Welcome to Tesla Motors Club
Discuss Tesla's Model S, Model 3, Model X, Model Y, Cybertruck, Roadster and More.
Register

Recent content by nspollution

  1. nspollution

    Minnesota Tesla Owners Club

    I'm building right now with a geothermal system and the way I am interpreting things (not 100% sure yet), you need 3 meters: 1. Regular energy meter 2. Off peak meter for geothermal 3. ToD for EV You can connect the EV to the off-peak, but off-peak allows you to charge only during off-peak. If...
  2. nspollution

    Model S "Hacked" (again)?

    Flaw, not a Vulnerability It is a flaw in the architecture. As I pointed out in the past and another has pointed out with further research, this is an architectural flaw that makes these kinds of hacks easier to carry out and more damaging when they are carried out. But it's not a vulnerability.
  3. nspollution

    Will Tesla support CarPlay?

    Right now Tesla is way ahead of everyone else in terms of in-car software. Apple has no experience doing pure software development in an environment in which it has no control over the hardware. I have Apple products throughout my house and I have no interest in Apple CarPlay until it proves...
  4. nspollution

    Battery drains very rapidly in really cold weather!

    Yep, that's about the way it's supposed to work. For best results, pre-heat your car 1/2 hour before leaving. That will warm up the battery and increase your ability to regen while driving.
  5. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    I know there are solutions for houses. I am having one put into my new home. The issue is exactly that they are very costly for a home to implement, and thus taking those precautions is not common place nor considered "reasonable". With respect to APIs, implementing processes to protect them in...
  6. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    If you are such a brilliant REST API architect, please RTFA and explain it to us all for him.
  7. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    I honestly didn't realize that this forum had the hostility towards anything negative of Tesla that the Tesla Motors forums do. I stand corrected. There are a large number of people who just can't deal with criticism of Tesla in any form. I honestly don't think he's asking me the question in...
  8. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    Actually, I did state it in the article. But, no, it's not considered an opinion. It's considered a basic information security control that's part of most standards. This is a unique feature of this forum that any moderator with an agenda can alter the title of a thread to reflect something in...
  9. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    Houses do have this flaw. But they aren't REST APIs, so the rules that apply to them are different. Furthermore, there are no commonly accepted ways of dealing with the problem, as there are with REST APIs. It's only a flaw if its reasonable for you to have done otherwise. In the workplace...
  10. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    My article obviously went way over your head. All of the points you made above have nothing to do with my article.
  11. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    Yes, they do. That's a well-described problem, and it's much more serious than this same problem in the Tesla.
  12. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    The change is not accurate and thus less clear. Whoever changed is being intellectually dishonest. Thread titles should not change against the wishes of the author of the thread.
  13. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    I started the thread and I am its author. No one else has the right to attempt to change what I wrote to reflect their agenda. This isn't a flaw "if you give your credentials to third parties". It's a potential vulnerability if you give your credentials to third parties. It's a flaw regardless...
  14. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    2 Things here... #1 How is it that the title of MY THREAD gets changed to wording that I neither agree with nor intend? #2 Again, the focus of everyone's vitriol seems to be that I did not write the facts in a manner they approve of? My writing was clear and appropriate to the target audience...
  15. nspollution

    Authentication flaws in the REST API (if you give 3rd party your private login info)

    Actually, if you take that to its logical conclusion, no one should ever say anything because someone might misinterpret it. Every fact can be spun to meet a specific agenda. That's not a reason to avoid communication.

About Us

Formed in 2006, Tesla Motors Club (TMC) was the first independent online Tesla community. Today it remains the largest and most dynamic community of Tesla enthusiasts. Learn more.

Do you value your experience at TMC? Consider becoming a Supporting Member of Tesla Motors Club. As a thank you for your contribution, you'll get nearly no ads in the Community and Groups sections. Additional perks are available depending on the level of contribution. Please visit the Account Upgrades page for more details.


SUPPORT TMC
Top