HackerTrans
TopNewTrendsCommentsPastAskShowJobs

9029

67 karmajoined 3 years ago

comments

9029
·4 days ago·discuss
You can replace it with a generic one to hopefully blend in https://madaidans-insecurities.github.io/guides/linux-harden...
9029
·7 days ago·discuss
Related: "How I made a 60fps Eink Monitor" https://www.youtube.com/watch?v=nHbA2-_qzH4
9029
·2 months ago·discuss
I'd recommend reading the post, it's not that long
9029
·2 months ago·discuss
Is it possible to reason or prove the correctness of an LLM?
9029
·2 months ago·discuss
Not gp but I really like the sound of my GK Kuntens and 7Hz Zero2s. Both have a rather V-shaped sound signature, some like it and some don't. Though unfortunately the Zero2s feel a bit uncomfortable in my ears when using them for longer
9029
·5 months ago·discuss
I'd guess the speed improvement in those cases likely came from learning a better technique, like touch typing and using more of your fingers. Afaik a lot, if not most, of the fastest typists are still on qwerty.
9029
·6 months ago·discuss
That "officially supported" comes with a huge asterisk though. Security bulletins for old android versions already only include backports of high severity patches. On top of that the device also gets no security patches for firmware or kernel, as the hardware and kernel are eol. The FP5 is also on an eol kernel after less than 3 years, not that they were providing kernel updates in the first place. https://discuss.grapheneos.org/d/24134-devices-lacking-stand...
9029
·6 months ago·discuss
I thought it worked just fine on LTSC 2021 (21H2)
9029
·6 months ago·discuss
I think it could be interesting to explore Universal Blue based distros such as Bazzite for this kind of use cases. The OS comes from a standard OCI container image, which means you can create your own customized one by layering changes on top of an upstream base image.

I feel bad for the unsolicited distro plug though especially since you already have a solution that works well and you are familiar with, but I thought it might still be useful to mention it. I'm not sure if uBlue would even be better vs your current setup. Seems like netboot would still be needed to get the latest version without an extra reboot.
9029
·6 months ago·discuss
It seems this vuln was already publicized in june, or is that interview from earlier?
9029
·6 months ago·discuss
> For a lot stuff on my local network I don’t want the hassle and there are loads of use cases in local networks for normal people to just have port 80 no certs on something like 192.x.x.x because there is no easy way to set up public certificates for that and I don’t want everything hostem on cloud - some stuff I want to still host for myself in my local network.

Tbh I don't see what's hard about this. All you need is an A record pointing to your 192.x.x.x, acme capable dns host and a modern reverse proxy. You can even use a free ddns service if you want. Wouldn't bother with this for development, but anything hosted for longer than a few days absolutely yes. Imo not getting browser warnings is alone worth the few minutes it takes nowadays.
9029
·6 months ago·discuss
> But also, rewriting history only works if you haven't pushed code and are working as a solo developer.

Weird, works fine in our team. Force with lease allows me to push again and the most common type of branch is per-dev and short lived.
9029
·7 months ago·discuss
I like that Zig allows using relaxed floating point rules with per block granularity to reduce the risk of breaking something else where IEEE compliance does matter. I think OpenMP simd pragmas can be used similarly for C/C++, but that's non-standard.
9029
·7 months ago·discuss
C++ lambdas can be used to achieve a similar result, not as pretty though https://isocpp.github.io/CppCoreGuidelines/CppCoreGuidelines... But in general I agree!
9029
·8 months ago·discuss
Tangential but funnily enough calling std::expected::error is ub if there is no error :D
9029
·8 months ago·discuss
This is exactly where Bazzite is convenient since it comes with the latest drivers (including 32-bit) out of the box.
9029
·8 months ago·discuss
I have used this setup for 6 years or so with KeePassXC and it's fine. Just being mindful of not editing stuff on other devices before the first one has had the chance to sync has been enough to avoid pretty much all sync conflicts. I have only had to resolve those a few times so far, iirc my android client was misconfigured at the time or something.

I still recommend Bitwarden for password management for any "laypeople" since it will just work. Also worth noting that the basic functionality is free.
9029
·8 months ago·discuss
Seeing such pivotal announcement be poorly vetted slop doesn't really inspire confidence in the quality of their product.
9029
·8 months ago·discuss
Do you have an opinion on the keyboard firmware ZMK? They seem to use LESC but MITM during pairing is still a concern: https://zmk.dev/docs/features/bluetooth
9029
·8 months ago·discuss
While we are at it, here are some more useful warning flags I have used: https://github.com/cpp-best-practices/cppbestpractices/blob/.... Some C++-only though, some are a bit opinionated (like -Wsign-conversion) and some useful C-only flags might be missing.

Few C-specific references I found just now, but haven't tried myself yet:

https://github.com/systemd/systemd/blob/0885e4a6e7ca93d3aef8... https://github.com/airbus-seclab/c-compiler-security

Also a good idea to regularly run the program with sanitizers, using them in tests is a good way to do that I think. Why not during development as well if the performance is acceptable for that specific program.