Hasnain says:

This was chock full of great advice.

“Choose happiness. If you’re unhappy in life, success is much harder to achieve. When I was growing up, the American mantra was that happiness requires wealth. Wealth and happiness are two different goals; we have unhappy billionaires today! I always picked happiness over wealth when there was a choice, and I’m very glad that I did.”

Hasnain says:

TIL over half of LA’s fire trucks were out of commission during the recent fires and a nontrivial amount of the blame here goes to… private equity

“While AIP’s consolidation of economic power over fire truck manufacturing is appalling, it is not some unsolvable, intractable problem we just have to live with. State and federal antitrust laws already prohibit the kind of monopolistic roll-up that AIP perpetrated — they just need to be enforced. State AGs can bring lawsuits to force REV Group to divest the manufacturers it illegally acquired and to pay damages to fire departments for the harm that its (attempted) monopolization of the fire-truck industry has caused. Fire departments and other fire-apparatus purchasers can bring their own lawsuits to do the same. So can the FTC and the DOJ’s Antitrust Division. If state legislators or members of Congress want to pave the way for such lawsuits, they can launch their own investigations into the fire apparatus industry. And if anyone wants guidance on what a lawsuit against AIP could look like, Lina Khan left us a roadmap just before she stepped down from the FTC last week — when she sued private-equity giant Welsh Carson for rolling up Texas anesthesiology practices to drive up the price of anesthesia services to Texas patients.

We have all the tools we need to check AIP’s greed and abuse and restructure the fire-truck industry so it serves the public interest. The only question is whether our political leaders have the will.”

Hasnain says:

“The Israel Defense Forces (IDF) says the building was targeted because it was a Hezbollah "terrorist command centre" and it "eliminated" a Hezbollah commander. It added that "the overwhelming majority" of those killed in the strike were "confirmed to be terror operatives".
But a BBC Eye investigation verified the identity of 68 of the 73 people killed in the attack and uncovered evidence suggesting just six were linked to Hezbollah's military wing. None of those we identified appeared to hold a senior rank. The BBC's World Service also found that the other 62 were civilians - 23 of them children.”

Hasnain says:

I am glad this is finally out, if only because I can finally reference Mark S's famous one ampersand commit and have people believe me and not think that I'm making shit up. Great read on profilers and also TIL the code is open source.

"A seasoned performance engineer was looking through Strobelight data and discovered that by filtering on a particular std::vector function call (using the symbolized file and line number) he could identify computationally expensive array copies that happen unintentionally with the ‘auto’ keyword in C++.

The engineer turned a few knobs, adjusted his Scuba query, and happened to notice one of these copies in a particularly hot call path in one of Meta’s largest ads services. He then cracked open his code editor to investigate whether this particular vector copy was intentional… it wasn’t.

It was a simple mistake that any engineer working in C++ has made a hundred times.

So, the engineer typed an “&” after the auto keyword to indicate we want a reference instead of a copy. It was a one-character commit, which, after it was shipped to production, equated to an estimated 15,000 servers in capacity savings per year!

Go back and re-read that sentence. One ampersand! "

Hasnain says:

This is why I always name settings that have a time component as eg “settingNameSeconds” so there is no confusion because what even is this

“Which was what the setting value was changed to in the patch that was eventually accepted. This means that setting help.autocorrect to 1 logically means "wait 100ms (1 decisecond) before continuing".

Now, why Junio thought deciseconds was a reasonable unit of time measurement for this is never discussed, so I don't really know why that is. Perhaps 1 full second felt too long so he wanted to be able to set it to half a second? We may never know. All we truly know is that this has never made sense to anyone ever since.”

Hasnain says:

Lots to ponder and think about from this rant. I do think as a society (maybe I’m just grumpy) the value of artisanal, high quality work, has really gone by the wayside. It’s so magnificent when you get to see an expert at work, someone who really cares about their craft.

“When I joined my former Big Tech job, everyone cared. Over time, incentives attracted a different set of people who didn't care as much. Eventually those people became the majority. It's painful to work with people who don't care if you care a lot, and eventually I left because of it.

Now, I'm at a small startup full of people who care. Customer bug reports go right to our chatroom. We fix them immediately. I feel guilty I wrote the bugs at all. We reach out to users to see if we can make their lives better. We care.

I want to live in a community where everyone cares.

The one place in the world you get this vibe is probably Japan. Most people just really care. Patrick McKenzie refers to this as the will to have nice things. Japan has it, and the US mostly does not.

In Japan, you get the impression that everyone takes their job and role in society seriously. The median Japanese 7-11 clerk takes their job more seriously than the median US city bureaucrat. And the result is obvious if you visit both places.”

Hasnain says:

It’s gonna be a long four years. Anxiously waiting to see what exactly gets signed in these EOs so I can prepare

“Immigration and border security will make up a major pillar of Trump's early executive actions. Trump has promised to carry out mass deportations, end birthright citizenship and "secure" the southern border.”

Hasnain says:

Even in 2024, people not baking in rollback safety into their releases..

“Before long, the buggy new app had become as pleasant as a termite infestation. There were so many complaints from disappointed customers that executives seriously considered just going back to the old app. But they couldn’t. After rigorous testing, they determined the previous version of the app was no longer compatible with the rest of its software.

All of these problems were compounded by a lack of communication. It took until July for the then-CEO, Patrick Spence, to apologize. Even when Spence detailed his plans for repairing the app, he cautioned that it would take more time. And today, it’s still not entirely fixed.”

Hasnain says:

“But in French's experience, most people eventually embrace their diagnosis and find that it helps them to put support in place and live a better life. This applies to French herself. As with many women, when she was a child her inattention was not seen as disruptive. And as she grew up and moved from France to the UK, her anxiety and depression were not linked to ADHD. It was only on moving to Australia and seeing a new GP that she was referred to an ADHD specialist. At the age of 30, when she finally received an ADHD diagnosis, there was a sense of relief: "It was a very welcome explanation to a lot of the things I was struggling with". “

Hasnain says:

Another example of why security is so hard to get right.

“The threat actors behind the Otelier breach told BleepingComputer that they initially hacked the company's Atlassian server using an employee's login. These credentials were stolen through information-stealing malware, which has become the bane of corporate networks over the past few years.

When BleepingComputer asked Otelier to confirm this information, a company representative said they could not share any further comments on the incident. However, BleepingComputer found on the Flare threat intelligence platform Otelier employee information that had been stolen by infostealer malware.

The threat actors say they used these credentials to scrape tickets and other data, which contained further credentials to the company's S3 buckets.

Using this access, the hackers claimed to have downloaded 7.8TB of data from the company's Amazon cloud storage, including millions of documents belonging to Marriott that were in S3 buckets managed by Otelier. These documents include nightly hotel reports, shift audits, and accounting data.”