Hacker News new | comments | show | ask | jobs | submit | racecar789's comments login

Fyi Display Link devices (which are used to dock a laptop to two monitors via a single usb cable) do not support color calibration, so flux does not work.

Found out after purchasing a usb docking station. Still fairly happy with the purchase though. Display Link is actively releasing new drivers so there is hope.

-----


Reading tip: Use the page down key instead of mouse wheel. Will keep the moving artifacts to a minimum.

-----


Or activate Reader View, if you're using Firefox or Safari.

-----


Heat treatment is a dark art. What works for one heat treater may not work for the other. Also, heat treaters are somewhat reluctant to share their secret sauce with customers.

General hardening is no problem. The challenge is when a company needs a very specific hardness. There is a fair amount of trial and error with the heat treater (at least at first) before they get it right.

-----


Could someone explain why there is no delay after each failed attempt? The system allowed 197k brute force attempts in 30 minutes. I just cannot wrap my head around it.

I tried reading the paper (not an expert). In the recommendation section, it does not suggest implementing a delay either. Is it just not physically possible with RFID?

I mean, a 4 digit pin with a 5 second delay would take 14 hours for all combinations (better than the half hour with Megamos)???

I have to be missing something.....It can't be this easy.....

-----


As the previous comment says, there's a requirement to eavesdrop on at least one successful authentication.

My guess is that they're then doing the brute-forcing "offline", not against the vehicle's system. If you know the algorithm and the keysize, and you can see one successful authentication, you could ship the work of workig out which key replicates the authentication you just saw off to AWS or custom hardware (I wonder how readily Bitcoin mining ASICs can be tweaked to attack embedded or IoT authentication?) (Though it seems there's flaws somewhere in the crypto anyway - they somehow broke a 96bit key with under 2^18 attempts...)

-----


Clearly, the fact that listening to an exchange helped them proves that the security is fundamentally flawed.

-----


That helps. Thanks.

-----


Thunder Extra Strong is a snus with no flavor and a high nicotine count.

Just passing it along since I tried 5-10 brands before settling on Thunder. To each their own.

-----


Agree. The blog post spews a lot of hatred for a resource that is meant to "help" people.

-----


Looks like it has the Matrix of Leadership in its chest, just like Optimus Prime.

-----


Agreed. Excel bashing often comes from web developers who lack real business experience in a gritty production environment.

Belittling Excel is an effective way to burnish one's programming credentials.

I know many languages (Flex, Html, PHP, JS, C# etc). Excel and VBA have their place, especially for very rapid app development.

Web apps are perfect for trapping data. However, output is best handled in Excel. The first thing people ask when getting a report is "How can I get this into Excel?". People like to play with their numbers.

-----


I can understand the outrage these displaced people feel. Especially for the hard working lower class.

It is not displacement for a public works project. It is pure class displacement with a rub-it-in-their-face quality about it.

-----


Great job. Surprised at the amount of negativity for an app that is meant to help people.

This is one of those disruptor-style apps that pierces the veil of an industry and brings professional level tools to the masses.

I sat up from my chair after seeing this and said "wow". Have not done that for an app in a long time.

-----

More

Applications are open for YC Summer 2016

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | DMCA | Apply to YC | Contact

Search: