refactorable enough. After we converted the compiler from C to Go, we spent a lot of time to make the code more idiomatic.

j_s 10 hours ago 0 replies      
Sweet, Windows GUI in Go! Glad I put this off this long...

PS. That evergreen/un-dated content tho!

kristianp 11 hours ago 0 replies      
Looks like they're using walk and win for the gui.


nv-vn 12 hours ago 0 replies      
Not naming it Yogo was a missed opportunity.
Sembiance 9 hours ago 2 replies      
Today I learned that Go does not support the ternary operator. that's sad :(
US Supreme Court will require electronic filings and post them free online washingtonpost.com
238 points by scott00  20 hours ago   32 comments top 5
avs733 18 hours ago 2 replies      
This seems like an unmitigated good. The law, in all forms, should be freely and publicly accessible[1].

Part of me struggles with the abject misunderstandings about law I see in both the media and the public...legal jargon and process are inherently dense/anachronistic. That being said, this seems like an opportunity both for SCOTUS to role model transparency and to try and shorten the process by which the interpretation of the sacred texts are communicated to the people.

[1] this includes things like building codes and professional standards which while legally in the public domain are still claimed as copyright and sold by organizations like the American Society of Mechanical Engineers. The EFF has some resources on this: https://www.eff.org/deeplinks/2014/01/law-belongs-public-dom...

k-mcgrady 18 hours ago 4 replies      
OT: The Supreme Court in the UK has a YouTube channel [1] where videos of judgements are posted (usually very soon after they take place). I'd be interested to know if the SCOTUS has a similar service. I can't find it on YouTube but maybe they can be accessed elsewhere?

[1] https://www.youtube.com/user/UKSupremeCourt


Thanks to the below commenters.

piker 15 hours ago 3 replies      
While this idea seems great, requiring court staff to submit pro se litigants' petitions may be a non-trivial burden. Something like 40% of federal appellate work is responding to (often meritless, often incomprehensible) pro se habeas petitions[0]. I wonder if a side effect of this is additional legislation intended to dampen that burden[1] at the expense of real human liberty. I hope not, but we should balance this issue and be cautious about chilling less fortunate peoples' access to these basic civil mechanisms.

[0] http://www.lclark.edu/live/files/777[1] See, e.g., https://en.wikipedia.org/wiki/Antiterrorism_and_Effective_De...

clamprecht 16 hours ago 1 reply      
What will pro se prisoners do? I assume there's some provision for that. If not, they can't even appeal the rule itself!
kevin_thibedeau 8 hours ago 1 reply      
So SCOTUS runs its own system and the rest of the federal courts lock their public records behind the PACER paywall. Very consistent.
A tall chimney to facilitate heat exchange in the atmosphere superchimney.org
233 points by chr1  13 hours ago   142 comments top 29
the_rosentotter 2 hours ago 2 replies      
So five kilometers of flailing inflatable tube man.

I get that the upwards wind force can sustain the fabric structure, but it is hard to imagine that it could also carry a bunch of huge turbines, as well as the cabling required to carry the generated electricity. Not to mention safety concerns. Does this seem unrealistic to anyone else?

Also, would it be possible to do a proof-of-concept using an existing man made structure like Burj Khalifa class skyscrapers? Presumably it would be easier to deploy a tube off the top of one of these than to build one from scratch.

lend000 6 hours ago 0 replies      
For those skeptical of the science, note that there are large caves that exhibit this property, such as:https://en.wikipedia.org/wiki/P%C4%B1narg%C3%B6z%C3%BC_Cave#...

It seems like if the inside of the chimney column had a spiral shape, similar to a screw socket, the upward air pressure might alleviate some of the stress and make the column more structurally feasible. Granted, it would also dissipate some of the energy as heat.

fastball 8 minutes ago 0 replies      
Would the radiant heat from the ground be enough to continue this effect at the same rate during the nighttime?
vmarsy 11 hours ago 2 replies      
This reminds me of Solar updraft tower prototypes [1], which concentrates heat at the bottom of the chimney instead of expecting cold air at the top of the chimney.

There's still a delta of temperature between the top and the bottom, but instead of

 T_bottom_chimney = T_hot_ambient_air_bottom T_top_chimney = T_cold_ambient_air_top
it is :

 T_bottom_chimney = T_much_hotter_than_ambient_air_top T_top_chimney = T_ambient_air_top
Everytime I start reading things like this, I wish I had a home with similar 'magic', like Solar chimneys[2] and other techniques[3],

[1] https://en.wikipedia.org/wiki/Solar_updraft_tower

[2] https://en.wikipedia.org/wiki/Solar_chimney

[3] https://en.wikipedia.org/wiki/Ground-coupled_heat_exchanger

mikeash 12 hours ago 4 replies      
"The inside and outside air will be rising up. However, the air outside will be cooling adiabatically, so its temperature will be dropping. The air inside will be not affected by adiabatic cooling and will maintain its energy, so it will be warmer and less dense than outside air."

Is this a joke, or a crazy person? Air in the tube will expand and cool just like air outside the tube does.

robocat 4 hours ago 1 reply      
gtt 3 hours ago 1 reply      
I've tried to simulate 1km chimney in Comsol, but I cannot make it converge to a solution. If anyone is interested, the model is here https://mega.nz/#!jFgBxI6J!jdxloYFwcuk_YyGcIMlOmJTKcPbxyD2B4... (may be I'm doing something wrong with simulation parameters, help would be very much appreciated!)
jcrawfordor 12 hours ago 1 reply      
The short story "Shortstack" by Walt Richmond and Leigh Richmond depicts this idea and was published in Analog in '64. Likely coincidental, but amusing to see '60s science fiction apparently made flesh.
humanfromearth 12 hours ago 2 replies      
For the 5km chimney it needs to hold on 500km/h winds. For scale a category 5 hurricane is 250 km/h. Is it even possible to have that kind of structure with existing materials?
yohann305 11 hours ago 1 reply      
Anyone here could run a super tall chimney software simulation ?

I'm super interested in seeing someone confirm or debunk this.Anyone else interested, upvote please

Tarrosion 11 hours ago 1 reply      
So many signals suggesting this is a wild physics-defying idea that could never work, e.g. how many websites claiming 'this one neat trick solves global warming' really hold the key to solving global warming?

I hope that's not the case and by this time next decade we're all laughing about that century and a half where we put so much carbon in the atmosphere wow wasn't that a hoot...

Realistically, I am sympathetic to the idea that geoengineering, massive structures and engineering projects enabled by modern materials, etc. deserve more thought.

randyrand 11 hours ago 1 reply      
This will also function as a hell of a bird vacuum.
ChuckMcM 11 hours ago 3 replies      
Presumably you just lay a pipe that goes up the side of Everest and free power!

I wonder if the author asked the question "Why don't we have tornadoes all the time?"

If they had, that would have lead them to the physics of tornadoes. In my case it was the physics of so called 'dust devils' in the desert which are much smaller phenomena but based on the same ideas. Warm air rising through cooler air.

You might ask, but why don't we have them all the time? And the answer is that as air goes up, it spreads out, and as it spreads out it becomes less dense, and the lack of density is perceived as a colder 'temperature' even though the air molecules still have more kinetic energy and are thus 'hotter'.

In the video the tube is supposed to constrain the air (which it will) and the warmer air will rise inside of it, but without an energy source the warm air rises until its 'weight' is equivalent to the un-risen air underneath it, at which point it stops rising and the system is stable. If you were to cool off the bottom the air would start sinking again.

This has been experienced time and again by inexperienced makers of fires in their fireplaces. If you don't put enough energy into the air to make it rise, it comes back down the chimney and fills your living space with smoke. A fireplace is a remarkable little machine, where the fire heats the air, which pulls in more air as the air above rises, which puts more oxygen into the fire and increases its energy output etc. But without the fire burning in the fireplace the air stops moving.

Tornadoes benefit from a mass of really cold air sitting on top of warm air. This does two things, one the cold air above pushes down on the warm air to pressurize it, and two when a "hole" begins forming in the cold air mass it operates like an inverted tub drain and the warm air starts draining out of the tub. The energy source for a tornado is the temperature differential that is set up by the result of moisture condensing out of the air and super cooling the air around it.

Similarly a hurricane is powered by the temperature differential between the ocean and the air above it.

All three systems (fireplace, tornado, hurricane) share a common theme, there has to be a source of energy for them to operate. Without it, the air reaches equilibrium and just sits there. No magic allowed.

That said, if instead you built a tunnel, then you could connect two different air masses and extract energy from two different pressure differentials. The most interesting ideas have a tunnel under the Rockies or under the Sierras between the Mojave desert on one side and the milder (and moister) climate on the other. To the delta you can get from that is linear with respect to distance and/or a geographic feature that can inhibit the natural balancing of the air masses (like a range of tall mountains).

