HN Best Comments

Re: Humiliating IIS servers for fun and jail time I front all my honeypots with the IIS landing page precisely because it attracts black hat jagoffs. Nothing makes me happier than knowing I've wasted hours of their time chasing their own tails. naturalmovement, 2 days ago

Re: U.S. science is in chaos > When the shutdown ended in mid-November, Reynolds’s team had just two weeks to get on budget. It failed. The plan the group submitted would cost too much and take too long. “Our last hope was that NASA headquarters would understand what had gone on and give us some leeway,” Reynolds says. NASA did not. After nearly 10 years of work, AXIS was dead. If the scientists haven't left science behind after an experience like this, probably nothing will. What an absolute kick in the nuts to have a decade of your life erased because someone did a keyword search for science projects to stop, in the name of saving money, while at the same time wasting even more money on other things. I think I should feel angry, but I just feel sad for all the humans involved here, I hope they manage to come out with a more positive perspective than I'm able to here. embedding-shape, 2 days ago

Re: The founder of Craigslist has given away half a billion dollars I don't know much about this guy, but I remember reading an interview with him maybe 15 years ago where he was asked if his lifestyle had changed since he came into money and if he bought a new house or anything, and his answer was basically something like: "Not really, and I've already got good water pressure where I'm at, what else do I need?" I can't help but like his attitude. helterskelter, 4 hours ago

Re: U.S. science is in chaos > whether there are black holes at a redshift of 10 or not is not a partisan issue. Anything that depends on a basic understanding of the scientific process, and resulting scientific facts is absolutely a partisan issue right now. Rebuff5007, 1 day ago

Re: Midjourney Medical It's a controversial and complicated idea. The downside, and the reason why most doctors do not recommend full body scans, is that every human body is a bit weird and there will almost always be something "wrong" that will be visible in a full body scan. This can lead to unnecessary testing, anxiety, and even unnecessary procedures. Many of these oddities flagged by the scan would never have caused any actual issues had the patient never been aware. While there are many individual stories of full-body scans detecting early-stage cancer before it became symptomatic, there seems to be a general sense among doctors that implementing full-body scanning on a population level would lead to overall more harm than good. The thinking is that it is better to do regular targeted screenings for diseases that you're in a risk group for (e.g. colonoscopies, mammograms, cancer marker blood tests, etc.) rather than full-body scans. I'm not a doctor, and I personally do find the idea of full-body scans very appealing, but I also know that if the scan detects a possible cancer, I wouldn't be able to just ignore it if the doctor tells me it's likely ok. Any time I felt any pain or any sort of symptom in that general area, I know I would worry about it. Maybe that's worth it for the potential life-saving results, but it definitely is a cost of this type of scan that needs to be acknowledged. convnet, 17 hours ago

Re: Lore – Open source version control system designed for scalability Just today as I pushed some changes to Github, I was thinking how user-unfriendly Git's UI is:

    Enumerating objects: 5, done.
    Counting objects: 100% (5/5), done.
    Delta compression using up to 10 threads
    Compressing objects: 100% (3/3), done.
    Writing objects: 100% (3/3), 290 bytes | 290.00 KiB/s, done.
    Total 3 (delta 2), reused 0 (delta 0), pack-reused 0
    remote: Resolving deltas: 100% (2/2), completed with 2 local objects.

I know all of these things communicate something to the die-hard Git user, but for most people (even most people using Git, I bet) this is just complete gobbledegook. What the hell is "delta compression"? Why do I care how many threads it's using? What is an 'object' and what does it mean when it's 'local'? What does 'pack-reused' mean? From the documentation, it looks like Lore does a bit better in this regard:

    Pushing 1 fragment(s)
    Pushed 1 fragment(s), 124.00 bytes
    Pushing a3f8c2d1... to branch main
    Pushed revision 1 -> a3f8c2d1... to branch main

niek_pas, 1 day ago

Re: Microsoft new Outlook takes 10 seconds to do what Outlook Classic does instantly And to think that the "old" Outlook's splash screen is there for a reason: it used to take a while to open before SSDs became commonplace! Windows in general used to be usable on HDDs; SSDs would blow everyone's pants off making everything open instantly. These days we have 20+ Gbps SSDs without the AHCI latency tax and they're no longer enough to open an e-mail. THAT'S how low the ball has been dropped. m132, 8 hours ago

Re: I've always wondered if anyone used sharing buttons on news sites and blogs > The share buttons got clicked 14,078 times. That’s a 0.21% usage rate, which works out to about 1 in 476 visitors. In other words, people not only click share buttons, but do it quite often? raincole, 2 days ago

Re: OpenAI Losses Increased Nearly 8X in 2025, with Spending Hitting $34B Sam didn't lie, they are in fact a non profit. aizk, 20 hours ago

Re: The 2-Year Apartment Rule > Things start off fine, but then mold starts growing in the bathroom, and a recurring leak springs up in the living room, and then roaches start appearing in the kitchen. When I started reading the article, I thought the whole point was gonna be that the author doesn't take care of the apartment. The recurring leak might not be the author's fault, but the mold in the bathroom and roaches in the kitchen definitely are. Is this a case of a total lack of self-reflection? Or a post to scare people away from becoming landlords? tasuki, 11 hours ago

Re: US holds off blacklisting DeepSeek, more than 100 firms deemed security risks I use DeepSeek every day (via VSCode Insiders and Zed Editor). It's very affordable and, while it's slightly behind Claude (not sure how far behind Fable), it suits my working style well. I'm not using unsupervised multi-agent workflows and don't need a library of skills files - I'm writing most of the code and leaning on AI to help with mundane tasks - like; - generating types for APIs - generating boilerplate based on existing code - improving existing code (adding error handling, timeouts, things like that) - Writing SQL repository boilerplate / queries - Creating implementations against hand written tests - Helping me understand and implement APIs from third party libraries - Writing documentation I've spent like $2 in the last month and have used over 100 million tokens. It's doubled my productivity and unlocked work that I could not have done before. As an Australian, I'm not sure that I care about the safety of my data when it comes to LLMs. US companies already stole scores of data to train their models on and it's hard to imagine they suddenly grew some integrity. I'll care when regulators step in, until then it's out of my control so I'll just use the best price-to-productivity product available. apatheticonion, 19 hours ago

Re: Midjourney Medical > You want as much data as you can get about your health as quickly and as cheaply as possible. In other words, you want a technology optimized for getting as many “megabytes per second per dollar” of information about your body. This is so far from my vision of what I want from healthcare. I want a healthcare system that is optimised around A) proactively keeping me healthy, and B) reactively helping get back to healthy when I am not. I do not care about the amount of megabytes of data I have about my body. tmhrtly, 7 hours ago

Re: TIL: You can make HTTP requests without curl using Bash /dev/TCP As a kid in the late 90s my mind was blown when I realized I could telnet to port 80, 25, or 110 and interact with the servers manually. Simple get: GET / HTTP/1.1 Content-Type: text/html User-Agent: l33t hax0rs lol X-Funny-Monkey: farts For sending a mail message on port 25: HELO mail-from: whoever@whatever.com mail-to: sysadmin@yaya.com <other headers> <blank line> Body of the message yay. <two blank lines to end> POP3 was so long ago I forgot but you could list the mailboxes then get individual messages and so on. This revelation was the beginning of "there is no magic" for me. The realization that every part of the computer was built by human beings and was at some level understandable if one undertook the effort. Perhaps most people in the future won't bother. They'll just let agents do it all. I'm sure that will leave some interesting holes in various systems for people willing to actually learn how they work without the filter of a model (or its safety rails). xenadu02, 2 days ago

Re: Microsoft new Outlook takes 10 seconds to do what Outlook Classic does instantly > Outlook is based on WebView2, and like all web apps, it’s slow Fastmail also has a web based email client, which is as fast as (if not faster than) Outlook Classic. The new Outlook is just bad. Load order is wrong, it renders everything on every window, loads unnecessary data, etc. Plain annoying. patates, 4 hours ago

Re: AI demands more engineering discipline. Not less It is now significantly harder to figure out who understands the systems and is using AI effectively and who doesn't know shit and is just slinging LLM copypasta around. Before 2025, the underperformers/coasters were at least relatively identifiable by the paucity of their contributions. Now all of the sudden every single engineer is filing PRs, code reviews, technical design documents, and every other artifact under the sun with perfect formatting and at least superficial plausibility. This is mostly due to incredible pressure from the C-level for every engineer to be using as much AI as possible, but it's also just a game theory respopnse because it's in every engineer's best interest to be as prolific as possible. We are absolutely drowning in documentation and code that seems legit and the only recourse is to lean on AI to help process the sheer quantity of it. I have a feeling that the fallout from this phase of the industry is going to be an exotic form of technical debt that is remarkable mostly in its enormity. ryandvm, 1 day ago

