Profile

Cover photo
Mike Stay
Attends University of Auckland
Lives in Mountain View, CA
2,145 followers|1,075,813 views
AboutPostsPhotosYouTube

Stream

Mike Stay

Shared publicly  - 
 
Wow!  Google built a computer that beat a professional Go player!  The paper will appear in Nature tomorrow.
DeepMind's program AlphaGo, masters the ancient game of Go. First ever program to defeat a human professional player!
12
1
Joe Philip Ninan's profile photo
Add a comment...

Mike Stay

Shared publicly  - 
 
If you're looking for a way to host your app securely, Sandstorm is an excellent choice.
 
Linux CVE-2016-0728 does not affect Sandstorm as we block keyctl in the sandbox using seccomp. Added to the list: https://docs.sandstorm.io/en/latest/using/security-non-events/#linux-kernel
3 comments on original post
4
Add a comment...

Mike Stay

Shared publicly  - 
 
Sane advice on being prepared.
 
Introduction [link]. The prepper culture begs to be taken with a grain of salt. In some ways, it has all the makings of a doomsday cult: a tribe of unkempt misfits who hoard gold bullion, study herbalism, and preach about the imminent collapse of our society. Today, we see such worries as absurd ...
1 comment on original post
1
1
Boris Borcic's profile photo
Add a comment...

Mike Stay

Shared publicly  - 
 
1) Hopefully you never copy shell commands you don't fully understand into your terminal to execute them.

2) If you do understand the commands, you probably already know that if the string you're pasting has a carriage return, it will execute the command without more user interaction.

3) What you probably didn't know is that when you highlight text in a browser, it can include the content of spans positioned off the screen, which can include commands that you can't see.

4) What you also probably didn't know is that if you use a terminal-based editor like vim, the string you paste might also include commands to your editor (like "quit without saving, then run this exploit").

https://www.reddit.com/r/netsec/comments/1bv359/dont_copypaste_from_website_to_terminal_demo/c9aslnn
You surely know this: You're looking at some website with some useful shell commands. However, those commands are long as hell and you know you're probably not gonna need them for a few years or so (so there's no need to memorize them). So, what do you do? You copy-paste them. Here's an example: ...
9
Richard Botting's profile photoKenton Varda's profile photoMike Stay's profile photoKevin Reid's profile photo
7 comments
 
In my opinion, the blame here should be laid on the character terminal paradigm. Take a look at nearly any GUI-based terminal-like application (e.g. chat), and you will find that pasting text does not send things immediately but puts the newlines in the input field. This is possible because the keyboard enter key is treated as an actual command whereas pasting a newline isn't.

Character-based terminals were fine when they were hardware that didn't do anything but send keystrokes. Now, they need to be replaced.

The hard part is figuring out something comparably lightweight and simple-for-everyone-to-program to replace them with.
Add a comment...

Mike Stay

Shared publicly  - 
 
For a while, TrendMicro Antivirus was running a server on every computer on which it was installed that allowed trivial remote shell execution as well as extraction of all passwords.
2
2
Carlos Scheidegger's profile photoRafael Ferreira's profile photo
Add a comment...

Mike Stay

Shared publicly  - 
16
1
Bob Calder's profile photo
Add a comment...

Mike Stay

Shared publicly  - 
 
Free FX software!
Free lightning and lightsaber effects included in free video software HitFilm 3 Express. Be a Sith or a Jedi.
2
Add a comment...
Have him in circles
2,145 people
matt lee (razorsmile)'s profile photo
Deloar Masud's profile photo
Chris Schommer-Pries's profile photo
Ирина Бабина's profile photo
Singh Wheels's profile photo
Satish Kumar's profile photo
Andrew Shewring's profile photo
Legal Community Houston, Texas's profile photo
Axel Kramer's profile photo

Mike Stay

Shared publicly  - 
 
Redditor Greghogan gets six planets in one picture.
10
Add a comment...

Mike Stay

Shared publicly  - 
 
Kenton's right; entire classes of very common security breaches can be excluded by doing things this way, and many can't be prevented any other way.
 
"Google-style" microservice architecture is all wrong.

Everyone is excited about splitting their macroservice into a bunch of small microservices, each encapsulating some part of the codebase.

But at the end of the day, dividing the service along code boundaries is really not very useful at all. You can get the same benefits by organizing your code into clean, modular libraries, all running in one "monolithic" process.

What if, instead, we containerize along data boundaries? For example, take a document editor app like Etherpad. What if we put every document in a separate container (together with the entire code stack needed to interact with it)?

This is what Sandstorm does, and the benefits turn out to be huge. Among other things, it has mitigated every single security bug Etherpad has ever had.

As part of our new web site I wrote this page explaining the concept and why it works:

https://sandstorm.io/how-it-works
Take control of your web by running your own personal cloud server with Sandstorm.
34 comments on original post
6
2
Hilmar Hoffmann's profile photoGershom B's profile photo
Add a comment...

Mike Stay

Shared publicly  - 
 
How antibacterial mud works.
Since prehistoric times, clays have been used by people for medicinal purposes. Whether by eating it, soaking in a mud bath, or using it to stop bleeding from wounds, clay has long been part of keeping humans healthy. Now scientists have discovered the two key ingredients that give some natural clays the power to kill even antibiotic-resistant microbes.
6
3
Terrence Lee Reed's profile photoFran Marzoa's profile photo
Add a comment...

Mike Stay

Shared publicly  - 
1
1
Mike Stay's profile photoJason Holt's profile photoAlex Fink's profile photoBoris Borcic's profile photo
4 comments
 
(No-one asked, but) I first saw this on Metafilter, where it seems to have first been shown off: https://projects.metafilter.com/4787/Magic-Realism-Bot
Add a comment...

Mike Stay

Shared publicly  - 
 
Printable heptagons you can assemble into Klein's quartic!
 
Make your own Klein Quartic out of card! Download printable shapes and instructions at https://github.com/timhutton/klein-quartic
3 comments on original post
8
1
decor light's profile photo
Add a comment...
People
Have him in circles
2,145 people
matt lee (razorsmile)'s profile photo
Deloar Masud's profile photo
Chris Schommer-Pries's profile photo
Ирина Бабина's profile photo
Singh Wheels's profile photo
Satish Kumar's profile photo
Andrew Shewring's profile photo
Legal Community Houston, Texas's profile photo
Axel Kramer's profile photo
Collections Mike is following
Education
  • University of Auckland
    Computer Science, 2007 - present
    PhD
  • University of Auckland
    Computer Science, 2004 - 2005
    MSc
  • Brigham Young University
    Physics, 1992 - 1997
    BSc
Basic Information
Gender
Male
Other names
Michael Stay
Story
Introduction
Whenever I'm asked to describe myself, I immediately think of Gödel numbering and quines.
Work
Occupation
Partner, Biosimilarity, LLC
Skills
Category theory, computer programming, theoretical physics
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Currently
Mountain View, CA
Previously
Lindon, UT - Redford, MI - Amherst, OH - Provo, UT - Puerto San Jose, Guatemala - Jocotenango, Guatemala - Villa Nueva, Guatemala - Villa Hermosa, Guatemala - Colorado Springs, CO - Epsom, New Zealand - Riverside, CA
Links
YouTube
Other profiles