Readit News logoReadit News
arbll commented on How to prove false statements: Practical attacks on Fiat-Shamir   quantamagazine.org/comput... · Posted by u/nsoonhui
arbll · 2 months ago
One anecdote => All Ethereum’s cryptographers are a fraud => All crypto is a fraud

You're deducing a lot from this one quote lol

arbll commented on New Linux udisks flaw lets attackers get root on major Linux distros   bleepingcomputer.com/news... · Posted by u/smig0
sneak · 2 months ago
Local root privilege escalation is mostly irrelevant these days. It’s only useful as part of an exploit chain, really. It’s not like shell servers are still around.
arbll · 2 months ago
this type of exploits are goldmines for attackers, it means they have a window of a few month to years to turn any basic access into root. It doesn't have to be a super complex exploit chain, anyone running wordpress botnets it going to add this to their arsenal
arbll commented on New Linux udisks flaw lets attackers get root on major Linux distros   bleepingcomputer.com/news... · Posted by u/smig0
coderatlarge · 2 months ago
how much harder is container escaping compared to vm escaping? i understand that containers are not truly meant to be security boundaries but they are often thought of and even used as such.
arbll · 2 months ago
Situational but if you're in default configurations it's comparable. Both will need some form of unknown vuln. It boils down to wether you trust more the linux namespacing logic and container runtime glue or the hypervisor logic.
arbll commented on New Linux udisks flaw lets attackers get root on major Linux distros   bleepingcomputer.com/news... · Posted by u/smig0
IlikeKitties · 2 months ago
> I wish I had something like GrapheneOS on desktops (yes I know about Qubes)

SecureBlue and Kicksecure are the closest equivalents.

arbll · 2 months ago
Don't know much about SecureBlue but Kicksecure isn't comparable to Qubes at all. It's a hardened distro, not a way to isolate workloads through virtualisation. Depending on what you're trying to achieve they can both fit but they are fundamentally very different in their approach to security.
arbll commented on Seedance 1.0   seed.bytedance.com/en/see... · Posted by u/matallo
thebestmoshe · 3 months ago
The future is something like the TikTok algorithm, but generated on the fly.

As you scroll, it learns what you like and generates more videos.

arbll · 3 months ago
I think it will also try to influence what you like to maximize engagement unfortunately...
arbll commented on Research suggests Big Bang may have taken place inside a black hole   port.ac.uk/news-events-an... · Posted by u/zaik
twodave · 3 months ago
Might as well believe in God if you’re going to believe in spontaneous accidental creation…
arbll · 3 months ago
Anything outside of what we can observe will always be based on faith anyway. We'll probably never understand what's "before" the big bang, wether it make sense to ask that question or why something exists rather than nothing.
arbll commented on Research suggests Big Bang may have taken place inside a black hole   port.ac.uk/news-events-an... · Posted by u/zaik
koakuma-chan · 3 months ago
What is the currently accepted theory?
arbll · 3 months ago
At t=0 or "before" none
arbll commented on Show HN: S3mini – Tiny and fast S3-compatible client, no-deps, edge-ready   github.com/good-lly/s3min... · Posted by u/neon_me
0x1ceb00da · 3 months ago
You need the checksum only if the file is big and you're downloading it to disk, or if you're paranoid that some malware with root access might be altering the contents of your memory.
arbll · 3 months ago
I mean if a malware is root and altering your memory it's not like you're in a position where this check is meaningful haha
arbll commented on Show HN: S3mini – Tiny and fast S3-compatible client, no-deps, edge-ready   github.com/good-lly/s3min... · Posted by u/neon_me
EGreg · 3 months ago
You know what would be really awesome? Making a fuse-based drop-in replacement for mapping a folder to a bucket, like goofys. Maybe a node.js process can watch files for instance and backup, or even better it can back the folder and not actually take up space on the local machine (except for a cache).

https://github.com/kahing/goofys

arbll · 3 months ago
This seem completely unrelated to the goal of OP's library ?
arbll commented on Show HN: S3mini – Tiny and fast S3-compatible client, no-deps, edge-ready   github.com/good-lly/s3min... · Posted by u/neon_me
_1 · 3 months ago
Same as this https://github.com/minio/minio ?
arbll · 3 months ago
No this is an S3-compatible client, minio is an S3-compatible backend
a

u/arbll

KarmaCake day41February 28, 2024View Original