This is a pretty unfortunate name choice, there's already a project named OpenClaw (a reimplementation of the Claw 2D platformer): https://github.com/pjasicek/OpenClaw.
Readit Newsjstasiak commented on OpenClaw – Moltbot Renamed Again openclaw.ai/blog/introduc... · Posted by u/ed
Same here, Firefox 147.0.2, macOS 15, Apple Silicon. "Firefox GPU Helper" keeps using 30-40% of a CPU core.
I think it's not strictly connected to using YouTube in my case.
The package has now been restored/reinstated:
https://web.archive.org/web/20250723155529/https://www.npmjs...
This has been reflected in a recent edit and comments here: https://github.com/stylus/stylus/issues/2938
No updates to the security advisory at this time: https://web.archive.org/web/20250723155624/https://github.co...
jstasiak commented on Chaos in the Cloudflare Lisbon Office blog.cloudflare.com/chaos... · Posted by u/jgrahamc
Great thing about entropy is that adding more never hurts. This is one of many sources — both more conventional as well as unconventional — that we use. If it were to go offline, or somehow be corrupted, it wouldn’t hurt our ability to generate entropy across the Cloudflare network.
What I love about this, the lava lamp wall in San Francisco, and the double pendulums in London, is that it takes something very abstract and makes it tangible for our team and our customers.
> Great thing about entropy is that adding more never hurts.
I used to think the same but here's a counter-example of a (hypothetical) attack based on a malicious entropy source being able to manipulate the hash/PRNG output:
https://blog.cr.yp.to/20140205-entropy.html
Now, it's not necessarily the most likely attack to materialize, as already pointed out downthread: https://news.ycombinator.com/item?id=43391377.
jstasiak commented on ZeroTier – home VPN without a public IP address blog.tomaszdunia.pl/zerot... · Posted by u/to3k
Also consider Nebula: https://github.com/slackhq/nebula
ZeroTier does not use an OSI approved open-source license. It is under a freedom-restricting "Business Source License". Nebula is MIT licensed.
Nebula is much simpler and in most cases faster than ZeroTier.
Adding +1 to the Nebula recommendation.
The last time I tried ZeroTier (years ago, I admit) it wasn't possible to self-host all of it I think and I couldn't make it reliably use my own relays for good performance of non-direct connections.
I've been happily using Nebula for a while now, pretty easy to configure and self-host.
jstasiak commented on ZeroTier – home VPN without a public IP address blog.tomaszdunia.pl/zerot... · Posted by u/to3k
Nebula does use WireGuard, as per their go.mod file.
EDIT: actually, they just use various I/O abstractions that WireGuard developed.
Looking at that file may make you reach misleading conclusions. Some tun/io code may be use but there's that. As far as I understand WireGuard the protocol is not used anywhere:
nebula (master)> git rev-parse HEAD
2b427a7e8934f0a436fea25eb40a6b979b34ee7a
nebula (master)> rg --glob '*.go' -i wireguard
wintun/tun.go
6: * Copyright (C) 2018-2021 WireGuard LLC. All Rights Reserved.
9://NOTE: This file was forked from https://git.zx2c4.com/wireguard-go/tree/tun/tun_windows.go?id=851efb1bb65555e0f765a3361c8eb5ac47435b19
udp/udp_rio_windows.go
4:// Inspired by https://git.zx2c4.com/wireguard-go/tree/conn/bind_windows.go
25: "golang.zx2c4.com/wireguard/conn/winrio"
overlay/tun_wintun_windows.go
17: "golang.zx2c4.com/wireguard/windows/tunnel/winipcfg"
wintun/device.go
6: * Copyright (C) 2017-2021 WireGuard LLC. All Rights Reserved.
9://NOTE: this file was forked from https://git.zx2c4.com/wireguard-go/tree/tun/tun.go?id=851efb1bb65555e0f765a3361c8eb5ac47435b19jstasiak commented on ZeroTier – home VPN without a public IP address blog.tomaszdunia.pl/zerot... · Posted by u/to3k
How does Nebula compare to Wireguard?
They're solutions to slightly different problems.
I'd characterize it as such: Wireguard is more of a plumbing solution that gives you a point-to-point connection, either it's enough for you or you can use this to build what you need.
Nebula is more of an end-user ready-to-use solution, gives you features like NAT traversal, automatic selection of direction connections if possible, the nodes don't need to know other nodes' addresses ahead of time(x) etc.
(x) except for the lighthouse
jstasiak commented on AMD: Microcode Signature Verification Vulnerability github.com/google/securit... · Posted by u/todsacerdoti
Linux's rdrand use is proof against it returning bad output, but is not proof against malicious microcode. Reason for this is that the malicious microcode can examine register contents and alter the value it's returning so that mixing it into the previous source of randomness produces the desired evil value.
An article mentioning this kind of attack: https://blog.cr.yp.to/20140205-entropy.html
jstasiak commented on Docusaurus – Build optimized websites quickly, focus on your content docusaurus.io/... · Posted by u/yamrzou
I've had some contact with Docusaurus and from my experience the Sphinx and reStructuredText combo is a much better solution to creating a robust, maintainable, cross-linked-to-nth-degree documentation where you actually can "focus on your content".
Bonus points if you prefer to not deal with the JS ecosystem and prefer Python.
The main downside is that while reST is well-suited for extending the syntax actually writing Sphinx extensions is, subjectively, significantly more arcane than writing React components/MDX plugins.
A recent discussion on this topic, part of the "I prefer rST to Markdown" submission: https://news.ycombinator.com/item?id=41120772