this post was submitted on 28 Apr 2024
18 points (95.0% liked)
TechTakes
1401 readers
93 users here now
Big brain tech dude got yet another clueless take over at HackerNews etc? Here's the place to vent. Orange site, VC foolishness, all welcome.
This is not debate club. Unless it’s amusing debate.
For actually-good tech, you want our NotAwfulTech community
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I'm not terribly surprised by this - vendors (and especially rapid-integrators rushing to get to market) are often extremely lazy with this sort of thing. sometimes just by downloading an app (from whatever resource) and poking at it for a small amount of time, you can get it to register and be issued tokens and all kinds of shit
a lot of entities spend most of their efforts on surface things, things users will see. very, very few allocate to foundational parts.
if you want an example of this, set up mitmproxy on your computer, run it in socks5 mode, and set your system's proxy settings to socks everything through the mitmproxy daemon. you might be surprised how many applications Just Work with barely a mention of a changed certificate (nevermind entirely objecting to it)