Info Sec - Software Engineer - Game Designer - Mod Dev - Digital Artist

  • 0 Posts
  • 25 Comments
Joined 1 year ago
cake
Cake day: June 9th, 2023

help-circle


  • a nation so hardworking…

    Or hardly working given how backwards and out of date the work culture is, but sure let’s make this out to be the fault of employees who are likely overworking due to low pay. An extra day off isn’t going to fix the systemic cultural issues, class discrimination, xenophobia… the list could go on and on.

    Calling this innovative when Japan has yet to modernize its business practices, or admitting it’s an issue, is disingenuous at best.





  • I’d like to think Typescript does a lot of heavy lifting where JS fails when it comes to web development. On the otherhand there is no fixing fundamental flaws in PHP.

    Sure bad programmers write bad code, but if a language tolerates something so obviously janky via implicit unseen magic, it’s just encouraging bad practices. PHP makes this worse by tweaking core behaviours in weird and wacky ways that can easily lead to security vulnerabilities.


  • I’ve been working with PHP for two years now (not by choice) but I still sometimes forget the weird behaviours these not-arrays cause. Recently I was pushing/popping entries in a queue and it fucked the indexing. I had programmed it like I would any other sane language and it wasn’t until I was stepping through the bug I realised I had forgotten about this.

    I hate PHP for so many more reasons. It baffles me why anyone would think it was a good idea to design it this way. Thankfully my current job involves actively burning it down and preparing for its replacement.





  • As someone else who uses Tailscale behind a CGNAT, this indeed works. I use it for accessing my home server from the office for a year now. You can’t quite self host anything public facing but anything on your tailnet can talk to it just fine.

    Theoretically a VPS proxy into the server over the VPN could work for devices not capable of running tailscale but your mileage may vary.


  • They support CCS as the protocol

    CCS is is only supported through a PLC translation chip on the vehicle side or a rare Magic Dock adaptor, and only when one side is non-Tesla. Outside of that, CCS is not a factor and the proprietary 11bit CAN bus protocol is used natively. Hence, Tesla controls every side of the equation on their protocol and payment processing without having to communicate with 3rd parties.

    Name a charging provider that operates in a country tesla does not?

    ABB chargers in India

    Tesla you get quick wireless security updates, no waiting for a recall notice and trip back to the dealer.

    This isn’t new or innovative. OTA updates for cars have been around years before EVs. But usually those don’t stop the car from starting then still be towed to said dealer because the update wasn’t properly tested or have fallbacks in case of failure.

    Point is, shit is going to happen across the board for everyone and Tesla is NOT some golden child. It’ll just be another Apple case where dumb security claims get touted until hackers bring them down a peg or two.


  • Expecting all network operators to do that is not feasible or reliable. Tesla controls the car, protocol, charger, and payment processing. Everyone else outside the walled garden is openly handling a much bigger market with many more variables in more countries. Forcing customers to use an app for each brand of charger is also an accessibility nightmare. Fear mongering about skimmers is a dumb reason to remove traditional payment methods.

    This is all before we get to the lack of screen or keypad means fuck all to security (it’s also an accessibility issue to remove them). If I can break into a Tesla charger wirelessly and fuck with your car, I’m going to do it, walled garden or not. Just look at the state of IoT.

    EDIT: This comment aged well https://thedriven.io/2023/07/18/tesla-supercharger-spotted-with-credit-card-reader/






  • This is probably cooked up by the same people who conducted massive invasions of privacy during the pandemic by demanding live feeds and 360 scans of student’s private rooms. The worst part about this is the false positives could be intentionally faked to fail or expel ‘undesirable’ students with little or no evidence. It’s utterly fucked from all sides.