|
"We don't need QA/UAT, we just need to pound out a really insecure and buggy product! Jackpot!"
|
# ? Aug 23, 2018 18:59 |
|
|
# ? Apr 26, 2024 15:10 |
|
hobbesmaster posted:are these all done over cellular? the network itself provides a lot of security in that case at least. of course until someone gets your password to control center/command center they're done over cell and wifi, depending on how big or urgent the update is. the network does generally provide security in the transport sense - the backend systems are what worry me and tesla is a big enough target that a determined actor could gain control. i can only guess how the likes of NIO (a chinese e-car startup) runs their backend.
|
# ? Aug 23, 2018 19:00 |
|
CommieGIR posted:"We don't need QA/UAT, we just need to pound out a really insecure and buggy product! Jackpot!" we had firmware QA and they were great folks. for the lack of staff and timelines we had they were amazing people and the folks i worked directly with, save a few, were really talented. that said, it takes more than just firmware to QA something like a car that talks to a complex backend with continuous delivery into production
|
# ? Aug 23, 2018 19:04 |
|
Xealous posted:others didn't pass because they were harness people working in cad programs and not actually programmers
|
# ? Aug 23, 2018 19:07 |
|
Xealous posted:more fun facts: Xealous posted:yep that was 90% of it. most of the time me and the other firmware folks were chasing elon's whims about what to do with firmware. where i should have been fixing critical issues in the system i was pulled off to do poo poo like add farting unicorns Xealous posted:they aren't the first - for what we were doing at the time it made sense and helped us get the program off the ground quickly. lots of room for improvement and in 8 years, they should have done so. Xealous posted:99% of what i'm talking about is "public" anyway. tesla isn't encrypting their firmware and it's really easy to glean information from the vpn with a packet cap because nothing inside the vpn (was) encrypted. dumping tegra 3 model s and x is trivial and tesla's cars are nowhere near as secure as they'd have you believe. these are extremely fun facts, thank you
|
# ? Aug 23, 2018 19:11 |
|
the early days of tesla, post-roadster, early model s and the start of model x were good times - everyone was trying to prove the technology worked, we were innovating and making something that hadn't been done before. things really started to poo poo the bed around the time we pivoted from model 3 plans to shipping model x first. the falcon wing doors were _such a shitshow_. they ended up delaying the program almost a year, hence why model 3 basically skipped all the usual phases a car goes through for validation. i mean, come on - you have bumpers falling off in the rain, the interior is a disaster, there's no instrument cluster which takes your eyes off the road - this list just goes on.
|
# ? Aug 23, 2018 19:11 |
|
smothering your rising company to have the car doors of a billionaire amazing
|
# ? Aug 23, 2018 19:23 |
|
I'm suddenly realizing that the model X would have been in its early design phases right around the time that episode aired
|
# ? Aug 23, 2018 19:29 |
|
oh wow lotta new posts in the grimes boyfriend thread wonder what’s goi-
|
# ? Aug 23, 2018 19:29 |
|
hell of good poo poo, op.
|
# ? Aug 23, 2018 19:33 |
|
CommieGIR posted:"We don't need QA/UAT, we just need to
|
# ? Aug 23, 2018 19:35 |
|
Jesus christ this is loving wild.
|
# ? Aug 23, 2018 19:44 |
|
mr musk's wild ride
|
# ? Aug 23, 2018 19:53 |
|
Xealous posted:99% of what i'm talking about is "public" anyway. tesla isn't encrypting their firmware and it's really easy to glean information from the vpn with a packet cap because nothing inside the vpn (was) encrypted. dumping tegra 3 model s and x is trivial and tesla's cars are nowhere near as secure as they'd have you believe. jeeztreamer
|
# ? Aug 23, 2018 19:56 |
|
https://twitter.com/elonbachman/status/1032201528499752963?s=21
|
# ? Aug 23, 2018 19:56 |
|
Lutha Mahtin posted:wait, do you mean the guy came in and cleaned out the department of people who couldn't pass his personal fizzbuzz pointer quiz? lol
|
# ? Aug 23, 2018 20:13 |
|
selling demo cars is very common, and they do, in fact, count as "new" since they've never had an initial say, but dealerships will give steep discounts on them, since they'll usually have a few hundred miles on them. something tells me tesla is not doing that.
|
# ? Aug 23, 2018 20:52 |
|
|
# ? Aug 23, 2018 20:54 |
|
Wulfolme posted:smothering your rising company to have the car doors of a billionaire Sagebrush posted:I'm suddenly realizing that the model X would have been in its early design phases right around the time that episode aired lmao
|
# ? Aug 23, 2018 20:58 |
|
Endless Mike posted:selling demo cars is very common, and they do, in fact, count as "new" since they've never had an initial say, but dealerships will give steep discounts on them, since they'll usually have a few hundred miles on them. something tells me tesla is not doing that. this one wasn't new though; theres actually a pretty big legal difference between a new car and a used car. apparently this one had been titled and registered so its no longer new you can buy a "new" car with 200 miles on it, this wasn't a "new" car by law though
|
# ? Aug 23, 2018 21:01 |
|
hobbesmaster posted:this one wasn't new though; theres actually a pretty big legal difference between a new car and a used car. apparently this one had been titled and registered so its no longer new yeah, definitely. that tweet doesn't make that entirely clear.
|
# ? Aug 23, 2018 21:13 |
|
"Evolutionary theory says that diverse species never collaborate. People only want to take care of their families." do you think this guy even has a family lol
|
# ? Aug 23, 2018 21:47 |
|
this thread got really good when this xealous lurker showed up
|
# ? Aug 23, 2018 21:48 |
|
akadajet posted:this thread got really good since this xealous lurker showed up yeah, their posts really add some gravitas.
|
# ? Aug 23, 2018 21:48 |
|
Xealous posted:appreciate the offer, I mostly browse and don’t post because I’m a boring computer toucher may I offer some advice?
|
# ? Aug 23, 2018 21:52 |
|
tesla basically runs their entire business like a just in time compiler only they don't treat warnings or errors as failures. most groups in the company don't cross-communicate so there's a lot of duplication of effort. i once got pulled into a meeting because a car burned down when it was attached to a supercharger and we didn't get a log out of the car. normally under some emergency circumstances the car will try to upload a log when it thinks poo poo has gone really badly, but in this particular case it was far enough away from a tower it had half 3G connection and had to upload a 30MB log via HTTPS POST. the car burned down before it even got to 10MB and the system was only designed for exponential backoff retries, not resumption of in-progress. elon was calm about it, but we had to justify why we never had time to address it - maybe it was because we were all busy making unsafe features work?
|
# ? Aug 23, 2018 22:48 |
|
also on the supercharger note - you can get blacklisted from using them if you charge on them all the time. that's because the supercharger bypasses the charging regulator boards and dumps directly into the pack at 300A/450v which creates a ton of wear on the battery. want to keep your range high? don't supercharge often.
|
# ? Aug 23, 2018 22:51 |
|
do they define “too often”?
|
# ? Aug 23, 2018 22:53 |
|
Xealous posted:tesla basically runs their entire business like a just in time compiler only they don't treat warnings or errors as failures. most groups in the company don't cross-communicate so there's a lot of duplication of effort. good news! 3G is dead too!
|
# ? Aug 23, 2018 22:53 |
|
what is elon like when stuff goes wrong due to his idiotic micromanagement and big stupid ideas?
|
# ? Aug 23, 2018 22:56 |
|
President Beep posted:do they define “too often”? algorithm-based now - the ai poo poo i was working on took into account a lot of factors to determine if you were abusing it before i left. the criteria takes into account the state of many components in the car, your driving patterns and other details. or it did anyway. not even sure that stuff is running still - they rotated projects in and out of existence pretty rapidly.
|
# ? Aug 23, 2018 22:59 |
|
GWBBQ posted:what is elon like when stuff goes wrong due to his idiotic micromanagement and big stupid ideas? he's never wrong. his "open door policy" was an invitation to catch you breaking rank.
|
# ? Aug 23, 2018 23:01 |
|
tesla was also in the news because they were doing cute poo poo like spinning up k8s clusters which had AWS IAM access to sensitive S3 buckets but wasn't ssl'd and the k8s mgmt api was available publicly. there were other teams running industrial control equipment with centos 7 an no hardening at all. there was one time where a canadian kid stole the domain and redirected emails and managed to take over slack and a bunch of other poo poo because the idiot IT team didn't hide the registrar information or use something like markmonitor. the car-side stuff at least did full mtls at the time so it was ok, but lol did that kid get a lot of info.
|
# ? Aug 23, 2018 23:13 |
|
lol this is all so tasty, thanks
|
# ? Aug 23, 2018 23:22 |
|
this is going to get poached for one of the $TSLAQ twitters within days maybe
|
# ? Aug 23, 2018 23:47 |
|
Xealous posted:algorithm-based now - the ai poo poo i was working on took into account a lot of factors to determine if you were abusing it before i left. the criteria takes into account the state of many components in the car, your driving patterns and other details. or it did anyway. not even sure that stuff is running still - they rotated projects in and out of existence pretty rapidly. thats just what i want, the car manufacturer monitoring how i drive the car i own and deciding that features should be turned off after i have purchased it, that's a good feature.
|
# ? Aug 23, 2018 23:59 |
|
C.H.O.M.E. posted:thats just what i want, the car manufacturer monitoring how i drive the car i own and deciding that features should be turned off after i have purchased it, that's a good feature. you have no idea. any connected car is ripe for data harvesting and you (the consumer) should expect it going forward. on that note, china has a law in place that mandates all electric cars send real time telemetry to their government servers - model s/x/3, NIO cars and any other electric car if they're driving already complies with that law to be road certified. don't be surprised if that becomes a mandate in other countries
|
# ? Aug 24, 2018 00:11 |
|
this thread owns
|
# ? Aug 24, 2018 00:14 |
|
Xealous posted:you have no idea. any connected car is ripe for data harvesting and you (the consumer) should expect it going forward. on that note, china has a law in place that mandates all electric cars send real time telemetry to their government servers - model s/x/3, NIO cars and any other electric car if they're driving already complies with that law to be road certified. don't be surprised if that becomes a mandate in other countries thats ok my car is 15 years old and i will never buy a new one and the only thing i connect it to is my own butt
|
# ? Aug 24, 2018 00:18 |
|
|
# ? Apr 26, 2024 15:10 |
|
C.H.O.M.E. posted:thats just what i want, the car manufacturer monitoring how i drive the car i own and deciding that features should be turned off after i have purchased it, that's a good feature. there are four essential freedoms that the drivers of cars should always have freedom 0 is the freedom to drive the car however you wish
|
# ? Aug 24, 2018 00:21 |