Sadly neither super chimneys nor lighter than air vacuum balloons are workable ideas.

Edit: It occurs to me that if you could make the chimney high enough you could put the top in the underside of the jetstream, then you could suck air up using the venturi effect.

shoefly 9 hours ago 0 replies      
Whatever we do, it's important that we learn how to control the "ingredients" of our atmosphere. There are so many things that could go wrong with our atmosphere and result in mass extinction. Global warming, ice ages, massive volcanic eruptions, etc. If we can find a way to quickly filter out the crap and rebuild our atmosphere... well, this technology could be used for protecting our Earth and future pursuits in space.
foota 11 hours ago 1 reply      
Here's my analysis from maybe wrong principles. If you have slightly more dense air beneath slightly less dense air, the air will experience a net force upwards. If this net force is stronger than gravity, then the air will experience upwards acceleration. This will continue as long as there is a difference strong enough. At the top of the tube, there is no more force since the density will be the same since the air will spread out after exiting. (If it's not already at the same density after going through the tube).

Looking at it this way this seems sound to me, am I wrong?

pdonis 11 hours ago 1 reply      
We already have something that does the same thing as this claims to (facilitate heat transfer from the surface to the upper atmosphere): it's called the hydrologic cycle.
kpil 5 hours ago 1 reply      
Is it really a good idea to move more water vapor, a potent greenhouse gas, significantly higher up in the atmosphere?
SubiculumCode 11 hours ago 0 replies      
Watched the video. Sounds miraculous :) Anyone here knowledgeable of atmospheric thermodynamics?
dghughes 9 hours ago 0 replies      
Wouldn't such a chimney take off like a Chinese lantern?
scythe 8 hours ago 0 replies      
These geoengineering proposals should be understood as mitigation strategies to be implemented after we have reduced carbon emissions, since even then we still have a problem. But this one seems very dubious.

>Speaking in terms of thermodynamic, we can say that chimney prevents adiabatic cooling of a rising parcel of air. Normally, when hot air freely rises in atmosphere, it expands as it gets higher and pushes the surrounding air. That causes surrounding air to heat and rising air to cool. That process continues until equilibrium is reached. At that point air stops its ascending. Unlike freely rising parcel of air, the air in the chimney is restricted in its horizontal expansion and thus, it is not free rising. When air rises in the chimney it also expands but only into upper direction. It compresses the layer of air above it, heats it up and loses its own heat. At the same time air below does the same thing. And thats how it goes all the way until the chimney exit: layers of air are being pushed and push themselves. That results in maintaining the same amount of heat in every layer of air, and that is how the chimney works.

This explanation ignores gravity. Air above you exerts more pressure on you than air below you, albeit by a tiny amount. But when the only thing moving is air in a 5-kilometer chimney, you can't get something for nothing. For intuition, just imagine the chimney is full of water. The water at the bottom is obviously under more pressure than the water at the top. The chimney faces the same consideration, but the ideal gas law applies.

Furthermore, the equation used in the "Calculations" section:

>q = dh2 /4 [ (2 g (po - pr) h ) / ( (l pr / dh) + pr ) ]

is sourced from this website:


which rather obviously works from the assumption that the chimney is placed inside of a heated house.

This all seems to be a sort of Sokal effect in climate science, I'm afraid. The paper 'SubiculumCode cited does not really analyze the thermodynamics used for the chimney and points more to the unrealistic dimensions (1 kilometer diameter and 10 kilometers high).

animex 10 hours ago 1 reply      
This model must be able to be simulated somehow! To Minecraft!
chroem- 12 hours ago 3 replies      
Whoever made this assumes that the chimney wall would be a perfect insulator, which absolutely cannot be the case if it's supposed to be a thin cloth or film barrier. The air would cool to the same temperature as the surrounding atmosphere.

This will not work.

stephengillie 12 hours ago 2 replies      
Would this be an efficient source of air pressure for the Hyperloop?
foota 11 hours ago 1 reply      
Any idea how tall one of these would need to be in theory to support itself? I think that would be a cool sight to see and a great way to prove feasibility.
desireco42 10 hours ago 0 replies      
I think this, however flawed some of the explanation of the effect might be, is something we can try and experiment with fairly easily. Either it can be done, or not. And I believe it can.

Now, we can't let Musk do all the cool things, maybe someone else could step in and fund a project to explore application of updraft towers.

pmoriarty 12 hours ago 4 replies      
How much will one of these cost?
hossbeast 12 hours ago 1 reply      
Unreadable on mobile
stefantalpalaru 12 hours ago 2 replies      
If a constant air flow is needed to keep the chimney upright, what will happen during the night, when the desert cools down?
ryanobjc 9 hours ago 1 reply      
A spelling error makes it hard for me to take the proposal seriously.

For something as important as this, the details count. A loose approach to spelling is disturbing.

Adobe Open Source adobe.github.io
73 points by lelf  9 hours ago   12 comments top 5
denisehilton 52 minutes ago 2 replies      
It's nice to know that the biggest tech brands are slowly moving towards open source. That does reassure common men like us.
Navarr 57 minutes ago 1 reply      
I'm very surprised that adobe isn't using a custom hostname.

PaaS are transient, but URLs are "forever"

geokon 2 hours ago 1 reply      
Does anyone knows what's up with Boost GIL by Adobe? It's not hosted here, but it's on their website: https://stlab.adobe.com/gil/ (With no updates in 10 years :S)

Is it abandoned...? Is it "done"? (Or has everyone moved on to some other library?)

I really liked the template magic it did. It was so generic and flexible with image formats while being very performant. Really puts to shame the garbage that's in OpenCV

neelkadia 5 hours ago 0 replies      
Snap.SVG is great!
blahblah1234 8 hours ago 1 reply      
I didn't even know this was a thing. Sounds like a great idea. Although with adobe's track record like with coldfusion i don't know about this one
Bitcoin: Evidence of spoofing, wash trading, and a scheme known as Tether medium.com
132 points by Artemis2  4 hours ago   33 comments top 16
TekMol 59 minutes ago 1 reply      
The title and the sensationalist wording of the article is complete nonsense.

Yes, placing a large order might be interpreted as a signal by some traders and it might be possible to take advantage of that.

But that does not mean somebody dominates the price of Bitcoin. By the same logic you could say that HN posts dominate the price of Bitcoin because some traders might use them as a signal.

vbo 57 minutes ago 1 reply      
TLDR: Whale trader traps trading bots, bootstraps 'spoofed' market dynamics which fool average Joes into predictable behaviour.
jerguismi 1 hour ago 2 replies      
Why exactly is spoofing illegal? How do you differentiate legitimate order canceling from spoofing? Trading is very emotional process. You place order, 5 minutes later you decide to cancel it, 10 minutes later you decide to place another order.

I think it doesn't make any sense for this kind of activity to be illegal, and I don't see much wrong with it. It would be impossible for exchanges to differentiate between spoofing or legitimate trading anyway.

captainmuon 2 hours ago 2 replies      
I wonder if it would be possible to "piggyback" on that, and when you see a spoofing attempt, issue a certain order. Your advantage would be to know that their order is fake and will likely be canceled.

Furthermore, would that be legal? You are just using publicly available information.

sebleon 1 hour ago 0 replies      
What's the big deal? Now that we know these price manipulation tactics, it should be straightforward for traders to ignore these false signals.
eveningcoffee 1 hour ago 0 replies      
This entry explains how spoofing caused the 2010 flash crash in the stock market.


erikb 20 minutes ago 1 reply      
What's the difference between Wash Trading of a company and money printing + fake (e.g. construction) projects by a government?

A little sad to see that all the banking problems are still existing with Bitcoin as well.

danmaz74 24 minutes ago 0 replies      
Flagged because the title is sensationalist and doesn't reflect the content of the article (even if you believe the article itself). Seems much more like FUD against Bitfinex.

Even if "Spoofy" was able to dominate Bitfinex (which they couldn't with the described tactics) that would be a far cry from dominating the price of Bitcoin. There are so many more exchanges.

I started doing doing some trading for fun and profit a few months ago, and "fake walls" were very well known to all users of Poloniex (there used to be a public chat there, so I learned about those almost immediately). It's a sure thing that there are whales manipulating the market, but that's for sure not a single entity, it's not limited to bitfinex, and if you want to gamble on this bubble you have to deal with it.

