(scalewithlee.substack.com)

603 points scalewithlee | 1 comments | 25 Apr 25 13:48 UTC | HN request time: 0s | source

Show context

paxys ◴[25 Apr 25 14:09 UTC] No.43793735[source]▶

This isn't a "security vs usability" trade-off as the author implies. This has nothing to do with security at all.

/etc/hosts

See, HN didn't complain. Does this mean I have hacked into the site? No, Substack (or Cloudflare, wherever the problem is) is run by people who have no idea how text input works.

replies(5): >>43793752 #>>43793805 #>>43793852 #>>43793880 #>>43794047 #

mystifyingpoi ◴[25 Apr 25 14:23 UTC] No.43793880[source]▶

>>43793735 #

> is run by people who have no idea how text input works

That's a very uncharitable view. It's far more likely that they are simply using some WAF with sane defaults and never caught this. They'll fix it and move on.

replies(1): >>43796676 #

1. immibis ◴[25 Apr 25 17:58 UTC] No.43796676[source]▶

>>43793880 #

with insane defaults FTFY

↑

Writing "/etc/hosts" breaks the Substack editor