Hacker News new | past | comments | ask | show | jobs | submit | more mirchiseth's comments login

Homeassistant is such a useful project. I use it for self hosting bitwarden, ubiquiti addon and bunch of smart home devices. For SSL I have been using local root authority but is a pain to maintain. I am able to access HA client from browser and Android phones but iPhones don't want to play. How did you do LetsEncrypt with HA?


I just did Caddy container as reverse proxy for my HA server - Caddy has support for Letsencrypt built in. Needs very little configuration. This approach lets you put SSL on any webservice you are running, the configuration is not specific to HA at all.

https://caddyserver.com/

https://en.wikipedia.org/wiki/Reverse_proxy

If you use LetsEncrypt's DNS-01 challenge to setup the SSL automatically, you can even deploy valid working SSL for IPs in the private range (192.168.x.x, 10.x.x.x etc etc), allowing auto-deployment of SSL for private services on your LAN, not just publicly accessible/exposed IPs. You can get around port forwarding during initial letsencrypt setup with this too, as all happens via DNS providers public APIs.

> https://letsencrypt.org/docs/challenge-types/#dns-01-challen...

Caddy is really easy to deploy as a Docker instance as well. There are many, many ways to accomplish LetsEncyrypt with HA though! It's really just an example of a common generic reverse proxy problem - searching for "reverse proxy letsencrypt" will show you many other ways to do it too. If you are using Docker to host your services at small scale, there are some really clever options now that auto-configure Caddy and SSL via letsencrypt all just using docker compose:

https://github.com/lucaslorentz/caddy-docker-proxy


I believed the same as well but then last year when I went back to my family doctor after more than 1.5 years, I got to hear another version. My doctor belongs to a group of doctors who have 4-5 offices around San Francisco bayarea. They have been in business for 25+ years and I have been with them for 15+ years. I asked him how did they do during the covid. His response shocked me - he said they came very close to closing their practice and PPP was what saved them. Of course no one was visiting them during pandemic but even when things started opening up they had staff shortages.

I am sure similar scenario would have happened for a lot of people and at the same time some businesses would have taken undue advantage of this as well.


Similar experience on the lower end of the economic spectrum. A local restaurant I love and have frequented for years was saved by PPP. As you can imagine, their employees were among the most economically vulnerable. With PPP they were able to send their people home and keep paying them during the downtime. Without that they'd have been finished.

But as you acknowledge, I'm sure there was abuse. I'll bet there was a lot of it. Gov't needed to get the money out the door fast, and it did, at the cost of some oversight. Hopefully next time we'll do it smarter.


> Hopefully next time we'll do it smarter.

I'm not sure how much smarter you can get. Fighting fraud and security in general is a cat-and-mouse game with a fundamental trade-off of convenience/expeditiousness vs. preventing fraud. When you need to get large amount of money out to a nation in a very small span of time, there might just be an unavoidably high floor on the amount of fraud that will happen.

Because otherwise you get flooded with all sorts of heart-breaking stories of people who were denied money due to some bureaucratic inconvenience put in place to fight fraud.


Doesn’t help when the administration makes it hard to do effective oversight[1]

1. https://www.politico.com/news/2020/04/07/trump-removes-indep...


Exactly. It was a best effort move to reduce fraud and exploitation while still providing the desired benefits. You had to wager that the loan would be forgiven and you had to be approved for the loan by an established lender.

Heart-breaking stories aside, it would have taken far more time and money to roll out a new government bureaucracy merely to duplicate a vetting service banks already provide.


Estonia has a robust digital government infrastructure that made payments easy and much less apt for fraud.


Estonia has a population the size of Maine.


That’s not an argument against digital government infrastructure.


You made no argument for it.


I did, it makes distributing government payouts harder to scam.


You didn't make an argument. You just made an unsupported claim. You did not compare fraud rates, you did not measure costs or benefits, you did not account for the urgency of the established by the context or make any attempt to assess relative feasibility. You made no argument.

More importantly, embedded in your claim is the assumption that comparing two different states with multiple order-of-magnitude differences in size and complexity should be accepted without question. Imagine deploying a solution for a class of 32 students in two weeks. Now imagine you have to do that for an entire university community of 8,000 people including all faculty, staff, and administration. You must account for on-campus and off-campus students; part-time, full-time, and remote employees; labor-oriented staff who do never use computers at work, multiple languages, bureaucratic restrictions to account for, politicking within different departments, and so on. Here's the kicker: you still have the same two weeks you had for the classroom project.

It's an absurd comparison that should never be made without clear disclaimers, caveats and careful specificity about the point.


So is this an argument? You're not comparing any real data either, just making a hypothetical comparison. Can I do that too?

Imagine if every state issued their own digital ID that was part of a national federated system of PKE. That is, each state trusts the certificate authority in each other state, and the fed trusts the states. There's some mechanism to sign into a federal website and to transfer money to a bank account, or perhaps a mechanism involving showing up to a postal office, who knows. Compare this to dispersing funds quickly but without any verification of identity.

By doing the work up front to be able to quickly verify identities it means that the fraud prevention happens before the fact.

Do you think the $76 billion would have been better spent on digital infrastructure or written off as fraud? And what about the next time there's a need for helicopter money?

You know the DoD is fazing out CAC and there's a lot of very cheap tooling around PKE digital IDs...


Hopefully next time we'll do it smarter by not imposing any lockdowns or forcibly closing businesses.


If we are really smart there won't be a next time where people roll over and let the idiot politicians shut everything down.


Who remembers tourneys for Age of Empires at Sunnyvale Fry's.


This in the article is so important in almost all domains of learning

"The point is that we should experiment with everything and pick what best fits our situation, reverence be damned"

It is the same conclusion that Hermann Hesse makes thru Siddhartha talking to his friend Govinda in one of my favorite books https://en.m.wikipedia.org/wiki/Siddhartha_(novel)


Where is the AI that can parse thru 1000+ comments and make a summary post of all the products people love on this thread.


Pay someone on fiverr?


And where you have monopoly - true or due to cartel nature. Why does medicines cost so much in US. They are not differentiated for sure.


Again, what monopoly are you talking about?

The market of high end computers? Apple definitely does not have a monopoly there. Bringing in US medicine is not really a relevant arguement.


Saw the Slashdot effect reference after such a long time. Not sure what % of HNers were there in the heydays of /.


More than you think? =;-{)} Wo remembers the "Anonymous FTP Sites List"?



Came to say the same and searched for freshdesk before posting. This has to be one of the biggest ones.


Small grocery warehouses used by Instant delivery companies. From this post[1] by Tanay J

A. Dark Stores / Fulfillment Centers Instant-Delivery Apps operate their own dark stores / fulfillment centers, typically one per neighborhood they operate in. Since these are not meant for consumers, space can be used more efficiently and typically the cost to operate these (at scale) as a percent of revenue is lower than rent space for grocery stores.

https://tanay.substack.com/p/understanding-the-instant-deliv...


SAP and Oracle are always easy targets. Not sure about Oracle but SAP has a relatively newer (10 yr old) subscription and usage billing product - https://www.sap.com/products/subscription-billing.html


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: