Ask HN: How to address security incident without offending coworker?

阿新 • • 發佈：2018-12-29

Recently at work I had a friend use an insecure medium to send me a password to a production account. This is a big security faux paus, and means we need to rotate that password ASAP and consider the old one compromised. But this question has nothing to do with the technical side.

The friend that sent me the password was trying to be helpful, and truly I appreciated his help. If I blow the metaphorical security whistle in his face regarding this security issue, it will probably hurt his feelings and may provide a disincentive to be helpful in the future. However, I obviously want to prevent disclosures like this in the future.

How would you handle this situation?

Ask HN: How to address security incident without offending coworker?

Recently at work I had a friend use an insecure medium to send me a password to a production account. This is a big security faux paus, and means we need

Ask HN: How to register for Apple Developer Account without using personal name?

I would like to register for an Apple Developer Account without using my personal name, I understand that you can register as a Company and have that compa

Ask HN: How to commit comments to different repo?

Does anyone know of a way, via software or some other means, to be able to leave yourself comments that can be saved without getting overwritten by pulling

Ask HN: How to take advantage of living in the Bay?

Before moving to the Bay, I had hoped that the Bay to America would be like America to the rest of the world.I grew up in a developing country with an auth

Ask HN: How to give cryptocurrency to people in need

My name is Joe Waltman and I a recently started working with GiveCrypto.org, a non-profit that was started by Brian Armstrong. I somewhat stumbled into thi

Ask HN: How to start a startup that requires a high amount of initial capital?

I want to start a payments bank in India but it requires a 13M+ USD initial capital just to get the licensing fee.Wondering if people have any examples of

Ask HN: How to decide between 2 startup ideas?

Let's say you are interested in 2 startup ideas, both roughly equivalent in opportunity size and personal fit, but in different markets. There isn't a fact

Ask HN: How to find a remote client based in the US?

We have a small software development company based in Europe, about 10 developers with 5-10 years of experience in mostly fullstack product development pro

Ask HN: How to not forget your own code?

I'll jump right in. I'm a developer with 5+ years' experience with programming. One of the biggest challenges I face is I forget my code very quickly. This

Ask HN: How to build beautiful SVG graphics for websites?

I am really curious if anyone knows about courses / tutorials or other material I could use to learn how to do graphics such as the ones at:a) www.stripe.c

Ask HN: How to Prevent abuse of FREE service costing $$$ to Website?

I run a website (https://freephonenum.com/send-text) that allows people to send FREE SMS worldwide. I started this service a little over 1 year ago to allo

Ask HN: How to be a Head of Engineering?

As my career progress, I am currently looking for the next big challenge. As a software developer, how can I progress to a HoE role? I know that it's more

Ask HN: How to avoid TV addiction?

Remove your TV set.Unfortunately it's like being alcoholic. You have to understand that you're addicted for ever and the only way to win with the addiction

Ask HN: How to return to the old gmail?

The old Gmail is dead. Slow and ugly are the future. If you want something clean and fast, you're going to have to switch to something else. That's the

Ask HN: How to focus on one thing to do?

It depends on your goals, You can have a broad sense of skills to be a full stack developer. Knowing enough front end, middlewear and backend to design a d

Ask HN: How to switch off from work?

1) Weed2) Get in the habit of writing down everything that's in your head. I keep a simple bullet journal so that everything in my head has a single place

Ask HN: How to best teach algorithms and data structures?

Here's what I try to do:1. Start with the intuition. (The big concepts i.e. for BigO trying to figure out the best, worst and average number of steps it ta

Ask HN: How to pick between internships?

I'm currently trying to pick between internships. What is a good way to choose? What are the most important things to be thinking about?I'm mostly deciding

Ask HN: How to validate a market opportunity in a cost effective way?

Here's the way that I do it. Copied from a previous comment:Keywords, Google keyword tool, forum chats, Reddit comments. Use tools like these to find EVIDE

Ask HN: How to ommit downvoted comments in HN?

This would be perfect, but unfortunately doesn't seem to work on most downvoted comments (negative scored), for example:This comment is light gray, but doe