HackerTrans
TopNewTrendsCommentsPastAskShowJobs

unilynx

no profile record

Submissions

Ask HN: Has anyone adopted or seen adoption of RFC8959 secret-token?

5 points·by unilynx·w zeszłym roku·2 comments

comments

unilynx
·21 dni temu·discuss
Elastic/Opensearch uses GET requests with a body for search, which is complicated or forbidden (not exactly sure) with the HTTP spec. Not all HTTP clients are willing to submit a body with a GET.

So opensearch also allows you to POST search requests, but those are uncacheable

QUERY would fit here perfectly - it's probably trivial for opensearch to add but it will take some time for clients to catch up.
unilynx
·2 miesiące temu·discuss
The noise probably makes the lava lamp wall just as effective as pointing the camera at the Mona Lisa - the lamps themselves are not that unpredictable frame-to-frame.
unilynx
·3 miesiące temu·discuss
They were working on it since at least halfway March, because that's when MS got annoyed at AWS & OpenAI negotiating - https://www.datacenterdynamics.com/en/news/microsoft-conside...
unilynx
·3 miesiące temu·discuss
> But I like this review of techniques, even the simplest ones are very effective, that surprised me.

because harvesters don't care until one technique gets massive use. if you come up with a unique but simple enough scheme for your sites and keep a few dozen email addresses out of their reach.. they've still gathered a million addresses. it's not really worth their effort to get the last 0.0001% of extra email addresses

so it's best to just not advertise your solution and make sure it doesn't get n any outside traction - if it gets popular the harvesters will defeat it
unilynx
·4 miesiące temu·discuss
At least the error goes away immediately, for everyone, once you fix the cert.

.net seems to serve DS records with at least 18 hours TTL. so worst case it takes your monitoring up 18 hours to notice your record was broken, and then another 18 hours before your fixed record is server everywhere.
unilynx
·9 miesięcy temu·discuss
> but it is not the operational hazard it’s made out to be

Until you flip that DNSSEC toggle
unilynx
·9 miesięcy temu·discuss
Poll takes a timeout parameter. ‘Not polling’ is just a really long timeout
unilynx
·9 miesięcy temu·discuss
Don't forget about Bootcamp for the (soon) obsolete Intels .

With a debloated Windows 10 (which we're not going to connect to the internet anyway) they can live on for older games.
unilynx
·10 miesięcy temu·discuss
I think the 'K-thing' was a big and helpful part of getting early volunteers onboard to build apps for KDE. They really seemed to enjoy rebuilding existing applications into a K-version.

So I guess you just have to live with it, but consider it a way to honor the original contributors who build all the K(DE)-versions of the common apps
unilynx
·10 miesięcy temu·discuss
Except for infinite loops in JS. Firefox still handles those better.
unilynx
·10 miesięcy temu·discuss
How so? I don't remember ever having seen issues with this. If anything CSP steers you towards this (instead of inline scripts directly assigning to JS variables)
unilynx
·w zeszłym roku·discuss
Exactly this. Don't look at the renewal proces, look at its output. It'll work for all certificate sources and catch other potential errors too (eg the webserver reporting success but not presenting the new certificate)
unilynx
·w zeszłym roku·discuss
Can't remove a certificate from the revocation lists until it's expired, leading to boundless growth of those lists.

Risk of private keys/certificates from old backup media being leaked (remembering the adobe password leak...) and then suddenly coming back online and working until someone figures out how to revoke them
unilynx
·w zeszłym roku·discuss
They're not an April fool's joke. A 90's linux might have these services enabled by default. I assume they were built to make network debugging slightly less boring
unilynx
·w zeszłym roku·discuss
> Also, the prices may become more sustainable if LLM providers find ways to inject ad revenue into their products.

I'm sure they've already found ways to do that, injecting relevant ads is just a form of RAG.

But they won't risk it yet as long as they're still grabbing market share just like Google didn't run them at the start - and kept them unobtrusive until their search won.
unilynx
·w zeszłym roku·discuss
and not having sponsored links back then
unilynx
·w zeszłym roku·discuss
Cool solution, but I'd assume/hope Windows currently has sufficient memory protections to not allow applications to rewrite their own memory - especially if the function was already in a DLL to begin with and not JIT-generated code?
unilynx
·w zeszłym roku·discuss
People actually do this??

Suddenly having to prefix `this.` in JavaScript to every member bothers me a lot less
unilynx
·w zeszłym roku·discuss
> Iframes don’t expand to fit content

Actually, that was part of the original plan - https://caniuse.com/iframe-seamless
unilynx
·w zeszłym roku·discuss
ugh. these kind of changes should not be made in a minor release..