HackerTrans
TopNewTrendsCommentsPastAskShowJobs

harporoeder

no profile record

Submissions

Anthropics Buffa: a Rust implementation of protobuf

github.com
3 points·by harporoeder·4 miesiące temu·0 comments

Personal Identification Secure Comparison and Evaluation System

en.wikipedia.org
2 points·by harporoeder·4 miesiące temu·0 comments

Passwords and Power Drills

google.github.io
121 points·by harporoeder·9 miesięcy temu·29 comments

Offset Geometric Contact (OGC)

graphics.cs.utah.edu
17 points·by harporoeder·10 miesięcy temu·3 comments

Finra Approved Amendments for Pattern Day Trading Rules

finra.org
1 points·by harporoeder·10 miesięcy temu·0 comments

Random Mosaic – Detecting unauthorized physical access with colored rice (2021)

dys2p.com
92 points·by harporoeder·10 miesięcy temu·14 comments

Unitree G1 has mastered more quirky skills [video]

youtube.com
16 points·by harporoeder·10 miesięcy temu·6 comments

Using keepassxc-CLI as Git merge driver

200ok.ch
2 points·by harporoeder·10 miesięcy temu·0 comments

Code Verify: An open source browser extension for verifying code authenticity

engineering.fb.com
60 points·by harporoeder·2 lata temu·28 comments

comments

harporoeder
·4 miesiące temu·discuss
A default container seccomp profile will let you do quite a few things but you can use a different profile some json and limit to just a few system calls if you want such as doing IO on open FDs without the ability to open them. I think the runtime opens the FDs before the child process starts and are inherited.
harporoeder
·4 miesiące temu·discuss
This is essentially what containers are. Bubblewrap / Docker / Podman. I think the primary issue is very few applications on Desktop systems are actually designed with sandboxing in mind unlike say something on a phone.
harporoeder
·8 miesięcy temu·discuss
The killer application in this case is ATAK.

https://en.wikipedia.org/wiki/Android_Team_Awareness_Kit