undefined | Better HN

0 pointsthrowaway8943451y ago0 comments

Honestly not having to use Puppet or Ansible are among my reasons for using Docker. I do some basic stuff in cloud-init (which is already frustrating enough) to configure users, ssh, and docker and everything else is just standard Docker tooling.

0 comments

cmeacham981y ago

You might be right - maybe Apple's poorly operated bug bounty is a result of incompetence rather than intentional malice.

But does that matter to security researchers or the public? No. Apple needs to get their bounty program in order regardless of the reason it's broken.

Ultimately, this blog post is just another example on the already large pile[1][2][3][4][5]

1: https://arstechnica.com/information-technology/2021/09/three...

2: https://mjtsai.com/blog/2021/07/13/more-trouble-with-the-app...

3: https://medium.com/macoclock/apple-security-bounty-a-persona...

4: https://theevilbit.github.io/posts/experiences_with_asb/

5: https://shail-official.medium.com/accessing-apples-internal-...

pxc1y ago

> I do some basic stuff in cloud-init (which is already frustrating enough)

What do you find frustrating about cloud-init? I'm relatively new to it.

throwaway894345OP1y ago

The YAML structure seems poorly thought out, the documentation is low quality, the iteration loop is tedious, etc.

pxc1y ago

> the iteration loop is tedious

I feel that about the cloud as a whole, tbf. It's incredibly painful to me.

1 more reply

j / k navigate · click thread line to collapse

0 comments

cmeacham981y ago

You might be right - maybe Apple's poorly operated bug bounty is a result of incompetence rather than intentional malice.

But does that matter to security researchers or the public? No. Apple needs to get their bounty program in order regardless of the reason it's broken.

Ultimately, this blog post is just another example on the already large pile[1][2][3][4][5]

1: https://arstechnica.com/information-technology/2021/09/three...

2: https://mjtsai.com/blog/2021/07/13/more-trouble-with-the-app...

3: https://medium.com/macoclock/apple-security-bounty-a-persona...

4: https://theevilbit.github.io/posts/experiences_with_asb/

5: https://shail-official.medium.com/accessing-apples-internal-...

pxc1y ago

> I do some basic stuff in cloud-init (which is already frustrating enough)

What do you find frustrating about cloud-init? I'm relatively new to it.

throwaway894345OP1y ago

The YAML structure seems poorly thought out, the documentation is low quality, the iteration loop is tedious, etc.

pxc1y ago

> the iteration loop is tedious

I feel that about the cloud as a whole, tbf. It's incredibly painful to me.

1 more reply

j / k navigate · click thread line to collapse