Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
chromacity 13 hours ago

I discussed this in more detail in one of my earlier comments, but I think the article commits a category error. In commercial settings, most of day-to-day infosec work (or spending) has very little to do with looking for vulnerabilities in code.

In fact, security programs built on the idea that you can find and patch every security hole in your codebase were basically busted long before LLMs.

Muromec 13 hours ago | parent [-]

Commercial infosec is deleting firefox from develop machines, because it's not secure and explaining to muggles why they shouldn't commit secret material to the code repository. That and blocking my ssh access to home router of course.

chromacity 11 hours ago | parent [-]

I mean, often, yep. The real reason why they are unhappy with you having an unsupported browser is simply that it's much harder to reason about or enforce policies across bespoke environments. And in an enterprise of a sufficient scale, the probability that one of your employees is making a mistake today is basically 1. Someone is installing an infostealer browser extension, someone is typing in their password on a phishing site, etc. So, you really want to keep browsers on a tight leash and have robust monitoring and reporting around that.

Yeah, it sucks. But you're getting paid, among other things, to put up with some amount of corporate suckiness.

gerdesj 10 hours ago | parent [-]

"The real reason why they are unhappy with you having an unsupported browser"

I tend to encourage Firefox over Cr flavoured browsers because FF (for me) are the absolute last to dive in with fads and will boneheadedly argue against useful stuff until the cows come home ... Web Serial springs to mind (which should finally be rocking up real soon now).

Oh and they are not sponsored by Google errm ... 8)

I'm old enough to remember having to use telnet to access the www (when it finally rocked up and looked rather like Gopher and WAIS) (via a X.25 PAD) and I have seen the word "unsupported" bandied around way too often since to basically mean "walled garden".

I think that when you end up using the term "unsupported browser" you have lost any possible argument based on reason or common decency.

direwolf20 2 hours ago | parent [-]

> Web Serial

why in the absolute fuck would I want random web pages to be able to control all the devices connected to my computer?

venzaspa 43 minutes ago | parent [-]

It's essentially for programming microcontrollers, ESP32's and the like. It's really handy. You have to confirm the connection every time.