* edited for clarity

mcnamaratw 34 minutes ago 0 replies      
This article is a boldface warning about Bitcoin, but not necessarily in the sense intended. If we're scandalized by the very mild trading behavior described, we are in way over our heads in any kind of market at all.
thinbeige 26 minutes ago 1 reply      
Why do we have then a similar price development of BTC/USD on a much larger exchange (Poloniex)?
kristopolous 1 hour ago 1 reply      
Wouldn't the best strategy be to pull two exchanges apart, pushing them opposite directions, and then arbitraging the gap as it closes?
Frogolocalypse 1 hour ago 0 replies      
You mean people use their financial positions in order to trigger sells and buys in order to capitalize on sentiment changes? Tell me it ain't so!
discombobulate 1 hour ago 0 replies      
An exemplar of why !to day trade crypto. At least to me.
aw3c2 1 hour ago 0 replies      
In other words, trading currency is a disgrace.
drcross 1 hour ago 0 replies      
I would posit that it's different people at different times trying to move the market in a direction favourable to them, but it's a case of caveat emptor, once people realise these things are happening they are safe against them.
makarb 1 hour ago 2 replies      
Why decentralisation is a bad idea, take 340828493.
Node.js: Initial experimental implementation of HTTP/2 github.com
125 points by andrewbarba  12 hours ago   15 comments top 2
BinaryIdiot 9 hours ago 2 replies      
I'm curious what will happen with the existing `http2` module. Will the http2 support get rolled into `http` or will `http2` remain separate and simply overshadow the npm module?

Also, is there a roadmap between what they expect that needs to be done to take it from where it is today to non-experimental, production ready? Granted I'm sure testing and bug squishing is part of it but I'm curious to know if there are specific goals they want to accomplish before final exposure.

Nice job all around on an initial release! I'll definitely take some time to play with it over the weekend :)

trevyn 4 hours ago 1 reply      
Mmmmm... I'd rather see QUIC support -- A lot of Google -> Chrome traffic is served via QUIC, and Google, until very recently, had the only production-ready QUIC server. (Apparently Litespeed just added QUIC last month.)
What Sets Successful CEOs Apart hbr.org
127 points by happy-go-lucky  14 hours ago   58 comments top 21
11thEarlOfMar 13 hours ago 9 replies      
Um... Don't they need a control group of randomly selected persons?

'Decisive' Ok, but are they more decisive than a baseball coach?

'Engaging for Impact' More or less than a car salesperson?

'Adapting Proactively' Homeless persons adapt, and can be surprisingly resourceful, too.

'Delivering Reliably' Most manufacturing managers have this trait, too. If they don't, they aren't manufacturing managers for long.

From the results of the study, one would infer that if they adopt these 4 traits, they will become CEOs. But that's laughable. These 4 traits are supplemental and supportive to getting there, but not causal. In my opinion, a CEO needs to be driven. They need to be going somewhere that they can convince a lot of other different types of people to follow them to. They have to have a sense of agency that leads them to want to be in charge. Only then do those 4 behaviors make a difference.

This article is like taking a bunch of measurements from professional athletes to determine what made them athletes, ignoring that all the physical abilities and training could not get them there without the drive to achieve. That has to come first.

tlogan 13 hours ago 2 replies      
Typical HBR article.

Sure. Decisiveness, adaptability, reliability, etc. are great.

But the biggest problem is when the CEO is decisive, the CEO is engaging the team, the CEO is adopting to environment and the CEO is reliable - but the CEO is doing it all wrong. I.e., the CEO just doesn't have a clue.

As Napoleon said (and many others): whoever is industrious and stupid should be shot on the spot.

The best CEOs are the one who are lazy and very smart. Lazy? Because they will delegate their vision to other people. Smart? The CEO will have the right vision and delegate to the right people.

Animats 6 hours ago 0 replies      
One of the more concrete remarks there is that successful CEOs spent about 50% of their time on long-term issues. Less successful CEOs spent much less. One of the traps of management is being driven by incoming problems.That's part of management, but it's not the biggest part, especially as you move up.

There's also the fact that if you spend most of your time dealing with problems, you spend too much time talking to the screwups in your organization. Spending time with the people who aren't having problems is important. They're the ones that can move things forward.

ThomPete 4 hours ago 0 replies      
A succesful business. That's about it. In most cases.

Sure there are anomalies, but in most cases being a CEO for a growing business in a growing industry rather than some unique talent.

mck- 13 hours ago 2 replies      
> Only 7% of the high-performing CEOs we studied had an undergraduate Ivy League education, and 8% of them didnt graduate from college at all.

If you confuse correlation with causation, you could say that it's better to be a drop out than graduate from Ivy League

paulpauper 5 hours ago 0 replies      
1. vision (Elon musk , Walt Disney, Steve Jobs)

2. Calculated risk taking (Meg Whitman buying paypal in 2002, Zuckerberg buying Instagram in 2013 when everyone said it was too expensive ) In both instances, although there were risks, they were still relatively small compared to the parent company.

3. the business itself being a success. A good CEO can only do so much if the business is not viable or is struggling due to various macro factors outside of the CEO's control.

4. All-around good execution (Jeff Bezos comes to mind here)

Steeeve 9 hours ago 1 reply      
I find the skepticism in this discussion interesting.

While it may seem obvious that a decisive leader is a better leader, it's not necessarily a trait that floats to the top of the list. The same goes for all of these traits.

I have had the opportunity to work under leadership that exhibits all of these traits and I can tell you with absolute certainty that the combination is rare and it is very effective.

throwme_1980 1 hour ago 0 replies      
Wow, finally an honest article, why hold on to mediocre employees , no need to buy donuts or pretend this is a 'people focus' company. What matters is your bottom line
cbsmith 7 hours ago 0 replies      
One of these days, I'm going to read an article like this, and it is going to say something like, "the people that work for them" or "the organization".
0xbear 7 hours ago 0 replies      
What sets successful CEOs apart is that everyone quickly forgets about unsuccessful ones.
chrisgd 21 minutes ago 0 replies      
Mostly luck
vikascoder 10 hours ago 1 reply      
What sets successful CEOs apart? : Luck
thinbeige 1 hour ago 0 replies      
Slightly OT: Would love know how many of those who commented here are or were CEOs.
CalRobert 13 hours ago 2 replies      
Confirmation bias, mostly.
grandalf 13 hours ago 0 replies      
The ideal skill set for a CEO varies dramatically at different stages of company growth.

There are likely some universals, but those are the least useful areas to consider and the most hand wavy.

kwhitefoot 5 hours ago 0 replies      
Before asking this question we need to to ask what counts as successful. There can be multiple definitions depending on who you ask.
m3kw9 8 hours ago 0 replies      
How about the one trait that is always underrated - Luck
honestoHeminway 3 hours ago 0 replies      
Earn money, reduce risks.Ballmer and not steve jobs did that.

So i guess the answer- besides CEO-people manipulation skills is too think ahead of societys development, anticipate future demands, and invest there, while ignoring the crowd yelling insanity.

elchief 9 hours ago 0 replies      
HBR is full of shit

- me, MBA

olivermarks 13 hours ago 1 reply      
tldr "In the end, our research shows, leadership success is not a function of unalterable traits or unattainable pedigree. Nor is there anything exotic about the key ingredients: decisiveness, the ability to engage stakeholders, adaptability, reliability.

While there is certainly no one size fits all approach, focusing on these essential behaviors will improve both a boards likelihood of choosing the right CEOand an individual leaders chances of succeeding in the role."

Somewhat self serving for the authors research/advisory company IMO and surprisingly non specific based on the confidence of the headline

davebryand 8 hours ago 0 replies      
They forgot the question mark at the end of that title...

And the answer is: they don't read hbr.org

How to Design Programs, Second Edition neu.edu
146 points by tosh  15 hours ago   21 comments top 8
wikibob 3 hours ago 1 reply      
The approach in this book is incredibly important and deserves far wider awareness than it has had so far.

Unfortunately the book itself is less than ideal for working through directly, it would benefit greatly from the polish of professional editing.

However, Gregor Kiczales of University of British Columbia has a absolutely top notch class he teaches based on the book. It's available free on EdX: https://www.edx.org/course/how-code-simple-data-ubcx-htc1xDon't be put off like I was at first by the mass-market title ("How to Code").

capnrefsmmat 10 hours ago 0 replies      
As context, here's an early paper describing the motivation behind the first edition, and why it chose a different approach from the famous Structure and Interpretation of Computer Programs:

Felleisen, M., Findler, R. B., Flatt, M., & Krishnamurthi, S. (2004). The structure and interpretation of the computer science curriculum. Journal of Functional Programming, 14(4), 365378.


A key paragraph:

> Over the past few years, we have developed an alternative approach to teaching the first course. We have translated the approach into a new text book, and we believe that it addresses SICPs failings along four dimensions. First, the book discusses explicitly how programs should be constructed. Second, to tame the complexity of programming, it defines a series of teaching languages based on Scheme that represent five distinct knowledge levels through which students pass during their first course. The levels correspond to the complexity of data definitions that the program design guidelines use. Third, the book uses exercises to reinforce the explicit guidelines on program design; few, if any, exercises are designed for the sake of domain knowledge. Finally, the book uses more accessible forms of domain knowledge than SICP.

Osiris30 7 hours ago 0 replies      
Previous discussion on HN - 3 years ago (1) and even earlier (2).

(1) https://news.ycombinator.com/item?id=8778569

(2) https://news.ycombinator.com/item?id=2958108

sevensor 12 hours ago 0 replies      
Has there been a significant update to HTDP? Or is this just being posted because HTDP is good? The second edition has existed in some form for a while now. Anyhow, the PLT/Racket folks are doing great work!
Dowwie 12 hours ago 3 replies      
Is there a PDF or epub version of this?
crimsonalucard 1 hour ago 0 replies      
Has anybody went through this book? Is it worth it for an experienced programmer to complete this book?
contingencies 11 hours ago 2 replies      
This inspired me to program a Haiku:

Grasping for authority

A page turns

Close tab

auggierose 12 hours ago 3 replies      
Interesting that they put Strings under fixed size data, and then start the arbitrarily large data section with Lists ...
A formalization of category theory in Coq github.com
93 points by noch  14 hours ago   24 comments top 4
solomatov 8 hours ago 2 replies      
It's actually not very interesting formulation of category theory. You can't express a category of categories, with isomorphic categories considered equal in this way. Partially, this can be worked around if we state that everything important preserves equivalence (i.e. if A ~ A` and B ~ B` A x B ~ A` x B`). Though, if you want to express this in full generality, you will need Homotopy Type Theory.

But, all in all, even formulating all this and proving theorems was a good exercise. Good job!

runeks 8 hours ago 1 reply      
I believe this is what John Wiegley talked about in this Haskell Cast[1] which, as I understand it, should allow translating Haskell into Coq.

Im just beginning to understand all of this category stuff but, as far as I can see, a Haskell function of type

 f :: a -> b
should be equivalent to a Coq function of type

 f :: a -> Either SomeException a
to account for the Hask categorys bottom value.

[1] http://www.haskellcast.com/episode/013-john-wiegley-on-categ... (skip to compiling to categories)

MikkoFinell 4 hours ago 2 replies      
A question for those of you here who are into functional programming:

Is category theory worth studying if I (coming from c++ background) am looking to get into functional languages like Haskell? How common is it actually among Haskell or Lisp programmers to know and utilize concepts from category theory in their programming?

SomeStupidPoint 12 hours ago 6 replies      
Is there a good lecture series on Coq? Or maybe introductory project?

I've seen a video intro [0] and poked a little bit around the reference manual [1], but I'm not sure what's "between" basic understanding of the commands and being able to extract a complex verified program.

It all seems to be either the theory (which I mostly grok) or completed projects, not a lot about the engineering details.

...Or does that just not exist?

[0] https://www.youtube.com/watch?v=ngM2N98ppQE

[1] https://coq.inria.fr/refman/

Bitcoin breaks $3K to reach new all-time high techcrunch.com
112 points by janober  8 hours ago   113 comments top 10
mmaunder 5 hours ago 3 replies      
That was quite a stair step up around 8pm PDT. Anyone know what happened? http://imgur.com/a/W6m6n
paulpauper 5 hours ago 4 replies      
Been long bitcoin since 2013. I felt like I was late but it has been awesome .glad I ignored the headlines about bubbles . the news is useless. for every bubble they call correctly, the get 10-20 of them wrong. Bitcoin is like General Electric..its not going anywhere. Against all odds it succeeded and surpassed everyone's expectations.
perpetualcrayon 6 hours ago 5 replies      
Not saying the alternative (fiat) is a substantially better alternative, but this is what happens when markets aren't regulated.

My prediction: There are going to be a lot of naive poor folks who are going to become poorer, maybe even dirt poor, and some very savvy wealthy people who are going to be even more wealthy when this is all said and done.

vedoza 2 hours ago 0 replies      
nikolay 2 hours ago 2 replies      
Yeah, but look at the trading volumes - at least an order of magnitude lower than 2 years ago!
gaetanrickter 5 hours ago 3 replies      
A rising tide lifts all boats and I can imagine this breakout boosting the entire cryptocurrency market. Just wait until we enter a bear market, we'll start seeing just about every cryptocurrency spike in value.
mrkgnao 5 hours ago 0 replies      
This link posted a couple days back may be of interest:


jeremynixon 7 hours ago 1 reply      
Legendary. Huge thanks to all of the engineers behind segwit.
wfunction 6 hours ago 2 replies      
Can someone explain how old Bitcoin works post-fork? Can you sell the same old Bitcoin twice now? Is this already priced in somehow and still going up?
lightedman 6 hours ago 1 reply      
It had to reach an all-time high, otherwise there's no way there's going to possibly be any money to back Bitcoin Cash, since I'm pretty sure the people that forked it have no real assets to back up this currency otherwise.
Peter Jacksons Wingnut ARs first augmented reality demo [video] fortressofsolitude.co.za
20 points by Dynisty  6 hours ago   15 comments top 9
chippy 2 hours ago 1 reply      
"Mind blowing" - When I view that video the first thought is "back blowing" - having to watch something hunched over a table in bad posture will kill backs, and tire arms having to hold the device up. Sure that bug with humans could be fixed, but it will change somewhat - and thats what this demo gets me interested in. What would a human friendly AR entertainment device look like?

It reminds me of the early CG movies where they gratuituosly moved the camera around from all and every angle, and later on the camera angles became tamed and good old fashioned framing returned.

callesgg 36 minutes ago 1 reply      
So is that video faked? Or did they actually capture the iPad screen.
veli_joza 1 hour ago 0 replies      
I see no benefits over TV where best angle is already selected for you (and framing is art in itself), here you have to play the cameraman. How would multiple people (a family) watch this kind of media without getting in each others' way?

And most importantly, they didn't take advantage of biggest feature of platform - interactivity. They are just drawing a dead fish [https://vimeo.com/64895205].

Sharlin 2 hours ago 0 replies      
Here's a video of the WWDC presentation: https://www.youtube.com/watch?v=S14AVwaBF-Y
Numberwang 1 hour ago 0 replies      
I see no value in this at all without headgear.
parenthephobia 29 minutes ago 0 replies      
I don't think computer games are the likely intended use of Wingnut's technology: I think Peter really wants to use it in film-making, e.g. live preview of compositing and effects.

Suppose you attach it to a camera rig, or just integrate the technology into existing film cameras. The problem of holding the camera up all day has been solved, and having to play the cameraman is the point of the exercise.

kisstheblade 2 hours ago 1 reply      
How do they block light and show a texture (eg. the shiny table)?
frik 2 hours ago 2 replies      
This demo was first shown on June 5th at Apple Conference:


Why is this on HN frontpage today? (and downvotes)

AndrewKemendo 32 minutes ago 0 replies      
HN hates Augmented Reality for some reason and I'm not quite sure why.
Learn GraphQL with GitHub github.com
167 points by happy-go-lucky  21 hours ago   34 comments top 10
jbjorge 19 hours ago 4 replies      
To all considering using graphql, let me tell you something that was unclear to me when I first tried it:If you plan to use it with a schemaless (nosql/graph) backend, graphql will force you to write a schema for it. If you can't (due to dynamic data), you will just end up forcing graphql treat your data as json-blobs with no schema.Graphql turns into a json-blob transmitter with no benefits.Also, if you have deeply nested/recursive data structures, the client performing the query needs to know just how deep it should query. This can lead to ridiculous queries if you're running on a graph db where the client doesn't know how many vertices it should traverse.REST is a better fit if the above is true for you.
NMDaniel 18 hours ago 9 replies      
Yet another tutorial about using a GraphQL client. It's nice but I think the hard part is implementing a GraphQL server. Are there any examples of a full blown GraphQL server, interpreting complex queries as SQL/NoSQL queries in a performant way?
schickling 1 hour ago 0 replies      
Huge thanks to the GitHub team for putting together this webcast!

For everybody interested who already wants to get familiar with GraphQL, check out this getting started tutorial for GraphQL: https://www.howtographql.com/

danellis 55 minutes ago 0 replies      
What is the purpose of webcasts? Why not just post a video? I presume it's not interactive Q&A -- too many people would be watching.
shurcooL 13 hours ago 0 replies      
For Go users interested in accessing GitHub's GraphQL API v4 [1], you should know that there are existing efforts [2][3] to create a Go client for it.

