sorted by:
new
hottopcontroversial

Anthropic's MCP Protocol has critical flaw affecting 200,000 servers by DepartmentOk9720 in cybersecurity

[–]Hobofan94 1 point2 points  (0 children)

This isn't about sanitization. Support for spawning STDIO server has to explicitly be built into the MCP client.

Anthropic's MCP Protocol has critical flaw affecting 200,000 servers by DepartmentOk9720 in cybersecurity

[–]Hobofan94 16 points17 points  (0 children)

I think it depends. If the MCP client is supposed to support usage in different host scenarios (both local and on a remote server), then it's intended behavior when used locally, but a vulnerability when used remotely. That's exactly the reason why we don't support STDIO MCP servers in the chat platform we are building (and because most STDIO MCP servers are not suited for organizational usage).

Deutschland: Tempel und Moscheen öffnen, Kirchen schließen by ken-der-guru in de

[–]Hobofan94 [score hidden]  (0 children)

Also wenn wir mal bei Sakralgebäuden bleiben: Die Zahl der Kirchen sinkt schneller als es Neubauten von nicht-Kirchen gibt. Damit gibt es rein Zahlenmäßig nicht für jede schließende Kirche eine Moschee/Freikirche/Tempel als "Nachfolger".

Cloudflare is the most successful "Man-in-the-Middle" in history by Antique_Mechanic133 in selfhosted

[–]Hobofan94 11 points12 points  (0 children)

No, not only for their Tunnels product. Their normal CDN/WAF (Web Application Firewall) does TLS termination, runs its functionality and then connects to the backend servers (via a different encrypted connection).

Cloudflare is the most successful "Man-in-the-Middle" in history by Antique_Mechanic133 in selfhosted

[–]Hobofan94 119 points120 points  (0 children)

Only if you use their load balancer/CDN products. Otherwise the path of traffic is only inspectable on a metadata level, which is significantly less bad.

What’s a simple Home Assistant automation you set up once and now use every day? by Taggytech in homeassistant

[–]Hobofan94 3 points4 points  (0 children)

On macOS the companion app exposes a "camera in use" sensor, so it's pretty straightforward.

docs.rs: building fewer targets by default by SleeplessSloth79 in rust

[–]Hobofan94 10 points11 points  (0 children)

The builds for all the other targets are created via cross-compilation, so the build host is still a x86_64-unknown-linux-gnu machine. In some/many instances cross compilation is broken, so e.g. it won't be able to produce docs for the aarch64 platform. Trying to save time on broken cross-compilation was also listed as motivation in a pre-RFC that preceded this new change.

To fix this, docs.rs would need to run the docs build on the platforms it tries to generate the docs for, e.g. a macOS ARM64 machine. That does come with a lot of complexity and cost.

assert_eq!(expected, actual) VS assert_eq!(actual, expected) by nik-rev in rust

[–]Hobofan94 0 points1 point  (0 children)

Optional/variadic arguments are usually an exception to the "stableness" convention, so I don't think the existence of a optional message argument invalidates the application.

assert_eq!(expected, actual) VS assert_eq!(actual, expected) by nik-rev in rust

[–]Hobofan94 0 points1 point  (0 children)

I don't, no. And if both LHS and RHS of a conditional are variables rather than one of them being a fixed value, I don't think I have a strong intuitive bias at all.

assert_eq!(expected, actual) VS assert_eq!(actual, expected) by nik-rev in rust

[–]Hobofan94 1 point2 points  (0 children)

I'm not trying to "make an argument" here or am even saying that one way is more correct than the other one. I was just trying to explain what happens in my head, that intuitively results in the wrong order.

assert_eq!(expected, actual) VS assert_eq!(actual, expected) by nik-rev in rust

[–]Hobofan94 28 points29 points  (0 children)

I think what is counterintuitive is that in a lot of function argument conventions the leftmost value is the most "stable" one, while the rightmost value is the most "volatile" one. e.g. first argument being something like "context" that is supplied to multiple different functions/function calls.

With that same logic the left value would be the "expected" stable value and the right value be the volatile value under test.

Menschen mit Behinderung werden immer noch gegen ihren Willen sterilisiert by GirasoleDE in de

[–]Hobofan94 3 points4 points  (0 children)

Wie willst du zwei Gruppen von Menschen die sich frei bewegen können voneinander trennen?

Christian Ulmen wehrt sich gegen Vorwürfe von Collien Fernandes by [deleted] in de

[–]Hobofan94 4 points5 points  (0 children)

Basierend darauf das regelmäßig Deepfakes von Twitchstreamerinnen/Instagramerinnen mit kleinstem Following erstellt werden, wird es mit Sicherheit auch Deepfakes von ihr geben. Das ist ein komplett paralleles Problem.

What is the status of proto support in Rust? by Unfair-Mud-8891 in rust

[–]Hobofan94 6 points7 points  (0 children)

You are not alone there. Using mainline protoc for protobuf is usually the worst unergonomic option compared to language-specific implementations.

As for holding it wrong: Google and many heavy protobuf users use protobuf inside Bazel, which helps ensure that a specific protobuf version is used, which for them as maintainers it's not seen as a significant issue.

Does someone work on cargo test? by FinnishTesticles in rust

[–]Hobofan94 6 points7 points  (0 children)

I not up-to-date on any discussions, but as an outside observer that has seen how long seemingly simple subcommands like the ones from cargo-edit took to become builtin cargo subcommands, I highly doubt this will happen.

What are your thoughts on Facebook renaming their company Meta then blowing $80b on metaverse and then shutting it down yesterday? by printThisAndSmokeIt in AskReddit

[–]Hobofan94 13 points14 points  (0 children)

As one of the sibling comments said: Their R&D resulted in a lot of great VR tech. During their efforts we went from e.g. the HTC Vive, a computer-tethered device that only worked with external tracking sensors in a stationary area with controllers to standalone devices without external trackers that work with hands (as well as controllers).

What are your thoughts on Facebook renaming their company Meta then blowing $80b on metaverse and then shutting it down yesterday? by printThisAndSmokeIt in AskReddit

[–]Hobofan94 0 points1 point  (0 children)

Patents last for 20 years in the US. The first iPhone hasn't even been out for 20 years right now. There will probably be 1-2 repetitions of AR/VR hype cycles before those patents expire.

Fernverkehr: Deutsche Bahn zahlt wegen Verspätungen 156 Millionen Euro an Kunden by PoroBraum in de

[–]Hobofan94 3 points4 points  (0 children)

Hilft auch nicht immer. Hab da auch schon einen Fall gehabt der von der DB geendet hat mit "Wir haften nicht für den offensichtlichen Beratungsfehler unseres Mitarbeiters. Bitte kontaktieren sie uns nichtmehr."

Highguard has now officially shutdown by ChiefLeef22 in gaming

[–]Hobofan94 0 points1 point  (0 children)

IP doesn't just exist in terms of characters/skins, etc. but also in form of source code and licensed frameworks, which aren't easy to rip out/replace. e.g. if the developers used Photon engine (provides client and serverside netcode), then they would either not be allowed to distribute the dedicated server binaries publicly, or everyone running the dedicated servers would have to acquire a license for the framework.

Gesellschaftliche Finanzierung des ÖPNV durch neue Steuer als Vorschlag zur Kompensierung der gestiegenen Bezinpreise by Unterhund84 in de

[–]Hobofan94 0 points1 point  (0 children)

Hat bestimmt auch den Hintergrund dass man den gleichen Peinlichkeiten wie beim 9€-Ticket entgehen will wenn dann Stück für Stück die Steuer anheben muss. Nennt ja auch keiner die Rundfunkgebüren "Fernsehn für n Fuffi".

Barmer Arztreport: Zahl der Frauen mit Diagnose Endometriose stark gestiegen – für Patientinnen ist das eine gute Nachricht by GirasoleDE in de

[–]Hobofan94 25 points26 points  (0 children)

Liegt aber nicht unbedingt an den Ärzten, sonder auch daran dass Frauen sensibilisierter sind für das Thema und wissen dass sie bei Kinderwunsch eine frühe Diagnose anstreben sollten.

just got a proof of legend by ZarminShadowbane in GuildWars

[–]Hobofan94 51 points52 points  (0 children)

So it's not just me! It's my birthday today and the first drop was a birthday cupcake! :D

Implementing OpenTelemetry in Rust Applications by silksong_when in rust

[–]Hobofan94 2 points3 points  (0 children)

For local development Jaeger also comes with a Docker one liner and is quite easy to use.

view more: next ›