RonSijm

joined 1 year ago
[–] RonSijm 14 points 11 months ago (10 children)

$22k is pretty nice. Through I have no idea what "the prettier JavaScript tests" even means.

Is there a unit-test bootstap project someone could download that verifies this requirement? I'm already too confused deciphering what the contest even is

[–] RonSijm 4 points 11 months ago

I'm generally using DataGrip - or MySQL Workbench.

Workbench isn't great and the intellisense barely works, but at least I already know where all the obscure ACL options and such are

[–] RonSijm 1 points 11 months ago (1 children)

How do you stop this? (Sorry I only have paint on this machine)

  1. Computer/Network is compromised

  2. User requests public key from Server

  3. Hacker intercepts it, sends his own public key

  4. User tries to connect with "verification" servers

  5. Requests get redirected to compromised servers to OK the verification

  6. User sends request to Server via Hacker with Hacker PubKey

  7. Hacker decrypts it, re-signs it with Server PubKey

  8. Sends it to server, gets response

  9. Hacker decrypts server response, re-encrypts it with Hacker Private Key

  10. Users receives message, can decrypt it with Hacker PubKey, everything looks normal

You're just substituting a local "Chain of Trust" with a server based trust system... Why would you trust that you can securely call the verification servers, and even if you can, why trust the verification servers?

[–] RonSijm 2 points 11 months ago (1 children)

So maybe the solution relies trough a blockchain ?

I don't really see how that would help - but maybe you can elaborate how a blockchain solution would help?

[–] RonSijm 6 points 11 months ago (3 children)

Really I don’t understand why we are still using a chain of trust that is

It would basically be mutually assured destruction if one of these trusted root certificates would hand out false certificates. If evidence comes to light that a Root Certificate Authority creates false certificates or can't be trusted somehow, they get delisted. For example, look up "TrustCor" - they were too closely tied to US intelligence that everyone (Mozilla, Microsoft, Google, Apple) removed them as trusted CAs

a DNS record that hold the HASH of the public key of the certificate of the website !

How are you getting that record safely, over the internet? There's DNS cache poisoning and other attack vectors on DNS related services that would still let you MITM https.

Systems that rely on you to go on the internet to check if the internet is safe can just as well be compromised. How do you ensure the "internet based trust lookup" can be trusted?

[–] RonSijm 7 points 11 months ago

Not using CultureInfo.InvariantCulture for basically everything

[–] RonSijm 2 points 11 months ago

I don't think so. I just made a screenshot of one random convo he's having about this, but there's loads more in a similar fashion.

And all of his other posts besides this one seem legit on the surface.

So it would be pretty weird if he randomly has a very bad take, and then just claims "Lol this was a troll post, gotcha!"... That's pretty much the 4chan defense when you get called out - "Haha guys, I'm actually not r-worded, I'm just trolling!"

[–] RonSijm 77 points 11 months ago (6 children)

I don't think it's satire, this guy is actively defending this on Linkedin: https://i.imgur.com/SlJPG85.png

[–] RonSijm 2 points 11 months ago

I'm building a custom search AI as well, but it would be pretty big to host a scihub search LLM.

It says there are 88,343,822 articles. For an AI to work effectively, you'll have to slice up the articles into paragraphs, so you will probably end up with between 10x to 100x slices. For those slices you'd have to get the embed vector and store it in a Vector database.

One 1536 vector is about 6.15 KB, meaning 54331450530 KB for everything, or 543 GB in vectors

[–] RonSijm 9 points 1 year ago

The question is a bit too vague to answer, there's not really any right answer.

Just - find what you like to do with it, and go for it. Want to make a game? Maybe play around with Godot or unreal engine or something.

Do you have any repetitive task that you're doing a lot that you could maybe automate? - try doing that.

You can read some books or watch some tutorials or something, but the best way to actually learn is to actually program.

[–] RonSijm 5 points 1 year ago (1 children)

Yea true, if people can vote on something, other people will use those votes as metrics for how good something is

My perspective was more about what they actually do. Not the meta-effects they might have socially

Eventually, you will be able to turn a repository with a high star count into money or advancement

I think you overestimate how much money or advancements you can really get from it though.

Money wise - I can't find an overview of "Most Sponsored github repos" - but it's pretty bare. I checked to see if I could find any example, for example if you look at FluentAssertions - A project that basically everyone uses, has 292.6 Million total downloads on Nuget. If you check their sponsers - they currently have 17. Assuming their the lowest tier, you're getting $85 a month. Which is cool, I guess, but a neglectable amount for a developer with a normal job

And advancements wise - any actually good developer doesn't really have a problem getting a good job - And any good company reviewing a candidate might fool the HR by buying stars, but a dev reviewer or something will actually look though the code won't care much about stars

view more: ‹ prev next ›