Hacker News new | past | comments | ask | show | jobs | submit | doughj3's comments login

> and most of that payment going towards my saving

For the first several years at least, most of the mortgage payment goes to interest and taxes, not principal, and is "wasted" in much the same way rent is.


> Now, you have one more option—and it’s already in your pocket. Starting today in beta, your phone can be your security key—it’s built into devices running Android 7.0+.

You know, it's nice they phrase this as an "option", but in my experience Google has the habit of forcing me to have my phone on me when I login from a new location / new device, something I never asked for and apparently cannot disable.[0] This has locked me out of my Google account more than once which also locks me out of anything that sends 2FA to my Gmail or Gvoice. I guess I'm thankful that I've learned this in non-emergency scenarios, as I'm now prepping to degoogleify myself, but it's a user-hostile in my opinion. Security always has convenience trade-offs, but let the user decide where they want to draw that line.

[0] https://pbs.twimg.com/media/D3WJ0UdXkAASs_O.png


This happened with some of my friends, and locked them out of their gmail accounts(2FA disabled accounts). Google won't let them login to their accounts after providing correct password & SMS OTP.

Remaining options include: 1. give date(month year) of email sign-up, which most don't remember

2. pasword reset over alternate email address, which wasn't set during signup.

The only way for free gmail users to get help is support forum ran by gmail user volunteers, which didn't solve the problem. To me this approach to security, just seem super paranoic.


I think it makes sense to me, security that only works part of the time can be bypassed when it doesn't work.

However i've never encountered a TFA service that let you disable it in certain scenarios so i may be wrong


Google has always given me other options, does it really enforce having a phone now?


I don't know how they determine what options to offer, but using my phone was the only one given, despite entering a correct password. The only other option, which I either found from the "Learn more" link or after exhausting the "login with your phone" attempts, was to create a support ticket for my G-suite account which, in this case, would have been slower than returning to home a few hours later where I had left my phone.


There's an option on https://myaccount.google.com/security to turn off 2-step login.


Sorry for being thick, but I'm not seeing it. This is a G-suite account (though I'm the only user / admin) so maybe it's different.


From my G-Suite account (where I'm the only user / admin), it shows two-step verification settings here:

https://myaccount.google.com/signinoptions/two-step-verifica...


That seems to redirect me to the same page linked earlier in this thread (https://myaccount.google.com/security). Taking a look in my admin console, it looks like "Allow users to turn on 2-step verification" is unchecked, so presumably 2-step verification is not enabled for this account. That's exactly what I want, but it seems Google is failing to abide when they think I'm a "hacker". Other people have had the same frustrations[0][1] but there is apparently no way to stop Google requiring additional verification at their whim. Ultimately that means Google controls when I can and can't login to my account, so it ceases to be a usable product for me.

I appreciate your help, though!

[0] https://support.google.com/mail/forum/AAAAK7un8RUP1RC23nwRZ4

[1] https://support.google.com/mail/forum/AAAAK7un8RUZvZQQfsawrE


Did you enable 2FA from https://admin.google.com/ for your account ?

Dashboard -> select Security -> Basic Settings -> Two-Step Verification setting


Location: Albany, NY

Remote: Yes (I've been working remotely full time for 4+ years)

Willing to relocate: No

Technologies:

* Programming: Python • Django • JavaScript • jQuery • react.js • REST API • HTML • CSS • Bootstrap • Selenium • LATEX • FHIR • Git • Mercurial

* Server / Database: Apache • nginx • MySQL • PostgreSQL • Oracle Database • BIND • exim • Debian • Ubuntu • Solaris

* Networking: TCP/IP • VLAN • STP • Tunneling • OSPV(v3) • EIGRP(v6) • RIP(ng) • BGP • MPLS • Route redistribution

Résumé/CV: http://jwdougherty.com/Joseph_Dougherty_resume.pdf

Email: joseph@jwdougherty.com

After working full time as a software engineer at Oracle (Solaris group) for nearly seven years, I'm looking for my next opportunity.


Location: Albany, NY

Remote: Yes

Willing to relocate: No

Technologies:

* Programming: Python • Django • JavaScript • jQuery • react.js • REST API • HTML • CSS • Bootstrap • Selenium • LATEX • FHIR • Git • Mercurial

* Server / Database: Apache • nginx • MySQL • PostgreSQL • Oracle Database • BIND • exim • Debian • Ubuntu • Solaris

* Networking: TCP/IP • VLAN • STP • Tunneling • OSPV(v3) • EIGRP(v6) • RIP(ng) • BGP • MPLS • Route redistribution

Résumé/CV: http://jwdougherty.com/Joseph_Dougherty_resume.pdf

Email: joe@jwdougherty.com

After working full time as a software engineer at Oracle (Solaris group) for nearly seven years, I'm looking for my next opportunity.


https://en.wikipedia.org/wiki/Test_of_English_as_a_Foreign_L...

I have seen this used in Grad school applications by ESL students.


There's also the ECPE https://michiganassessment.org/test-takers/tests/ecpe/

But neither test "native"-ness. Just fluency.


Did anyone else notice the "The Network is the Computer™" slogan on workers.dev? I didn't see any footnotes, is this something Cloudflare now owns?


Quick search shows Oracle abandoned the mark August 22, 2011 (serial 77646689) and Cloudflare filed for it August 27, 2018 (serial 88094654).


Indeed. Surprising that Oracle let go Sun Microsystems' motto.


> ... will likely have negative effects on its health

Indoor cats have lifespans multiple times that of outdoor cats, so I think the alternative has negative effects on health, too.


Outdoor cats do okay, the ones I grew up with lived to be 16 and 21. It depends on where you live, what predators they might have to face.


My family had several cats over the time I grew up. All could go outside whenever they wanted.

The oldest got to 8 yrs.

Most died of organ failures, one from a genetic illness and another one never came back.

The Organ failures were probably from rat poison... So, the outside killed them


that's great, but on average outdoor cats really do live much shorter lives. [0]

[0] https://pets.webmd.com/cats/features/should-you-have-an-indo...


Anecdote, data, all that.


An Orange Pi Plus 2E meets all your needs, but like the other comment noted, it's going to cost more than $6.

http://www.orangepi.org/orangepiplus2e/


Mainline kernel support would be nice too.


It wasn't uncommon to see hot_new_song.mp3.exe back in the gnutella heyday.


It's still reasonably common to see hot_new_movie.mp4.exe or have an encrypted mp4 with a install_this_codec.exe beside it.


I made that mistake once when I was a teen. My father was not pleased one bit.


Hidden file extension by default, so users are left wondering "hey why does this song end in .mp3"


Or even hot_new_song.mp3{lots_of_whitespace}.exe


You make it sound like this is some elephant in the room across the industry. I'm curious if others here have found the same conclusions you have.


I've seen it among many managers from several companies. After I got involved in the hiring process I saw why. Like unable to fizzbuzz more than half the time.


By the time I finish my M Eng I will have a cutting edge education in machine learning, robotics, computer vision, and natural language processing, on top of five solid years of paid programming experience.

If someone insists on making a hiring decision based on my ability to whip out fizzbuzz on a whiteboard under a ticking clock, find another person and waste their time. I’ll pass.


If you can't fizzbuzz, I'm not going to hire you. Not being able to isn't defensible.

I'm going to be real, what I'm assuming is a near completed master's student complaining about fizzbuzz not being fair is kind of proving my point.


Fizzbuzz is fair: it’s a fair waste of time.

Interviewing an experienced and credentialed developer like they’re an undergrad sophomore with a one sentence resume looking for a summer internship shows to me that if an employer is going to waste the time of a candidate (and implicitly insult their intelligence and education), then they will waste the time of an employee, and such they represent an organization I want no part of.


Except it isn't a waste of time. Most of the credentialed, experienced people looking for a job in this current market can't do it. Most of the people actively looking for work in this field don't have a job for a reason.

Have you ever been a part of the hiring process, or are just stating that it's a waste of time because you think it's somehow beneath you to prove that you can do basic work? You know those annoying people in you group projects who don't do any work, but somehow squeak by? They graduate to, and get a job to.


Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: