HackerTrans
TopNewTrendsCommentsPastAskShowJobs

harporoeder

no profile record

Submissions

Anthropics Buffa: a Rust implementation of protobuf

github.com
3 points·by harporoeder·4 เดือนที่ผ่านมา·0 comments

Personal Identification Secure Comparison and Evaluation System

en.wikipedia.org
2 points·by harporoeder·4 เดือนที่ผ่านมา·0 comments

Passwords and Power Drills

google.github.io
121 points·by harporoeder·9 เดือนที่ผ่านมา·29 comments

Offset Geometric Contact (OGC)

graphics.cs.utah.edu
17 points·by harporoeder·10 เดือนที่ผ่านมา·3 comments

Finra Approved Amendments for Pattern Day Trading Rules

finra.org
1 points·by harporoeder·10 เดือนที่ผ่านมา·0 comments

Random Mosaic – Detecting unauthorized physical access with colored rice (2021)

dys2p.com
92 points·by harporoeder·10 เดือนที่ผ่านมา·14 comments

Unitree G1 has mastered more quirky skills [video]

youtube.com
16 points·by harporoeder·10 เดือนที่ผ่านมา·6 comments

Using keepassxc-CLI as Git merge driver

200ok.ch
2 points·by harporoeder·10 เดือนที่ผ่านมา·0 comments

Code Verify: An open source browser extension for verifying code authenticity

engineering.fb.com
60 points·by harporoeder·2 ปีที่แล้ว·28 comments

comments

harporoeder
·4 เดือนที่ผ่านมา·discuss
A default container seccomp profile will let you do quite a few things but you can use a different profile some json and limit to just a few system calls if you want such as doing IO on open FDs without the ability to open them. I think the runtime opens the FDs before the child process starts and are inherited.
harporoeder
·4 เดือนที่ผ่านมา·discuss
This is essentially what containers are. Bubblewrap / Docker / Podman. I think the primary issue is very few applications on Desktop systems are actually designed with sandboxing in mind unlike say something on a phone.
harporoeder
·8 เดือนที่ผ่านมา·discuss
The killer application in this case is ATAK.

https://en.wikipedia.org/wiki/Android_Team_Awareness_Kit