Hacker News new | ask | show | jobs
by spoonjim 1951 days ago
LOL the whole “fall guy” thing is how companies keep doing what they’re doing while making some symbolic penance. For a software company a fuckup of this magnitude should be: all customers leave, company dies, execs never work again. Anything less is an insufficient incentive to work extremely hard to prevent this from happening.
4 comments
notimetorelax 1951 days ago
Sorry, I can’t agree with you here. What you’re saying is basically company’s dissolution of it is hacked. If this indeed becomes the case the companies will indeed kill to keep their secrets.
link
sofixa 1951 days ago
First, with GDPR and co, they can't keep their secrets if they get hacked.

Second, with such negligence? They deserve to be shut down. This isn't a highly sophisticated zero day exploit, there were multiple huge failure at Solarwinds that allowed the attack to happen.

link
WalterBright 1951 days ago
Your method sounds good, but it makes things less safe in practice because it provides every possible incentive to hide, cover up, deny, etc., any problems.

A far better system is "no fault" where the company has incentive to be open about problems and finding solutions.

link
bzzzt 1951 days ago
Years ago, the company I worked at had a very big production issue which resulted in a customer's database being deleted. Of course, the customer was furious and called the CEO asking for the person responsible to be fired.

Calmly, our CEO said: 'No. If there's anyone in this company who will never make that mistake again it's him.'

link
treis 1951 days ago
I've seen this sort of Zen of CEO type story a lot but it doesn't match up with reality. Someone that deletes a production DB by being careless or reckless is likely to do something similar again. Perhaps not in the exact same way, but there's infinite ways to break things. Those that stumble upon one are likely to stumble upon another.
link
bzzzt 1948 days ago
In that case everyone making 1 mistake is 'out'. Seems "cancel culture" is leaking into ops...

I was in the room when the CEO told that (one of the nice things about small companies) and have had contact with the person responsible for a few years until he got another job. True story ;)

There were changes though: the 'two pair of eyes' principle was enforced a lot stricter from then on.

link
mrmonkeyman 1951 days ago
And if you ever ignore a red light, pay your taxes late or do anything other than your absolute best to be an upstanding citizen you should be put into prison for the rest of your life.
link
spoonjim 1951 days ago
If you ignore a red light and kill 10,000 people? Maybe. That’s what this kind of software hack is.
link