HackerTrans
TopNewTrendsCommentsPastAskShowJobs

byteshock

no profile record

Submissions

Scientist Claims Quantum RSA-2048 Encryption Cracking Breakthrough

tomshardware.com
11 points·by byteshock·3 lata temu·6 comments

comments

byteshock
·3 lata temu·discuss
For the query string, you don’t have to implement your own DSL. Elasticsearch supports it out of the box. You could POST a JSON object to “/_search” but you can also do a GET with the “q” query parameter. Documentation: https://www.elastic.co/guide/en/elasticsearch/reference/curr...

In the Golang library you can use the “Search.WithQuery” option. This means you don’t have to construct a JSON request body.

Here’s an example: https://github.com/taythebot/archer/blob/main/pkg/elasticsea...
byteshock
·3 lata temu·discuss
Very interesting product! How does this compare to something like Nebula? Have you done benchmarks against other solutions? If i remember correctly, Nebula implements its own protocol and underperforms compared to Wireguard. Is this the same case?

Looking forward to trying it out!
byteshock
·4 lata temu·discuss
Awesome, thank you for the reply. Will try out Portmaster again!
byteshock
·4 lata temu·discuss
I remember trying out Portmaster on Windows earlier this year. I think Portmaster was running a local DNS server to see what connections were being made. This interfered with my VPN, Mullvad, which was trying to use a remote DNS server.

Does Portmaster still require a local DNS server? I’ve been an avid user of Glasswire for years and it works flawlessly with my VPN. But i would love to switch to a open source alternative.
byteshock
·4 lata temu·discuss
I think it’s because SPN uses a different IP/node per connection you make. DNS leak detection tests will ask your browser to resolve unique subdomains. If the DNS server that requests the lookup is different from your connecting IP to the website, they will say you have a DNS leak.

https://security.stackexchange.com/questions/42752/how-does-...
byteshock
·4 lata temu·discuss
I’m confused on why secret management considered secure. Maybe I’m missing something.

Why is letting a third party managed your secrets is secure? So if that third party gets compromised, they now have access to all your secrets. Amazon or other company employees can also view your secrets.

If your server gets compromised, the secrets that are accessible via that server are also compromised. Isn’t that the same impact as just keeping the secrets on your server? Maybe worse if your permissions are broad. You’re merely adding an extra step to get the secret from your secret management.
byteshock
·4 lata temu·discuss
But if they have the decrypted secrets, do they really need the key?
byteshock
·4 lata temu·discuss
I’m not sure I understand the value of reporting this to Microsoft? Wouldn’t it be better to submit an online tip to law enforcement? Is Microsoft doing law enforcement activity now?
byteshock
·4 lata temu·discuss
The website says its secure and private, but your privacy policy contradicts it. Seems like you don’t collect usage data, but the ad providers do. Is it right to make such a privacy claim?

Privacy Policy: https://tab.gladly.io/privacy/

“Ad targeting, selection, and delivery: When you use our Services, third parties that provide advertising, to the Services, may collect or receive information about you including through the use of cookies. These third parties may use your information to provide you with advertising that is based on your interests and to measure and analyze ad performance, on our Services or other websites or platforms, and combine it with information collected across different websites, online services, and other devices. These third parties' use of your information will be based on their own privacy policies. You can opt out of interest-based targeted advertising for some advertising partners here.”
byteshock
·4 lata temu·discuss
Here are the financial reports https://tab.gladly.io/financials/
byteshock
·4 lata temu·discuss
If I need to encrypt a file for quick sharing, I’ll use gpg. Encrypt: gpg -c file.zip

Decrypt: gpg file.zip.gpg

However, for my personal files on my computer, I use a Veracrypt container with a strong password and custom pin.
byteshock
·4 lata temu·discuss
If someone wants to watch Russian propaganda or RT, they should be free to do so. Just like you are free to browse western media sites.

This choice should be up to the individual and their beliefs.
byteshock
·4 lata temu·discuss
Would using a library like Hyperscan improve Go's regex performance?

Reference: https://www.hyperscan.io/
byteshock
·4 lata temu·discuss
Doesn’t Cloudflare use Hcaptcha now? They dropped Google because of the cost.
byteshock
·5 lat temu·discuss
Can someone explain to me why they are mad? Is it because Mozilla is asking for donations on Twitter? Or it it because Mozilla is accepting crypto?

I don’t think a company accepting crypto as a form of donation is a bad thing tbh. Seems like they’re just trying to allow more people to donate.
byteshock
·5 lat temu·discuss
A solution could be to use Cloudflare Worker scripts. You would store valid file names in their kv storage and then check if the incoming request is valid before forwarding it. This way you wouldn’t need to spend more money on infrastructure. Another good solution is to use Cloudflare’s advanced rate limiting rules. You can block users who hit too many 404 requests within a certain time frame. But this requires a business or enterprise plan.

Spending more money on increasing infrastructure rather than reading through Cloudflare’s documentation and offerings seems kind of a waste…
byteshock
·5 lat temu·discuss
What about Roundcube with a calendar plugin?
byteshock
·6 lat temu·discuss
Thank you for your reply. Your deployment seems to be a lot more streamlined and simpler than Stackpath at the moment. That just might be the deciding factor for me and other developers!

I wish you and your team the best of luck!
byteshock
·6 lat temu·discuss
Adding onto my last comment, is Stackpath container pricing cheaper than yours at the moment?

I understand this might be due to Stackpath being a larger company and owning hardware instead of renting it. But the price for traffic and compute seem to be cheaper. There is also no mention of how much you charge for storage on the pricing page.

I’m looking to deploy my next app onto one of these platforms and would like to know the price differences!
byteshock
·6 lat temu·discuss
Fascinating product! I was wondering if there are any other products that are similar to yours? Other than serverless platforms such as Cloudlfare Workers or AWS Lambda.

I know Stackpath has been offering this kind of thing for a while. So how would your product compare to theirs? Since Stackpath has a well established cdn network already.