mayama (u/mayama) - Readit News

mayama commented on Answering questions about Android developer verification android-developers.google... · Posted by u/rom1v

runting · 2 months ago

Google have full control to do this on their Pixel devices by rolling out new firmware with further restrictions - though there is no evidence they plan to do so.

However other vendors that build upon AOSP, such as Samsung, can make their own decisions on this.

mayama · 2 months ago

> However other vendors that build upon AOSP, such as Samsung, can make their own decisions on this.

Pure AOSP devices are only some chinese knockoffs without play store. If your device needs play store/device integrity verification, there are lots are requirements by goog that needs to be met. Goog can add new requirement to disable installing unverified apps from adb.

mayama commented on YouTube says it'll bring back creators banned for Covid and election content businessinsider.com/youtu... · Posted by u/delichon

cmilton · 3 months ago

Because that is a bold claim to make. There is no proof of a lab leak and evidence leads to the wet market as the source. There is a debate out there for 100k to prove this. Check it out.

mayama · 3 months ago

> There is no proof of a lab leak and evidence leads to the wet market as the source

Because WHO worked with CPC to bury evidence and give clean chit to wuhan lab. There was some pressure building up then for international teams to visit wuhan lab and examine data transparently. But, with thorough ban of lab leak theory, WHO visited china and gave clean chit without even visiting wuhan lab or having access to lab records. The only place that could prove this definitively buried all records.

mayama commented on Shai-Hulud malware attack: Tinycolor and over 40 NPM packages compromised socket.dev/blog/ongoing-s... · Posted by u/jamesberthoty

homebrewer · 3 months ago

Here's an example off the top of my mind:

https://github.com/go-gitea/gitea/blob/main/go.sum

mayama · 3 months ago

Half of go.sum dependencies generally are multiple versions of same package. 400 still a lot, but a huge project like gitea might need them I guess.

> cat go.sum |awk '{print $1}' | sort |uniq |wc -l

431

> wc -l go.sum

1156 go.sum

mayama commented on %CPU utilization is a lie brendanlong.com/cpu-utili... · Posted by u/BrendanLong

kqr · 4 months ago

It might be a lie, but it surely is a practical one. In my brief foray into site reliability engineering I used CPU utilisation (of CPU-bofund tasks) with queueing theory to choose how to scale servers before big events.

The %CPU suggestions ran contrary to (and were much more conservative than) the "old wisdom" that would otherwise have been used. It worked out great at much lower cost than otherwise.

What I'm trying to say is you shouldn't be afraid of using semi-crappy indicators just because they're semi-crappy. If it's the best you got it might be good enough anyway.

In the case of CPU utilisation, though, the number in production shouldn't go above 40 % for many reasons. At 40 % there's usually still a little headroom. The mistake of the author was not using fundamentals of queueing theory to avoid high utilisation!

mayama · 4 months ago

Combination of CPU% and loadavg would generally tell how system is doing. I had systems where loadavg is high, waiting on network/io, but little cpu%. Tracing high load is not always straightforward as cpu% though, you have to go through io%, net%, syscalls etc.

mayama commented on We should have the ability to run any code we want on hardware we own hugotunius.se/2025/08/31/... · Posted by u/K0nserv

Aerroon · 4 months ago

>“Hardware I own” sounds like you bought a pan and demand the right to cook any food you want.

Because I did. How come I can do what I want with my computer, but not my phone? Why are phones so inferior in this area?

My phone is more powerful than many of the computers I've had in the past, yet I need to jump through a million hoops to use it as a software development platform. Why?

mayama · 4 months ago

> Because I did. How come I can do what I want with my computer, but not my phone? Why are phones so inferior in this area?

Apple and Microsoft are constantly working on fixing the issue with their appstores and requiring app signing in more places. The way industry going is to lock down more of laptops, than allowing phones to be like computers.

mayama commented on Google: 'Your $1000 phone needs our permission to install apps now' [video] youtube.com/watch?v=QBEKl... · Posted by u/robtherobber

joshlemer · 4 months ago

I'm a little bit unclear about this, will Google's changes here also affect other android distributions like LineageOS, OxygenOS, etc? If not, then I could see that Google locking down their Android Distributions like this could breath a lot of life into some alternative distribution(s). If yes, then perhaps forks of Android or even competitors to android altogether.

mayama · 4 months ago

Google has delayed releasing pixel 10 sources and unlocking bootloader for new phones is becoming increasingly rare. They may lock it down too going forward.

mayama commented on Malicious versions of Nx and some supporting plugins were published github.com/nrwl/nx/securi... · Posted by u/longcat

hombre_fatal · 4 months ago

One thing that's weirdly precarious is how we still have one big environment for personal computing and how it enables most malware.

It's one big macOS/Windows/Linux install where everything from crypto wallets to credential files to gimmick apps are all neighbors. And the tools for partitioning these things are all pretty bad (and mind you I'm about to pitch something probably even worse).

When I'm running a few Windows VMs inside macOS, I kinda get this vision of computing where we boot into a slim host OS and then alt-tab into containers/VMs for different tasks, but it's all polished and streamlined of course (an exercise for someone else).

Maybe I have a gaming container. Then I have a container I only use for dealing with cryptocurrency. And I have a container for each of the major code projects I'm working on.

i.e. The idea of getting my bitcoin private keys exfiltrated because I installed a VSCode extension, two applications that literally never interact, is kind of a silly place we've arrived in personal computing.

And "building codes for software" doesn't address that fundamental issue. It kinda feels like an empty solution like saying we need building codes for operating systems since they let malware in one app steal data from other apps. Okay, but at least pitch some building codes and what enforcement would look like and the process for establishing more codes, because that's quite a levitation machine.

mayama · 4 months ago

flatpak is supposed to address this. Running applications in sandbox. But, with almost all applications wanting access to your HOME, because of convenience, sandbox utility is quiet questionable in most cases.

mayama commented on Starship's Tenth Flight Test spacex.com/... · Posted by u/metalman

dotnet00 · 4 months ago

I thought that while the spare tiles did exist, there was never an actual safe procedure for replacing tiles (that didn't require being docked to the ISS) they were only carried to be available when the choice was between losing the entire crew on reentry or risking a crew member?

I don't quite understand how the airplane shape made it easier to model the loading and positioning? (Not saying you're wrong, just doesn't fit my intuition and I'm curious).

My understanding is that Shuttle didn't have to answer the questions about tile gaps etc because it used glue rather than mechanical attachments, if that's what you mean by positioning.

mayama · 4 months ago

> I don't quite understand how the airplane shape made it easier to model the loading and positioning? (Not saying you're wrong, just doesn't fit my intuition and I'm curious).

You can approximate space shuttle reentry to roughly a 2d surface entering atmosphere. Because of airplane shape, the tile side faces atmosphere and the plasma goes around plane edges. Where as starship being cylinder doesn't have any separation boundary and plasma roughly goes more than 180% of the cylinder.

mayama commented on Ask HN: Why hasn't x86 caught up with Apple M series? · Posted by u/stephenheron

ben-schaaf · 4 months ago

Battery efficiency comes from a million little optimizations in the technology stack, most of which comes down to using the CPU as little as possible. As such the instruction set architecture and process node aren't usually that important when it comes to your battery life.

If you fully load the CPU and calculate how much energy a AI340 needs to perform a fixed workload and compare that to a M1 you'll probably find similar results, but that only matters for your battery life if you're doing things like blender renders, big compiles or gaming.

Take for example this battery life gaming benchmark for an M1 Air: https://www.youtube.com/watch?v=jYSMfRKsmOU. 2.5 hours is about what you'd expect from an x86 laptop, possibly even worse than the fw13 you're comparing here. But turn down the settings so that the M1 CPU and GPU are mostly idle, and bam you get 10+ hours.

Another example would be a ~5 year old mobile qualcomm chip. It's a worse process node than an AMD AI340, much much slower and significantly worse performance per watt, and yet it barely gets hot and sips power.

All that to say: M1 is pretty fast, but the reason the battery life is better has to do with everything other than the CPU cores. That's what AMD and Intel are missing.

> If I open too many tabs in Chrome I can feel the bottom of the laptop getting hot, open a YouTube video and the fans will often spin up.

It's a fairly common issue on Linux to be missing hardware acceleration, especially for video decoding. I've had to enable gpu video decoding on my fw16 and haven't noticed the fans on youtube.

mayama · 4 months ago

I disable turbo boost in cpu on linux. Fans rarely start on the laptop and the system is generally cool. Even working on development and compilation I rarely need the extra perf. For my 10yr old laptop I cap max clock to 95% too to stop the fans from always starting. YMMV