Comment Re:The Working Class Ruin Everything (Score -1, Flamebait) 108
Comment Re:I remember when that happened (Score 1) 108
Comment Re:Amazon is corrupt! (Score 4, Insightful) 22
I think it may be evidence that Amazon has a shitty corporate culture that squeezes every penny it can out its employees.
Corruption can happen anywhere, but it's more likely to happen in totalitarian cultures where people feel like the system is rigged anyway. That's why countries like Russia and China have corruption problems. But I suspect the same feelings of me vs. the system occur in a capitalist enterprise like Amazon where employees are governed by dystopian, rigid, computerized metrics.
Comment Re:If I have steam installed on top of Linux (Score 1) 45
Comment Re: Very fuzzy. (Score 1) 45
Comment Re: IoT SSID (Score 1) 33
Comment Re:Government in charge of X makes X political (Score 0) 91
Comment Re: Very fuzzy. (Score 1) 45
Comment Re: Very fuzzy. (Score 1, Insightful) 45
Comment lol statism ai the cause of monopolies (Score 0) 39
Garbage regulations like IP create these behemoths. If you want freedom, stop regulating monopolies into existence.
Comment Re:Oh no.... (Score -1) 295
To have more than me. Making me feel lazy and useless. Forcing me to strike out in anger and scream to the world that people working 20 hour days and risking everything owe me everything.
So, that is the proof that they are in fact, "Stealing"
Comment Re: I don't want billionaires to pay their fair sh (Score -1) 295
Statism creates billionaires.
Comment Reminder of how this works (Score 1) 295
No one can possibly think that a one-time tax like this is a good idea. Even if you want higher taxes on the wealthy surely (a) you want recurring revenue not a one-off (b) you want to actually collect the taxes not just scare the tax base out of state.
But this is the key part:
Although it has gained enough signatures for the ballot, the groups backing the measure have until June 25 to decide whether to move forward or potentially strike a deal with the state.
The way the ballot process in California works is you can propose terrible legislation, pay for signatures, then get what you want in return for withdrawing it (which you can do even after submitting signatures, which is ridiculous).
It's become a very broken system.
Comment Re: Seems defensible. (Score 1) 38
If their published standards indicate that giving the connector that level of admin permissions is excessive, and the access needed to exploit this is as clearly a set of poor security management as the last paragraph of the summary implies, then, "Yes, it should be corrected, and no, it's not bounty worthy" seems a reasonable stance to take. It sits right in the zone of that definition.
You could have the argument, but it's not clear to me that Google has it wrong.
Well I am sure they are not wrong in that they have legal cover to refuse the bounty.
I think they probably are wrong in excluding all config related bugs from their bounty program. Chained exploits are becoming increasing attack vectors so "you need elevated privileges" is not the moat it used to be. And GCP takeover is a big cost to bear. "We can prove it was your fault for not reading our docs carefully enough" will probably not be the salve their customers want in case of exploit. Security is hard and protecting customers from footguns is often worth doing.
But if Google doesn't want to know about these kinds of issues that's up to them. Keep it in mind before purchasing their services, however.