Hacker News with Generative AI: Security

Tails warns about balenaEtcher, recommends Rufus (tails.net)
We replaced balenaEtcher with Rufus in our installation instructions for Windows to solve privacy concerns with balenaEtcher.

Security, Software, Operating Systems, Windows

11 points by top_sigrid 3 hours ago | 0 comments

A password generator inspired by the Xkcd password spec (github.com/beala)
This python script implements the xkcd password spec.

Security, Python, Programming, Open Source

30 points by keepamovin 6 hours ago | 58 comments

DOGE has 'god mode' access to government data (theatlantic.com)
DOGE has achieved “God mode.” That’s according to an employee in senior leadership at USAID, who told us that Elon Musk’s Department of Government Efficiency now has full, unrestricted access to the agency’s digital infrastructure—including total control over systems that Americans working in conflict zones rely on, the ability to see and manipulate financial systems that have historically awarded tens of billions of dollars, and perhaps much more.

Cryptocurrency, Government, Security, Elon Musk

670 points by perihelions 12 hours ago | 1250 comments

Subsea fibre optic cable deliberately cut for the 2nd time between N.S. and N.L (cbc.ca)
Telecommunications giant Bell is exploring surveillance options in the Gulf of St. Lawrence after one of its subsea fibre optic cables between Cape Breton Island and Newfoundland's west coast was recently severed for the second time.

Telecommunications, Canada, Security, Infrastructure

31 points by awnird 22 hours ago | 1 comments

How robust against spam should side projects be? (ycombinator.com)
I am just getting into making my first project as a hobbyist, and it involves user image uploads.

Side Projects, Security, User Experience, Spam

11 points by cyjackx 1 day ago | 8 comments

Greg K-H: "Writing new code in Rust is a win for all of us" (kernel.org)
As someone who has seen almost EVERY kernel bugfix and security issue for the past 15+ years (well hopefully all of them end up in the stable trees, we do miss some at times when maintainers/developers forget to mark them as bugfixes), and who sees EVERY kernel CVE issued, I think I can speak on this topic.

Rust, Linux Kernel, Security, Programming Languages

138 points by mustache_kimono 1 day ago | 37 comments

The Unbrickable Pledge (usetrmnl.com)
We made a promise to never brick your device. Here's a progress report:1. July 2024 - open sourced our firmware2. December 2024 - built or commissioned BYOS clients in Ruby, Elixir, and Python3. January 2025 - began selling BYOD licenses - DIY build docs coming soon4. February 2025 - launched Framework, a beautiful and free UI kit 5.

Software, Open Source, Security, Hardware

99 points by MBCook 2 days ago | 60 comments

"Uber for Armed Guards" Surges After UnitedHealthcare CEO Assassination (gizmodo.com)
Protector, an app that lets you book armed goons the same way you’d call for an Uber, is having a viral moment.

Security, Apps, Crime, Violence, Business

43 points by HiroProtagonist 2 days ago | 38 comments

IdentityServer4 wiped from GitHub by Duende team (reddit.com)

Open Source, Security, Software, Identity Management

7 points by wapasta 2 days ago | 1 comments

AWS paywalling select knowledge base articles, requiring Premium Support plan (repost.aws)
I use kubectl commands to connect to the Amazon Elastic Kubernetes Service (Amazon EKS) API server. I received the message "error: You must be logged in to the server (Unauthorized)".

AWS, Kubernetes, Security, Cloud Computing, Support

191 points by gpi 2 days ago | 75 comments

MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client (marc.info)
We discovered two vulnerabilities in OpenSSH:

Security, OpenSSH, Vulnerability

6 points by birdculture 2 days ago | 0 comments

Pi-hole v6 (pi-hole.net)
We’re excited to announce the general release of Pi-hole v6!

New Releases, Software, Networking, Security

550 points by tkuraku 2 days ago | 293 comments

Rewriting essential Linux packages in Rust (lwn.net)
Most Linux systems depend on a suite of core utilities that the GNU Project started development on decades ago and are, of course, written in C. At FOSDEM 2025, Sylvestre Ledru made the case in his main stage talk that modern systems require safer, more maintainable tools.

Rust, Linux, Programming Languages, Operating Systems, Security

7 points by fofoz 2 days ago | 0 comments

Brian Krebs: I've been on Mastodon more than 2 years now (infosec.exchange)

Social Media, Security, Mastodon

24 points by sohkamyung 2 days ago | 1 comments

Reviewing the cryptography used by Signal (soatok.blog)
Last year, I urged furries to stop using Telegram because it doesn’t actually provide them with any of the privacy guarantees they think it gives them.

Cryptography, Privacy, Security, Messaging Apps

167 points by todsacerdoti 2 days ago | 142 comments

The Fall of FiveM (fivem.team)
Behind the friendly, smiling, snail mascot of FiveM - you'll find many dark secrets.

Gaming, Online Communities, Controversy, Hacking, Security

71 points by ChocolateGod 2 days ago | 19 comments

If you work at GitHub security, you are bad at your job (ycombinator.com)
This is getting to be embarrassing. It’s been almost a week of trying to alert GitHub to multiple spoofed repositories serving malware.

Security, GitHub, Malware

13 points by joshdotsmith 3 days ago | 0 comments

Setting up a trusted, self-signed SSL/TLS certificate authority in Linux (previnder.com)
With OpenSSL, it’s pretty easy to generate a simple self-signed TLS certificate. Just run the following command:

Security, Linux, SSL/TLS, Certificates, OpenSSL

140 points by previnder 3 days ago | 37 comments

Google's new self-installed Android app warns you about nude images in Messages (androidauthority.com)
Google is rolling out a new Android System SafetyCore app that’ll power Sensitive Content Warnings in Google Messages.

Android, Google, Privacy, Security, Messaging

11 points by toss1 3 days ago | 8 comments

Open source projects could sell SBOM fragments (thomas-huehn.com)
Scanning source files for licensing information (because the package managers‘ metadata is insufficient) is a lot of work, and a lot of wasted effort, because only rarely do companies pool their resources.

Open source, Software Development, Licensing, Security, Collaboration

113 points by Tomte 3 days ago | 62 comments

Decentralized Naming and Certificate Authority (handshake.org)
Handshake is a decentralized, permissionless naming protocol where every peer is validating and in charge of managing the root DNS naming zone with the goal of creating an alternative to existing Certificate Authorities and naming systems.

Decentralization, Blockchain, DNS, Certificate Authorities, Security

17 points by nkjoep 3 days ago | 1 comments

Doge-affiliated employee expected to seek access to IRS system (nbcnews.com)
An IRS employee who is affiliated with the Department of Government Efficiency is expected to seek access to an IRS system that houses sensitive taxpayer information, according to an administration official.

Government, Security, Cryptocurrency, IRS

54 points by doener 3 days ago | 32 comments

All Kindles can now be jailbroken (kindlemodding.org)
All Kindles can now be jailbroken

E-Readers, Security, Hacking

1330 points by lumerina 4 days ago | 416 comments

Portable drone jammer uses a Raspberry Pi tactical Software Defined Radio (tomshardware.com)

Drones, Raspberry Pi, Security

102 points by protik49 4 days ago | 45 comments

Caddy – The Ultimate Server with Automatic HTTPS (caddyserver.com)
The Ultimate Server makes your sites more secure, more reliable, and more scalable than any other solution.

Web Servers, Security, HTTPS, Software

561 points by huang_chung 4 days ago | 227 comments

Dismissed nuclear bomb specialists recalled by Energy Department (fortune.com)

Nuclear Weapons, Government, Energy, Security

12 points by an_guy 4 days ago | 0 comments

SSH Rate Limiting with Pam and Nftables (truschnigg.info)
Anyone who operates an SSH server somewhere on the Internet is bound to suffer a relentless torrent of inbound connections, probably from some botnet or another, trying to log in with the myriad credentials that leaked from other systems and networks.

Security, Network Administration, Linux, SSH

4 points by c0l0 4 days ago | 0 comments

Gixy: Nginx Configuration Static Analyzer (github.com/dvershinin)
Gixy is a tool to analyze Nginx configuration. The main goal of Gixy is to prevent security misconfiguration and automate flaw detection.

Security, Nginx, Tools, Software

170 points by mmsc 5 days ago | 28 comments

Create a QubesOS Gaming HVM with GPU PCI passthrough (2023) (qubes-os.org)

Virtualization, Gaming, Security, Hardware, QubesOS

92 points by transpute 5 days ago | 28 comments

Is the ArXiv safe from the current US Government attacks? (mathstodon.xyz)

Science, Academia, Government, Security

127 points by ColinWright 5 days ago | 101 comments