HackerTrans
TopNewTrendsCommentsPastAskShowJobs

kalaksi

517 karmajoined 3 years ago

Submissions

Jolla Trying Again to Develop a New Sailfish OS Linux Smartphone

phoronix.com
2 points·by kalaksi·7 months ago·1 comments

Android Update Patches Critical Remote Code Execution Flaw

securityweek.com
4 points·by kalaksi·8 months ago·1 comments

comments

kalaksi
·3 days ago·discuss
> I don't need e2ee for group messages and it brings too much complexity with it.

E2EE is not mandatory and public rooms don't usually use it.
kalaksi
·12 days ago·discuss
Don't bigger companies also often benefit from scale in multiple ways so it gets harder and harder for newcomers to compete? And if a newcomer does manage to get a foothold, it might get bought.
kalaksi
·27 days ago·discuss
And at least in Chromium project, half of those memory safety issues are use-after-free: https://www.chromium.org/Home/chromium-security/memory-safet...
kalaksi
·last month·discuss
Personally, I haven't had any serious leaks that I know of so I've mostly suffered from increased spam and scam attempts (I know they were a result of a leak).

One time there was a leak from a university database and as a result there were a few news articles over the years about people that had their identity stolen likely due to that leak. It's not just credit card charges. They have had loans taken in their names, stuff bought on store credit or something (nowadays that's not so easy), stuff stolen from library in their name...

They had to deal with the fallout for years, always fearing that there's a new letter waiting at home regarding some unpaid expense or from debt enforcement agency that they have to contact and try to make it go away. It shouldn't be too hard if you have an open case with the police but it's not always that easy.

Also, if the leaked data is sensitive (e.g. private conversations, records about mental health etc.), you can face extortion or the data may get published.

One other thing that I know of personally is that victims of harassment very much don't like to have their contact info leaked to the harasser.
kalaksi
·last month·discuss
The paper actually says: "We find that all context files consistently increase the number of steps required to complete tasks. LLM-generated context files have a marginal negative effect on task success rates, while developer-written ones provide a marginal performance gain."

"Overall, our results suggest that context files have only marginal effect on agent behavior, and are likely only desirable when manually written."
kalaksi
·last month·discuss
For large changes that are not straightforward and include architectural decisions, I wouldn't trust Claude enough to not read most of the code myself. I'll have to read it to be able to understand it and ask about the decisions in detail anyway. And when I start to understand it, it's not uncommon to find out that the solution can be improved and simplified in many places, and after iterating, 25-30% of code disappears.

And trying to just hand-wave it to Claude, to somehow "improve it" or "simplify it", without detailed questions hasn't been very successful. It can work for some things, though.
kalaksi
·2 months ago·discuss
Yeah, I shouldn't have mentioned C++, it was a bad example.
kalaksi
·2 months ago·discuss
Maybe I'm misunderstanding something but non-GC language doesn't mean you have to do memory management manually? I mean, for example, in Rust (or modern C++), it's basically automatic. There is no mental tax or catastrophic mistakes as far as I know.
kalaksi
·2 months ago·discuss
I don't think that's it
kalaksi
·2 months ago·discuss
If not using any esoteric features, it's more human readable (imo), easier to write, can have comments and has some useful features like different kind of multi-line values. JSON is valid YAML, by the way.
kalaksi
·2 months ago·discuss
Can you elaborate a bit on how that looks like in practice?
kalaksi
·3 months ago·discuss
> It’s really sad to see how quickly Hacker News, of all places, is jumping head first into welcoming age restrictions and bans with barely a passing thought to what it means.

I'd avoid such generalizations. It's a divisive topic, but from what I've seen here, there's always lots of criticism (regarding implementation at the minimum) in the comments and it definitely isn't clear that most would be jumping head first into anything.
kalaksi
·3 months ago·discuss
1. The pipeline is simple to split or cut entirely, though. No reason to grow it into a monstrosity, but many reasons to not do it. This problem sounds similar to growing a function too much.

2. I agree in general when talking about more complex operations. Simple transformation and filtering rarely needs intermediate variables for readability or debugging. And the naming of result variable already describes the final collection.

3. Never had to deal with this kind of code but I haven't used Kotlin.
kalaksi
·3 months ago·discuss
> Yeah, it’s more lines. But each step is just sitting there. No decoding required.

I actually think the first code block is easier to read. It's a familiar (to me) and simple pattern that is quick to read. I don't get how it would require more "decoding" than the second example which is more disjointed and needs more "parsing" for such a trivial case. Maybe it's about what you're used to?

I agree there are downsides to chaining. With more complex operations it can complicate debugging, and readability can suffer, so chaining is not a good fit there.
kalaksi
·3 months ago·discuss
> Especially small and independent artists should absolutely avoid any software that introduces additional risk of project failure as one such crash scenario at an advanced project state has a high potential of total destruction.

I can't really comment on kdenlive, but this sounds kind of overly dramatic to me. I mean, I hope you save and take regular snapshots/backups in case your disk, RAM or just human error destroys anything substantial.
kalaksi
·3 months ago·discuss
Any idea if ESD can damage the monitor over time?
kalaksi
·3 months ago·discuss
I actually have been lucky since even my laptop from 15 years ago already worked well with Linux and suspend while Windows didn't (wasn't OEM Windows anymore). I have also had multiple desktops that have _mostly_ had no issues with suspend either: only nvidia has given me grief on some setups when sometimes the screen would be blank when waking up, but I figured out workarounds for that.
kalaksi
·3 months ago·discuss
> Desktop Linux is not useless, but it is really just sub-par compared to Windows.

Each to their own. My experience is the opposite (I use KDE). I have to use Windows at work and it's always such a pain. At least Windows 10/11 finally has multiple workspaces natively and some keyboard shortcuts for managing windows (ironic), but I would have preferred to stay in Windows 10.

Now Windows doesn't even support proper suspend anymore and it won't stay in the "modern standby" either. Constantly waking up and doing god knows what with fans screaming. When I take a look what it's doing, task manager claims that nothing resource intensive is going on. I'm guessing it's hiding some internal processes. It calms down when I put it to sleep again. Sorry for the rant, I better stop before I start.
kalaksi
·3 months ago·discuss
You'll have to be more specific what kind of "privacy claims" you're talking about. Proton is definitely a lot more private than, say, Google. But, as always, you'll have to trust the party delivering the binaries you run. Also, any company operating legally, have to co-operate with court orders etc., but afaik they try to push back
kalaksi
·3 months ago·discuss
And then everyone disagrees what counts as luxury in software.