HackerTrans
TopNewTrendsCommentsPastAskShowJobs

harporoeder

no profile record

Submissions

Anthropics Buffa: a Rust implementation of protobuf

github.com
3 points·by harporoeder·il y a 4 mois·0 comments

Personal Identification Secure Comparison and Evaluation System

en.wikipedia.org
2 points·by harporoeder·il y a 4 mois·0 comments

Passwords and Power Drills

google.github.io
121 points·by harporoeder·il y a 9 mois·29 comments

Offset Geometric Contact (OGC)

graphics.cs.utah.edu
17 points·by harporoeder·il y a 10 mois·3 comments

Finra Approved Amendments for Pattern Day Trading Rules

finra.org
1 points·by harporoeder·il y a 10 mois·0 comments

Random Mosaic – Detecting unauthorized physical access with colored rice (2021)

dys2p.com
92 points·by harporoeder·il y a 10 mois·14 comments

Unitree G1 has mastered more quirky skills [video]

youtube.com
16 points·by harporoeder·il y a 10 mois·6 comments

Using keepassxc-CLI as Git merge driver

200ok.ch
2 points·by harporoeder·il y a 10 mois·0 comments

Code Verify: An open source browser extension for verifying code authenticity

engineering.fb.com
60 points·by harporoeder·il y a 2 ans·28 comments

comments

harporoeder
·il y a 4 mois·discuss
A default container seccomp profile will let you do quite a few things but you can use a different profile some json and limit to just a few system calls if you want such as doing IO on open FDs without the ability to open them. I think the runtime opens the FDs before the child process starts and are inherited.
harporoeder
·il y a 4 mois·discuss
This is essentially what containers are. Bubblewrap / Docker / Podman. I think the primary issue is very few applications on Desktop systems are actually designed with sandboxing in mind unlike say something on a phone.
harporoeder
·il y a 8 mois·discuss
The killer application in this case is ATAK.

https://en.wikipedia.org/wiki/Android_Team_Awareness_Kit