You can still request permission to use it for apps distributed via Google Play for a limited set of use cases: https://support.google.com/googleplay/android-developer/answ... which is then subject to Google reviewing…
We've been experimenting with Azure's IPv6 support at work recently. The fact it uses NAT is insane - though we could tolerate that. Even worse is that the NAT is broken - it doesn't update the ICMPv6 checksum when it…
In the UK it's probably already illegal under the Computer Misuse Act, as it'd fall under "unauthorised modification of computer material". I assume other countries have similar laws. That said, enforcing it is a…
> "runes" like Go would be even better but codepoints are halfway there Go runes are codepoints. I think Swift is interesting, a "character" in Swift is actually a grapheme cluster.
I don't think `mkcert -install` requires root in all cases. The NSS trust store is stored in ~/.pki/nssdb/ and can be written to without root.
It's probably easier to manually merge the manifest (as they're much more human-readable) than a lock file though.
> But you won't be able to synthesize a RISC-V CPU. The iCE40 series consists of relatively small parts. You can fit picorv32 on an iCE40-HX8K, although admittedly you'll only get an RV32IMC core with just the user ISA.
The citext type automatically does case-insensitive comparisons: https://www.postgresql.org/docs/current/static/citext.html
> each device gets 2^64 addresses Each subnet gets 2^64 addresses. You can have multiple devices in the same subnet.
Chrome requires Certificate Transparency for the EV indicator to be displayed - see https://news.netcraft.com/archives/2015/08/24/thousands-shor...
Wildcards are in the version of the ACME spec at https://letsencrypt.github.io/acme-spec/: > A server MAY consider a client authorized for a wildcard domain if it is authorized for the underlying domain name (without…
CAs are forbidden from issuing a cert for * .co.uk. The Baseline Requirements say: > The CA MUST establish and follow a documented procedure that determines if the wildcard character occurs in the first label position…
> You need to zero fill .bss section in the boot code before jumping to C code. GRUB does this for you. See this thread from a few years ago: https://news.ycombinator.com/item?id=7590790
Amazon bought one of the Starfield roots from GoDaddy last year: https://mobile.twitter.com/Cryptoki/status/61114541131566694...
use -std=gnu99 instead
People have been able to get SSL certs for webmail domains before, as the webmail providers hadn't blacklisted some of the emails CAs can use for domain validation by email. e.g. see…
X509 extensions can be marked as critical. Certificates must be rejected if the stack encounters a critical extension it doesn't understand. (In theory at least, I haven't looked at real implementation behaviour.)
I get the impression that 296 is meant to be 2^96, which is exactly the same as your figure.
And LibreSSL also has support for ChaCha20.
I've just checked the GRUB source code and I think it will clear the .bss section even if it's loading an ELF file. grub-core/loader/multiboot_elfxx.c has a function named grub_multiboot_load_elf32/64 which actually…
It's still important to test on physical hardware though, perhaps on an old spare machine you don't care about if you want to be cautious, as the virtual machines do not perfectly emulate real hardware. For example,…
It's worth pointing out there are a few bugs in James Molloy's tutorial [1], and some of the things he does in them aren't exactly best practices - for example, a few I remember are: - Disabling interrupts and paging…
> Another thing that is missing is clearing the .BSS section before passing control to the C code. It's not used at the moment, though. The Multiboot standard says that the boot loader will clear the .bss section for…
There's a slight problem in this tutorial in that it assumes ESP (the stack pointer) will be defined by the boot loader to point to an appropriate location for the stack. However, the Multiboot standard states that ESP…
> losetup on a disk image doesn't (to my knowledge) detect partitions… for reasons unknown to me. You can use the kpartx command for this. This site has a good overview:…
You can still request permission to use it for apps distributed via Google Play for a limited set of use cases: https://support.google.com/googleplay/android-developer/answ... which is then subject to Google reviewing…
We've been experimenting with Azure's IPv6 support at work recently. The fact it uses NAT is insane - though we could tolerate that. Even worse is that the NAT is broken - it doesn't update the ICMPv6 checksum when it…
In the UK it's probably already illegal under the Computer Misuse Act, as it'd fall under "unauthorised modification of computer material". I assume other countries have similar laws. That said, enforcing it is a…
> "runes" like Go would be even better but codepoints are halfway there Go runes are codepoints. I think Swift is interesting, a "character" in Swift is actually a grapheme cluster.
I don't think `mkcert -install` requires root in all cases. The NSS trust store is stored in ~/.pki/nssdb/ and can be written to without root.
It's probably easier to manually merge the manifest (as they're much more human-readable) than a lock file though.
> But you won't be able to synthesize a RISC-V CPU. The iCE40 series consists of relatively small parts. You can fit picorv32 on an iCE40-HX8K, although admittedly you'll only get an RV32IMC core with just the user ISA.
The citext type automatically does case-insensitive comparisons: https://www.postgresql.org/docs/current/static/citext.html
> each device gets 2^64 addresses Each subnet gets 2^64 addresses. You can have multiple devices in the same subnet.
Chrome requires Certificate Transparency for the EV indicator to be displayed - see https://news.netcraft.com/archives/2015/08/24/thousands-shor...
Wildcards are in the version of the ACME spec at https://letsencrypt.github.io/acme-spec/: > A server MAY consider a client authorized for a wildcard domain if it is authorized for the underlying domain name (without…
CAs are forbidden from issuing a cert for * .co.uk. The Baseline Requirements say: > The CA MUST establish and follow a documented procedure that determines if the wildcard character occurs in the first label position…
> You need to zero fill .bss section in the boot code before jumping to C code. GRUB does this for you. See this thread from a few years ago: https://news.ycombinator.com/item?id=7590790
Amazon bought one of the Starfield roots from GoDaddy last year: https://mobile.twitter.com/Cryptoki/status/61114541131566694...
use -std=gnu99 instead
People have been able to get SSL certs for webmail domains before, as the webmail providers hadn't blacklisted some of the emails CAs can use for domain validation by email. e.g. see…
X509 extensions can be marked as critical. Certificates must be rejected if the stack encounters a critical extension it doesn't understand. (In theory at least, I haven't looked at real implementation behaviour.)
I get the impression that 296 is meant to be 2^96, which is exactly the same as your figure.
And LibreSSL also has support for ChaCha20.
I've just checked the GRUB source code and I think it will clear the .bss section even if it's loading an ELF file. grub-core/loader/multiboot_elfxx.c has a function named grub_multiboot_load_elf32/64 which actually…
It's still important to test on physical hardware though, perhaps on an old spare machine you don't care about if you want to be cautious, as the virtual machines do not perfectly emulate real hardware. For example,…
It's worth pointing out there are a few bugs in James Molloy's tutorial [1], and some of the things he does in them aren't exactly best practices - for example, a few I remember are: - Disabling interrupts and paging…
> Another thing that is missing is clearing the .BSS section before passing control to the C code. It's not used at the moment, though. The Multiboot standard says that the boot loader will clear the .bss section for…
There's a slight problem in this tutorial in that it assumes ESP (the stack pointer) will be defined by the boot loader to point to an appropriate location for the stack. However, the Multiboot standard states that ESP…
> losetup on a disk image doesn't (to my knowledge) detect partitions… for reasons unknown to me. You can use the kpartx command for this. This site has a good overview:…