Hacker Newsnew | past | comments | ask | show | jobs | submit | hrjet's commentslogin

I would be also interested in mini vacuum packets, that one could strap to their car or backpack, and make it a touch lighter.

Just imagine the energy savings!


While exodus is a good minimum bar, and I use it, its list of detected trackers is incomplete. I have reported two known trackers, but their signatures are not yet detected by exodus.

It is difficult to know these signatures because the good trackers share their SDK only under an NDA.


Try flatpak with flatseal

The permissions are not interactive, you can set them once and forget.


That's why Matrix is better. Open server, open client, open protocol.

Host your own server, build your own client, and yet be able to talk with everyone else.


For the first problem, you need to ensure that you exercise the muscles along with fasting, to nudge the body away from salvaging proteins from muscle tissue. (Not a bio chemist either, this is what I have read in most articles about intermittent fasting)


What has been the amount of devaluation in USD, post covid?

Is there a ready number we can just plugin to recalculate the value of one's assets?

For example, if I held 100usd worth of a stock in March 2020, what would its worth be in Jan 2021, just due to currency devaluation?


That’s an interesting question, because different assets are inflating at different rates...

Also, we are in a new experiment where every government is trying to devalue at the same time to prop up their covid economies.


> But there really is need for another browser engine. If alone to prove that writing a new one from scratch is possible in 2020.

We have been developing one here [1]. It's a long way to go, but hey, it's open source!

And we had found it working fine on a RaPi 2 couple of years back.

[1] https://gngr.info


I presume that when you keep focusing on HTML and CSS, it can find a good niche, while being a achievable target.

Rendering of HTML and CSS is a tough task, but can be very performant and doable without any APIs and JS/ECMA.

Thanks for the work. Interesting project!


htmx sounds great! I am interested in this from the security angle. If browsers were to natively support htmx (or something similarly declarative), it might reduce the need for Javascript and hence improve security.


It definitely helps improve your security complexity over things like, say, GraphQL, where row-level security is necessary to prevent people from firing off random queries from the browser console.

There are a couple of places in the code where eval()/Function code are fire off which require some security-thinking:

https://htmx.org/attributes/hx-trigger/

hx-trigger evaluate expressions for the event filter. This typically isn't an issue since you would be unlikely to use user input in this context.

https://htmx.org/attributes/hx-vars/

hx-vars evaluate expressions to include in the request. This is a bit more dangerous, because you might try to pass values through with this mechanism. If this includes user input then you should use hx-vals instead:

https://htmx.org/attributes/hx-vals/


Would appreciate thoughts on this alternative that we are developing:

https://github.com/librecaptcha/lc-core

The idea is to develop a framework for Captcha generators. A few sample generators are provided out of the box, but new ones can be written easily. The framework takes care of storing entries in the database, serving them as challenges through an HTTP API, and checking the responses.

From the README, why libreCaptcha:

  * Eliminate dependency on a third-party
  * Respecting user privacy
  * More variety of CAPTCHAs, tailored to your audience
The implementation has a long way to go (it was written by students trying to learn Scala), but would appreciate thoughts on the concept.


If you give me a captcha generator I can give you a captcha solver. You have no idea


Agreed; a determined programmer could solve almost any Captcha given sufficient time and resources.

But we are not trying to create an unsolvable Captcha. For those websites that need something good enough to deter generic bots while not compromising privacy of their users, this might be a good enough alternative to reCaptcha.

Imagine a docker image which just works with out-of-the-box generators. Those who need more variety could create a custom generator with Javascript and drop it into a docker volume.


e.g. the difference between a general intelligence and the AI we have today. Generators that vary what is being asked from site to site make generic solutions much more difficult.


GC should be available in WASM in the future. And, not all applets needed JNI.

In other words, this is enabling a subset of well behaved applets, while excluding the naughty (or advanced) applets.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: