Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

if Tim Berners-Lee saw that paper link he would have never allowed the url to be invented


I'm so shocked by how almost every query parameter is required and there's even a freaking signature for validating the URL itself.

-Emily


Signature is likely so the caching layer doesn't have to do all that validation, at least as an initial check.


If I'm remembering correctly, people were accessing the original versions of the images uploaded to instagram (removing filters, and even masks) using parameter engineering (We love putting engineering at the end of everything that requires more than 5 seconds of thought these days, so why not). That could be why.


Who is Emily?


That would be me. We have DID and add a signature when the person commenting isn't actually Logan. It's not actually intended to be content.

-Emily


Why not have two different user names? What if you get logged out and the other identity is the one that knows the password?


The rule is one username per physical body, even if multiple identities are sharing it.


Where is that rule written?


> Why not have two different user names?

We do on some platforms like Discord.

> What if you get logged out and the other identity is the one that knows the password?

Before we moved to a password manager we used the same password everywhere. Now, obviously, we have a password manager.

-Emily


Don't you run the risk of only one person knowing the password to the password manager?


> Don't you run the risk of only one person knowing the password to the password manager?

No, because systems don't necessarily work that way. For us, the boundaries between our members aren't totally uncrossable. Information has gotten through in the past when it would be especially important or needed.

Though I guess it's funny that this topic comes up under a post called "segment anything". I guess our brain did that~

-Emily


Someone whose signature validates the grandparent comment itself, I assume




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: