What is Hackers' Pub?

This is fucking dark...

A Year of 3D Printing

Link: https://brookehatton.com/blog/making/a-year-of-3d-printing/
Discussion: https://news.ycombinator.com/item?id=46662001

Recent discoveries on the acquisition of the highest levels of human performance

Link: https://www.science.org/doi/abs/10.1126/science.adt7790
Discussion: https://news.ycombinator.com/item?id=46722853

i have a very silly python script that replaces the following words in the mastodon UI:

• toot, post -> shit
• boost -> yeet
• publish -> toot (no, i don't know why this is here. it doesn't seem to have an effect.)

if you're thinking this sounds drastically unfunny, you'd be right. it stopped being funny a few days after i implemented it circa 2021. however, i keep it around because paradoxically, the less funny and more immature it seems, and the more it annoys me, the more i find it "meta-funny", in a "ha-ha, i'm annoying myself on purpose" kind of way.

with all of that in mind: the script predates the quote toot feature. what should i rename "quote" to in the UI?

(i am NOT going to rename it "quit" as a portmanteau of quote + shit for obvious reasons)

최근 서울 주요 대학의 등록금심의위원회 회의록에 따르면 이들에 대한 등록금 인상 폭은 최대 10%를 훌쩍 넘겨 내국인의 2~3배에 달할 것으로 전망된다. 유학생은 등록금 상한제가 적용되지 않아 각 대학이 ‘부르는 게 값’인 구조기 때문이다. v.daum.net/v/2026011918...

[기자의눈] 만만한 '돈줄'된 외국인 유학생

【朗報】HA/ASで函館行きの往復分の予約を発見。往路と復路とで確認コードが違ってました。UAのサイトにはHA/AS用とNH用とって書いてあったのにw

Dry is the limit #photography #sky

$REQUEST_URI? yeah me too

#chost #yuri

겜을 조아하는 흑적의 독사를 위한 게임용 키보드(매크로도 된답니다) 조이스틱 노브 버튼 휠 다 있고 피씨방 느낌나라고 좀 좋은 클릭스위치를 넣어 보앗어요 풀배열은 오늘 키캡이 온대요 ㅁㅊ 1달반 만에

I've been secretly working on getting this dead VIC-20 working, I've been fault finding and I think I have narrowed it down to one thing. Updates on the coming week, fingers crossed 🤞
I've never used a VIC-20 before, so I look forward to giving it a whirl! 😊

さて起きるか

野生動物を撮る際の倫理について
https://www.reddit.com/r/M43/s/n87U6d2Kz8

RE: https://varese.social/@emanuelecariati/115705909561429573

André Menrath (@linosAndré Menrath) did a great talk called [Interoperability of Events in the Fediverse] that I only just now got a chance to watch. This is an area of the #fediverse that really doesn't get enough attention, and the work that André is doing with https://event-federation.eu is super excellent.

Anyway watch the presentation here https://vimeo.com/1137648835 and let's get events fully federating with all their depth and nuance intact!
#fediverse #fedidev

칸너굴

おはよーございます

🚀 New Changelog interview!

Damien Tanner (founder of Pusher, now building Layercode) is back for a reunion 17 years in the making. Damien officially returns to The Changelog to discuss the seismic shift happening in software development. From the first sponsor of the podcast to frontline builder in the AI agent era, Damien shares his insights on why SaaS is dying, why code review is a bottleneck (and non-existent for some), and how small teams can now ...

👉 https://changelog.fm/673 #podcast

I was tired of lugging my bench oscilloscope to my desk and other places to do quick tests... so I finally bought a FNIRSI handheld oscilloscope—and it impressed me quite a bit!

https://www.youtube.com/watch?v=IRBT0N67YFA

when life gives you haters, make haterade

침 흘리는 고양이 보여줄게

TORONTO!! Hwæt!!!

Do you like RIAN JOHNSON do you like the idea of RIAN JOHNSON DOING A MYSTERY because in TWO AND A HALF HOURS, at 6:30 TODAY, the Revue is showing Johnson's first and best film, Brick

https://revuecinema.ca/films/brick/

It is a noir story in a shitty SoCal high school. It's so weird and so incredible, the structure is so interesting and twisty, the cinematography makes ordinary objects cryptic and beautiful, it moves so quickly from "this makes no sense" to "this makes so much sense"

This is fucking dark...

when life gives you haters, make haterade

Converting a Nebra Cryptocurrency Miner To a Meshcore Repeater

https://hackaday.com/2026/01/22/converting-a-nebra-cryptocurrency-miner-to-a-meshcore-repeater/

$REQUEST_URI? yeah me too

#chost #yuri

규봉님께 드릴 슾 가구가 전부 도착했군 오늘 할일 정리하고 레시피 확인도 해봐야지

Just wrote to my local MP asking them to support EDM 2650 and sort out the UK's digital sovereignty. https://action.openrightsgroup.org/protect-britain%E2%80%99s-digital-backbone-%E2%80%94-ask-your-mp-act

Why does SSH send 100 packets per keystroke?

Link: https://eieio.games/blog/ssh-sends-100-packets-per-keystroke/
Discussion: https://news.ycombinator.com/item?id=46723990

​​

예전에는 CPU 버그가 드물었지만, 최근에는 복잡성의 증가로 많이 흔해졌다는 이야기로 시작하는 CPU 버그에 대한 좋은 마스토돈 포스팅. 버그가 어떤 식으로 발생하고 여기에 어떤 식으로 준비/대처하는지에 대해 자세히 이야기를 해준다. 습관적으로 마스토돈에 들어갔다가 상당히 흥미롭고 깊이있는 이야기를 발견해서 기뻤다. 주소는 여기

예전에 lwn.net 에서 본 What every programmer should know about memory가 생각났다. Static RAM 과 Dynamic RAM 의 속도차이는 왜 어떻게 발생하는 것일까에 대해 아주 오랫동안 궁금해하던 것을, 회로도를 통해서 직관적으로 이해할 수 있게 해줘서 굉장히 (...인생에서 가장 기뻤던 순간 중 손에 꼽을 정도였다.) 기뻤던 기억이 아직도 난다.

로우레벨 컴퓨팅에 대한 이야기는 내 정신 저 밑바닥에 있는 "아니 그러니까 왜냐고?!" 의 욕망을 크게 해결해주는 경향이 있어서 좋아한다.

그리고 마스토돈의 기본 웹 클라이언트는 브라우저들이 번역을 정말 잘 못한다-_-; 웹페이지의 기본 언어가 브라우저 언어로 맞추어져 보여지고, 그래서 번역할 필요가 없다고 브라우저가 판단해서 그런 것 같다고 이해하고 있는데 이 문제 어떻게 해결할 방법이 없을까 흠 ' -' ...

you setState in your folder, and the internet re-renders

Imagine a stranger spreads lies about you. They tell people you're doing horrible depraved crimes. Would you just block them?

What happens when other people don't block them? When other people believe the lies and share them?

What if this turns into real life abuse and violence against you and your family?

This is what vulnerable groups face from bigots. Bigoted accounts need to be shut down, servers which refuse to remove bigots should be defederated.

"Just block them" doesn't work.

Telnet is a remote login protocol that became obsolete in 1995 when SSH became available because SSH offers transport encryption while telnet does not.

Those who kept a telnetd running for whatever reason (and did not hide it behind a firewall) have had a root backdoor for the last ten years.

GNU InetUtils Security Advisory: remote authentication by-pass in telnet

The telnetd server invokes /usr/bin/login (normally running as root) passing the value of the USER environment variable received from the client as the last parameter.

If the client supply a carefully crafted USER environment value being the string "-f root", and passes the telnet(1) -a or --login parameter to send this USER environment to the server, the client will be automatically logged in as root bypassing normal authentication processes.

This happens because the telnetd server do not sanitize the USER environment variable before passing it on to login(1), and login(1) uses the -f parameter to by-pass normal authentication.

Severity: High

Vulnerable versions: GNU InetUtils since version 1.9.3 up to and including version 2.7.

History

The bug was introduced in the following commit made on 2015 March 19 […]

Recommendation

Do not run a telnetd server at all. Restrict network access to the telnet port to trusted clients.

Source (including exploit code not reproduced here): https://lists.gnu.org/archive/html/bug-inetutils/2026-01/msg00004.html

It shouldn’t be controversial to insist that Democrats vote to rein in this lawless and sadistic agency. https://www.yahoo.com/news/articles/ice-agents-grab-five-old-003353525.html

god I love fuzzing so much. the feeling of "there's a hater who's been trying RELENTLESSLY to find holes in your work for the last 24 hours and they got NOTHING" is incredible.

Demand that your Members of Congress use their leverage with the upcoming Homeland Security funding bill to get ICE Out For Good: https://act.indivisible.org/sign/ice-out-for-good/?source=mastodon

Hello, meine Firma hat mir nach 11 Jahren gekündigt. Jetzt such ich nach einem neuen Job als Software Entwickler. Ich geh auch gern ins Büro solangs in Nürnberg und Umgebung ist aber genau so gern mach ichs auch Remote.
CPP, Python, Go, Delphi sind so Späße die ich kann. Generell auch Datenbanken, Docker, CI/CD, ein bisschen Netwerk, Server, alles was man als Nerd halt so macht.
Wenn ihr was habt oder was wisst haut mich gern an und auch gern #repost #retoot #getfedihired

Telnet is a remote login protocol that became obsolete in 1995 when SSH became available because SSH offers transport encryption while telnet does not.

Those who kept a telnetd running for whatever reason (and did not hide it behind a firewall) have had a root backdoor for the last ten years.

GNU InetUtils Security Advisory: remote authentication by-pass in telnet

The telnetd server invokes /usr/bin/login (normally running as root) passing the value of the USER environment variable received from the client as the last parameter.

If the client supply a carefully crafted USER environment value being the string "-f root", and passes the telnet(1) -a or --login parameter to send this USER environment to the server, the client will be automatically logged in as root bypassing normal authentication processes.

This happens because the telnetd server do not sanitize the USER environment variable before passing it on to login(1), and login(1) uses the -f parameter to by-pass normal authentication.

Severity: High

Vulnerable versions: GNU InetUtils since version 1.9.3 up to and including version 2.7.

History

The bug was introduced in the following commit made on 2015 March 19 […]

Recommendation

Do not run a telnetd server at all. Restrict network access to the telnet port to trusted clients.

Source (including exploit code not reproduced here): https://lists.gnu.org/archive/html/bug-inetutils/2026-01/msg00004.html

A Protocol for Package Management https://lobste.rs/s/sbakto #programming
https://nesbitt.io/2026/01/22/a-protocol-for-package-management.html

Länger nicht Bahn fahren können, auch bekannt als Entzug

I must be inside that train soon, and yes it will snow just exactly like the photo. The view from inside, looking out is beautiful.

This is actually awesome An originally closed event platform is now publishing events to the open web through atproto, and you can see and interact with the events through other apps now too

RE: https://bsky.app/profile/did:plc:l4fwwgqgc5gdvtebisdumf4x/post/3mczopqt4ds2i

I must be inside that train soon, and yes it will snow just exactly like the photo. The view from inside, looking out is beautiful.

Ring claims it’s not giving ICE access to its cameras https://www.theverge.com/news/866003/ring-ice-camera-access-flock

Aus aktuellem Anlass:

When they kick at your front door
How you gonna come?
With your hands on your head
Or on the trigger of your gun

When the law break in
How you gonna go?
Shot down on the pavement
Or waiting in death row

The Clash - Guns of Brixton
https://youtu.be/gVVqUuNG1ZI
#leyrerplaylist

Synced up with #ATmosphereConf sponsor @stream.place@bsky.brid.gy Confirmed we are going to have three live streams rather than just two, because we have SO MANY GREAT PROPOSALS we want to capture. Streamplace will also be launching / announcing new features at the conf 🎉🪿 Thanks for supporting us!

In the early days of personal computing CPU bugs were so rare as to be newsworthy. The infamous Pentium FDIV bug is remembered by many, and even earlier CPUs had their own issues (the 6502 comes to mind). Nowadays they've become so common that I encounter them routinely while triaging crash reports sent from Firefox users. Given the nature of CPUs you might wonder how these bugs arise, how they manifest and what can and can't be done about them. 🧵 1/31