Emacs made me extensively use LLM's to search for answers and watch videos to understand features. This is a first!

I think the reason is that I lack the meta-knowledge about where to look for information. This is in part because Emacs tutorials prevalent in search results don't directly apply to Space Emacs and I don't know yet how to translate between the two worlds.

I think the same underlying issues in part explain the popularity of LLM's and video tutorials. It seems an important personal decision if we deem a topic important enough to invest in acquiring the missing meta-knowledge. It seems an important quality of the tool we use if it helps us acquire the meta-knowledge they provided a shortcut for.

In my next livestream, I’ll hexplore crypto-polyglots:
- files that remain valid after encryption.
- contents that decrypts to different valid content via different keys, with authenticated decryption.
https://www.youtube.com/live/RP5PVRUs6L8?si=cEFkVUC1AeTGri7k

After 6-ish tries with Space #Emacs I managed to:
- Edit a file on a remote server with TRAMP
- Create a new Git Branch
- Commit changes to the branch
- Switch back to my original branch (and revert the buffer to reflect changes)

It wasn't a terrible experience, although my brain hurts a bit.

You should write more

https://lcamtuf.substack.com/p/you-should-write-more

/by @lcamtuf

Correct. If the birthdate field contains corrupt or mismatched data, it defaults to 1875-05-20, which serves as a flag. May 20, 1875, is the day the international standards and metrics treaty was signed. Everything is a conspiracy when you don’t know how anything works.

job listings in 2025 are weird.
I never would have guessed a car wash even needed an on-site kubernetes cluster

Nerd-snipping of the day - a sharp programmer on a Chinese forum noticed an extremely obscure fact about K&R - its Courier font is unusual and doesn’t seem to match any of the modern or common versions of Courier we know today. So now I find myself hunting for technical references of that Autologic APS-5 machine used by K&R. #retrocomputing #unix

[RSS] NVIDIA/Mellanox ConnectX-5: Custom #Ghidra processor module for iRISC

https://irisc-research-syndicate.github.io/2025/02/14/writing-a-ghidra-processor-module/

If you do not include an appropriate fuse in your design, your design will designate one.

Thanks to OSTIF!, in 2024, we assessed cURL's HTTP/3 components. We found two issues, enhanced fuzzing coverage, and provided testing and security recommendations.

https://github.com/trailofbits/publications/blob/master/reviews/2023-12-curl-http3-securityreview.pdf

cURL marked our 14th security assessment with OSTIF, with our first being in 2019. OSTIF's mission to secure critical open-source software has led to security improvements across projects on which we all depend.
Read their annual reports:
https://ostif.org/ostif-2024-annual-report/
https://ostif.org/2024-sovtech-audit-report/

Better late than never, I just published a blogpost about my experience at @blackhoodie training, hexacon 2024. Again, big thanks to the organizers for putting together this training, it was really good! 😊

https://p0pcycle.com/2025/02/14/blackhoodie-my-experience/

FBI files on Kevin Mitnick released thx to a FOIA request by hexadecim8.com

https://vault.fbi.gov/kevin-mitnick/kevin-mitnick-part-01-final/view

#frombsky

Super scummy for microsoft to auto upgrade (at the added cost of an extra £30 a year) people to a AI plan, and not offer a "actually I don't use any of that stuff" can I not pay that £30 a year?

And then only when you are at the cancel page, it's like "🥺 oh sorry do you want the old deal back? 🥺"

For anyone else, you don't even have to get that far into the cancel page for this. So it's easy to save £30 a year with this.

Perfection is achieved, not when there is nothing more to add, but when there is nothing left to take away.

— Antoine de Saint Exupry

#complexity

Unrestrict the restricted mode for USB on iPhone. A first analysis @citizenlab #CVE-2025-24200 👉 https://blog.quarkslab.com/first-analysis-of-apples-usb-restricted-mode-bypass-cve-2025-24200.html

Happy #nakeddiefriday folks!

Today's specimen is p/n SC13890P23A by Motorola/Freescale. This came from an embedded cellular modem I tore out of [redacted]. The die is marked ATLAS-UL.

It is the most colourful die I have ever imaged.

SiPron page: https://siliconpr0n.org/archive/doku.php?id=infosecdj:motorola:sc13890p23a

Preparing a talk on #programming an #AnalogComputer - using the wonderful #THAT from anabrid and my #Vectrex that has been modified to provide an additional #oscilloscope mode.

Really cool blog post about permissions in browsers and how they work. https://albertofdr.github.io/web-security-class/browser/browser.permissions

[RSS] Bent // Broken 2025 Worldwide Virtual Circuit Bending Festival

https://blog.adafruit.com/2025/02/13/bent-broken-2025-worldwide-virtual-circuit-bending-festival/

Today's @kagihq changelog is honestly kind of a massive deal for privacy stuff:
- Human readable privacy policy page
- Privacy pass (an open source, cryptographic verifiable way of doing searches through Kagi without them being able to see who you are)
- Official tor service

https://kagi.com/changelog#6172 #kagi