Hacker Newsnew | past | comments | ask | show | jobs | submit | breppp's commentslogin

I imagine the receiving party is an Iranian intelligence agency, due to the interest in sigint adjacent technology (Mobile cryptography).

That probably makes it espionage, not of the corporate kind


Unless your employer is Google and all those photos are uploaded to its servers

Does Google force all their employees to use and Android phone provided by them?

You could use an Apple or an alternative to Android like Fairphone or even load GrapheneOS on that Google Pixel phone. Even better would be a Linux phone that uses an Android VM so it looks like a bare metal installation.

Could go old school and just get a digital only camera that is not even part of a smartphone. An hidden camera in a pen or shirt button would work too.

Has anyone hacked the Meta glasses so they don't communicate with Meta and allow for communication to your own designated servers?


What if you use a film camera?

Creating mediocre alternatives sometimes pave the way for real alternatives as you create a talent pool.

China is an example, countries that had become technology independent through sanctions is another


It took a minute to load the map points here, and I was sitting thinking this is an attempt at a clever joke

> One obvious answer is we can make a lot more custom stuff. Like, why buy Windows and Office when I can just ask claude to write me my own versions instead? Why run a commodity operating system on kiosks? We can make so many more one-off pieces of software

yes, it will enable a lot of custom one-off software but I think people are forgetting the advantages of multiple copied instances, which is what enabled software to be so successful in the first place.

Mass production of the same piece of software creates standards, every word processor uses the same format and displays it the same way.

Every date library you import will calculate two months from now the same way, therefore this is code you don't have to constantly double check in your debug sessions.


according to the snowden documents it is quite obvious that if the US government had a backdoor then the UK government would have one through five eyes

> Except no, we don't. notepad.exe was DONE SOFTWARE

While 8.8 score is embarrassing, by no measure notepad was done software. It couldn't load a large text file for one, its search was barely functional, had funky issues with encoding, etc.

Notepad++ is closer to what should be expected from an OS basic text editor


What counts as "large"? I'm pretty sure at some point in my life I'd opened the entirety of Moby Dick in Notepad. Unless you want to look for text in a binary file (which Notepad definitely isn't for) I doubt you'll run into that problem too often.

Also, I hope the irony of you citing Notepad++ [1] as what Notepad should aim to be isn't lost on you. My point being, these kinds of vulnerabilities shouldn't exist in a fucking text editor.

[1] https://notepad-plus-plus.org/news/hijacked-incident-info-up...


> What counts as "large"?

Remote into a machine that you're not allowed to copy data out of. You only have the utilities baked into Windows and whatever the validated CI/CD process put there. You need to open a log file that has ballooned to at least several hundred megabytes, maybe more.

Moby Dick is about 1MB of text. That's really not much compared to a lot of log files on pretty hot servers.

I do agree though, if we're going to be complaining about how a text editor could have security issues and pointing to Notepad++ as an example otherwise, its had its own share of notable vulnerabilities even before this update hijacking. CVE-2017-8803 had a code execution vulnerability on just opening a malicious file, this at least requires you to click the rendered link in a markdown file.


Oh right, generated files exist. Though logging systems usually have a rollover file size you can configure, should this happen to you in real life.

Honestly I'm okay with having to resort to power tools for these edge cases. Notepad is more for the average user who is less likely to run into 100 MB text files and more likely to run into a 2 kB text file someone shared on Discord.


> Notepad is more for the average user who is less likely to run into 100 MB text files and more likely to run into a 2 kB text file someone shared on Discord.

There's no reason it shouldn't handle both use cases.


> Though logging systems usually have a rollover file size you can configure, should this happen to you in real life

I get what you're saying. But if things were done right I probably wouldn't have to be remoting into this box to hunt for a log file that wasn't properly being shipped to some other centralized logging platform.


I know about the vulnerabilities in notepad++, however I was referring to the feature set.

Regarding large, I am referring to log files for example. I think the issue was lack of use of memory mapped files, which meant the entire file was loaded to RAM always, often giving the frozen window experience


Notepad++ might be too much for a simple utility.

Plus for many years Word was one of the main cash cows for MS, so they didn't want to make an editor that would take away from Word.

And you could see how adding new things adds vulnerabilities. In this case they added ability to see/render markdown and with markdown they render links, which in this case allowed executing remote code when user clicks on a link.


> Plus for many years Word was one of the main cash cows for MS, so they didn't want to make an editor that would take away from Word.

Wordpad was the bundled rich text editor and was also a mess

I don't think an improved notepad could have cannibalized Word


notepad.exe worked just fine.

Notepad++ is a monster software.


> t couldn't load a large text file for one, its search was barely functional, had funky issues with encoding, etc.

It was working according to the spec. Which is very unusual in the SW world.


> How did we end up in a world with Windows 11 and Liquid Glass? So sad.

Nostalgic memories of daily BSODs ensue


Any source for the 2015 case? All I found was executions of pedophile rapists

I think you're right. While the UAE doesn't execute people for pedophilia, per se, the homosexuality element was what allowed for it.

Many traditional cultures don’t really distinguish between homosexuality and pedarasty. That distinction, or at least the cultural recognition of a distinction, is largely a distinctive artifact of the sexual revolution, a western phenomenon.

I don't think that was the case, the executions I saw was for rape and murder of four and eight year olds

Right, my point is that if they were men raping four and eight year old boys, they may very well have been convicted of sodomy rather than child rape like they would in some Western countries.

The state law in Washington even had a similar issue. Bestiality was prohibited by the sodomy statute, which the state repealed in its entirety as a gay rights thing. After the Enumclaw incident the legislature scrambled to re-criminalize bestiality.


All gulf states have abysmal gay rights, but are you sure they are executing gay men?

I'll checked it and you are right. It is just law and practical not done.

But what is worse: Law which does not matter, because the elite will ignore it anyway or threatening gay men to kill them but currently not doing tit.

anyway, not a place a emigrate.


I agree, without even talking about gay rights, I think both the UAE and Qatar have a legal system and an immigration system I wouldn't want to be subjected to.

Generally true for most of the world outside of the West


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: