Hacker News with Generative AI: Security

Why one would use Qubes OS? (2023) (dataswamp.org)
Hello, I've been talking a lot about Qubes OS lately but I never explained why I got hooked to its offer. It's time to tell why I like it.

Operating Systems, Security, Privacy

8 points by lemper 4 hours ago | 3 comments

Ubuntu Linux impacted by decade-old 'needrestart' flaw that gives root (bleepingcomputer.com)
Five local privilege escalation (LPE) vulnerabilities have been discovered in the needrestart utility used by Ubuntu Linux, which was introduced over 10 years ago in version 21.04.

Security, Ubuntu, Linux, Vulnerabilities

10 points by gregjor 7 hours ago | 3 comments

Rust Foundation Collaborates with AWS to Verify Rust Standard Libraries (rust-lang.org)
Today, Amazon Web Services (AWS) announced a collaborative initiative aimed at verifying the safety of the Rust standard libraries.

Rust, Programming Languages, Security, Cloud Computing, AWS

7 points by mjb 8 hours ago | 0 comments

Doxx/Darkflare: DarkFlare TCPoCDN (TCP over CDN) (github.com/doxx)

Networking, Security, Open Source, Cloud Computing

70 points by josephscott 9 hours ago | 15 comments

Show HN: XHR anti bot bypass (xhr.dev) (xhr.dev)
Let your bot browse like a human

Web Development, Bots, Security, Anti-bot

18 points by skilbjo 18 hours ago | 2 comments

Let's not Encrypt (orlitzky.com)

Cryptography, Security, Internet

3 points by lr0 20 hours ago | 3 comments

Danish Navy stopped a Chinese ship suspected of damaging undersea cables (defence24.com)
The Danish Navy has detained the Chinese bulk carrier Yi Peng 3, which is suspected of damaging telecommunications cables in the Baltic Sea.

International Relations, Security, China, Denmark, Telecommunications

84 points by donohoe 21 hours ago | 3 comments

Windows 365 Link Preview (microsoft.com)
Meet Windows 365 Link—the Cloud PC device that connects securely to Windows 365 in seconds.

Windows, Cloud Computing, Security

10 points by taubek 1 day ago | 4 comments

Let's Encrypt is 10 years old now (letsencrypt.org)
Vital personal and business information flows over the Internet more frequently than ever, and we don’t always know when it’s happening. It’s clear at this point that encrypting is something all of us should be doing. Then why don’t we use TLS (the successor to SSL) everywhere? Every browser in every device supports it. Every server in every data center supports it. Why don’t we just flip the switch?

Security, Encryption, Internet, Technology, Anniversary

487 points by gslin 1 day ago | 177 comments

Show HN: DDoS Photon Cannon – A Toy DDoS (codeberg.org)
DDoS Photon Cannon is a DDoS C&C server and bot program built for EDUCATIONAL PURPOSES ONLY. DDoS Photon Cannon is BARE BONES. It currently just sends HTTP GET requests to the target.

Security, Networking, Education, Tools

7 points by horeszko 1 day ago | 1 comments

OpenJDK Authorization (github.com/pfirmstone)
This project's objectives are to maintain a community fork of OpenJDK that retains Authorization functionality, no attempt will be made to sandbox untrusted code, instead, the goals of the project are:

Open Source, Java, Security

14 points by pfirmst 1 day ago | 9 comments

GitHub Secure Open Source Fund (github.blog)
Today, we’re announcing the call for applicants for the GitHub Secure Open Source Fund, a program designed to financially and programmatically improve security and sustainability of open source projects.

Open Source, Security, Funding, GitHub

4 points by wicket 1 day ago | 0 comments

Dumping Keys from the Linux Key Retention Service (ivision.com)
On May 22, 2022, the Kernel Key Retention Service (KKRS) was released as part of Linux 5.18. This introduced an in-kernel key management and retention feature, which provided a secure method for storing secrets on Linux systems.

Linux, Security, Key Management, Operating Systems

4 points by almostjson 2 days ago | 0 comments

Show HN: WASM runtime for sandboxing Python code (github.com/ErikKaum)

WebAssembly, Python, Security, Sandboxing

8 points by erikkaum 2 days ago | 2 comments

Joint Declaration by Ministers of Germany, France, Poland, Italy, Spain, UK (auswaertiges-amt.de)
In Warsaw today, the Foreign Ministers of the Weimar Triangle from Germany, France and Poland discussed Europe’s security policy challenges with the Foreign Ministers of Italy, Spain and the United Kingdom as well as the designated High Representative of the European Union for Foreign Affairs and Security Policy.

Politics, International Relations, Europe, Diplomacy, Security

120 points by consumer451 2 days ago | 206 comments

Hyrumtoken: A Go package to encrypt pagination tokens (github.com/ssoready)
hyrumtoken is a Go package to encrypt pagination tokens, so that your API clients can't depend on their contents, ordering, or any other characteristics.

Go, Encryption, Security, API, Pagination

65 points by noleary 2 days ago | 53 comments

mesg(1) and write(1) no longer provided by Debian util-linux (debian.org)
Chatting is hopefully done using more security facilities, not by overwriting each other's terminal state anymore.

Security, Linux, Debian, Utilities, Software

5 points by greyface- 2 days ago | 0 comments

Security means securing people where they are (yossarian.net)
Standard disclaimer: These are my personal opinions, not the opinions of my employer, PyPI, or any open source I projects I participate in (either for funsies or because I’m paid to). In particular, nothing I write below can be interpreted to imply (or imply the negation of) similar opinions by any of the above, except where explicitly stated.

Security, Cybersecurity, Opinion, Technology

11 points by woodruffw 3 days ago | 0 comments

UK undersea cables worth £7.4T a day under 'real threat' from Russia (independent.co.uk)
The UK’s vast web of undersea cables, interconnectors and pipelines are under a “very real and present threat” from Russia, a former Navy chief told Parliament.

Security, Geopolitics, Infrastructure, Russia, UK

9 points by toss1 3 days ago | 0 comments

Two undersea cables in Baltic Sea disrupted (cnn.com)

Undersea Cables, Baltic Sea, Infrastructure, Security

576 points by mooreds 3 days ago | 1001 comments

Finland Says Subsea Germany Link Serving Data Centers Is Severed (bnnbloomberg.ca)
An undersea data cable connecting Finland and Germany was severed in the early hours of Monday by what was likely an external impact, authorities in the Nordic country said.

Data Centers, Finland, Germany, Infrastructure, Security

6 points by kimi 3 days ago | 2 comments

Undergrad thought he had mastered Unix in weeks. Then he discovered rm -rf (theregister.com)
Miles’ version of the .logout file included the notoriously dangerous rm -rf ~* command, which erases everything it can find in a user’s home directory.

Unix, Programming, Mistakes, Security, Software

24 points by thesuperbigfrog 3 days ago | 27 comments

Nothing-up-my-sleeve number (wikipedia.org)
In cryptography, nothing-up-my-sleeve numbers are any numbers which, by their construction, are above suspicion of hidden properties.

Cryptography, Mathematics, Security

43 points by avinassh 3 days ago | 12 comments

eBPF Verifier Code Review – NCC Group [pdf] (nccgroup.com)

Security, Code Review, eBPF

14 points by ghostpepper 3 days ago | 0 comments

Reverse Engineering iOS 18 Inactivity Reboot (blogspot.com)
iOS 18 introduced a new inactivity reboot security feature. What does it protect from and how does it work? This blog post covers all the details down to a kernel extension and the Secure Enclave Processor.

Security, iOS, Reverse Engineering, Operating Systems

510 points by moonsword 3 days ago | 167 comments

What to Use Instead of PGP (soatok.blog)
It’s been more than five years since The PGP Problem was published, and I still hear from people who believe that using PGP (whether GnuPG or another OpenPGP implementation) is a thing they should be doing.

Cryptography, Security, Privacy, Technology

6 points by marbu 3 days ago | 1 comments

Will passkeys ever replace passwords? Can they? Here's why they should (theregister.com)
Will passkeys ever replace passwords? Can they?

Security, Passwords, Authentication, Technology

36 points by rntn 4 days ago | 74 comments

Defending Open Source: Protecting the Future of WordPress (automattic.com)

Open Source, WordPress, Security

20 points by stefankuehnel 4 days ago | 2 comments

Losing NFS locks and the SunOS SIGLOST signal (utoronto.ca)
NFS is a network filesystem that famously also has a network locking protocol associated with it (or part of it, for NFSv4). This means that NFS has to consider the issue of the NFS client losing a lock that it thinks it holds.