HackerTrans
TopNewTrendsCommentsPastAskShowJobs

hnjst

no profile record

comments

hnjst
·2 lata temu·discuss
Farage cage maybe?
hnjst
·3 lata temu·discuss
Leslie didn't steal his Turing award ;)
hnjst
·3 lata temu·discuss
On the contrary, I'd start without any remote.
hnjst
·3 lata temu·discuss
https://github.com/bigscience-workshop/petals
hnjst
·3 lata temu·discuss
https://discord.gg/dwXDHMGY for example.
hnjst
·4 lata temu·discuss
https://f-droid.org/en/packages/com.menny.android.anysoftkey...
hnjst
·4 lata temu·discuss
I'd ask myself another set of questions: - can they extract information from conversations and exfiltrate it in a stealthy or obfuscated enough way so that they won't be noticed or have plausible deniability - do they have incentives to do so (assuming the absence of liability described above) - do they have a track record on related topics that makes you confident in the fact that they wouldn't act that way

My answers being yes - yes - no, the question of 'do they listen to target the ads they try to make me display' is pretty irrelevant to me. I can't trust them not to nor check reliably if they do.

If you try to address a different question such as 'do they really encrypt reliably to protect your conversations from being snooped on without their authorization', the threat analysis may differ. In that case they have incentives aligned with yours and are probably faithfully trying to effectively protect your/their data.

At the end, I'd estimate the probability of the scenario and how I value the consequent loss of privacy. Then accept/mitigate/refuse the risk accordingly.
hnjst
·4 lata temu·discuss
Don't forget checking for the evil bit too! https://www.rfc-editor.org/rfc/rfc3514
hnjst
·4 lata temu·discuss
I'm still completely baffled that we nowadays almost all have in our pocket a device able to run something like https://f-droid.org/en/packages/jp.yhonda/.
hnjst
·4 lata temu·discuss
Currently in a large private bank: Keepass, hardware tokens in physical safes accessed supervised by another team, Hashicorp Vault, a few HSMs and managed key vaults for the cloud workloads.

Paranoid levels of security are relevant in some cases but unnecessary in others. Physical security and organisational processes are also an important complement to technological solutions.
hnjst
·4 lata temu·discuss
I recently tried https://github.com/yewstack/yews that looks very much like "React in Rust". It is web oriented through WASM compilation and integration with web technologies, Tauri can be used to bridge the gap and use it for desktop apps but it is probably an excessively complex and impure assembly for that goal.
hnjst
·4 lata temu·discuss
For theoretical foundations, I'd recommend reading about the FLP result (https://dl.acm.org/doi/pdf/10.1145/3149.214121), the reduction of the state machine replication problem to consensus (https://dl.acm.org/doi/pdf/10.1145/78969.78972) and the different consistency criteria.

To climb on the shoulders of giants you can dive into the work of (incomplete list, irrelevant order but these have been eye openers to me) :

- Leslie Lamport

- Maurice Herlihy

- Eli Gafni

- Rachid Guerraoui

- Michel Raynal

- Petr Kuznetsov

- Hagit Attiya

- Sergio Rajsbaum

- Nancy Lynch
hnjst
·4 lata temu·discuss
WET -> Write Everything Twice (before premature factorization).
hnjst
·4 lata temu·discuss
I've been exploring this exact possibility a few days ago. The support for Suricata's rules in AWS Firewall is pretty limited though (https://docs.aws.amazon.com/network-firewall/latest/develope...).
hnjst
·4 lata temu·discuss
There is a generalization allowing asymptotically optimal entropy extraction from Markov chains traces that doesn't require transition weights knowledge (like Von Neumann trick doesn't require bias knowledge).

https://ieeexplore.ieee.org/document/1684974

Shameless plug of a paper on related topics: https://link.springer.com/article/10.1007/s00446-017-0311-5
hnjst
·4 lata temu·discuss
> I Learned French in 12 Months

That's not so difficult I guess, here even babies do so.
hnjst
·5 lat temu·discuss
I love "smart" programming languages and gladly write in Rust when it makes sense. However Go wins the bulk of my language picks these days, marginally thanks to the efficient tooling and complete standard library but essentially because of how easy it is to read / review / integrate / patch external code without the need to rediscover authors' specific styles and ways of doing things.
hnjst
·5 lat temu·discuss
Understanding low level architecture of that time (and early memory management) and first steps of the boot process is definitely something that has been useful to me since then. DOS batch files scripting no so much...
hnjst
·5 lat temu·discuss
My childhood story too. We ended pretty knowledgable, effective and borderline dangerous when the watered down systems arrived later.

I'd put in the same category the edition of saved games to change your amount of money to FFFFFF or the epic shenanigans required to setup a LAN party.