But at least for friends and family it should be possible to create some flow where every member has a key-combo and you trust them to only sign stuff they wrote etc. and have local mini-keysign parties.

You have far too much faith in humanity. The majority of my extended family members are not smart enough to resist continuous attacks and would eventually not only sign, but give away the key in question.

Simply put I think we are stretching humanity farther than intellectual ability allows in a lot of people.

True, it can, BUT what's lacking in the total arena is actual authoring and development toolchains, which is what Flash packaged all in one single bundle.

I'm not trying to install 4 or 5 different things, along with all of their dependencies, just to make some 200MB thing that could have been done in 20MB and one program with Flash.

Part of the beauty of working with Flash, at least as a newcomer or someone who leaned more towards graphics/animation than code, came down to a couple of main points:

- Code was *inside* MovieClips (in Flash [almost] everything was a MovieClip, basically a timeline of frames). Code was attached to frames. When the playhead entered the frame, the script would run. Some of us who started as designers later leaned heavily into the code, but even those who were more comfortable sticking to the visual side of things would end up with a little grab bag full of scripts/snippets that they could just copy/paste into a frame and tweak without getting too bogged down with code. Even at a very simple level (if somethingsomething jump to frame 20, else loop back to frame one) this added a dimension of control and interactivity. Crucially, it was implemented well and very simple to understand.

- Everything was nested. MovieClips within MovieClips. Timelines within timelines. Simple behaviours could be stacked up and lead to natural-feeling complexity just due to this nesting.

Of course these things can be implemented today too, and other tools have and do implement versions of them. But there are often just 1 or 2 levels of abstraction too much, enough to put off some kinds of minds, or people at certain levels of experience. The thing about the Flash experience was that it all felt so fluid and intuitive. Direct. Learning it was fun.

Animate (as far as I remember) did keep those paradigms I mentioned. The timelines were still there, the drawing/animation tools too. But something somehow goes wrong in the translation to modern web tech. If it didn't, people would have just carried on using Flash, outputting JS/HTML instead of SWFs and nobody would have noticed.

A lot of the above is testament to Macromedia and linked to their other software, Director (similar to Flash but aimed more at desktop and 'interactive CDs'). They made software that was a joy to use. To give them their dues, Adobe pushed it further. Also their market dominance meant if you wanted to get into this web stuff and make cool things, Flash was *the* (only, really) way to do it. Which makes me think it may have been a time and place thing, which we won't get back. The modern web and range of options maybe makes it too diffuse, harder for something new to catch on. I hope I'm wrong.

As others have said here though, maybe stuff like MineCraft and Roblox are filling a similar conceptual gap for different generations and I'm just old and nostalgic.

You would start out drawing, get tired of the repetitive parts, and learn to automate them. Eventually, you end up with an FLA file that's just an asset library and a reference to a script.

Plus, it had the most intuitive vector editor I've ever used.

It will be interesting to see if this project ends up working more like AS2 or AS3. AS2 gamedev was a real mess, but it sure was great for the simplest things.

The most frustrating issues that pop up are usually library/API conflicts. I work with Gymnasium or PettingZoo and Rlib or stablebaselines3. The APIs are constantly out of sync so it helps to have a working environment were libraries and APIs are in sync beforehand.

I do use the Feynman Technique if I come across something interesting and try to explain it on paper. So if I was using it just for work, I'd probably do that. Something like "Spec driven development (Github Spec Kit and similar toolkits) is essentially a bunch of md files that provide more context for agents. There are some scripts that provide scaffolding, having agents write the md uses a lot of tokens so writing them manually after the scaffold is generated makes more sense. Try with a small project."

Love the movie, got a spray can and sprayed my whole keyboard army green after watching it then realized I can't 10 finger type. What a golden age of interesting young people in computer security. Roughly one year later (iirc), I read "Smashing the Stack for Fun and Profit" which might have been my most influential IT related read. It's probably tied with "Man-Computer Symbiosis" :)

1) Uptime (though this could be partially alleviated by retries)

and most of all:

2) "Trust"/"Spam score"

It's the main reason to use Sendgrid, AWS, Google, etc. Their "value" is not the email service, it's that their SMTP servers are trusted.

If tomorrow I can just send from localhost instead of going through Google it's fine for me, but in reality, my emails won't arrive due to these filters.

See jwz's struggles with hosting his own email. (Not linking to his blog here with HN as the referrer...)

With email, the 800 lb gorillas won, and in the end it didn't even solve the spam problem.

So a 20 pound monkey can also throw around some weight. To be fair I only use it for personal stuff its probably different if you need enterprise scale l.

I have a 15+ year old Gmail account that I've used everywhere. Spam has been a non issue since 15+ years ago.

The only Gmail accounts that are "overrun by spam" are those of people subscribing to lots of spammy newsletters and then not knowing how to unsubscribe from them (or figuring they'd stay subscribed in case the next newsletter is the Magical One™). But that's 100% self inflicted and you can't save those people with any technical solution.

Email spam isn't a day to day problem for Gmail (at least) since Bayesian email filtering was first implemented.

But yes, the “trust / spam score” is a legit challenge. If only device manufacturers were held liable for security flaws, but we sadly don’t live in that timeline.

Even if your "self hosting" is renting a $5/month VPS, some spam lists (e.g. UCEPROTECT) proactively mark any IP ranges owned by consumer ISPs and VPS hosting as potential spam. I figured paying fastmail $30/yr was worth never having to worry about it.

I had quite a bit of success with it and of course, DKIM and the other measures you can take some years back.

For personal emails, I don't think I had any which fed straight into spam.

e.g. you spend a lot of money to show that you are a legitimate entity or you pay less money to rent something that shows you are connected to said entity.

Maintenance is probably my number one reason for giving up on projects where I'm responsible for feeding the pet.

Without some kind of federation or centralization, it seems hard to distinguish a hobbyist from a spammer if both of them are using a plug-and-go. Forcing that responsibility into the hands of Google, Zoho, and Microsoft seems like the best compromise, unfortunately.

(Back then email still worked from residential IP addresses, and wasn't blocked by default)

No amount of LLM usage is going to change them into full stack vibe coders who moonlight as sysadmins. I just don't see it happening.

Not until, that is, a new generation, that has grown accustomed to the tech, takes over.

Until then the current SMBs will for the most part fulfill their IT needs from SaaS businesses (of which I think there will be more due to LLMs lowering the barrier for those of us who feel confident in our coding and sysadmin skills already).

These are real risks to these companies.

Your in-house teams can build replacements, it's just a matter of headcount. With Claude, you can build it and staff it and have time left over. Then your investment pays dividends instead of being a subscription straight jacket you have to keep renting.

I think there's an even faster middle ground: open source AI-assisted replacements for SaaS are probably coming. Some of these companies might offer managed versions, which will speed up adoption.

Lets take Figma as an example, Imagine you have 1000 employees, 300 of them need Figma, so you are paying 120k per year in Figma licenses. You can afford 1 employee working on your own internal Figma. you are paying the same but getting 100x worst experience, unless your 1 employee with CC can somehow find and copy important parts of Figma on his own, deploy and keep it running through the year without issues, which sounds ludicrous.

If you have less than 1000 employees it wouldnt even make sense to have 1 employee doing Figma

I mean in an example that almost happened... "you are paying 120k per year in Figma licenses, Adobe buys it, you are paying 500k per year in Figma licenses"

At least up until the point of vibe coding it was still worth the SaaS provider charging at least as much if not slightly more than you doing it yourself because most businesses weren't going to anyway.

So you end up spending the money elsewhere? with exploratory design you can easily spend 10k a month on these models as a company of 1000, thus completely losing any monetary savings. Anyway you look at it, Saas worked because costs were spread out and low enough to not optimize it too much.

I mean if we want recent examples just look at tailwindui since it's technically a SaaS.

This is a terrible example. Show me someone ripping out their SAP ERP or SalesForce CRM system where they're paying $100k+ for a vibe coded alternative and I'll believe this overall sentiment.

Just because it cannot be done today, doesn't mean there is not a real appetite in large enterprises to do exactly this.

Without naming names, I know of at least one public company with a real hunger for exactly this eventuality.

They are just hearing the promise that AI will allow them to build custom software that perfectly melds to their needs in no time at all, and think it sounds great.

I suspect the early adopters who go this route are going to be in for a rude awakening that AI hasn’t actually solved a lot of hard problems in custom software development.

Of course, once AGI is available (if it is ever) everything changes. But for now someone needs to have the deep expertise.

Hunger or actually putting real investment against it? I'll wait.

I cannot imagine an SMB or fortune 500 ripping out Salesforce or SAP. However, I can see a point-tool going away (e.g., those $50/mo contracts which do something tiny like connect one tool to another.)

That means to keep making money they need keep selling new people. According to them, their only marketing channel was the Tailwind docs, AI made it so not nearly as many people needed to visit the tailwind docs.

If they had gone with the subscription SaaS model, they'd probably be a little better off, as they would have still had revenue coming in from their existing users.

How is it in any way B2B? At most B2C + freelancers / individuals / really small SME.

It didn't have any clues a med/large B2B would look for e.g. SSO, SOC2 and other security measures. It doesn't target reusability that I as a B would want. The provided blocks never work together. There aren't reusable components.

Tailwind UI or now Tailwind Plus is more like vibe coding pre-AI.

Now attempt the same with Zoom, I suspect vibe coding will fall down on a project that complex to fit the mental model of a single engineer maintained a widely used tool

It used to be that your new b2b product has to try and displace a spreadsheet. Now it has to displace an agent.

I’ve talked to many non engineering managers that love Jira, love the reports, the way they can see work flows, do intake etc.

Engineers and even alot of engineering managers loathe it, largely, but I think we’re the collective afterthought

Also, FWIW, a lot of pain people have with Jira is self inflicted by the people who setup the instance and how it works, vs vanilla Jira

I only mean this all to be fair to Atlassian, that not all issues with Jira derive from anything they’re doing specifically

(this is even granting that AI is a 10x speedup for developers, which I don't agree with and no-one has shown)

This is pretty much what blacksmith.sh does -- GitHub Actions but it's on faster and cheaper hardware. I'm sure they spend non-trivial amounts on marketing but "X but much cheaper" doesn't sound like a difficult sale.

(edit) And the design, sadly, can be as simple as "rip-off bigger competitor" -- of course if one day you are the big competitor because you "won" in the market, you'll need to invest in design, but by then I guess you'll have the money?

This hard part when you're doing in house stuff is getting a good spec, ongoing support, and long term maintenance.

I've gone trough development of a module with a stakeholder, got a whole spec, confirmed it, coded it, launched it, and was then told it didn't work at all like what they needed. It was literally what they told me... I've said 'yes we can make that report, what specific fields do you need' and gotten blank stares.

Even if you're lucky and the original stakeholder and the code are on the same page, as soon as you get a coworkers 'wouldnt it be nice if...' you're going to have a bad day if it's hand coded, vibecoded, or outsourced...

This has always been the problem, it's why no-code never _really_ worked, even if the tech was perfectly functional.

Not trying to hype AI, but we are in an interesting transitional period.

related: i'm thinking these vibe coded solutions are revealing to everyone how important and under appreciated good UX is when it comes to implicit education of any given thing. Like given this complex process, the UX is holding your hand while educating you through a workflow. this stuff is part of software engineering yet it isn't "code".

B2B SaaS is a VULN. They get bought out, raise prices, fail. And then you have extremely large amounts of unplanned spend and engineering to get around them.

I remember when we replaced the feature flags and metrics dashboards with SignalFX and LaunchDarkly. Both of those went sour. SignalFx got bought out and quadrupled their insane prices. LaunchDarkly promised the moon, but their product worked worse than our in-house system and we spent nearly a year with a couple of dedicated headcount engineering workarounds.

Atlassian, you name it - it's all got to go.

I just wish I could include AWS in this list. Compute and infra needs to be as generic as water.

If you're working at SaaS, find an exit. AI is coming for you. Now's a great time to work on the AI replacement of your product.

You get the same shocks with internal teams, just from other causes. And you have to manage them.

I'm sure you've only ever seen brilliant software created by internal software teams?

I have no idea how you are spending "large amounts" of unplanned spend on Saas products. Every company I worked for had Saas subscription costs being under 1% of capex. Unless you add AWS, which is actually "large amounts" but good luck vibe coding that.

We had an in-house system that worked, but it was a two pizza team split between time series and logging. "Internal weirdware" got thrown around a lot, so we outsourced to SignalFx for a few years. It was bumpy. I liked our in-house system better, and I didn't build it.

Splunk then buys SignalFx and immediately multiplies the pricing at a conveniently timed contract renewal. Suddenly every team in the company has to plan an emergency migration.

Your supply chain is messed up. You need sign longer contracts with price guarantees.