A human being should be able to change a diaper, plan an invasion, butcher a hog, conn a ship, design a building, write a sonnet, balance accounts, build a wall, set a bone, comfort the dying, take orders, give orders, cooperate, act alone, solve equations, analyze a new problem, pitch manure, program a computer, cook a tasty meal, fight efficiently, die gallantly. Specialization is for insects.

— Robert A. Heinlein

#programmers #specialization

WinDBG vs esReverse: same concept (time travel debugging), very different scope.

We break down the differences in our blog: https://eshard.com/posts/difference-between-windbg-and-esreverse

#windows #cybersecurity

The fact that these apps can launch local web servers to collude with tracking scripts and completely de-anonymize the users is wild. It's appalling. But here is what's not new:

Native apps from huge advertising companies (née "social" networks) are nothing but a slot machine where you pay with your data.

Get off these apps. Remove them now. Best yet, get off these addictive shit sites. And if you can't, visit them in at truly privacy preserving browser. 2/3.

[RSS] Discovering a JDK Race Condition, and Debugging it in 30 Minutes with Fray

https://aoli.al/blogs/jdk-bug/

How to store data on #paper?

https://www.monperrus.net/martin/store-data-paper

Project: kubernetes/kubernetes https://github.com/kubernetes/kubernetes
File: staging/src/k8s.io/api/core/v1/generated.pb.go:72936 https://github.com/kubernetes/kubernetes/blob/a62752db5110225a89a83ec844a5884413e550ff/staging/src/k8s.io/api/core/v1/generated.pb.go#L72936

func (m *VolumeProjection) Unmarshal(dAtA []byte) error

SVG:
dark https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fkubernetes%2Fkubernetes%2Fblob%2Fa62752db5110225a89a83ec844a5884413e550ff%2Fstaging%2Fsrc%2Fk8s.io%2Fapi%2Fcore%2Fv1%2Fgenerated.pb.go%23L72936&colors=dark
light https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fkubernetes%2Fkubernetes%2Fblob%2Fa62752db5110225a89a83ec844a5884413e550ff%2Fstaging%2Fsrc%2Fk8s.io%2Fapi%2Fcore%2Fv1%2Fgenerated.pb.go%23L72936&colors=light

How Compiler Explorer Works in 2025 — Matt Godbolt’s blog
https://xania.org/202506/how-compiler-explorer-works

#fromBsky

Zen quote of the day.

When you go to the lavatory, spend a longer time there than is necessary.

@zhuowei I made this, you can check how it works on my accounts : https://github.com/v-p-b/rss2bsky.py

⚠️ woman reportedly found having fun

@maldr0id @oberstenzian During last 10-15 years of communist Hungary there were some sanctioned comedians who could tell all the jokes about the system, allowing the people to get off some steam. The system still collapsed, and no one thinks of the comedians negatively. At that period the problem was not free speech as everyone knew things were shit (in part b/c of jokes that couldn't be controlled anyway) Problem was if you resisted, you could get shot.

@maldr0id not exactly about police but this one is great(not sure how it'll translate though)

Pravda has a story about Stalin visiting the fields at the countryside:
- How are we doing, how are we doing? - asked Comrade Stalin, jokingly
- We're fine, we're fine - replied the workers, jokingly

Communist Poland was exceptionally good at making fun of secret police and egomaniacal leaders.

If my American friends need some good authoritarian jokes so that they can keep their spirits up for the long run I can suggest some!

In case anyone here has connections with the Python team: can you please tell them to update their docs on XML security? The way it is is quite misleading, and it's been annoying me for a while. I raised this a while ago in their issue tracker, but it got no reaction whatsoever. https://github.com/python/cpython/issues/127502 🧵

PHP just turned 30! 🎉 Did you create guestbooks for your website like the early users of the language? 📜 Do you remember technologies like PHP-Nuke, phpBB, or browsing vBulletin forums? 💻

The slides for @offensive_con talk "Hunting for overlooked cookies in Windows 11 KTM and baking exploits for them" by @saidelike and I are here:

https://docs.google.com/presentation/d/1M_ziQt6rZA01ghsv0qo7lhqyOLIZYNnV-qjHWun6A1g/edit?usp=sharing

another day, another binary file format with a badly designed magic number

not gonna call it out specifically but here are some RFC2113 MUSTs for magic number design:

MUST be the very first N bytes in the file
MUST be at least four bytes long, eight is better
MUST include at least one byte with the high bit set
MUST include a byte sequence that is invalid UTF-8
SHOULD include a zero byte, but you can usually get away with having that be part of the overall version number that immediately follows the magic number (did I mention that you really SHOULD put an overall version number right after the magic number, unless you know and have documented exactly why it's not necessary, e.g. PNG?)

good examples:

• PNG
• ELF

bad examples:

• GIF
• PE
• PDF

@algernon gotcha, I misunderstood your first post!

@algernon IIRc I only used qtorrent from the terminal/web frontend. Transmission-daemon with web ui is also nice.