[1] https://developer.github.com/v4/

[2] https://github.com/google/go-github/issues/646

[3] https://github.com/shurcooL/githubql

gramstrong 20 hours ago 1 reply      
If anyone is interested in jumping straight in to GraphQL, I recommend graph.cool. It was posted a while back when the service was first released. Their free developer tier is awesome, and their project tier is completely reasonable.
ryenus 4 hours ago 0 replies      
To get started and understand how to build a GraphQL server, here's a nice video: Zero to GraphQL in 30 Minutes [0].

[0] https://www.youtube.com/watch?v=UBGzsb2UkeY

pmoriarty 20 hours ago 2 replies      
Any way to watch this without signing up or registering for anything?

I'd just like to download the video directly, if at all possible.

theogravity 12 hours ago 0 replies      
I've created a really basic server + client tutorial here:


I actually have stopped using Apollo on the server side (outside of the middleware) to build the GraphQL definitions.

I use the vanilla graphql-js lib instead with the join-monster library for queries + batching + paging and objection.js for modeling + mutations.

join-monster is built for using your database with graphql (I use postgres). Objection.js is great for mutations because of its insertGraph / upsertGraph functionality, where you can feed in your entire mutation input as a nested structure and it will perform the right insertion queries to multiple tables based on your objection.js models that you've defined.

I've learned much more since then (eg authorization / authentication / mutations / implementing paging via relay connections) that I'll probably start up another project in the future talking about how to build a full-scale GraphQL server.

aargh_aargh 15 hours ago 2 replies      
Is that 10 PDT or 10 PST? Trying to convert but confused...
Prodigy: A new tool for radically efficient machine teaching explosion.ai
261 points by Young_God  21 hours ago   65 comments top 23
plusepsilon 19 hours ago 2 replies      
I don't think (some) people understand; a slick data annotation tool like this is vastly more useful than the 20th variant of GAN that DeepMind produces :)
AndrewKemendo 16 hours ago 1 reply      
Looks promising and definitely a needed tool. I signed up for the beta and I used the demo version and have a couple of thoughts.

1. This seems closer to a reinforcement learning system than a pure annotation system. That seems to be by design, however based on the demo, I am not able to change or add to the annotations as I go, which is a big limitation. It's just yes, no (no feedback), ignore and undo. This is in contrast to something like the VGG annotations system: http://www.robots.ox.ac.uk/~vgg/software/via/via.html

2. I don't see an actual annotations capability for images in the demo. Not sure if that is just a pretotype page, but IMO image classification/segmentation is the place where this tool would really benefit the community.

3. It's unclear to me how or if I retrieve my trained model or even just the annotated structure (.csv?, .json?) from this system. Do I get a .pb somehow that I can import into TF or am I locked into an API with my new model served from Prodigy? My guess would be the latter.

I think what this wants to be is a human validation system for training, which also improves the Prodigy nets through crowd sourcing. Definitely a win-win in the short term, but it has the limitations of the initial model and the ability for the user/client to tweak the system and output the results.

Matroid is doing something similar here, but I have been unimpressed with their offering so far.

gh1 21 hours ago 1 reply      
I love how the SpaCy related websites are always so well designed. Their dependency graph visualizer is just amazing. I know that Ines is behind that one, but don't know about the other stuff.

Now coming back to the topic, I have so far just used Jupyter Notebooks and spreadsheets to do annotations and by golly, it is an extremely boring and tedious process. This looks like a fun tool to try out for my next NLP related project. Might spice things up!

But I hope that like all SpaCy related ideas, it doesn't assume too much about the problem at hand. I usually use NLTK instead of SpaCy because it allows me to be very flexible, except for the sentence tokenizer, where SpaCy's accuracy is hard to beat.

infinitone 20 hours ago 0 replies      
So this isn't OSS? Seems atypical in the ML community.

For those looking for alternative OSS solutions: BRAT, labellmg are decent.

theincredulousk 20 hours ago 1 reply      
Guess the radical efficiency didn't carry over to their web server
rayuela 21 hours ago 4 replies      
That's a nice UX but the flurry of initial upvotes on this looks kinda fishy, especially given that it's just annotation software.
visarga 8 hours ago 1 reply      
How many languages are supported? I see many more languages in Google's Syntaxnet library. What's keeping you from having the same list of 40 languages for POS tagging?


michaelbarton 17 hours ago 0 replies      
This looks interesting because it add the ability to put the user in the loop of fixing/annotating the problematic observations relatively easily. I like the example of Tinder for data.

Are the examples picked those that have the highest objective function error rate, or something similar?

Does this apply only to text classification problems? Are there examples where this could be applied to tabular data?

dustinkirkland 19 hours ago 0 replies      
This could be a headline from 1987 :-) (cue the dialup modem sound)
imh 20 hours ago 1 reply      
Since syllogism is participating in this thread, what kind of active learning are you using? I'm always hesitant to use anything except for IWAL since most of the more common ones aren't actually consistent. Even then, then payoff tends to be kinda disappointing.

(But I'm definitely not an expert)

38kkdiu 17 hours ago 1 reply      
Looks very nice, although it always takes me a bit to figure out what they're talking about with these sorts of things because I have to remind myself that most ML/DL stuff is supervised. What I research is unsupervised.

They kind of have this weird dissing of unsupervised scenarios, though. It's not like supervised or unsupervised is better or worse, they're just surrounding different problems. They can talk up their product without needing to criticize a problem domain.

It's like if you were making motors for boats, and then started talking about "these crazy people who think it's better to fly." ???

Xeoncross 14 hours ago 0 replies      
To me, Matthew and Ines are to NLP as Bernstein & co are to cryptography.
syllogism 19 hours ago 0 replies      

Sorry about the poor performance on the site! We got complacent because all of our sites are 100% static.

technologia 21 hours ago 0 replies      
I like the simpler annotation UI, you can get more of your team active with annotation in a Mechanical Turk fashion.
Gallactide 11 hours ago 0 replies      
I've been pulling my hair out and losing sleep over a specific problem I need to solve for a client. This tool, along with the linked spaCy lib have not only reduced the complexity of the task to be manageable, have also drastically reduced the projected completion time. In other words, Holy shit thank you OP.
erik14th 10 hours ago 0 replies      
Wow, been a while since I've touched UX this good, loved the themes, is this open source?
sgt101 19 hours ago 0 replies      
En_gr_Student 21 hours ago 3 replies      
So this is just fluff?
SubiculumCode 18 hours ago 2 replies      
I work with data as a neuroscientist, but I haven't used ML. What is an an annotation in this context?
ipunchghosts 21 hours ago 1 reply      
link dead already
egor598 20 hours ago 1 reply      
Site down?
caycep 20 hours ago 0 replies      
this brings back dialup/bbs memories...
zhte415 20 hours ago 0 replies      
Very wordy.. not very efficient..
Apple has proven me wrong about HomeKit theverge.com
180 points by tambourine_man  22 hours ago   62 comments top 12
IBM 21 hours ago 4 replies      
Apple got the fundamentals correct from the beginning and I've always been mystified by the hot takes claiming it was a failure.

It's designed with security in mind, so your HomeKit fridge isn't going to take part in a DDOS attack [1], and it doesn't require an internet connection. Some people viewed this as the same ol' Apple focused on devices while the world moves on to cloud services, but it turns out that's a big advantage too [2].

[1] https://arstechnica.com/information-technology/2016/10/doubl...

[2] http://www.businessinsider.com/nest-thermostats-go-down-2016...

seanalltogether 21 hours ago 1 reply      
I've been contracting with a major iot company for a couple years and their new product for the past year has been working on becoming homekit compatible. I can't say so far that I've been impressed with how things work on the Apple side. The concept of device vs service has been creating confusion for both our custom app as well as how devices are displayed in the Home app.

The review process is very cumbersome as well, the company I work for wants users using the Home app, but apple requires we create a homekit compliant app to certify the hardware. I don't understand why Apple can't certify the products with their own Home app.

Lastly there is no way to make our hub present itself for remote connections in Homekit, despite Apple requiring us to use chips certified to their standard. The user has to have an ipad or apple tv in the house to act as a gateway. This is a confusing concept to explain to users if they've been using our protocol for the last 2 years and now want to migrate to Homekit.

bgentry 21 hours ago 1 reply      
I'm confused. Despite this line in the article:

At WWDC in May, Apple quietly announced that it planned to relax some of those restrictions. The biggest change was the introduction of software-based authentication. In other words, you wont have to replace your stuff to make it Apple-compatible going forward, and youll get HomeKits lauded security thrown in for free provided the device maker actually goes in and implements it.

The linked HomeKit FAQ says that software authentication is only for non-commercial devices, and that commercial/shipping products are still required to use the hardware authentication chip. So Apple's own docs clearly refute the notion that non-HomeKit hardware can receive a software update to become HomeKit compatible.

