These are the official docs for the programming language. Fuck all the way off with this

Internet hive mind: what are these?

Options I'm considering are cellular microcells, water/power meter collectors (my leading candidate), some kind of public wifi network.

Guesstimating 900 MHz band from the antenna size as best i can guess from ground level, but I don't have a SDR on me to be sure.

@caspicat gotcha! That's an interesting Q that deserves more discussion for sure.

#Bing search results #enshittification level 100

Well done Microsoft.

[RSS] Linux Kernel Runtime Guard (LKRG) 1.0 first mature release + talk slides

https://www.openwall.com/presentations/NullconBerlin2025-LKRG/

For centuries, Europe bled through endless wars. Neighbours became enemies, borders became battlegrounds and generations knew only division.

The creation of the European Union changed that, proving that dialogue between 🇪🇺 countries, cooperation, and solidarity can overcome conflict.

Since then, we’ve worked to build bridges where there were once barriers: peace is not just our history. It is our mission, our responsibility, and our future.

Today and every day.

#PeaceDay

@caspicat @jackwilliambell @timbray "only upgrade occasionally, *or when security fixes land*"

@inthehands @timbray my first thought too, but if electron is compromised obsidian would not be among our primary concerns (esp. because according to this policy they would likely not update before the incident is noticed). So I think electron is more of an attack surface problem than a supply chain one.

Something quite interesting: https://fil-c.org/

tldr: CHERI guarantees (purecap only) on existing hardware

The catch is as always with purecap models is that you have a whole new ABI.

Interestingly pointers stay 8 bytes here, with the capability being invisible to the running program (but instead maintained invisibly by the runtime).

🚨 Warning to PHP package maintainers: We did not email you to change your passwords & 2FA. Emails asking you to update your credentials are a phishing attempt. We had the phishing site & domain taken down. If you got the email and entered your credentials, please contact us. #phpc #composerphp

This is beautiful; pure poetry: https://obsidian.md/blog/less-is-safer/

(Obsidian’s dependency-management philosophy.)

I have a suggestion: If you have a project or repo that's getting popular, stop writing features for a few months and implement this instead.

#softwaredevelopment #softwareengineering #0dependencies

There is a lot of demand for digital privacy and security advice out there right now and lots of people are giving advice and writing guides. I beg them to do a few things:

1. Be explicit about the threat model your advice is meant for.

2. Do not give advice you haven't tried implementing yourself. Eat your own dog food.

3. Get feedback on your guide from your target audience before publication.

4. Incorporate that feedback. This is not an optional step.

"Lack of scalability is enough for us to disqualify QKD outright: if a technology can’t bring security to the whole Internet, we’re not going to spend much time on it."

Quantum Key Distribution (as opposed to post-quantum cryptography) has a number of problems, but this succinctly captures the core issue.

https://blog.cloudflare.com/you-dont-need-quantum-hardware/

Updated to also include a plugin/language extension for Ghidra 🐉 (in addition to the IDA Pro plugin)

https://github.com/blacktop/aarch64-cssc

Fun little #iPhone #privacy leaks by my former teammate Máté:

1) Locked iPhone Arbitrary Phone Call
https://szilak.com/2025-09-18-locked-iphone-arbitrary-number-call.html

2) Locked iPhone Saved Contact Confirmation
https://szilak.com/2025-09-18-locked-iphone-contact-brute-force.html

Earlier this year I presented on "Small is beautiful: microstacks or megadependencies", https://webdevcon.nl/session/small-is-beautiful-microstacks-or-megadependencies/ - in which I talk about the state of web development, cloud, and the fun of building self contained highly efficient solutions.

Project: facebook/react https://github.com/facebook/react
File: packages/react-reconciler/src/ReactFiberCommitWork.js:1981 https://github.com/facebook/react/blob/c250b7d980864be49facf2306f06455e7f9e305d/packages/react-reconciler/src/ReactFiberCommitWork.js#L1981

function commitMutationEffectsOnFiber( finishedWork: Fiber, root: FiberRoot, lanes: Lanes, )

SVG:
dark https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Ffacebook%2Freact%2Fblob%2Fc250b7d980864be49facf2306f06455e7f9e305d%2Fpackages%2Freact-reconciler%2Fsrc%2FReactFiberCommitWork.js%23L1981&colors=dark
light https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Ffacebook%2Freact%2Fblob%2Fc250b7d980864be49facf2306f06455e7f9e305d%2Fpackages%2Freact-reconciler%2Fsrc%2FReactFiberCommitWork.js%23L1981&colors=light

[RSS] Project Rain:L1TF

https://bughunters.google.com/blog/4684191115575296/project-rain-l1tf

"a detailed overview of the L1TF vulnerability, a CPU vulnerability on some Intel CPUs (Skylake and older)"

Ghidra: I SUPPORT 16-BIT SEGMENTED MODE
Also Ghidra: WHAT IS DS, ES, That's segment zero! Must be!

Seriously though. Does anyone know how to deal with 16-bit code in Ghidra?
#ReverseEngineering