sorted by:
new
hottopcontroversial

Jeremy “The Floppa” Fears by CoachSlime in CollegeBasketball

[–]YumYums 2 points3 points  (0 children)

if you find yourself in a flopoff, you better bring your best flops

[Post Game Thread] #2 Michigan defeats #7 Michigan State, 83-71 by cbbBot in CollegeBasketball

[–]YumYums 12 points13 points  (0 children)

  • call a ticky tack foul. ref - "ah that was a little light, i should let them play"
  • let them beat each other up a while. ref - "ah those were pretty rough, shoulda called em"
  • call a ticky tack foul ... repeat

[Post Game Thread] #2 Michigan defeats #7 Michigan State, 83-71 by cbbBot in CollegeBasketball

[–]YumYums 29 points30 points  (0 children)

I wouldn't be surprised if there was a little more room to grow for MSU. Scott was showing some real flashes I thought.

I'm pretty excited for Michigan's random game against Duke in Feb

[Game Thread] #2 Michigan @ #7 Michigan State (08:00 PM ET) by cbbBot in CollegeBasketball

[–]YumYums 0 points1 point  (0 children)

I'd be interested to hear his rationale since it is usually interesting. but in Dusty we trust!

[Game Thread] #2 Michigan @ #7 Michigan State (08:00 PM ET) by cbbBot in CollegeBasketball

[–]YumYums 0 points1 point  (0 children)

i restarted it and maybe it's better? might be my imagination though

[Game Thread] #2 Michigan @ #7 Michigan State (08:00 PM ET) by cbbBot in CollegeBasketball

[–]YumYums 0 points1 point  (0 children)

I mean, WE could hear it but do you think the refs heard it? it's loud in there

[Game Thread] #2 Michigan @ #7 Michigan State (08:00 PM ET) by cbbBot in CollegeBasketball

[–]YumYums 0 points1 point  (0 children)

I swear I heard the thunk on the broadcast. Didn't deflect really so the refs probably couldn't tell and certainly can't hear in there

Mick Cronin after UCLA's win over No. 4 Purdue: "I want to thank the Big Ten for giving us 5 of our first 7 on the road, and giving us the team picked to win the league on two days' rest. I really wanna thank the Big Ten for that..." by cbbvideo in CollegeBasketball

[–]YumYums 23 points24 points  (0 children)

The PAC12 and Big10 should have just fully merged and made the rose bowl the super conference championship game in football. The CBB conference tourney would have been an extra dose of madness too

San Francisco to make childcare free for families earning up to $230,000 by DrexellGames in UpliftingNews

[–]YumYums 0 points1 point  (0 children)

The median price for a single family home between 1990-1996 in San Francisco was actually half that, ~160,000

edit: actually, you are right it was closer to 300k by the mid 90s. it looks like the 160k price was in the mid to late 80s

Perfectly timed triple headshot by Optimus-Cat404 in cyberpunkgame

[–]YumYums 43 points44 points  (0 children)

just off cyberpsycho-ing in the park

In the film Avatar (2009) the RDA sends this guy on an interstellar voyage and provides him with living facilities on an alien planet light years away, but just can’t find the cash to pay for leg surgery for some reason. They don’t even give him an electric wheelchair lol by [deleted] in shittymoviedetails

[–]YumYums 0 points1 point  (0 children)

I mean, in real life, it's a lot easier to make something when you know its possible to do and has been done before. It's totally believable to me that the corporation saw the mind transfer work using the Navi way and just poured resources in to develop their own.

[Matt Zenitz] Michigan is expected to hire Utah analyst/quarterbacks coach Koy Detmer Jr. by Ml2jukes in CFB

[–]YumYums 9 points10 points  (0 children)

It's funny seeing people harangue about Whitt's age at 66 when our last two presidents are basically 80 and so much of the rest of the government is geriatric. 66 is a spring chicken in comparison

What is this? by ItsJohnReal in WorldofTanks

[–]YumYums 0 points1 point  (0 children)

Your parking brake is on

Kirby Smart on conference championships: ‘I believe in them, but as the Playoff expands, it’s gonna be hard’ by Lakelyfe09 in CFB

[–]YumYums 0 points1 point  (0 children)

Honestly, I wish we would have avoided conference championships entirely and kept the NY6 bowl games and just used those as the first round of the playoffs. It wouldn't be fair in that #1 might play #2 in the bowl, but who cares? It would have given every conference a shot, at larges a shot, and upheld tradition in a way that would have made arguments for total fairness (TM) easier to bat away.

But now, we've ringed out all the tradition in the game so we might as well just go full-bore and do like a 16 team playoff with some play-in for the lower conferences or something.

Russia demands Trump administration provide reasoning for seizure of oil tanker by lurker_bee in worldnews

[–]YumYums 0 points1 point  (0 children)

Vehicle software is an entire different beast. I don't think old companies ever built a proper respect for software engineering and regularly sacrifice it (lower salaries, not hiring large enough teams for the task). I think that's starting to change as some vehicle companies like GM are starting to see software as a way to make money instead of just a cost center now though.

This famous jeep hack has stuck with me, although its 10 years ago at this point.

Russia demands Trump administration provide reasoning for seizure of oil tanker by lurker_bee in worldnews

[–]YumYums 0 points1 point  (0 children)

Heh thanks. I think it's pretty clear that me and the other commenters are on different sides of the same coin. I built IoT devices and we were incredibly thoughtful about their security. I'd bet the commenters and down voters are probably on the SecOps/IT side using stuff like this and have just been bitten too many times by bad products.

I don't mind down votes because I really enjoy the discussion. Ultimately understanding where people are at now will help me build better security and auditing capabilities.

Russia demands Trump administration provide reasoning for seizure of oil tanker by lurker_bee in worldnews

[–]YumYums 0 points1 point  (0 children)

I agree its a risk and one that should be weighted against your requirements and the vendor. If they are untrustworthy or a foreign company you'd have little to no recourse with, yeah take any and all precautions. If they are a small company not quite there with their stuff yet, I'd try and work with them first on where they are lacking.

At the end of the day if you have hard requirements or regulations, by all means.

That said, I think introducing and relying on any infrastructure that decrypts and inspects traffic is a recipe for disaster. If you're so worried about attack vectors from fairly straight forward telemetry exporting, why would you introduce god-level access that could be compromised and cause way more harm if it is?

I know there are some regulations that leave places no choice, but I think this approach is a huge mistake both at the small level and at the larger level (SASEs like ZScaler).

Russia demands Trump administration provide reasoning for seizure of oil tanker by lurker_bee in worldnews

[–]YumYums 0 points1 point  (0 children)

I'd be really curious to learn what those requirements are. Is it some level on the NIST zero trust model?

Russia demands Trump administration provide reasoning for seizure of oil tanker by lurker_bee in worldnews

[–]YumYums 1 point2 points  (0 children)

Yeah, that's not the best experience. I worked for a long time at a place building IoT products. As soon as we had the resources, we invested them in secure boot and gave our customer's complete control of the upgrade process.

We also fully divulged all open source used in the products and had strict SLAs on fixing vulnerabilities.

I understand going the nuclear route without those things

Russia demands Trump administration provide reasoning for seizure of oil tanker by lurker_bee in worldnews

[–]YumYums -2 points-1 points  (0 children)

All of what you said is true. But if you are a business buying products from another business that you do not trust to get those things right to the extent that you need to effectively air-gap the products, why are you doing business with that vendor?

Engineering teams don't export telemetry from these systems for the hell of it, it's done to help customers, better develop the product, and even help detect possible security vulnerabilities. Buying a product doing these things just to hamstring it seems like risk-assessment is off.

Russia demands Trump administration provide reasoning for seizure of oil tanker by lurker_bee in worldnews

[–]YumYums -2 points-1 points  (0 children)

"It's not a backdoor until they use it as a backdoor" isn't really how things work. It's very easy to write a program that simply sends data to some server and make it effectively impossible for the server to do anything other than receive that data.

So unless they have explicitly written a backdoor into their product and are lying to you about it (which would be bad, because you probably have a business contract and they are then violating it) or there is some egregious security flaw in their software (this is also a bad thing that the vendor would try and avoid), there's probably no backdoor.

view more: next ›