Hacker News with Generative AI: Networking

Call for testing: OpenSSH 10.0 (DSA support removed) (mindrot.org)
Hi all. OpenSSH 10.0p1 is almost ready for release, so we would appreciate testing on as many platforms and systems as possible. This is primarily a bugfix release, although one notable change is the introduction of the sshd-auth binary (see below).
Tailscale Enterprise Plan 9 Support (tailscale.com)
MURRAY HILL, NJ — Tailscale, the leading provider of effortless, private networking for modern distributed computing, today announced support for Plan 9™ from Bell Labs™, the operating system redefining how networks, resources, and computation are managed.
The Nvidia DGX Spark Is a Tiny 128GB AI Mini PC Made for Scale-Out Clustering (servethehome.com)
With 20 Arm cores connected using C2C to a Blackwell generation GPU, 128GB of LPDDR5X memory, and 200GbE NVIDIA ConnectX-7 networking, the NVIDIA DGX Spark is exciting. At $3999 it is far from cheap. On the other hand, we expect folks to create the most awesome clusters with this.
Tell HN: Camelgate NPM Outage (Cloudflare) (ycombinator.com)
EDIT: Back online?!<p>NPM discussion: https://github.com/npm/cli/issues/8203<p>NPM incident: https://status.npmjs.org/incidents/hdtkrsqp134s<p>Cloudflare messaging: https://www.cloudflarestatus.com/incidents/gshczn1wxh74<p>GitHub issue: https://github.com/sindresorhus/camelcase/issues/114<p>Anyone experiencing npm outage that's more than just the referenced camelcase package?
Hetzner root servers get traffic for other machines (kiwi.fuo.fi)
Is BIND9 suitable as a recursive resolver in 2025? (szafka.net)
Recently, we have been engaged in consulting work and providing DNS training for a major IT corporation, boasting an employee count exceeding 10,000. Thankfully, not every staff member attended the course.
HTTP/3 and the QUIC Internet Protocol (themsaid.com)
In a previous article, we delved into the TCP/IP networking model. As the article concluded, we examined the significant advancements introduced by HTTP/2, particularly its ability to multiplex multiple requests over a single TCP connection. This approach not only enhanced efficiency but also addressed many of the limitations found in earlier protocols.
Show HN: GuMCP – Open-source MCP servers, hosted for free (github.com/gumloop)
guMCP is an open-source collection of Model Context Protocol (MCP) servers that can be run both remotely and locally.
Show HN: WhatsApp MCP Server (github.com/lharries)
This is a Model Context Protocol (MCP) server for WhatsApp.
HTTPS RR in Curl (haxx.se)
RFC 9460 describes a DNS Resource Record (RR) named HTTPS. To highlight that it is exactly this DNS record called HTTPS we speak of, we try to always call it HTTPS RR using both words next to each other.
IO_uring Network Zero-Copy Receive Lands in Linux 6.15 (phoronix.com)
IO_uring continues maturing while being one of the greatest innovations within the Linux kernel in the past number of years. With Linux 6.15, IO_uring is getting even more interesting with introducing network zero-copy receive support. With this new code a 200G link could be saturated off a single CPU core in a recent demonstration.
Kalua: An OpenWrt extension for building large mesh-networks (github.com/bittorf)
hardware-independent openWRT-extension (using POSIX-shell as main-language) for setting up, monitor and manage many, large wifi-mesh-networks for different locations including billing, captive portal / splash screen / weblogin, accounting, data retention and layer7/8-QoS
.arpa, rDNS and a few magical ICMP hacks (sdomi.pl)
Through Project SERVFAIL, I became aware that there are a few individuals, not just ISPs, who host their own in-addr.arpa. and ip6.arpa. zones. It never occurred to me that I could ask bgp.wtf, my beloved ISP, to delegate me a zone like this - until one faithful late-night chat.ARPA zones are usually totally out of reach for individuals, so I was absolutely hyped when one of our netadmins agreed to delegate me the ip6.arpa. zone for my whole /48 IPv6 range.
Bolt Graphics Zeus a New GPU Architecture with Up to 2.25TB of Memory and 800GbE (servethehome.com)
Bolt Graphics Zeus The New GPU Architecture with up to 2.25TB of Memory and 800GbE
OpenWrt Two Approval (openwrt.org)
Started by: John Crispin
HTTP/2 zero latency write coalescing (nitely.github.io)
Write coalescing is an I/O optimization technique where multiple small writes are merged into a single larger write before sending data to the underlying system. In Http/2, we can batch multiple frames from one or more streams and send them all at once. This reduces the number of syscalls, and avoids sending tiny TCP packets under load.
DIY PTP Grandmaster Clock with a Raspberry Pi (jeffgeerling.com)
tl;dr: I set up an open source Time Pi project to build a stratum 1 PTP and NTP timeserver using a Raspberry Pi.
Show HN: Hexi – Modern header-only network binary serialisation for C++ (github.com/EmberEmu)
Hexi is a lightweight, header-only C++23 library for safely handling binary data from arbitrary sources (but primarily network data). It sits somewhere between manually memcpying bytes from network buffers and full-blown serialisation libraries.
Cross-Platform P2P Wi-Fi: How the EU Killed AWDL (ditto.com)
This post investigates how we got from Wi-Fi Direct to AWDL to Wi-Fi Aware, what makes Wi-Fi Aware technically superior, and why this shift unlocks true cross-platform peer-to-peer connectivity for developers.
Show HN: Dish: A lightweight HTTP and TCP socket monitoring tool written in Go (github.com/thevxn)
tiny one-shot monitoring service remote configuration of independent 'dish network' (via -source ${REMOTE_JSON_API_URL} flag) fast concurrent testing, low overall execution time, 10-sec timeout per socket by default 0 dependencies
Cilium eBPF-Go on Windows (ebpf-go.dev)
The library has basic support for interacting with eBPF for Windows (efW). Things are subject to change because eBPF for Windows has not had a stable (signed) release yet.
Postel's Law and the Three Ring Circus (alexgaynor.net)
Postel’s Law famously states that “implementations should follow a general principle of robustness: be conservative in what you do, be liberal in what you accept from others.”
If you get the chance, always run more extra network fiber cabling (utoronto.ca)
Some day, you may be in an organization that's about to add some more fiber cabling between two rooms in the same building, or maybe two close by buildings, and someone may ask you for your opinion about many fiber pairs should be run.
Calling MCP Servers the Hard Way (deadprogrammersociety.com)
Lately, all of the cool kids seem to be doing something with the newest protocol on the block, Model Context Protocol. Being neither cool, nor a kid, has not stopped me from doing the same of course.
Multiple vulnerabilities in ingress-Nginx (Score 9.8) (groups.google.com)
Multiple issues have been discovered in ingress-nginx that can result in arbitrary code execution in the context of the ingress-nginx controller.
IETF setting standards for AI preferences (ietf.org)
The “ietf-ipv6-mostly” WiFi SSID at IETF 122 Bangkok will allow devices to signal a preference for IPv6-only operation while still supporting IPv4 (if needed) via translation mechanisms. Onsite participants are encouraged to try this service when they connect to the IETF meeting network.
Cake (bufferbloat.net)
Cake is the rollup of 3 years of deployment experience of the htb + fq_codel based sqm-scripts SQM for aqm/fq/qos inbound and outbound bufferbloat management.
TLS Handshake on Sockets (C++) (medium.com)
There are numerous articles on the internet about the TLS handshake algorithm. However, many of them only provide a superficial description. In this article, we will explore a C++ implementation of a specific cipher. This source code relies solely on sockets for networking and utilizes the OpenSSL library exclusively for encryption (RSA, AES, SHA).
IronRDP: a Rust implementation of Microsoft's RDP protocol (github.com/Devolutions)
A collection of Rust crates providing an implementation of the Microsoft Remote Desktop Protocol, with a focus on security.
The Asus Ascent GX10 a Nvidia GB10 Mini PC with 128GB of Memory and 200GbE (servethehome.com)
NVIDIA’s platform, previously codenamed Project DIGITS, is a hit at GTC 2025. Apparently, big customers are asking if they can get a DGX Spark thrown in with large GPU purchases. The reason is simple, this is a mini PC form factor that packs an Arm CPU and a Blackwell GPU that are co-packaged, a 128GB LPDDR5x shared memory, multiple ports of USB4, and even a ConnectX-7 NIC for 200GbE clustering.