Your comment is not constructive, why can't it be trusted? If every user of an LLM took this much care and attention, many people would have fewer issues with LLM assisted coding. In this case the author has…
No, it is not affected by the exploit as presented. This is a page cache write, so writing to a binary that root will run later can work too. This isn’t a reason to push an agenda that dislikes setuid binaries.
The style of the blog post, with short, abrupt sentences does not captivate me. I’d like to think someone writing a book has a more interesting writing style. Or maybe LLMs have damaged me and I’m too critical of…
Microsoft loves sending emails with "Action required" in the subject, when actually no action is required, or it doesn't apply to you, or whatever. Such corporate speak. It's fun searching your email for "Action…
Very similar to bittorrent’s bencode. That has the benefit that it has a canonical encoding which this doesn’t (because of the different compression options). I wouldn’t be put off by how it looks as text.
Previous NS records were pointing at dns-parking.com, which is Hostinger. Although hard to be certain without more details whether a reseller or other supplier is involved.
Clearly a joke if it uses the .lol tld.
The code is mostly vibe coded and under the BSL. I think the interesting bit here is a single developer can write something like this with an agent. Does it make sense to open source such a thing or just each ISP write…
Same, it's all over the place. Whatever it is doing isn't a very strong fingerprint.
Why aren't you using IBM cloud?
Yes, previously: https://news.ycombinator.com/item?id=35989909 The Redis test suite is still written in Tcl: https://news.ycombinator.com/item?id=9963162 (although more recently antirez said somewhere he wished he'd…
Most users don’t see it that way.
Previously: I use zip bombs to protect my server (idiallo.com) 1076 points https://news.ycombinator.com/item?id=43826798
It is not open source, it is not free. It’s a term tacked on to the MIT license. It’s also vague as, what if I run a VPS provider and someone can upload images to a marketplace like thing, does that count as SaaS? How…
This among other things is why the GNU project as a whole has little credibility left.
Without sharing too many spoilers... I solved the challenge but the check script was unhappy. The curl commands in the script worked fine, the earlier parts of the script failed, i.e. it didn't like how I'd decided to…
Some background in https://gist.github.com/kemitchell/fdc179d60dc88f0c9b76e5d38... Basically you end up with something not legally enforceable. And will someone actually doing evil care about your license?
> And netns is for single-host isolation. This is a router forwarding LAN→WAN. Different problem Not at all. Put the LAN interface in a network namespace that is different to the host (ip link set ... netns ...). This…
> Not a techie? The README is optimized for AI-assisted deployment. Feed it to your LLM of choice (Claude, GPT, etc.) and it can walk you through the entire setup for your specific hardware. The whole thing is AI slop.…
https://how.complexsystems.fail applies in all cases. (Particularly here “Post-accident attribution to a ‘root cause’ is fundamentally wrong.”)
> acknowledge the message I think it is more nuanced than that -- they are sending a message via LinkedIn, is it really the company or a scam? You should take time to respond appropriately and not be rushed in all…
Did you ask an LLM to try to guess the error message?
It depends what your needs are, you haven't given any details. I'm not aware of anything with the JSONBin.io API (frankly I don't like their API, I think it should be more RESTful). CouchDB is in many ways very similar…
It's also interesting to consider that most commercial data centres depend on plumbing for aircon or even direct water-cooling. Therefore depending how far you take this, it could result in an internet that exists, but…
The sad fact is investors don’t care about abuse. Provided the company aren’t deliberately faking customers there is no incentive to spend any resources on a free trial other than looking for customers to convert.
Your comment is not constructive, why can't it be trusted? If every user of an LLM took this much care and attention, many people would have fewer issues with LLM assisted coding. In this case the author has…
No, it is not affected by the exploit as presented. This is a page cache write, so writing to a binary that root will run later can work too. This isn’t a reason to push an agenda that dislikes setuid binaries.
The style of the blog post, with short, abrupt sentences does not captivate me. I’d like to think someone writing a book has a more interesting writing style. Or maybe LLMs have damaged me and I’m too critical of…
Microsoft loves sending emails with "Action required" in the subject, when actually no action is required, or it doesn't apply to you, or whatever. Such corporate speak. It's fun searching your email for "Action…
Very similar to bittorrent’s bencode. That has the benefit that it has a canonical encoding which this doesn’t (because of the different compression options). I wouldn’t be put off by how it looks as text.
Previous NS records were pointing at dns-parking.com, which is Hostinger. Although hard to be certain without more details whether a reseller or other supplier is involved.
Clearly a joke if it uses the .lol tld.
The code is mostly vibe coded and under the BSL. I think the interesting bit here is a single developer can write something like this with an agent. Does it make sense to open source such a thing or just each ISP write…
Same, it's all over the place. Whatever it is doing isn't a very strong fingerprint.
Why aren't you using IBM cloud?
Yes, previously: https://news.ycombinator.com/item?id=35989909 The Redis test suite is still written in Tcl: https://news.ycombinator.com/item?id=9963162 (although more recently antirez said somewhere he wished he'd…
Most users don’t see it that way.
Previously: I use zip bombs to protect my server (idiallo.com) 1076 points https://news.ycombinator.com/item?id=43826798
It is not open source, it is not free. It’s a term tacked on to the MIT license. It’s also vague as, what if I run a VPS provider and someone can upload images to a marketplace like thing, does that count as SaaS? How…
This among other things is why the GNU project as a whole has little credibility left.
Without sharing too many spoilers... I solved the challenge but the check script was unhappy. The curl commands in the script worked fine, the earlier parts of the script failed, i.e. it didn't like how I'd decided to…
Some background in https://gist.github.com/kemitchell/fdc179d60dc88f0c9b76e5d38... Basically you end up with something not legally enforceable. And will someone actually doing evil care about your license?
> And netns is for single-host isolation. This is a router forwarding LAN→WAN. Different problem Not at all. Put the LAN interface in a network namespace that is different to the host (ip link set ... netns ...). This…
> Not a techie? The README is optimized for AI-assisted deployment. Feed it to your LLM of choice (Claude, GPT, etc.) and it can walk you through the entire setup for your specific hardware. The whole thing is AI slop.…
https://how.complexsystems.fail applies in all cases. (Particularly here “Post-accident attribution to a ‘root cause’ is fundamentally wrong.”)
> acknowledge the message I think it is more nuanced than that -- they are sending a message via LinkedIn, is it really the company or a scam? You should take time to respond appropriately and not be rushed in all…
Did you ask an LLM to try to guess the error message?
It depends what your needs are, you haven't given any details. I'm not aware of anything with the JSONBin.io API (frankly I don't like their API, I think it should be more RESTful). CouchDB is in many ways very similar…
It's also interesting to consider that most commercial data centres depend on plumbing for aircon or even direct water-cooling. Therefore depending how far you take this, it could result in an internet that exists, but…
The sad fact is investors don’t care about abuse. Provided the company aren’t deliberately faking customers there is no incentive to spend any resources on a free trial other than looking for customers to convert.