HackerTrans
TopNewTrendsCommentsPastAskShowJobs

Kaxo

no profile record

comments

Kaxo
·قبل 10 أيام·discuss
The seccomp-BPF rules seem almost unusably strict. What is this even designed to be used to run?
Kaxo
·قبل شهرين·discuss
In chrome at least asm.js is(/was?) handled by the wasm engine anyway. They essentially did that transpiling at load time.
Kaxo
·قبل 7 أشهر·discuss
Yeah, doing it with OpenWRT and PBR is definately much simpler than this approach. However by using hard-coded IP addresses you are at risk of breakage if they change in the future.

Also fastly-hosted services are a bit awkard to configure IP ranges to cover whole blocks as they seem to not use normal CIDR-blocks for different customers.

But you use PBR's ntfset functionality to have your dns server automatically update a set whenever an DNS entry is resolved, then set the policy rules based on the set.