[RSS] Chop, Chop, Chop: Trying Out VR for Woodworking

https://hackaday.com/2025/02/15/chop-chop-chop-considering-vr-for-woodworking/

🫣 🍿

master: welcome to my Smart Home

student: wow. how is the light controlled?

master: with this on-off switch

student: i don't see a motor to close the blinds

master: there is none

student: where is the server located?

master: it is not needed

student: excuse me but what is "Smart" about all of this?

master: everything.

in this moment, the student was enlightened

Why is the nonsense phrase “vegetative electron microscopy” turning up in fake scientific papers? Add two-column formatting to the list of things AI doesn’t understand. https://retractionwatch.com/2025/02/10/vegetative-electron-microscopy-fingerprint-paper-mill/
Via @Researchbuzz

Project: golang/go https://github.com/golang/go
File: src/cmd/vendor/golang.org/x/tools/go/types/objectpath/objectpath.go:172 https://github.com/golang/go/blob/refs/tags/go1.23.4/src/cmd/vendor/golang.org/x/tools/go/types/objectpath/objectpath.go#L172

func (enc *Encoder) For(obj types.Object) (Path, error)

SVG:
dark https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fgolang%2Fgo%2Fblob%2Frefs%2Ftags%2Fgo1.23.4%2Fsrc%2Fcmd%2Fvendor%2Fgolang.org%2Fx%2Ftools%2Fgo%2Ftypes%2Fobjectpath%2Fobjectpath.go%23L172&colors=dark
light https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fgolang%2Fgo%2Fblob%2Frefs%2Ftags%2Fgo1.23.4%2Fsrc%2Fcmd%2Fvendor%2Fgolang.org%2Fx%2Ftools%2Fgo%2Ftypes%2Fobjectpath%2Fobjectpath.go%23L172&colors=light

Oh my god Internet Archive you magnificent bastards what did you do, and PLEASE KEEP DOING IT FOREVER

Emacs made me extensively use LLM's to search for answers and watch videos to understand features. This is a first!

I think the reason is that I lack the meta-knowledge about where to look for information. This is in part because Emacs tutorials prevalent in search results don't directly apply to Space Emacs and I don't know yet how to translate between the two worlds.

I think the same underlying issues in part explain the popularity of LLM's and video tutorials. It seems an important personal decision if we deem a topic important enough to invest in acquiring the missing meta-knowledge. It seems an important quality of the tool we use if it helps us acquire the meta-knowledge they provided a shortcut for.

In my next livestream, I’ll hexplore crypto-polyglots:
- files that remain valid after encryption.
- contents that decrypts to different valid content via different keys, with authenticated decryption.
https://www.youtube.com/live/RP5PVRUs6L8?si=cEFkVUC1AeTGri7k

@jerry Wait what happened?

After 6-ish tries with Space #Emacs I managed to:
- Edit a file on a remote server with TRAMP
- Create a new Git Branch
- Commit changes to the branch
- Switch back to my original branch (and revert the buffer to reflect changes)

It wasn't a terrible experience, although my brain hurts a bit.

You should write more

https://lcamtuf.substack.com/p/you-should-write-more

/by @lcamtuf

Correct. If the birthdate field contains corrupt or mismatched data, it defaults to 1875-05-20, which serves as a flag. May 20, 1875, is the day the international standards and metrics treaty was signed. Everything is a conspiracy when you don’t know how anything works.

job listings in 2025 are weird.
I never would have guessed a car wash even needed an on-site kubernetes cluster

@albinowax Thanks for the link! I'm sure some business executives applied this methodology to selling shampoo with great success. I also believe Burp exists in a different kind of market in several aspects, but I'm no business executive...

Nerd-snipping of the day - a sharp programmer on a Chinese forum noticed an extremely obscure fact about K&R - its Courier font is unusual and doesn’t seem to match any of the modern or common versions of Courier we know today. So now I find myself hunting for technical references of that Autologic APS-5 machine used by K&R. #retrocomputing #unix

[RSS] NVIDIA/Mellanox ConnectX-5: Custom #Ghidra processor module for iRISC

https://irisc-research-syndicate.github.io/2025/02/14/writing-a-ghidra-processor-module/

If you do not include an appropriate fuse in your design, your design will designate one.

@albinowax 1) Burp is (rightfully) the de facto standard for webapp testing. Even if by some miracle someone interested in the field didn't hear about it, what else would anyone recommend?
2) What kind of information could a 0-10 numeric answer possibly give you about the desired direction of improvement?
3) You have e-mail support, a forum, and Discord (that I know of) where proper discussions can take place. Hell, even social media allows better interaction with your team than this Clippy-style "would you like to scream into this void?" non-sense.

What this simple dialog tells me is that someone, who doesn't know better than copying dark patterns from freemium mobile games got in a position to get this useless, disrupting junk *added to the code base*. And I'm sorry, but I won't hold back my words to express my concerns about this direction because 1) allows shoving more shit down our throats unless we push back hard.

I hope you didn't take this as a personal attack. I mentioned you because I'm sure you understand the needs and concerns of professional users better than anyone.

@bh @404mediaco because your cpu vendor is not relevant when you happen to run malware.

Thanks to OSTIF!, in 2024, we assessed cURL's HTTP/3 components. We found two issues, enhanced fuzzing coverage, and provided testing and security recommendations.

https://github.com/trailofbits/publications/blob/master/reviews/2023-12-curl-http3-securityreview.pdf

cURL marked our 14th security assessment with OSTIF, with our first being in 2019. OSTIF's mission to secure critical open-source software has led to security improvements across projects on which we all depend.
Read their annual reports:
https://ostif.org/ostif-2024-annual-report/
https://ostif.org/2024-sovtech-audit-report/

@bh @404mediaco They could deploy the same code on a mainframe in Fort Knox, it would be the same bug (if my theory is correct). I dont have info abt usgov webapp deployment policy.