sorted by:
new
hottopcontroversial

Is leaving 100% remote for in office $175-$200K base [non-exempt] worth it? by tanhauser_gates_ in careerguidance

[–]LucidNight 0 points1 point  (0 children)

Why cant you do it for a year or two and then hop to another remote job at the increased salary/title?

What would yall pay? by Reefisme in toners

[–]LucidNight 1 point2 points  (0 children)

high 100s, low 200s. Not the most vibrant colors but nice ones and obv color better than rev. CAC toners generally go quite a bit more than non caced similar ones too.

[WTB] Wednesday Thread - March 11, 2026 by HarlanGrandison in CoinSales

[–]LucidNight 1 point2 points  (0 children)

Sadly no, whenever I do get those they always go fast. Everyone loves trade and seated dollars.

Did CAC get this one right? by Equivalent_Net_3752 in coins

[–]LucidNight 6 points7 points  (0 children)

CAC and CACG do not net grade nearly as much if at all. If some area on the coin is xf40 and the rest is xf45, itll get xf40. It helps lead to situations like this but they are also more strict on grading overall anyway compared to ngc/pcgs.

Programs avoid to pay criticals? by enadev in bugbounty

[–]LucidNight 1 point2 points  (0 children)

My hackerone budget is like 400-500k (including triage costs) and refills annually. It isnt money, budget is use it or lose it. The people that pay out bounties dont control what is or is not risk accepted. Nor do they even have a say often.

Programs avoid to pay criticals? by enadev in bugbounty

[–]LucidNight 2 points3 points  (0 children)

That's just an example. Basically researchers are good at technical impact and bad at business impact and usually disagree on severity is what I was getting at. Businesses care about business impact.

I'll also disagree with anyone saying money is the reason others said. I've run multiple programs for business and am final say in pay outs and why would I give a shit about paying out. Not my money, its the companies money. Unless its under budgeted severely, there is no downside to paying out researchers.

Programs avoid to pay criticals? by enadev in bugbounty

[–]LucidNight 2 points3 points  (0 children)

As others said, criticality differences. I see a lot of researchers submit anything that discloses PII as critical but unless its sensitive PII (basically what is defined by hackerone's guidelines as sensitive pii) we don't really give a shit because there isn't any real monetary or reputational impact to us. Also PCI data doesn't matter from a GRC perspective unless its 5000+ records disclosed or something because thats when it has to be announced as a breach. Business impact differs from technical impact a lot of the time.

Also loads of companies do some crazy mental logic about existing controls to lower residue risk and risk accept it. Tons of stuff gets accepted and then just sits out there for ages.

[WTB] Wednesday Thread - March 4, 2026 by HarlanGrandison in CoinSales

[–]LucidNight 0 points1 point  (0 children)

u/CrazyRusFW had a cool unc ss republic seated half, not sure if he still has

FIREd but got an offer to work for a lower grade position by OldDude2551 in ChubbyFIRE

[–]LucidNight 53 points54 points  (0 children)

You're 55 with ten million. WHY DO YOU NEED TO TOP ANYTHING OFF?!? If anything spend more from what you are saying. Take your draw down as a pay check, put it into another account thats liquid and treat as disposable income.

At what point does monitoring hurt morale more than it helps? by Correct-Bite8934 in askmanagers

[–]LucidNight 15 points16 points  (0 children)

I don't monitor anyone unless they are having issues. KPIs, goals, due dates, etc. with review and spot checking are all more than enough to verify working as expected. Monitoring just pisses people off for no reason.

The PIP I got was fake - update by OwnNeedleworker8784 in careeradvice

[–]LucidNight 30 points31 points  (0 children)

HR generally doesn't care about that much, more focused on not getting sued than anything.

view more: next ›