|2 days ago||3 days ago|
|MIT License||BSD 3-clause "New" or "Revised" License|
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Nine Raspberry Pis power this entire office
news.ycombinator.com | 2021-10-25
You can set up a Pi-Hole (DNS sinkhole) and Pi-VPN (Wireguard installer and CLI-frontend for small deployments) very quickly. And you can do it on any debian VM or computer, not just Pi.
Once you have the base OS ready to go, it will take you less than 30 minutes if you know how to muck with your DHCP/firewall settings in your router.
PiVPN - Router/WIFI stopped workign after Pi was unplugged
reddit.com/r/raspberry_pi | 2021-10-16
My PiVPN setup for openvpn as per https://pivpn.io/ wouldn't pull the router over, but I agree that if your setup is doing dhcp or dns that could make it look like the router is failing.
How do I check how long my certs are valid for?
reddit.com/r/pivpn | 2021-10-07
How old is your script?#1000 merged in 2020 add expiration column for -lreddit.com/r/pivpn | 2021-10-07
pivpn update is supposed to take care of it, but old enough install can be buggy so probably just remove and reinstall if it's possible to re-deploy the configs.
I am tired of people in this sub treating VPN as "the golden hammer"
reddit.com/r/selfhosted | 2021-10-02
Thus ss you'd have to be complete in that sense as otherwise you'd have nothing to connect to. Also to prevent the whole world to connect to it and start brute forcing it, you should have things like fail2ban, connection whitelists or whatever setup to reduce the attack vector somewhat. So for more most who are unexperienced, a vpn is easier to achieve... especially with a solution like https://pivpn.io to have a wireguard or openvpn setup using server and client certs on a raspberry pi for example.
Remote access to my Pi
reddit.com/r/klippers | 2021-09-28
Failing to setup WireGuard on Raspberry Pi 4 (running Ubuntu 21.04)
reddit.com/r/WireGuard | 2021-09-26
Try pivpn, easy to setup a Wireguard or OpenVPN server.
A few questions before I invest.
reddit.com/r/unRAID | 2021-09-26
What is the simplest solution?
reddit.com/r/VPS | 2021-09-25
This is the best option for you. You can actually setup wireguard faily easily with pivpn although you may need to tinker around for a bit in order to expose your local network on the VPN's subnet.
reddit.com/r/pihole | 2021-09-22
https://pivpn.io/ Really simple to setup. Also, I found this instructions: https://www.wundertech.net/setup-wireguard-on-a-raspberry-pi-vpn-setup-tutorial/
Can we trust Microsoft with Open Source?
news.ycombinator.com | 2021-10-23
> I don't think there s a static linking going on there, else it would be impossible to use Electron for closed source software.
no, the closed source part can stay closed source but linking must be reallowed.
Just run "strings" on the code binary: you'll see symbols coming straight from Blink like this one: https://github.com/chromium/chromium/blob/72ceeed2ebcd505b8d...
$ strings code-insiders | grep HTMLFormControls
Design patterns let you apply existing solutions to your code
news.ycombinator.com | 2021-10-14
And the list goes on, and on.
V8 was designed by the same engineers who built the Java Virtual Machine, and what techniques did they employ to build this massive piece of software that runs the modern web? Object oriented design, and design patterns.
It's very probable people designing modern web applications for the FAANGs are not particularly aware of design patterns, or even maybe that MVC is a design pattern even if they are using it. It's possible many design patterns aren't useful for the types of problems they are solving, or could complicate matters if they used them haphazardly.
I'm not saying this is the end all, be all, of software design. Or that "modern" functional takes on software design (most functional languages and ideas predate OOP) aren't perfectly valid, or successful. Or even that they couldn't solve many of these problems.
I'm just contesting any dogmatic rejection of what has actually been one of the most successful branches of software design.
Reproducible builds for Debian: a big step forward
news.ycombinator.com | 2021-10-12
Tab Unloading in Firefox 93
news.ycombinator.com | 2021-10-05
Chromium has "Paint Preview" (aka "Freeze Dried Tabs")  which basically does this. I think it's only supported on Chrome for Android right now.
First time trying Bromite because most people say its great
reddit.com/r/privacytoolsIO | 2021-09-22
Bromite uses a compiled blocklist format (DAT). You'll notice that the default blocklist is called filter.dat. If you want to compile your own list, HERE are the instructions.
Linux on the Desktop: Part Two
news.ycombinator.com | 2021-09-21
At one time it was a concern that malicious actors would spoof urls with unicode confusables. Chrome (and others, but unsure of the exact list) implemented restrictions on displaying unicode characters to try to prevent this: https://chromium.googlesource.com/chromium/src/+/main/docs/i...
Google Docs in a clean-room browser
news.ycombinator.com | 2021-09-20
The BSD license only applies to some code from what I can tell. Other code is still under LGPL. At least this is what this file tells me:
Linux seems very complicated ladies and gentlemen…
reddit.com/r/SteamDeck | 2021-09-12
Google Chrome Media History: How Does It Work?
dev.to | 2021-09-06
The source code for the Media History feature lies in the chromium/chrome/browser/media/history/ folder of the repository. Here, I have linked the Github mirror of the chromium repo, because it's much easier to browse than Google's own source listing.
Zoom RCE from Pwn2Own 2021
news.ycombinator.com | 2021-08-28
You're checking your personal email on your work computer? Your employer can see that. One way would be through screen recording. But even without screen recording, your employer can install its own certificates. Chrome at least ignores certificate pinning if there are custom installed local certificates.
If you're on a personal device (e.g. your personal phone) on a work wifi, you're secure whether or not certificate pinning is used.
So I don't really see any situation in which certificate pinning will help you. The purpose of certificate pinning is to protect against malicious regular root CAs. It's not to protect against your employer or anyone else who can install custom root CAs on your machine.
>Chrome does not perform pin validation when the certificate chain chains up to a private trust anchor.
What are some alternatives?
brave-browser - Next generation Brave browser for Android, Linux, macOS, Windows.
ungoogled-chromium - Google Chromium, sans integration with Google
bromite - Bromite a Chromium fork with ad blocking and privacy enhancements; take back your browser!
WebKit - Official git mirror of the WebKit repository, https://svn.webkit.org/repository/webkit, future canonical repository.
tailscale - The easiest, most secure way to use WireGuard and 2FA.
termux-packages - A build system and primary set of packages for Termux.
iceraven-browser - Iceraven Browser
brave-core - Core engine for the Brave browser for Android, Linux, macOS, Windows. For issues https://github.com/brave/brave-browser/issues
OctoPrint-FirmwareUpdater - OctoPrint plugin for flashing pre-compiled firmware images to a 3D printer.
Nebula - A scalable overlay networking tool with a focus on performance, simplicity and security
wireguard-docs - 📖 Unofficial WireGuard Documentation: Setup, Usage, Configuration, and full example setups for VPNs supporting both servers & roaming clients.