Re: Midjourney Medical Some initial thoughts as a practicing radiologist: - This looks really cool and I hope they keep innovating on this. I love seeing new modalities develop and despite my (many) reservations and criticisms, if even one good use case comes out of it that truly helps people, it's tech money well spent imo. - They show the reconstructed images as though they are a low resolution CT, and promise that quality will improve as they iterate. This is cool, but ultrasound is not CT. Ultrasound cannot image the lungs, as they are filled with air. You cannot find bone lesions, as the sound waves do not penetrate the cortex. You cannot image many structures in the abdomen if they are surrounded by gas-filled bowel. The brain is encased in bone, so you might get some penetration but it will be very limited. Even with theoretically perfect AI reconstruction, these scans will not be true "full body" in that there will be structures that are not reliably imaged. Imagine paying for weekly full body scans for years, everything looks fine, then its the lung cancer surrounded by air and invisible to ultrasound that kills you (that's why we use CT for lung screening!) - The images they show are very cool, and do appear to show the correct structures. I realize this is early, but fuzzy shapes of organs is very, very far from medically useful. The whole point of screening is to identify problems early, often by definition, small. This technology looks like it will be best for seeing large, superficial (close to the skin) structures, whereas for effective screening, you want the opposite - small, deep structures. - "Incidentalomas" or unexpected, probably benign, findings are annoying to physicians, but I in general have no problem with people collecting data on themselves where they can. To me it's similar to heart rate monitors or home blood pressure cuffs. The main issue here is education, so that patients know what the data is and is not telling them. The more complex the data, the more difficult that is. - Many people mistakenly believe that early diagnosis is the final boss in medicine, that if only we could find every cancer early we could prevent all those deaths. There are, in fact, many, many other hurdles and bottlenecks. Many chronic, expensive diseases do not have clear imaging manifestations. The claim that "it's completely possible that with enough early imaging in the future, the world could avoid 30% of all deaths and 50% of all healthcare costs", I think, to any practicing physician, would sound completely divorced from reality. jmhmd, 2 hours ago

Re: Local Qwen isn't a worse Opus, it's a different tool If you play with these models long enough, you realize there is more to them than just "model X is smarter than model Y" or "model Y is cheaper than model Z". They are different tools and the prompting technique is different. It is very much like playing an instrument. With Claude, you sometimes want to under-specify or phrase things more indirectly to give a color to the implementation or elicit something creative. Also (you might raise an eyebrow at this) being nice to Claude will be rewarded and being mean to Claude will be punished. Claude tends to mirror your tone more aggressively and you don't want to get into negative loops with it. With GPT, you have to be precise and reduce ambiguity. GPT will often try to resolve ambiguity in a min-max style "I'm going to do X, but make sure it is not quite Y". It will tend to be more paranoid and overengineer to catch all edge cases if you don't tell it precisely what the scope is. With Qwen, you have to give it a shape and let it fill it in. Qwen likes XML, JSON and lists. Qwen likes to be shown a bunch of examples of previous work. This is not scientific at all, just vibes, YMMV. glerk, 9 hours ago

Re: US holds off blacklisting DeepSeek, more than 100 firms deemed security risks Can you keep a straight face when you say IP theft while OpenAI and Claude have their entire business based on IP theft? theplumber, 18 hours ago

Re: Sixty percent of US consumers say 'AI' in brand messaging is a turnoff This is the problem with all of the recent “AI” crap that has been shoved into our devices. We have had ML features for years and it provided real benefits but most people did not know or care how it worked, it just did its job in the background without the underlying tech being shoved in your face. Everything AI though is the opposite, it wants to focus on the technology first and the benefits second. It is actively making a worse UI and often providing little to no benefit. Most consumers don’t actually care how their tech works, just that it does and gives them benefits. nerdjon, 1 day ago

Re: Volkswagen started blocking GrapheneOS users German companies, especially old school industrial ones like VW, have a very hard time understanding open platforms. The view everything through the lense of liability and compliance first. Their thinking is that if someone runs their app on a custom ROM and uses that to manipulate the app in any way, and that causes some extremely hypothetical damage, that they might be held liable for not having prevented this situation. Obviously, the chances of that are virtually zero. But they'd rather make their product worse than assume with any kind of risk, even if it is virtually zero. That is simply the way in which German enterprises operate. this_user, 20 hours ago