Hacker Newsnew | past | comments | ask | show | jobs | submit | oijaf888's commentslogin

The occurrence of cellars is dependent more on the geography in the US. For example in Florida where the water table is very high, it makes little sense to dig a cellar since it would constantly have to be pumped out. However in the midwest and north east cellars are quite common.


Isn't that picture of helicopters? Do Russians somehow stage and fly helicopters in the US whereas we use OC-135s?


I wonder why they chose BugCrowd over the seemingly significantly cheaper HackerOne?


I would guess it is precisely because BugCrowd is more expensive. They offer a managed program where BugCrowd's employees validate bug reports for participating companies. Speaking from experience, that process can become very time-consuming.


If I were running a startup or even a moderately-sized company, implementing and managing a bug bounty program internally sounds like a headache, and probably would be put off indefinitely. A managed solution like BugCrowd could definitely fill this void.


Is it that difficult for individuals to get approval? There are tons of small 1-3 branch banks in the US owned by individuals. I would expect it's on par with getting a liquor license or similar, background check and assets check.

Years ago I worked for a bank that was > 75 years old and had recently been bought by a guy who had immigrated to go to college and then in the next 20+ years done very well in construction. As far as I know there was more uproar over him changing the name of the bank than actually buying it.


It is and it isn't - as was stated elsewhere, for example if starting a new bank, regulators will require (and enforce) specific business plans, will limit dividend payments, will limit growth, etc. - there will be a lot of scrutiny on the (proposed) management team and you would find it hard-pressed to be able to get away without having someone with previous bank executive experience. Would imagine for a failed bank there would be similar questions on what is changing with the bank model (which may be as simple as operating with a higher level of equity to support the bank's risk profile).


Also I think the UK regulator pretty much lets anything go inside the City of London due to historical restrictions on enforcement and such.


It was for a bit more than 50M if you include the earn-out, almost 2x.


I don't understand what advantage this has over just doing: ssh -D8080 username@server.name

Also does spiped natively act as a socks proxy? I was under the impression all it did was handle an encrypted stream of data from one socket to another.


> I don't understand what advantage this has over just doing: ssh -D8080 username@server.name

I used to do precisely that, but I think spiped has two major advantages:

1. It is more resilient on a flaky connection.

2. I trust the security of its codebase more than SSH, both due to its smaller footprint and cperciva's reputation.


As for why not the simple `ssh -D` the author states:

  In my experience, the spiped tunnel is highly reliable and
  recovers more gracefully than a standard SSH tunnel.


does spiped natively act as a socks proxy

No, it manages an arbitrary number of streams of encrypted data, but all it does is push bits (and encrypt/decrypt, of course).


From the article:

> In my experience, the spiped tunnel is highly reliable and recovers more gracefully than a standard SSH tunnel.

I've never had an issue with ssh -D though


http://ipxcore.com/ssl/ has GlobalSign certs for $15/year or $42/year for a wildcard


What was your issue? I've contemplated consolidating all of my domains/certs with them and have no issues so far but maybe I'm missing something?


See above - especially if you're not incorporated (Granted, on this board that's probably the minority)


Yeah looking over it I don't see a single OkC employee, former or current on there.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: