What is Hackers' Pub?

漁村の夕景 #misskey写真部

Hardware, n.: The parts of a computer system that can be kicked.

—fortune(6)

we're seeing unprecedented bullshit levels

(100%) ■■■■■■■■■■

ohayo

Do you know any new open source projects that deserve recognition?

Projects that are:
- Solving real world problems and driving technical innovation
- Improving science, research or medicine
- Challenging long standing platforms or paradigms
- Just super nerdy and doing something novel!

If you do, please share them and perhaps we can help them get the attention they deserve. 🧡
#opensource #linux #Innovation

conversation I had today:
- is it a nonprofit?
- …not on purpose, no

​​​​​​

​​​​​​

Question: when did security analysts start describing leveraged exploit paths as "primitives"? Did this start with the FORCEDENTRY JBIG2 exploit or does this terminology have a longer history, maybe in gadget-based exploitation?

https://projectzero.google/2026/01/pixel-0-click-part-1.html

Heute ist es so richtig schief gegangen mit der Bahn. Selbst für meine Verhältnisse. Ich hatte eine Verbindung mit gut Umsteigezeit und Puffer. Die oft auch funktioniert: Sprinter Berlin- Nürnberg, Intercity bis Aalen (und dann RE nach Oberkochen zu einem Termin). Ich hab drei Anschlüsse verpasst und musste am Ende vom vorletzten Bahnhof abgeholt werden, um nur zwei Stunden zu spät zu sein.
Ich frage mich, wie Leute unter diesen Bedingungen überhaupt irgendwo ankommen.
#EvaTraindestroyer #bahn

어휴 아부 잘하네…

​​

Pixel dailies: Secret Wall
#pixelart #pixel_dailies #secretwall #ドット絵 #aseprite #Procreate @pixel_dailies

RIIR

Pixel dailies: Secret Wall
#pixelart #pixel_dailies #secretwall #ドット絵 #aseprite #Procreate @pixel_dailies

It seems that py/cryptography's thoughts about OpenSSL (https://cryptography.io/en/latest/statements/state-of-openssl/) are doing the rounds at the moment.

I've not touched OpenSSL directly in a long time. In fact, it appears that the 10-year anniversary of that (https://www.imperialviolet.org/2015/10/17/boringssl.html) passed by a few months ago!

So I've no direct comments on the piece but, a long time ago, I was in the position where I was landing changes in both OpenSSL and NSS (Mozilla's TLS library). OpenSSL was somewhat famous for having bad code. And, indeed, if you looked at it back then the functions were full of single-letter variable names with pointer arithmetic everywhere and context-free, somewhat scary comments. It wasn't outside the norm for 1990s C code, but I understand why people recoiled.

In contrast, if you looked at NSS code, it looked good! Consistent formatting (before clang-format), good naming, good comments.

But NSS had a PKCS#11 abstraction layer and, even after years, I never could understand how the control flow worked there. I would have to single-step in gdb every time to figure out where an operation grounded out into actual code. I was reminded of that when reading py/cryptography's descriptions of OpenSSL 3.0.

I had a pet theory at the time that, because OpenSSL was repulsive on the surface, it inhibited people enough that they couldn't add much deeper complexity. But NSS, with its invitingly clean-looking code, was understandable and then people had enough capacity left over to add deeper complexity.

There might be something to it, although you shouldn't discount the fact that entities who are willing to fund cryptography libraries often have demands that are contrary to clean code. Things like FIPS compliance and compatibility with a zoo of different accelerators and bespoke needs.

So rather it might have been that old OpenSSL was old OpenSSL because it was mostly unfunded. That meant that it looked pretty ragged, but also there weren't so many demands in tension with good design.

NSS was funded by interests that really cared about PKCS#11 compatibility so that you could use a super-expensive, certified-everything HSM with it. When OpenSSL got shocked into switching to a higher-funding model, that brought lots of those same sorts of competing interests, and then the incentives pointed towards adding slow, impenetrable layers of abstraction all over.

Beim IHK-Empfang in Sachsen-Anhalt sagt Kanzler Merz, dass er das Arbeitszeitgesetz loswerden wolle – und beweist erneut, dass er als Kanzler nicht geeignet ist.
https://taz.de/!6145854

エアコンつけて寝たのにiPad君充電できてないにゃ…​​
温度足りなかった…？​​

​​

@quincyQuincy ⁂ #wasFehlt: ein #RadioEriwan Account (Bot?) im Fedi

​​​​

OpenBSD-current now runs as guest under Apple Hypervisor https://undeadly.org/cgi?action=article;sid=20260115203619

Also new in v1.114 today: cashtags! Like hashtags, but for stocks. Tag your posts with $AAPL, $NVDA, whatever, then tap to see everyone else's equally unqualified analysis!

当時の警察ににらまれるきっかけだったかもしれない絵です　​​

I'm a professional shitpollster.

I'm a professional shitpollster.

a bit silly that X shows up on app store when searching for 'bluesky' but bluesky doesn't show up when searching 'twitter' i wonder if this is due to ads or keywords or something. cc @esb.lol@bsky.brid.gyEric

Jeff Bezos is saying the quiet part out loud. They want to kill local computing.

You will own nothing and be happy. You will rent your computing power from the cloud. You pay a subscription for the privilege of using a computer.

AI demand is artificially spiking DRAM prices and Big Tech is pushing "AI PCs," the squeeze is on to force us into a rental model.

Reject this future.

Keep your hardware local.

Run #Linux.

Own your data.

The "cloud" is just a landlord for your data.

#NoAi #FOSS #OpenSource #Privacy #SelfHost #SelfHosting #BigTech #RightToRepair #RAM #Amazon #EatTheRich

https://www.windowscentral.com/artificial-intelligence/jeff-bezos-says-the-quiet-part-out-loud-bezos-envisions-that-youll-give-up-your-pc-for-an-ai-cloud-version

@liwLars Wirzenius Wikipedia literally just sold out. We should start thinking about what comes next.

https://money.usnews.com/investing/news/articles/2026-01-15/wikipedia-owner-signs-on-microsoft-meta-in-ai-content-training-deals

​​

- "Kann Amazon eine europäische souveräne Cloud betreiben?"

- "Im Prinzip ja. Die Frage ist nur, wer ist dann der Souverän."

OpenBSD-current now runs as guest under Apple Hypervisor https://undeadly.org/cgi?action=article;sid=20260115203619

New music!

"Just Walk Away" is now live — that's me (@hisham_hmHisham) and my friend Chico, we share lead vocals and performed all instruments. (Detailed credits on the Bandcamp page!)

We're especially looking forward to getting some feedback. To your ears, what does it sound like?

Here's some links:

Bandcamp: https://signifierproject.bandcamp.com/track/just-walk-away

Deezer: https://link.deezer.com/s/32agiT6WpybSC5AytlAhm

Spotify: https://open.spotify.com/album/7IAI6i16VDKYQTZOAYPZTh

...and everywhere and anywhere you can find "Signifier - Just Walk Away"!

What @anildash said: https://www.anildash.com/2026/01/15/wikipedia-at-25/

You know, I am occasionally shocked when someone I think of as smart or admirable or nice starts talking about how Wikipedia sucks. There are a few reasons why someone might feel that way, and none of them reflect well on them.

UK offshore wind prices come in 40% cheaper than gas in record auction

Link: https://electrek.co/2026/01/14/uk-offshore-wind-record-auction/
Discussion: https://news.ycombinator.com/item?id=46637399

Animals X'mas - Masashi Ichikawa
https://macthemes.garden/themes/0ebd9a86b153-Animals-Xmas

News release: Privacy Commissioner of Canada expands investigation into social media platform X following reports of AI-generated sexualized deepfake images - Office of the Privacy Commissioner of Canada https://www.priv.gc.ca/en/opc-news/news-and-announcements/2026/nr-c_260115/

Emperor X just released a new song...

https://emperorx.bandcamp.com/album/renee-nicole-nicole-renee

#ReneeNicoleGood #Music #EmperorX

why is it always longread

Tschechien: Oberster Gerichtshof kippt die anlasslose Vorratsdatenspeicherung

Nach langem Rechtsstreit hat der Nejvyšší soud die staatliche Praxis des Protokollierens von Nutzerspuren für illegal erklärt und die Privatsphäre gestärkt.

https://www.heise.de/news/Tschechien-Oberster-Gerichtshof-kippt-die-anlasslose-Vorratsdatenspeicherung-11142948.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#IT #Netzpolitik #Vorratsdatenspeicherung #news

차별금지법이 발의되었습니다. 그런데 지금ㅠㅠ 반대는 조직적입니다. 찬성은 연대가 필요합니다. 📌 nuli.do/NFVi 의견등록으로 함께해 주세요🙏 정말 간단합니다. ① 회원가입 · 로그인 ② ‘의견등록’ 클릭 차별 없는 세상을 함께 만듭시다. 이제 우리가 움직일 차례입니다. #차별금지법 #차별금지법제정

The recording of the January 15th, 2026 #bhyve Production User Call is up:

https://youtu.be/vOZam9RA-bA

We discussed the EDK2 port update, virtio-scsi improvements, Windows NVMe driver surprises, bhyvectl(8) IPC changes, Unix domain socket support for the frame buffer, MAJOR unprivileged bhyve updates, MAJOR PCI hot-plug updates with demo, bhyve/ARM64 news, CPU pinning, #OpenZFS ARC management, and more!

"Don't forget to slam those Like and Subscribe buttons."

You can support all Call For Testing efforts via BSD Fund: https://bsdfund.org

​​​​

@peterk central Italy in the early 80ies 😉

All of these things can be true:
- Wikipedia needs money
- Wikipedia infra needs relief
- it is a commons-like resource
- that means everyone is free to use it
- but it implies that nobody destroys it
- and that everybody pitches in to help
- AI companies are more damaging than they help
- if they want to support, they can donate
- no enterprise license agreement required
- I don’t feel great about my contribs being licensed to the internet-strip-mine moguls (even though they get the data anyway)
- I’m sure I’m just naïve and don’t understand big business
- what a bummer for what should be an unbridled quarter century party

​​

黒瀬さん #oc

@bsi nein BSI, dass ihr mit ionos befreundet seid macht das jetzt auch nicht besser.