so if API is published, there is nothing to reverse engineer. and if API is not published, and you...

5701652400 • today at 6:55 PM • 4 replies • view on HN

so if API is published, there is nothing to reverse engineer.

and if API is not published, and you MITM with self-compromised CAs, and then use it (commercially?) you ~100% breaking ToS.

this is just un-ethical. or YC does not have regard anymore for such things?

Replies

ImPostingOnHN • today at 8:44 PM

Some people may believe in equal measure that intentionally trying to break interoperability is unethical. Especially if it's my data.

alexblackwell_ • today at 7:29 PM

Noticed you have two comments here. I think my response to your other comment best answers this (https://news.ycombinator.com/item?id=47798259). Definitely open to discussing this more here. Not sure if I agree on the self-compromised CA bit. MITM proxies have been used for 20+ years for debugging. In fact, I use Kampala to debug our personal APIs/web app all of the time.

jasonlotito • today at 7:32 PM

> this is just un-ethical.

There is nothing unethical about this. You can technically do this with a browser and its dev tools.

You being here is far more unethical than this app.

rrr_oh_man • today at 7:23 PM

> anymore

Ehh…

alt Hacker News

Replies