Readit Newsmatthews2 commented on US to ban Russian, Chinese software and hardware in vehicles abcnews.go.com/Politics/u... · Posted by u/taimurkazmi
Does an esp32 count as Chinese hardware?
Espressif are a Chinese company so I would imagine so. Although you shouldn't find an ESP32 on a car anyway, they are not automotive grade parts.
matthews2 commented on Show HN: Boulette - Protect you from yourself (even as root). github.com/pipelight/boul... · Posted by u/jean_dupont
Replacing SSH with a custom protocol sounds quite scary
Is it as secure as regular SSH when configured properly?
You still authenticate and kick off the Mosh session via SSH, so it shouldn't be any worse than plain SSH.
> Mosh doesn't listen on network ports or authenticate users. The mosh client logs in to the server via SSH, and users present the same credentials (e.g., password, public key) as before. Then Mosh runs the mosh-server remotely and connects to it over UDP.
matthews2 commented on H5N1: Much More Than You Wanted to Know astralcodexten.com/p/h5n1... · Posted by u/feross
Back around 2007-2009 there was a risk of bird flu in central Europe. We had a local ban on washing cars except in fully automated car washes, it wasn't controversial at all. We just went along with it.
What is the link between car washing and spreading bird flu?
matthews2 commented on A Better Light Source for Scanning Color Negative Film jackw01.github.io/scanlig... · Posted by u/eloisius
Is there a way to process dust/scratches? Like wavelengths outside the chosen r/g/b range?
Dust (and scratches?) can be detected with an infrared scan. The IR scan is only used to detect defects, and then something like a spot removal tool is automatically applied to the defect areas.
matthews2 commented on Show HN: JSON-Threat-Protection Rust High-Performance Crate github.com/ADD-SP/json-th... · Posted by u/ADD-SP
"It is expected that the json-threat-protection crate will be faster than the serde_json crate because it never store the deserialized JSON Value in memory, which reduce the cost on memory allocation and deallocation."
"As you can see from the table, the json-threat-protection crate is faster than the serde_json crate for all datasets, but the number depends on the dataset. So you could get your own performance number by specifying the JSON_FILE to your dataset."
However:
"This project is not a parser, and never give you the deserialized JSON Value!"
Is this performance comparison to serde_json fair? If serde_json is a parser and has a different feature set than json-threat-protection, does it make sense to compare performance?
> If serde_json is a parser and has a different feature set than json-threat-protection, does it make sense to compare performance?
If you were using serde_json just to validate a payload before passing it on to another service (like a WAF), then the comparison makes sense. If you had more complex validations or wanted to extract some of the data, then maybe not.
matthews2 commented on My Windows Computer Just Doesn't Feel Like Mine Anymore howtogeek.com/my-windows-... · Posted by u/doctorshady
AIUI Firefox on debian still has telemetry and phone-home on by default.
The Debian Firefox package ships a config with most of that disabled by default: https://wiki.debian.org/Firefox#Disabling_automatic_connecti...
https://github.com/kagisearch/privacypass-lib/blob/83c9be8cb...