|
Marginalia Search very recently gained the ability to filter results by Autonomous System, not only searching by ASN but by the organization information for that AS. At a glance this seems like a somewhat frivolous feature, but it has interesting effects. Autonomous Systems are part of the Internet’s routing infrastructure. If your mental model of an IP number is that they are the phone number of the computer, this is something akin to a ..
|
|
Exploring OverTheWire: Level 7 to Level 8 - Bandit Challenge
-
akashrajpurohit.com
-
2 years ago
-
eng
Welcome back to our thrilling journey through the Bandit Challenge! In this blog post, we'll conquer Level 8 by searching for a password hidden within a file using specific keywords. Join me as we navigate the file system, employ powerful commands, and locate the password next to the word 'millionth'. Let's dive in!
|
|
I was always excited about the possibilities recent developments in LLM-powered workflows provide. At the same time, I was also wary about the larger implications of these things, from the whole theft problem to wondering “I wonder when this thing is going to become self-aware”.
|
|
In this article, you’ll learn all about command injection, including how this vulnerability can manifest in your programs. You'll also learn about common security best practices to safeguard your Python apps from command injection attacks.
|
|
Assumed Audience : Hackers and suits in the tech industry. Discuss on Hacker News . Epistemic Status : Confident. The Introduction So I saw a post today, and it’s so wrong I was about to post a ranty missive on Hacker News. But my ranty missives get long, so here’s a blog post instead. tl;dr : Code is an asset, and tech debt is when the software and its internal model do not match the problem and the mental model, or w..
|
|
Assumed Audience : Hackers and suits in the tech industry. Discuss on Hacker News . Epistemic Status : Confident. The Introduction So I saw a post today, and it’s so wrong I was about to post a ranty missive on Hacker News. But my ranty missives get long, so here’s a blog post instead. tl;dr : Code is an asset, and tech debt is when the software and its internal model do not match the problem and the mental model, or w..
|
|
Assumed Audience : Hackers and suits in the tech industry. Discuss on Hacker News . Epistemic Status : Confident. The Introduction So I saw a post today, and it’s so wrong I was about to post a ranty missive on Hacker News. But my ranty missives get long, so here’s a blog post instead. tl;dr : Code is an asset, and tech debt is when the software and its internal model do not match the problem and the mental model, or w..
|
|
Assumed Audience : Hackers and suits in the tech industry. Discuss on Hacker News . Epistemic Status : Confident. The Introduction So I saw a post today, and it’s so wrong I was about to post a ranty missive on Hacker News. But my ranty missives get long, so here’s a blog post instead. tl;dr : Code is an asset, and tech debt is when the software and its internal model do not match the problem and the mental model, or w..
|
|
Assumed Audience : Hackers and suits in the tech industry. Discuss on Hacker News . Epistemic Status : Confident. The Introduction So I saw a post today, and it’s so wrong I was about to post a ranty missive on Hacker News. But my ranty missives get long, so here’s a blog post instead. tl;dr : Code is an asset, and tech debt is when the software and its internal model do not match the problem and the mental model, or w..
|
|
Assumed Audience : Hackers and suits in the tech industry. Discuss on Hacker News . Epistemic Status : Confident. The Introduction So I saw a post today, and it’s so wrong I was about to post a ranty missive on Hacker News. But my ranty missives get long, so here’s a blog post instead. tl;dr : Code is an asset, and tech debt is when the software and its internal model do not match the problem and the mental model, or w..
|
|
Assumed Audience : Hackers and suits in the tech industry. Discuss on Hacker News . Epistemic Status : Confident. The Introduction So I saw a post today, and it’s so wrong I was about to post a ranty missive on Hacker News. But my ranty missives get long, so here’s a blog post instead. tl;dr : Code is an asset, and tech debt is when the software and its internal model do not match the problem and the mental model, or w..
|
|
What are those embeddings you hear about every day? Find out in this article - many buzzwords will cease to be black magic 🧙
|
Registration for the DEF CON Training 2024 in Las Vegas is open! Join us August 12-13 right after DEF CON 32 for some two-day, deep-dive technical sessions from some world class trainers. All the details are at training.defcon.org - reserve your spot!
|
|
This holiday season is a good time to ask the same question in a different context: are your organization’s practices with AI, application security tooling, and other security-related practices putting you on the security naughty or nice list this year?
|
|
I undid it. I’m still using my desktop (mostly remotely) and I do love my Lenovo X1 Carbon. But my primary machine is back to the Mac Book Pro.
|
|
I undid it. I’m still using my desktop (mostly remotely) and I do love my Lenovo X1 Carbon. But my primary machine is back to the Mac Book Pro.
|
|
I undid it. I’m still using my desktop (mostly remotely) and I do love my Lenovo X1 Carbon. But my primary machine is back to the Mac Book Pro.
|
|
Workaround for MySQL’s “can’t specify target table for update in FROM clause” Error
-
blog.jooq.org
-
2 years ago
-
eng
In MySQL, you cannot do this: The UPDATE statement will raise an error as follows: SQL Error [1093] [HY000]: You can’t specify target table ‘t’ for update in FROM clause People have considered this to be a bug in MySQL for ages, as most other RDBMS can do this without any issues, including MySQL clones: … Continue reading Workaround for MySQL’s “can’t specify target table for update in FROM clause” Error →
|
|
Discover how Retrieval Augmented Generation enables large language models (LLMs) to provide accurate answers based on expertise.
|
|
The holiday season brings a huge spike in traffic for many companies. While increased traffic is great for retail business, it also puts infrastructure reliability to the test. At times when every second of uptime is of elevated importance, how can engineering teams ensure zero downtime and performant applications? Here are some key strategies and […]
|
|
I left Facebook to get away from all the hate. But there’s community information there I find valuable and so I signed up again (after years away). And my account is suspended! Somehow I didn’t follow their community standards EVEN BEFORE I LOGGED IN! I can tell you that all I ever did was leave Facebook and delete my account there. I certainly never “violated thier community standards” (as if they really have them with the hate they promot..
|
|
I left Facebook to get away from all the hate. But there’s community information there I find valuable and so I signed up again (after years away). And my account is suspended! Somehow I didn’t follow their community standards EVEN BEFORE I LOGGED IN! I can tell you that all I ever did was leave Facebook and delete my account there. I certainly never “violated thier community standards” (as if they really have them with the hate they promot..
|
|
A brief guide outlining the process of setting up and running S3 Batch Operations Jobs with Lambda integration.
|
|
Somewhere in my adolescence I got stuck with the notion that functional languages were slow while languages like C were fast. Now, a good C programmer can eke more performance out of their code than probably anyone else, but the cost you pay to keep your code correct goes exponential as you get closer and closer to the machine. Functional languages abstract a lot away from the machine. Higher languages in general abstract away the machine....
|
|
In the peak years of Bay Area tech offices, open offices were all the rage. As companies expanded, a physical division emerged between departments. Sales and support teams thrived in a buzzing atmosph...
|
|
Hi, The Paradox of Freedom: The more options we have, the more anxious we become that we chose the wrong thing. ~ Mark Manson Mark Manson ist kein Softwareentwickler. Er ist Autor. Sein Bestseller: “THE SUBTLE ART OF NOT GIVING A F*CK” Er gibt Selbsthilfe für Menschen, die Selbsthilfe Bücher hassen. In dem Paradoxon bezieht er sich auf Lebensentscheidungen. Beispielsweise fällt es vielen Menschen schwer eine Liebesbeziehung übe..
|
|
A simple guide to reading in 9 simple steps Navigate to the desired article. Dismiss the GDPR banner It may seem safe to start reading, but you need to wait about 10 seconds as the various ad auctions resolve and scripts load in Wait while the article is populated with ads. While the article is in front of you, there is no point to starting to read yet, as the minute’s worth of layout shift will make you lose your place. Once the layout h....
|
|
The Marginalia Crawler has seen improvements! A long term problem with the crawler design is that if for whatever reason the crawler shuts down, then it needs to re-start fetching whatever domains it was currently traversing during the termination from zero. This isn’t fantastic, since not only does crawling a website take a fair bit of time, it’s a nuisance for the server admins to re-crawl stuff that was already fetched, and a real liab..
|
|
One (more) Year with Ember: Thoughts on Ember vs React, Eight Years Later
-
0xadada.pub
-
2 years ago
-
eng
Six years ago, I wrote a summary of my experience working with Ember for a year . I had been with Cinch Financial for a year, building their web & mobile apps with Ember and Elixir/Phoenix. After Cinch I joined Salsify, a leader in the Ember ecosystem, and shipped some great products built with Ember during my five-year tenure. I built their Catalog Sites product using an Ember admin app and a React/Next.js frontend. Building a single prod....
|
|
A brief guide outlining the process of setting up and running S3 Batch Operations Jobs with Lambda integration.
|
|
Somewhere in my adolescence I got stuck with the notion that functional languages were slow while languages like C were fast. Now, a good C programmer can eke more performance out of their code than probably anyone else, but the cost you pay to keep your code correct goes exponential as you get closer and closer to the machine. Functional languages abstract a lot away from the machine. Higher languages in general abstract away the machine....
|
We reached the end of another year, and generally, this is a good time to look back, to evaluate what was done, what wasn’t done and eventually plan ahead. While dedicating some time to the first task, it occurred to me that I should share some of this stuff. I doubt it will be useful […]
|
|
It turns out that you can’t trust any USB type A power adapter to be within spec. I have a Catit Flower Fountain for my two adorable cats. The idea of a water fountain for cats may sound odd, but having one really helps with cats staying hydrated and that alone avoids all sorts of health issues. At one point I wanted to see if I could create a sort of a DIY UPS for the water fountain. It would be quite bad if I was at work and ....
|
|
I know that people rave about GMail's spam filtering, but it didn't work for me: I was seeing too many false positives. I personally prefer to see some false negatives (i.e. letting some spam through), but to reduce false positives as much as possible (and ideally have a way to tune this). Here's the local SpamAssassin setup I have put together over many years. In addition to the parts I describe here, I also turn off greylisting on m....
|
|
This blog aims to give a short overview of popular SAML vulnerabilities and how they can be remediated with some examples.
|
|
Vulnerability disclosure: Which comes first, the security bug in PHP or the CVE?
-
snyk.io
-
2 years ago
-
eng
In this post, we cover the CVE reporting process using the Use After Free vulnerability type as an example.
|
|
Finite-sample Gaussian efficiency: Shamos vs. Rousseeuw-Croux Qn scale estimators
-
aakinshin.net
-
2 years ago
-
eng
This post compares the finite-sample Gaussian efficiency of the Shamos estimator and the Rousseeuw–Croux $Q_n$. Pragmastat adopts the Shamos approach as Spread — balancing robustness and efficiency with a 29% breakdown point. Confidence intervals are available via SpreadBounds . pragmastat.dev github.com/AndreyAkinshin/pragmastat Previously , we compared the finite-sample Gaussian efficiency of the Rousseeuw-Croux scale est....
|
|
It seems no matter how long I work with the command line, every once in a while I find handy utilities I've never encountered before. Most people have heard about the bird coreutils , that's where utilities such as echo, cat, and others come from. But did you know about moreutils ?
|