HackerTrans
TopNewTrendsCommentsPastAskShowJobs

s_ting765

146 karmajoined il y a 4 ans

Submissions

[untitled]

1 points·by s_ting765·il y a 7 mois·0 comments

comments

s_ting765
·il y a 10 jours·discuss
Same here. Even though my homelab runs on a VPS. https://github.com/rhee876527/expert-octo-robot
s_ting765
·il y a 12 jours·discuss
Sure. After you have located root and the boot partition which is what this addresses.
s_ting765
·il y a 13 jours·discuss
Partition autodiscovery is pretty neat. I did my archlinux install with it using this guide[0]. I have never touched /etc/fstab and I have had zero to worry about corrupting a boot with wrong fstab entries.

[0] https://walian.co.uk/arch-install-with-secure-boot-btrfs-tpm...
s_ting765
·il y a 17 jours·discuss
Pausing software updates by X days old is a hack at best for specific distribution platforms (npm), not a general security recommendation.
s_ting765
·il y a 25 jours·discuss
You can do the same from an USI made from mkosi (mainstream distros support) with kernel boot parameter systemd.volatile=overlay. https://github.com/rhee876527/UKIfy-Xubuntu
s_ting765
·il y a 28 jours·discuss
Well, open source AI is mostly coming from China. Title should have been China must win.
s_ting765
·le mois dernier·discuss
This decision tree doesn't make much sense to me. Why you someone forego performance today in favor of adding a completely unnecessary network layer to every DB query in order to "satisfy" future imaginary "scaling concerns"?
s_ting765
·il y a 2 mois·discuss
> Vladimir Fedorov is GitHub's Chief Technology Officer .... He currently serves on the board of Codepath.org, an organization dedicated to reprogramming higher education to create the first AI-native generation of engineers, CTOs, and founders.

I think I found the issue.
s_ting765
·il y a 3 mois·discuss
What makes you think simply throwing random crap on a home VPN network is secure?

Tailscale/Wireguard is overkill because it is not needed where access controls work fine which is true for the majority of the popular self-hosted apps. And you now have to install a VPN client/cert on every device you want to access your services from. That's a major oof.
s_ting765
·il y a 3 mois·discuss
Tailscale is an overkill solution. Opening ports 80 and 443 for a reverse proxy is enough security provided your apps don't have broken authentication. I've been doing this for years now.
s_ting765
·il y a 3 mois·discuss
Double checking Github actions does not mitigate threats from supply chain vulnerabilities. Forking an action moves the trust from a random developer to yourself. You still have to make sure the action is pulling in dependencies from trusted sources which can also be yourself depending on how far you want to go.
s_ting765
·il y a 3 mois·discuss
Pinning github actions by commit SHA does not solve the supply chain problem if the pinned action itself is pulling in other dependencies which themselves could be compromised. An action can pull in a docker image as a dependency for example. It is effectively security theatre. The real fix is owning the code that runs in your CI pipelines. Or fork the action itself and maintain it as part of your infrastructure.
s_ting765
·il y a 3 mois·discuss
Coding agents are like asking a genie for code. They will give you the code you ask for alright but you never know what kind of curse has been crontabbed for you.
s_ting765
·il y a 4 mois·discuss
It should have been FastAPI instead.
s_ting765
·il y a 4 mois·discuss
Interesting blog post. For what it's worth, I count 7 em-dashes used.
s_ting765
·il y a 4 mois·discuss
> Ptyxis: Your Container-Oriented Terminal for GNOME

> A modern terminal emulator built for the container era. Seamlessly navigate between your host system and local containers like Podman, Toolbox, and Distrobox with intelligent detection and a beautiful, responsive GNOME interface.

https://gitlab.gnome.org/chergert/ptyxis/-/blob/main/README....
s_ting765
·il y a 4 mois·discuss
I tried this out after getting annoyed for the 100th time by a recent bug in kgx/console that will occasionally fail to launch windows leaving incomplete windows as tabs.

Console has long since become abandonware pushing people towards ptyxis which is now the default gnome terminal. A damn shame considering console is basically complete software (the quality of software in gnome is on a downhill).

I would have given ptyxis a chance if they didn't take a basic terminal and added some fluff (features related to distrobox) on top of other annoying things I can't be bothered to remember about because I ended up removing the software every time I gave it a spin.

In just a few days I've been able to replace console with ghostty-nightly and I don't miss anything.
s_ting765
·il y a 4 mois·discuss
Ask the LLM to create for you a POC for the vulnerability you have in mind. Last time I did this I had to repeatedly make a promise to the LLM that it was for educational purposes as it assumed this information is "dangerous".
s_ting765
·il y a 5 mois·discuss
I revived a once popular Youtube frontend called Cloudtube. All the Youtube media url deciphering is still done by Invidious and I use it more like a frontend for invidious.

https://github.com/rhee876527/clean-youtube/
s_ting765
·il y a 5 mois·discuss
Opensuse have been working on making secure boot/TPM FDE unlock easy to use for a while now. https://news.opensuse.org/2025/11/13/tw-grub2-bls/