HackerTrans
トップ新着トレンドコメント過去質問紹介求人

DominoTree

no profile record

投稿

Rust, Swift, and Zig for the 1984 Macintosh 128k

github.com
3 ポイント·投稿者 DominoTree·先月·0 コメント

Ru-ST: A Rust Toolchain for Atari ST Targets

github.com
2 ポイント·投稿者 DominoTree·2 か月前·0 コメント

コメント

DominoTree
·4 か月前·議論
> This allowed devices to evade monitoring, transmit untracked data outside secure channels, and potentially enable leaks or hacks

Pretty sure that was the point
DominoTree
·6 か月前·議論
JPEG 15 Pro Max
DominoTree
·6 か月前·議論
## Recommendation

Do not run a telnetd server at all.
DominoTree
·6 か月前·議論
For a window of a few minutes until the key gets automatically revoked

Assuming that they took any of your files to begin with and you didn't discover the hidden prompt
DominoTree
·6 か月前·議論
I still don't have IPv6 at home in the middle of San Francisco with Google Fiber / Webpass and have to egress through an HE.net tunnel like it's 2002 again
DominoTree
·8 か月前·議論
Trusting an AI to write an RBAC system feels like asking for trouble
DominoTree
·8 か月前·議論
Traditionally I've seen these adapters primarily used to pass binaries for other architectures to QEMU and similar.

Years ago on FreeBSD I created a "Volkswagen mode" by using the similar `imgact_binmisc` kernel module to register a handler for binaries with the system's native ELF headers. It took a bit of hacking to make it all work with the native architecture, but when it was done, the handler would simply execute the binary, drop its return code, and return 0 instead - effectively making the system think that every command was "successful"

The system failed to boot when I finally got it all working (which was expected) but it was a fun adventure to do something so pointless and silly.

It would be a similarly clever place to maintain persistence and transparently inject bytecode or do other rude things on FreeBSD as well
DominoTree
·8 か月前·議論
I have a GitHub action that uses an OAuth token to provision a new key and store it in our secrets manager as part of the workflow that provisions systems - the new systems then pull the ephemeral key to onboard themselves as they come up

It can get especially interesting when you do things like have your GitHub runners onboard themselves to Tailscale - at that point you can pretty much fully-provision isolated systems directly from GitHub Actions if you want