HackerTrans
TopNewTrendsCommentsPastAskShowJobs

harporoeder

no profile record

Submissions

Anthropics Buffa: a Rust implementation of protobuf

github.com
3 points·by harporoeder·4 ay önce·0 comments

Personal Identification Secure Comparison and Evaluation System

en.wikipedia.org
2 points·by harporoeder·4 ay önce·0 comments

Passwords and Power Drills

google.github.io
121 points·by harporoeder·9 ay önce·29 comments

Offset Geometric Contact (OGC)

graphics.cs.utah.edu
17 points·by harporoeder·10 ay önce·3 comments

Finra Approved Amendments for Pattern Day Trading Rules

finra.org
1 points·by harporoeder·10 ay önce·0 comments

Random Mosaic – Detecting unauthorized physical access with colored rice (2021)

dys2p.com
92 points·by harporoeder·10 ay önce·14 comments

Unitree G1 has mastered more quirky skills [video]

youtube.com
16 points·by harporoeder·10 ay önce·6 comments

Using keepassxc-CLI as Git merge driver

200ok.ch
2 points·by harporoeder·10 ay önce·0 comments

Code Verify: An open source browser extension for verifying code authenticity

engineering.fb.com
60 points·by harporoeder·2 yıl önce·28 comments

comments

harporoeder
·4 ay önce·discuss
A default container seccomp profile will let you do quite a few things but you can use a different profile some json and limit to just a few system calls if you want such as doing IO on open FDs without the ability to open them. I think the runtime opens the FDs before the child process starts and are inherited.
harporoeder
·4 ay önce·discuss
This is essentially what containers are. Bubblewrap / Docker / Podman. I think the primary issue is very few applications on Desktop systems are actually designed with sandboxing in mind unlike say something on a phone.
harporoeder
·8 ay önce·discuss
The killer application in this case is ATAK.

https://en.wikipedia.org/wiki/Android_Team_Awareness_Kit