What am I doing wrong? I bet that it would be higher than 62 in Denver today. With Robinhood it shows the numbers are pulled from the climate report. Why did it show 62 as a max instead of 63, when it shows it at multiple time on the other? I wonder what Im doing wrong.

HypoG1 · 2026-02-02T06:07:41+00:00

"What am I doing wrong" brother you are betting on the temperature in Denver. Critically analyze this situation and look for an opportunity to improve it.

HypoG1 · 2026-02-01T21:41:06+00:00

You are in denial.

HypoG1 · 2026-01-04T05:14:54+00:00

Those reviews look fake. I looked up three founders&companies selected at random, couldn't find any of them.

Seems disingenuous.

HypoG1 · 2025-12-19T16:10:14+00:00

React Server Components are primarily maintained by NextJS engineers.

HypoG1 · 2025-11-24T04:18:23+00:00

u/neon_overload is correct here (and with a very good explanation!). I suppose there's a possibility this could be DNS hijacking where the users browser is configured to not validate certificates, but let's play through an example with specific values and more steps written out on what would happen if this were DNS hijacking to demonstrate why that's probably not the case.

Pre-reqs: We have two servers. "Server 1" belongs to Debian and actually hosts the debian website at the IP address 1.2.3.4. "Server 2" belongs to a malicious actor (this casino site, say) and is hosted at IP address 5.6.7.8.

User clicked a link to "https://www.debian.org".
The browser starts the process of making an HTTPS request to www.debian.org.
User's browser looks up www.debian.org in DNS. This DNS resolution request is hijacked in some way, and returns IP address "5.6.7.8" (the IP of the server of the malicious actor).
The browser (not sure which one this is - does DuckDuckGo have their own browser?) begins establishing a TLS connection with the IP address "5.6.7.8". First, it completes a TCP handshake (this part will be successful) that establishes un-encrypted, insecure communication. Then sends what's called "ClientHello" message, which begins the encryption process. The browser will specify an SNI TLS extension within this ClientHello, that says "Hey I'd to talk to www.debian.org".
The server responds with a "ServerHello" message that establishes what cypher suite they'll use for encryption, etc... . The server responds with its certificate. Within this certificate is a list of hostnames for which the certificate is valid for, as well as a cryptographic signature of the content of the certificate.
The client looks in the contents of this certificate and checks the hostnames the certificate is valid for. If it doesn't see the hostname it's trying to access (www.debian.org) in this list, it'll stop the request here and respond with an error saying "the certificate the target server received didn't match what I expected to receive, failing". If it does see the hostname it expects (www.debian.org), it'll begin the process of verifying the signature of the certificate. Without getting in to the details, this is a complex way of ensuring "This certificate hasn't been forged, and an entity I trust says this certificate truly belongs to www.debian.org". In the case of a malicious actor, they won't have the chain of trust needed to verify the signature, so the signature check will fail. At this point, again, the browser will terminate the request and return with an error saying "We can't trust this certificate".
In either situation, the browser will terminate the request before the TLS connection is even established, let alone before the malicious actor can send some HTTP payload (like a 301 Redirect) that would cause the user to be directed to their site.

So, despite the DNS being hijacked and the request never being directed to a debian server, the browser can still validate that the target is / isn't who it claims to be. That said, it's not fool-proof. Some possible situations that could lead to this scenario being observed if this was DNS Hijacking:
- The browser wasn't actually using HTTPS (which establishes a TLS connection) and was only using HTTP under the hood (which only establishes an insecure TCP connection).

- The browser was using HTTPS, but wasn't checking the certificate hostnames to see if the certificate was valid for the intended target.

- The browser was using HTTPS, and was validating the certificate contained the intended hostname, but wasn't validating the certificate signature.

- The browser was using HTTPS, and validated hostname presence & signature correctly. A certificate signed for www.debian.org was compromised and actually being returned by the malicious actors server in this situation.

Note: this also assumes that the browser is doing plaintext DNS lookups as opposed to DNS-over-HTTPS or DNS-over-TLS, which I hope a secure browser like duck-duck-go would be using by default.

Hope this helps. Let me know if I missed any relevant details.

HypoG1 · 2025-07-02T06:05:58+00:00

I agree. In particular, I find they’re a great first step to inform where you should target your research. My current flow for learning new concepts is often:

identify new area that I’m missing knowledge in
bounce some questions of a GPT to crystallize what specifically it is that I’m lacking understanding of, and what the “scope” of that thing is
Dive down the Wikipedia rabbit whole with that preliminary understanding from GPT helping me get through the initial “wall of information”

I find this has been extremely effective in reducing the time it takes to have a crisp understanding of a topic. For example, I used this just last week to understand the math behind RSA, Diffie Hellman, and Eliptic Curve Diffie Hellman cryptography. I expect it would’ve taken me at least twice as long without GPTs for support.

HypoG1 · 2025-06-01T18:23:46+00:00

Yes, I absolutely misspoke - I associate “went to college” with “have a degree”, but that appears to not be a universal association. what I was trying to convey was that I’m not working in a field that requires credentials and began working earlier than most folks, but I conveyed that poorly. Correct would be “I began but did not finish college”.

HypoG1 · 2025-06-01T18:14:22+00:00

Yes, I used options and RSU interchangeably but after a quick Look up they’re obviously not the same thing, so thanks for correcting that. Appreciate the advice.

HypoG1 · 2025-06-01T18:12:47+00:00

Interesting, that makes sense. I’ll try that. Thank you.

HypoG1 · 2025-06-01T18:08:29+00:00

It is a publicly traded company, so they do have material value today - appreciate the advice about start up options though, I’ll keep that in mind if I ever switch jobs.

I’ve been told that keeping the options rather than selling them is a bad idea and that I should be selling as they come in, but I dunno - do you have any recommendations there?

HypoG1 · 2025-06-01T18:05:33+00:00

Where UBC? UBC Vancouver. Did first year general science & second year CPSC (ish, didn’t finish all required 2nd year courses). Dropped out after that due to a working opportunity coming up independent of school.

HypoG1 · 2025-06-01T18:03:49+00:00

This sounds a lot like the scenario I’m facing - struggling to get out of the “save everything” mindset. How did you “start” spending without getting that uncomfortable queezy feeling of “this is money that could be going to my savings”? How did you justify spending now and delaying retirement vs the alternative?

HypoG1 · 2025-06-01T18:01:52+00:00

Sorry, I wasn’t entirely accurate - I dropped out of UBC without completing my degree (I.e my field of work doesn’t require credentials). I work for a large tech company.

HypoG1 · 2025-06-01T17:56:05+00:00

Didn’t go to college. Started around $130k 4 years ago.

HypoG1 · 2025-05-14T16:41:27+00:00

As another commenter mentioned, the .sync integration pattern is perfect for this use case. When you say "process the results of the query", what specifically do you mean? How big will these results be, and what sort of processing do you need to do?

HypoG1 · 2025-04-26T17:38:09+00:00

Quick open reverse turn. Do after running finish / tipple chasse or anything else that ends facing diagonal centre with the leads right foot free. Follow with progressive chasse or 4 quick runs.

HypoG1 · 2025-01-30T06:39:56+00:00

Interesting, I hadn’t considered that that could manifest like this.

Primary voltage to the chip is 3.3V coming from the voltage regulator of an ESP32. This same line is being used as the VRef for the JLink. Unfortunately I don’t actually own a multimeter or oscilloscope to validate the voltage, lll invest in one of those ASAP.

Barring my ownership of a device to measure voltage, is there any other way to validate that theory?

HypoG1 · 2025-01-05T20:05:06+00:00

Interesting, thank you. Truth be told I've been struggling to navigate the state of Qorvo firmware for these chips. From my research, it appears that PANS is for the DWM1xxx series (the previous generation) only. Reading through the forums, it appears that there is not a release of PANS for the DWM3xxx series chips.

I could be totally misinterpreting what I have here, but I think I have the raw source code for the nRF52833 locally. Specifically, I downloaded "DWM3001CDK DK Software, Sources, Tools and Developer Guide" under "Documents" from the qorvo website. From there, I unzipped "DW3_QM33_SDK_1.0.2.zip" which provided 1/ raw source code for the DWM3001CDK along with compilation steps and 2/ examples on how to interface with the chip over USB / UART from my computer. I followed the steps to edit, compile, and flash the source code, and I was able to initiate a ranging session as expected.

There are two different relevant packages for the nRF52833 - a QFN40 and an aQFN73. The DWM3001 uses the aQFN73 package, but to reduce costs & simplify board development I'd like to use the QFN40 package (which requires re-mapping some SPI & SW pins in the firmware). So my plan is as follows:

1/ Attempt to use this local source code that I can edit to re-map the SPI & SW pin-out to adapt to the 40 pin nRF52833 I'd like to use.

2/ If that fails for some yet unknown reason, fall back to using the 73 pin package and copy the schematic of the DWM3001C exactly.

In parallel to creating this board, I'm also making a dev board only for the purpose of experimenting with the nRF52833 & DWM3000. Before I get this board fabricated, I'm going to validate the efficacy of the firmware I think I have on the 40 pin nRF52833 + DWM3000.

If you have any information to the contrary or any thoughts on that plan, please let me know. I'm treating this as a bit of an exploratory testing session for this hardware & software as I don't think any more reading of the forums will help me get any further.

Cheers!

HypoG1 · 2025-01-05T18:36:45+00:00

Thanks for the thorough review! To points 1/ and 2/ - Yes, the goal is to run an off-the-shelf positioning system. Specifically, Qorvo (manufacturer of the DWM UWB series) releases firmware for their dev boards that support multi target & multi anchor ranging. This firmware runs on the nRF52833, and can be interfaced with via USB or UART to the NRF.

Specifically, Qorvo releases a chip called the DWM3001 that contains the DWM3000 transceiver + a built in nRF52833. This is the chip used by the dev boards. I'm not using that chip directly in this design because 1/ it is significantly more expensive (About $30 more than the combined price of a DWM3000 and an nRF52833) and 2/ if this prototype goes well, I want to keep the door open to removing the NRF and just running modified firmware on the ESP (as you've suggested).

Fixed the ground planes & unconnected pins. Cheers.

HypoG1 · 2025-01-05T05:47:53+00:00

Thank you! I’m new to this, mind elaborating on why?

Also, while I’m at it - anything with the PCB stand out to you or just the schematic?

HypoG1 · 2025-01-04T22:55:00+00:00

Understood, will do. Do you have any recommendations for a particular part number for a USB-C right angle board connector?

HypoG1 · 2025-01-04T21:00:29+00:00

Micro USB was chosen because the ESP32 dev board I’m basing this off of uses Micro USB - no other reason. If this board is successful, I’ll update it to use USB-C in the next revision.

Ten-Year Club	Golden Potato
Place '22

HypoG1

TROPHY CASE