Ikea Tradfri is an exception here. They plan to add HomeKit support via a software update, but they do in fact already ship their hardware with an MFI HomeKit authentication chip.

It is possible to add a software authenticated device to a HomeKit network, though you get warned when doing so. This is not new (though official support for it is). But it still sounds like commercial products can't just add HomeKit compatibility via software without breaking Apple's terms.

leeoniya 21 hours ago 2 replies      
works well if you're living the iLife in Apple's walled garden. and here i am hoping for https://www.openhab.org/ to become bigger and better. i want automation without vendor lock-in (hardware or software), and without relying on closed-source and third-party services for the pleasure.

i was doing some research recently about having wifi-connected smoke alarm/CO listening device that can recognize [1] off-the-shelf alarm beeps (which are standardized) and send me an SMS & email. this turned out to be surprisingly difficult to achieve. ideally, i could hook up a microphone to a BeagleBoard of Raspberry Pi, run some daemon that monitors audio, does beep recognition and lets me hook into notifications.

instead, there are proprietary listening devices (ok, fine) that all work by sending notifications via third-party service (not fine) to some android or iphone app (not fine).

[1] https://github.com/benjaminchodroff/alarmBeepDetect

moflome 18 hours ago 0 replies      
FWIW, I'm working on an Arduino/Particle port [1] of the HAP protocol, trying to emulate the Home client using 32-bit C/C++ crypto libraries from the OSS WolfSSL [2]. The folks from Apple Home have been supportive, although their spec needs some help [3]...

[1] https://github.com/moflo/homekit-accessory-emulator[2] https://github.com/wolfSSL/wolfssl[3] https://developer.apple.com/homekit/

givinguflac 20 hours ago 0 replies      
HomeKit has been great for us at home. It was a saving grace for Hue because even their revamped software is god awful. Personally I'll take security over openness any day. Not saying you can't have both, just not today with current offerings by anyone.
minimaxir 20 hours ago 0 replies      
HomeKit is amazing with Hue lights, with easy control, dimming, and color changing from the Control Center. With Siri, changing the lights works very reliably, which was not the case with the original non-HomeKit Hue lights.

Disclosure: Ex-Apple employee, but had no interaction with HomeKit.

ancorevard 20 hours ago 1 reply      
Thanks to HomeKit, my dumb window AC units are now smart. Based on several HomeKit temperatures and humidity sensors in my home, they now turn on and off as desired.
dingo_bat 4 hours ago 0 replies      
If the article is accurate in stating that homekit devices do not require an internet connection to work, that's big. That's what iot should be, IMO. There should be zero dependence on any hardware out of my house, except electricity of course.
unfamiliar 2 hours ago 0 replies      
Can I implement the HomeKit protocol for my own Raspberry Pi gadget?
miguelrochefort 20 hours ago 3 replies      
I don't understand why IoT and home automation has to be so complicated. Why don't we just make devices consume/expose some semantic description of the state of the world, and call it a day?

Below is an example using RDF, SPARQL, and some made-up ontologies.

Here's my kitchen light.

 @prefix rdf: <http://www.w3.org/1999/02/22-rdf-syntax-ns#> . @prefix lightBulb: <http://example.org/models/lightbulb/> . <http://example.org/people/9876543210> _:me <http://example.org/things/0123456789> _:kitchen-light _:kitchen-light rdf:type <http://example.org/models/lightbulb> _:kitchen-light lightBulb:hasOwner _:me . _:kitchen-light lightBulb:hasName "Kitchen light" .
Let's turn it on.

 _:kitchen-light lightBulb:isOn true .
Which of my lights are turned on?

 SELECT ?light ?name { ?light rdf:type <http://example.org/models/lightbulb> . ?light lightBulb:hasOwner _:me . ?light lightBulb:isOn ?isOn . ?light lightBulb:hasName ?name }

Animats 17 hours ago 1 reply      
All your house are belong to us. - Apple.

Being tied to a cloud service is unacceptable. Cloud services only have lives of a few years before they disappear or change incompatibly. Houses need 20 to 50 years of support.

Computational Category Theory man.ac.uk
82 points by noch  16 hours ago   9 comments top 3
carterschonwald 14 hours ago 1 reply      
from a naive skim,it looks like a book that is about how to model category theory in SML.

A lot of the encodings seem to around that

I've over time gotten a lot out of efforts to model category theory in agda, one example being https://github.com/copumpkin/categories (though theres many more).

Sharlin 2 hours ago 0 replies      
Is the page layouting broken for anybody else? At least on my macOs Preview the top margin is nonexistent and the bottom margin huge.
emmelaich 10 hours ago 0 replies      
The pdf is from 2003, not clear whether much is dated later.
Building account systems plan99.net
118 points by jsnell  18 hours ago   45 comments top 10
Terr_ 17 hours ago 6 replies      
> If the username becomes a form of self-expression on your service, users will want to change it from time to time.

IMO separating identity from display-name is an under-used design choice, especially if you think your system needs to scale up to lots and lots of unique accounts.

I think Steam is an easy example of a service which does it right: Many people (usually in different social circles) can use the same name, you can change your display name easily, other people can see some previously-used names, and you can assign custom names to friends to avoid confusion.

> Pre-supplied questions make the guessing problem worse.

Personally I've love to have the option of choosing my own question.

All too often the pre-supplied questions suck in various ways. Some might be patently insecure (ex: name of highschool), inapplicable (name of first pet) or just too ambiguous to rely on (name of street you grew up on, if you moved a lot.)

With a custom question, I could craft something both secure (at least against non-family) and also unambiguous to future-me. Ex: "Your worst encounter with bees occurred in what place?"

ivanhoe 15 hours ago 4 replies      
Many solid advices here, but I still have doubts about the real-life UX of switching to emailed links instead of using passwords. It's quite popular for some time now, and security wise it makes a lot of sense, but:

For one, that means that each time I wish to login (or switch between accounts) I need to fill my email and then go to another tab or to mail app, and wait for the email. It's not that uncommon to take a while for an email to be delivered. Requirement to stare for 3-5 (or more?) minutes into a screen of my mail client and obsessively click on refresh button is less than ideal, and would just get more and more annoying the longer one uses the app. And even if email arrives immediately, it's still more steps and time then having my password manager auto-fill the form and log me in.

Also a (minor) annoyance with this is that clicking on the link in email will open a new tab/window in the default browser, not reuse the one where I started the login process.

And then you have a full bag of all the usual problems with users not getting emails for various reasons, from being marked as spam, to simply moved to Updates tab in gmail, where you can bet that half of your ordinary users will not be able to find them. That will generate your support team some steady flow of extra work, you can bet on that.

From my personal experience, each time in some app we were forcing users to confirm their email address upon registration (non-tech founders often insist on this for some reason) we'd see between 40% to even 70% drop. People would register and then never come back because they just didn't care enough to look for our confirmation email. You can try to manually follow up with email in a few days, to offer assistance, but most of them will never reply.

By using this approach, you're forcing users into switching their mental context and attention between your app and all the other emails arriving to their inbox, all the notifications on social media, all the other distractions around us. And you can bet that they care much more about any of that than about trying out your app.

a_imho 4 hours ago 0 replies      
1. Using 3rd party auth is much more convoluted than rolling your own. There are key turn solutions for every framework and you don't have to register your product with other services, agree to a bunch of terms, introduce dependencies in your stack and essentially give control over your app.

2. Being stuck in a perpetual password reset scenario is one of the worst UX decisions imo. Going to an email provider to access a completely different service is getting it all backwards (and users will have to type in their passwords anyway). Plus email has its own baggage like spam filters etc.

It is very much up to taste, but personally I would even argue for the opposite: we could do away with forgotten password links altogether (or at least make them optional) and trust users to handle their passwords how they wish instead of collecting email addresses (like HN).

homarp 10 hours ago 3 replies      
>Often web developers see adding a sign in with Facebook or sign in with Google button as a kind of optional nice-to-have, which comes only after building their own account system. If youre reading this because youre starting a new website from scratch, I argue that Sign in with should be the only option you offer.

unless you have potential clients in China.

mimg 11 hours ago 1 reply      
> Users are always identified to you by email address, phone number or both...

An account system using phone numbers may have a negative impact to privacy. For some people a phone number is attached to a real name and address. Also it is not uncommon for a person to change their phone number from time to time.

zie 14 hours ago 2 replies      
Another issue is what privacy are you losing by handing FB or Google all of your authentication?

Offloading this is a huge privacy fail. It probably is a security win, but it's a huge privacy fail. Here Google/FB/etc, get MORE information for your giant catch-all, know-all database, thanks!

Unfortunately better alternatives that are not a security win don't really exist yet.

rebelidealist 14 hours ago 2 replies      
About using another domain for marketing email. "The best solution is to send your marketing emails from a different DKIM domain"

Does it mean to use a entirely new-domain.com or use marketing.domain.com?

nitwit005 13 hours ago 0 replies      
If you're building some sort of ad supported and public site, using Google or FB accounts is fine, but it's not always workable if they're paying you a monthly fee. People will want administrative control over accounts, and they'll call and demand you fix things when they can't login.
jff 16 hours ago 1 reply      
Lot of articles re-hashing NIST 800-63 since it came out last month. Here's the original source: https://www.nist.gov/itl/tig/special-publication-800-63-3
inopinatus 6 hours ago 1 reply      
> Use email / phone numbers to identify users

This isn't always good advice. Not everyone has a unique email address, and not everyone has a phone number.

If you're dealing with technology-savvy adults, sure, go ahead.

But demanding a unique email address or phone number is actually a high barrier for many people. Case in point, my services is used by families. It's common for them to share an email address, or for the youngest and oldest members not to possess a personal phone. They also frequently lose access to email accounts e.g. when changing ISP, which makes account recovery a painful manual process.

So we use a domain-specific identifier combining a generated membership number and the family name, and this works out well.

Bottom line, consider your user base when establishing an identity scheme. Don't blindly accept prescriptions for your data model.

Markov's and Chebyshev's Inequalities Explained intoli.com
85 points by foob  17 hours ago   8 comments top 2
cscheid 13 hours ago 1 reply      
If you have a hard time remembering exactly how Markov inequality goes (like I do), there's a great mnemonic from which you can construct the general version:

- if the average person is 6' tall, than at most 10% of the people are taller than 60'.

beagle3 14 hours ago 2 replies      
This Chebychev's inequality (there are several) is a simple extension of Markov (by setting phi(x) = |x|^2 - see the Wikipedia article on Markov's inequality).

There is another simple extension[0], much less known, of setting phi(x) = exp(-s*x), and taking the infimum over all s; it is often tractable and yields much, much sharper bounds.

[0] https://en.wikipedia.org/wiki/Chernoff_bound

Mono for Unreal Engine mono-ue.github.io
137 points by markatkinson  20 hours ago   90 comments top 9
TazeTSchnitzel 19 hours ago 11 replies      
C# is Unity's main programming language, now there's this for Unreal, and Godot 3.0 will also have C# support.

Is C# becoming the lingua franca of modern game engines?

Nelkins 19 hours ago 0 replies      
The lead for this project[1] recently gave a great talk[2] at .NET Fringe on some of the interesting things coming up for Mono. Definitely worth a watch.

[1] https://github.com/mhutch

[2] https://www.youtube.com/watch?v=uxzS-grpN4c

markatkinson 3 hours ago 0 replies      
Been waiting a long while for this. Super keen to get stuck in. Huge thanks to the whole team.
org3432 18 hours ago 2 replies      
Would be interesting if the author could comment on the memory footprint and performance of having an additional GC'ed language running alongside the engine. It seems like it could lead to complex hitching issues.
ivanbakel 19 hours ago 1 reply      
A good thing. The C# bindings for Unity are great for scripting - the language is surprisingly suited to lightweight logic. This should be a nice gift to developers not yet familiar with C++.
Nelkins 19 hours ago 1 reply      
Hmm...looks like the repo is not available?[1]

[1] https://github.com/mono-ue/UnrealEngine

protomyth 19 hours ago 1 reply      
Is there something wrong since it seems to be missing and a lot of the links don't work?
0xFFC 17 hours ago 1 reply      
A little bit unrelated, but serious question. Mono and .net core are not going to converge? I mean that would be awesome. Since most of game developers nagging about Mono's bad performance
cantorRuth 19 hours ago 3 replies      
Why is this interesting.?
Roman Britain in Black and White the-tls.co.uk
88 points by DanBC  16 hours ago   74 comments top 11
Red_Tarsius 12 hours ago 2 replies      
It's not an isolated incident. The same show depicted ethnic people in questionable situations.

Sub-Saharan Celts http://i.imgur.com/WSHbj36.png

A Sub-Saharan English Nobleman, 1215AD http://i.imgur.com/Y5WFtXO.png

A Sub-Saharan blacksmith, Iron Age Britain http://i.imgur.com/XptrQDP.png

A North-African Norman priest http://i.imgur.com/5JHBzMN.png

The criticized video was supposed to be "An exploration of life in Roman Britain shown through the eyes of a typical family." http://i.imgur.com/tg25juJ.jpg

uyhso8 15 hours ago 3 replies      
This whole thing strikes me as sad. The argument could have gone an entirely different way.

Taleb blasts the nature and tone of the argument, concluding "scholarship is dead in the UK,"(https://medium.com/incerto/something-is-broken-in-the-uk-int...) but the irony is that if it's ending, it's ending in part because of behavior such as his.

I actually agree in general with his perspective on the cartoon, but found his behavior unacceptable. The other side of the argument isn't unreasonable, even if you conclude it's maybe not the best side of the argument.

In some ways it doesn't matter, but I'm getting tired of the right setting up this dynamic where they engage in ad hominem bullshit, and then act offended when other side responds. I say this as someone who often identifies with the right--it's alienating and pushes reasonable people away. Rather than apologizing about not being respectful of Professor Beard, he becomes defensive and somehow tries to rationalize it.

Next time Taleb, could you please just take the high road in your behavior? Even if the other side is totally full of shit, and acting inappropriately, you'll look better and everyone will win by being the better one. I even agree with you and you've turned me off of your own damn arguments.


ZeroGravitas 12 hours ago 1 reply      
I'm kind of amazed at how seriously people are taking this.

The guy is the editor for a literal conspiracy theory website that condones the idea that Sandy Hook was staged by the US government. And long list of even more ridiculous and appalling things.

They make their money selling pseudoscientific "wellness" products of the kind that Gwyneth Paltrow sells on Goop.

The main star of Infowars recently admitted it was just an act of entertainment because if he didn't a divorce court would have ruled him a danger to his children based on things he says and does.

Back to the matter at hand, he's literally proposing a conspiracy theory, based on an educational cartoon, for children, about the Roman empire. Just let that soak in.

The BBC are, in this theory, intentionally promoting "mass uncontrolled immigration" to children via animations about the Roman empire. Step 2 ???. Step 3. White Genocide.

It's an embarrassment to us all as a species that this passes for political discussion today.

Klockan 2 hours ago 0 replies      
I'd say that this is roughly on par with depicting Jesus as a white western European, but I don't see any right wingers complaining about that.
pja 15 hours ago 1 reply      
Mary Beards proper title would be Prof. Beard of course. Something she extended the courtesy of to him, but apparently he couldnt be bothered to extend the same to her.

The falling back on 'I got more citations than you, so ner' isnt exactly a good look either.

emmelaich 11 hours ago 0 replies      
I like the article in The Atlantic about this.


As it says, it's mostly people talking past each other.

Taleb is unnecessarily un-collegial though.

bionsuba 15 hours ago 5 replies      
It's interesting that she decided to leave out the fact that Taleb's comment on citations was him firing back after she called anti-fragile et. all "pop risk books": https://medium.com/incerto/something-is-broken-in-the-uk-int...
bryananderson 12 hours ago 2 replies      
It should be clear to anyone who has read this article by Dr. Beard (or her phenomenal book SPQR) that it isn't really up for debate whether there were Roman soldiers and civilians in Britain who came from the far reaches of the Empire and beyond. Yes, including from Africa. Whether we would have looked at these people and said they were "black" is, as Dr. Beard explains, pretty unanswerable (not to mention a vain attempt to view the ancient world in terms of group identities that are very modern indeed).

Dr. Taleb and others show a massive ignorance of how the studies of history, archaeology, and biology work when they assert that we can just "look in the genes" for an unambiguous record of every damn person who has ever set foot on the British Isles. But a misguided desire to hold history to the same evidentiary standards as, say, physics or mathematics - including by physicists and mathematicians - is nothing new.

What's more worrisome is the determination of some to willfully ignore historical evidence that might challenge their worldview.

Look around the Internet - there is a new revisionist history of the Western world that is being pushed, one that holds a shared "white" or "European" identity as paramount. These are the people who came after Dr. Beard as they come after anyone who challenges their views.

These people are undoubtedly far less numerous than they appear; they use bots and multiple accounts to make themselves appear more legitimate. This itself is dangerous, as it may cause bystanders to view these people as more mainstream than they truly are (and it's no secret that people ascribe more credulity to an idea when it seems widely accepted).

This is not going to get better as neural networks improve at writing tweets that sound human.

patrickg_zill 14 hours ago 2 replies      
Go to Google Images, type in "European people history" and note the first ten results. That is what this is about.
aaronbrethorst 15 hours ago 1 reply      
The author, Mary Beard, is a classicist and the UK's top Roman scholar. She's also the author of the critically acclaimed SPQR: https://www.nytimes.com/2015/11/18/books/review-in-spqr-a-hi...
sremani 15 hours ago 3 replies      
Prof. Beard is hiding behind the bad behavior of her opponents, there is no cogent answer to the question..

where are the genes ?

Software is narrative infiniteundo.com
82 points by dhaneshnm  19 hours ago   32 comments top 7
sebastianconcpt 1 hour ago 0 replies      
This is a good metanarrative for software authors. The more the product wants to be art, the more important this concept is. Humans are wired to spread stories so if a product doesn't communicate plenty of good ones, then there you have the anwer to why marketing budget isn't fixing the business.
ajarmst 18 hours ago 1 reply      
I think I'll open with a dubious metaphor I just came up with and a demand that the reader immediately and wholeheartedly accept that metaphor as literal truth. That's how you grab an audience!
dannyrosen 17 hours ago 0 replies      
The contrast here is great.

Finding the problem and creating a solution along with focusing on the process of creating that solution in order to reduce risk of building the wrong solution. Contrasted to building a solution along with a sane dev and production environment for that solution to fit in, to increase possible iteration velocity by reducing deployment inertia.

yodon 18 hours ago 2 replies      
I think the OP is on a path that will eventually lead them to discover or re-invent Conway's Law[0]


d--b 17 hours ago 1 reply      
Sorry I just don't understand the article. Can anyone rephrase?
b0rsuk 16 hours ago 7 replies      
Okay, I'll take it at face value. Can you name a few competent programmers who are also competent book / story writers ?
ldng 16 hours ago 2 replies      
Just wondering if I'm the only one, but I like my logs to be the narrative of what's happening in the system.
Vermont Medical School Says Goodbye to Lectures npr.org
92 points by happy-go-lucky  20 hours ago   59 comments top 12
pixelmonkey 16 hours ago 5 replies      
Another one bites the dust. This is a trend/fad that will likely be reversed once properly studied.

My wife went to a medical school that had recently adopted so-called "active learning" techniques. All the students secretly hated them, but wouldn't share this feedback with higher-ups (academic administrators) because med students, as a group, are generally rule-following, adaptable students.

The "non-lecture" format was frequently derided by students, in private settings, as "Dr. Wikipedia". That is, they were learning medicine by using Google and visiting Wikipedia pages. Because they had to collaborate on their own learning materials, even though they had no background in medicine.

About 50% of students I knew (secretly) spent thousands of dollars on recorded medical lectures to supplement the completely ineffective class "group activities", and thus did well on the tests (and USMLEs) anyway. They never reported this to professors or administrators. Again, they were "working around" the broken "active learning" system. One of the hilarious side effects of this: the supposedly "objective peer-reviewed studies" of this learning style won't show score/testing degradation -- because the students are so self-sufficient that they work around the failing format with supplemental lecture materials purchased online! Thus, they still achieve the grades they hope, and the administrators think the system is "working"!

There was, however, a very small subset of students who preferred the "active learning" format. Most of the time, these were students who came into med school with a stronger science background than others (e.g. had basically started studying medicine before they got there). One reason they particularly enjoyed the format: they could skip class with little effect on their grades.

noddy1 9 hours ago 0 replies      
MD here - I remember leaving a lecture theatre after 8 hours of didactic lectures, and I could not remember the topic of any of the lectures other than the one i'd just seen, and I could not remember a single fact from any of them. I persisted with the lectures as that seemed to be what was expected of us, however it generally seemed like lectures are there to suit faculty rather than students.

When it came to actual hardcore study for board and specialty exams, I used 100% active recall testing with flashcards with variable repetition based on performance (Anki mainly). I never had any problems passing anything.

I believe an excellent, underutilized way medicine could be taught would be computer based simulation of emergency dept patient presentations, with the player taking a history, performing an investigation and labs, and making decisions +/- referring patient as appropriate.

mncharity 17 hours ago 1 reply      
> "Well this method of teaching is actually not as good as other methods. Would you do that?"

A university did a trial. Lecture with active learning vs traditional lecture and sections. Simultaneous versions of the same class; random assignment of students; pre-written exams. Inexperienced postdoc vs highly-respected well-rated experienced prof. Mid-term results came in. The comment was that if it had been a medical trail, they would have had to stop immediately, rather than finish the term. It would have been clearly unethical to continue to deny the control group the intervention.

medymed 18 hours ago 2 replies      
Minimum viable US medical school (in theory):

Prerequisites: High school AP bio/Chem/physics/stats. College biochemistry.

Standard interview process.

Preclinical: 1.5 years of online instruction and drilling (UsmleWORLD, firecracker, Pathoma etc) for USMLE 1. Cost ~$500 per year.

1.5-2 years clinical rotations. Cost: at current yearly tuition.

Then graduate, residency.

whatupmd 2 hours ago 0 replies      
At the University I attended most of the lecturers did not know how to teach.

So yea, you'd probably get better results from some system designed by good teachers that could then be replicated without requiring the talent that produced it on a regular basis.

But I'm sure that same training/workshop would be a much better experience when delivered by the minds that created it than a robot that is just repeating the steps.

When I went to University what I wanted was knowledge-sharing by subject matter experts with a passion for teaching. What I got in most cases was researchers that were reading from a script and essentially ticking the boxes of the course outline.

A well designed 'active learning' session is going to have value to students for the same reason a well designed lecture will, it was created by someone with the ability to teach.

MengerSponge 18 hours ago 3 replies      
Good! Lectures are terrible for students. It's fun and pretty easy to give a lecture though, which is why they persist.

This is a great example of a "flipped classroom", which is gaining traction across American higher-ed. A lot of research went into developing the SCALE-UP paradigm, which is a great place to start if you're curious:


gaius 40 minutes ago 0 replies      
Note to self: don't get sick in Vermont.
roceasta 17 hours ago 0 replies      

Historically the original mode of lecturing was simply the transcription by the students of the manuscript the lecturer was reading.

ajarmst 8 hours ago 2 replies      
This is interesting, but it depends on the proposition that "active learning" is clearly better than more traditional education methods. That's not nearly as plain or uncontroversial as the article implies.

One issue is that when educational techniques are compared, it is troublingly common for the comparison to be between simplistic and homogenous definitions that are only rarely encountered in real classrooms. Educators and non-trivial courses that depend entirely on lectures or entirely on active exercises are so rare they statistically don't exist. Every class I've taken, taught or observed was a blend of multiple types of learning and instruction, distinctions being ones of emphasis, not of type.

The article also seems to assume that there is a best, or at least better, way to teach that is independant of how individual students learn or what particular topic or discipline is being taught. That's, to be frank, ludicrous. It's been clear for a very long time that appropriate and effective educational approaches depend a great deal on what is being taught and who it's being taught to. For example, imagine teaching history without lectures, or programming without hands-on activities.

Good educators tailor the mix of approaches to their particular students and topics. I'm baffled why any educator would support the idea that lectures should be completely eradicated. Why not, instead, take a hard look at the curriculum and mode of instruction with an interest in determining the best approach for the most students and then trust your faculty to make appropriate choices on how to tailor it to a class---with the odd lecture once in a while if it's useful. If they've got a problem with some courses or educators depending on lectures to the detriment of students, the solution is to redevelop the curriculum and train the educator on different techniques---not to just outright ban one approach.

Medical students are generally top students that are highly motivated. Further, cohorts tend to be in all the same classes with each other, encouraging mutual support. Those traits, along with medical education being task focussed, argue for active learning approaches. But that isn't true of, say, freshman English.

Finally, there has always been a circular definition problem with new educational approaches. For example, "active learning" often seems to have an implicit definition along the lines of "self-directed exploration that is sucessful". If you tried it and it wasn't effective, then what you were doing wasn't active learning, QED.

jonbarker 14 hours ago 0 replies      
In my own experience learning and teaching Go and Bridge, two very complex subjects, a combination of lectures and interactive examples is best.
plg 16 hours ago 1 reply      
hasn't McMaster (in Hamilton Ont. Canada) done this for ... decades?
HillaryBriss 18 hours ago 0 replies      
> "OK, if you like doing appendectomies using an old method because you like it, and you're really good at it, but it's really not the best method for the patient, would you do it?" Of course, the answer is always no. And then you turn around and say, "Well this method of teaching is actually not as good as other methods. Would you do that?"

it's just teaching. which method pays more?

       cached 5 August 2017 13:02:02 GMT