Readit Newsregarding "These new lights objectively suck to anyone not driving. If your house is near one, they suck."
I have a blinding street light across from my house. I complained to the city and they put a shade on the light so that my house is now in the dark. Its so much in case anyone else has the same problem.
What city are you in? Or state / general region, if you'd rather not share.
r-w commented on The Free Movie: Frame-by-frame, handrawn reproduction of "The Bee Movie" (2023) thefreemovie.buzz/... · Posted by u/gaws
Epilepsy warning please! :-)
If you lose your YubiKey, or any other hardware key, for all intents and purposes all your data on it is compromised.
What I'm reading from <https://ninjalab.io/eucleak/> is this:
>This vulnerability – that went unnoticed for 14 years and about 80 highest-level Common Criteria certification evaluations – is due to a non constant-time modular inversion.
The vulnerability is therefore that the secrets can be extracted without taking the YubiKey apart, by measuring timings, thus tricking you into thinking that your YubiKey is intact (but you were already compromised the moment you could not account for the location of the YubiKey). On the other hand, a well motivated adversary can take apart your YubiKey, extract the secrets through other means (every hardware key is vulnerable to this) and finally put together a new YubiKey, identical on the outside to your old YubiKey, with the same secrets.
The two scenarios are almost the same, unless you're biotagging your YubiKey (which only buys you knowledge that you've been compromised). If Yubico is selling these keys, it's because it would be too expensive for them to clearly label the firmware version on each YubiKey sold, for various reasons. I think this is a great opportunity for a competitor to arise, who hopefully allows flashing of the firmware, at a minimum. The Nitrokey seems like a good option <https://www.nitrokey.com/>.
> biotagging
Sorry, what does this mean? I couldn’t find anything on Google about it.
r-w commented on Mr beast 23M in crypto scams twitter.com/KasperLoock/s... · Posted by u/janverslage
Related post: https://news.ycombinator.com/item?id=41998453
r-w commented on Marketing the Odin programming language is weird gingerbill.org/article/20... · Posted by u/0x0203
> I do find it quite irritating that only place to ask questions [is] discord
It's a tradeoff. The platform is a closed-source silo.
But for a lot of people, it works really well.
I avoided it until eventually one community made me want to be a member.
Those who dislike Discord in that community set up relay bots.
> Community questions and answers need to be readable and searchable without yet another login.
This is a big tragedy that any technical community will suffer from long-term for choosing Discord:
They may cultivate a community, but they will not grow their garden of knowledge.
But to have your resources and attention spread too thin can be devastating, too.
Only huge projects can afford to have multiple Discords, Telegrams, IRCs, Wikis, and not worry too much about the overflow and redundancy.
Small projects like Odin must focus on having a few high-traffic places.
One word: Discourse.
It's a perverse feedback loop. The more power the .gov has to regulate the better the ROI of regulatory capture.'
I'm not sure how we get out of this situation without it getting way worse.
Huh? Why can't you just regulate the flow of private funds to public servants and leave it at that? Not sure why you seem to be arguing that passing one bill expands the power of government as a whole.
r-w commented on 1 bug, $50k in bounties, a Zendesk backdoor gist.github.com/hackermon... · Posted by u/mmsc
https://github.com/lustre-labs/lustre