Holidu | Multiple jobs (backend, frontend, Data Analytics) | Munich, Germany | Full-time, Onsite | https://holidu.com/careers

Do you want to learn something new everyday and want to build something big? Do you want to take responsibility? Do you love to deal with the newest technologies and with holidays? Then you are the perfect match for us.

Tech: Java, Play, ElasticSearch, Node.js, React, AWS, Tenserflow, etc.

We are looking for:

- DevOps Engineer (m/f)

- Working Student Frontend Development (m/f)

- Working Student Java Development (m/f)

- Intern Technical Product Management (m/f)

- iOS Developer (m/f)

- Android Developer (m/f)

- Technical Product Manager (m/f)

- (Senior) Fullstack/Java Developer (m/f)

- (Senior) Frontend Developer (m/f)

- Junior Backend Developer (m/f)

If you have any questions, please email us at: dev@holidu.com

The yearly cost of a US prisoner is $47,000 [1]. I am sure this is a whole lot more than society is willing to invest in the person outside of prison.

http://www.lao.ca.gov/PolicyAreas/CJ/6_cj_inmatecost

Anyone can get a basic income for life in the US, you just have to take someone else's life first.

Is that the cost or the price? Security + healthcare amount to two-thirds - seems like that's the bit where you'd hide the profit for private enterprises?

What sort of bank do prison owning CEOs make?

> What the fuck? Seriously what the fuck?

Please stop overreacting, especially in this manner. Nothing says they're planning to implement it, for all we know it could be a preventive patent, so no other can use the technology without Apple's consent.

I'm not sure what the overeaction is. It is a statement of strong disbelief. My reaction was the same.

I wholeheartedly agree, WeChat OA / apps were borne out of a need for a simpler, faster and lighter mobile communication channel as opposed to bloated websites and apps. Message bots reduce the barriers for interaction and offer a more focused experience: they simplify payment, reduce data load, remove or simplify account setup, offer better discoverability, etc. They are also easier to add / remove and don't install anything on your OS.

Some of these issues can be solved by the OS: offering a unified notifications center with a better customizable UX, a per channel notification history, and more freedom to define follow-up actions. But unless the OS offers an alternative to apps, the barriers to install an app will remain bigger than installing a message bot, especially for one off communications.

I see an interesting future in a consolidated, block-chained B2C communications app, with a unified API for payments, notifications, and common UI elements. I can easily add contacts, and if I want marketing, I'll install the app or visit their website.

ps. I can recommend the recent discussion around bots on the a16z podcast.

What good does a block chain add to a chat app?

Buzzword compliance and never being able to remove private information.

I am excited about Rails API becoming an official part of the Rails ecosystem. I don't expect Rails to solve my client-side needs (templating was always slow, sprockets suboptimal), but I love to use it as an API and have a simple node server to proxy my website calls to that api. An additional benefit of this is that your client consumes the same API, as your other clients, so you don't have to worry about two api versions anymore and it improves your TDD.

Full updated list is here: https://en.wikipedia.org/wiki/List_of_Internet_exchange_poin...

Well, to be fair, AMS-IX is located around the Amsterdam Area (a circle of around 30 km orso), while DE-CIX has locations in the US as well. I'm not familiar with the specifics, but based on these locations, I'd say AMS-IX is the biggest internet exchange serving europe.

https://www.de-cix.net/about/statistics/ shows statistics for Frankfurt of > 4GBit/s

> 4GBit/s is technically correct, however I think you meant > 4TBit/s.

Both DE-CIX and AMS-IX have exchanges in NYC now. Both have actually started branching out and building exchanges in many new cities. The traffic levels they're talking about are specific to both of their home markets (Amsterdam/Frankfurt).

DE-CIX has the same "metro" setup as AMS-IX as well, they're in a large number of locations https://www.de-cix.net/products-services/de-cix-frankfurt/ in the Frankfurt metro area.

The DE-CIX graph seems to be about the Frankfurt exchange. AMS-IX doesn't just serve the Amsterdam area, it's where many undersea cables from North America and the UK enter the European mainland.

I'm more surprised that 'List of Internet exchange points' isn't dominated by North American and Asian exchanges. Do they have a larger number of smaller ones?

As far as i can tell all of asia hates each other

My traffic in philippines would actually go out of the country and back in, occasionally via los angeles (like 500ms+) because the incumbent monopoly telco refuses to peer with any other isp, so if you don't use them your traffic is intentionally screwed [there is an IX there for small ISPs, the 99% market share one just doesn't peer there]

Aside from singapore, every other country has something approaching this level of fucked-ness - HK to CN traffic often goes via LA/seattle, TW to CN traffic often goes via LA/seattle, all of china telecom's peering links are oversubscribed to death anyway and fall over during peak hours, a lot of the SEA traffic i've seen traverses singapore or worse, even if it's entirely domestic bound

no, Amsterdam does not have the size amount of peering it does because of submarine cable landings, and DE-CIX is largest by bits exchanged in one single metro area (Frankfurt)

DE-CIX doesn't combine their stats from all exchagnes, as far as I know. AMS-IX also serves NYC, the Bay Area, Chicago, Hong Kong, and the Caribbean

I try to use DDG every once in a while, because I really would like to use them. But after a while, I almost always switch back and vow to try them again in a few months.

If you compare a query like "static webserver", you'll see why Google's results are much more diverse, than DDG's:

https://duckduckgo.com/?q=static+webserver

https://www.google.com/search?q=static+webserver

Both results seem of extremely poor quality to me.

What are you getting on Google?

The cartoons are a very key part of this story. By censoring them, you're censoring a part of the news, which has nothing to do with the voice or stance of your newspaper.

Sure, email is not perfect, but it is the most flexible communication method the internet has to offer. It is not tight to a single organization, or "owned" by a single company and reasonably portable with an open protocol. Tools will be invented to further optimize the experience, but in essence it will remain the same, just like a telephone call hasn't changed. I will not commit an essential part of my business again, to a single company's closed-sourced product (like for instance MS Office in the past, though OSX being the exception).

I recently started using Mailbox as my personal Email Client again, and I am very impressed in how they "optimized" the experience. It basically converts your emails into task items, with different priorities, in lists etc. When combined with notes, it could make any task / note app obsolete.

Unfortunately it only works with GMail and iCloud, but I hope Dropbox keeps investing in the product.

> Just from a UX perspective - security aspects aside - this is worse by a magnitude.

This is not true, clicking a link in an email, or copying a number from an sms is much easier than first logging into my password manager, finding the entry and then copy it into the field.

Also, this also works for apps as well, not just the browser.

Besides, password manager usage might still be quite low. So what the writer advocates is not less secure than having a single password for almost all their websites, like most people have.

LastPass doesn't require copy-paste on many websites- it can fill on click, or automatically. It's slick and very fast. I leave it logged in so I don't need to type my master password more than once every few days on my home machine. The newest LastPass version on Android can auto-fill in apps, too.

On websites that I've enabled 2FA on, I let LastPass autofill (no clicks) and pulling up Google Authenticator on my phone is what takes time.

The problem with using SMS as your only authentication is, what do you use for your second factor? I suppose a PIN would work.

SMSes are also trivial to intercept: imagine the national telco silently routes some login SMSes that were going to a number on a list to the local internal security agency. The user just gets no SMS (or a code that doesn't work), assumes something went wrong on the network, and asks for another one. Meanwhile the "baddies" have logged in already and snaffled up the information they want.

What I want is to be able to use Google Authenticator as my only authentication, plus a PIN for slightly sensitive sites and a long password for very sensitive sites (and to disable my phone from a distance).

No, you're just using a poor password manager. For example, 1Password integrates into your browser making password lookup and form filling a key-chord away. At most, you'll also need to authenticate with it for your current session, turning it into a two-step process which still takes less than ten seconds.

But either way it's much more preferable to waiting x minutes for your authentication link to appear, and then having to copy and paste. The fact you have to wait an indeterminate amount of time for your auth email/sms to come through means it's a totally sub-standard solution, bordering on the ridiculous.