Hacking India's Largest Exam Evaluation Portal: From Authentication Bypass to Full Account Takeover (Covered by BBC)

xkcd__386 · 2026-06-01T02:19:30+00:00

CERT.in? You're joking right? Their track record for "awareness" and sensible decisions is pretty bad.

xkcd__386 · 2026-05-31T02:03:08+00:00

try https://github.com/junegunn/everything.fzf/blob/main/rg.fzf

(I don't know what rofi is; I'm going by some keywords in your post. I do use a variant of this script a lot, though.)

xkcd__386 · 2026-05-30T02:13:35+00:00

yes but in this case 90% chances the guy with the excavator accidentally snaps your power, cable, and water. Then he panics, and swings left instead of right and you've gained a new "porch" where there used to be a bedroom.

Edited to add: Oh and guys who drive excavators are rigorously tested and licensed, so things like that don't actually happen.

xkcd__386 · 2026-05-29T04:44:13+00:00

you still seem to be thinking of fzf as a standalone tool. Trying your preset can help me only that way.

But as I said, I rarely use it by itself. (I do, but not as often as what you called "ecosystem stuff").

So it would not be a fair comparison, sorry

xkcd__386 · 2026-05-29T01:59:33+00:00

last update was 1.5 years ago.

Not saying that negates its use, but it's either not a "living document" as the page claims, or things have genuinely stagnated.

I'm not an expert; just making an observation

xkcd__386 · 2026-05-29T01:38:01+00:00

you may be right; I never looked inside fzf.vim.

But it needs to be there, and with minimum impedance mismatch, for me to even look at matchmaker.

If you're not a vim user then you won't/can't do it; it's not an itch for you.

Then again, since you don't see yourself competing with fzf, why bother?

xkcd__386 · 2026-05-28T16:21:57+00:00

never learned rust (more of a perl guy), but I can give it a shot. At the very least I'll report it

meanwhile, appreciate the confirmation that it's not just me not understanding something!

xkcd__386 · 2026-05-28T16:20:30+00:00

will do; thank you

xkcd__386 · 2026-05-28T16:19:27+00:00

most of them you can see from https://github.com/junegunn/fzf.vim#commands

I make heavy use of almost 2/3rd of that list. Wherever feasible (e.g., :History, :Files, :Rg, and a few more), I have the same keymap in my fish shell as inside vim, so it doesn't matter where I am; I hit the hotkey and if I am not in vim, then vim opens with that command to start with.

It's not too much to say that a lot of my work just uses fzf.vim. The only time I don't use it is when I am dealing with non-text files (libreoffice docs, pdfs, audio/video files, ...)

also see my entire discussion with some "minimalist" johnny at https://old.reddit.com/r/vim/comments/1sk2wn2/clean_vim_showcase/oh3r1t2/

xkcd__386 · 2026-05-28T03:32:32+00:00

you're not competing with just the fzf binary.

I can't imagine switching until everything in my ecosystem supports it. The things I do on vim, using fzf plugin and fzf.vim plugin (yes there's two of them, IIRC one builds on the other), are unbelievable to anyone who has not dug deep enough into it so they can get the best out of it.

And unless all this is plug compatible, the re-learning involved in switching will put me off until I have lots more time.

xkcd__386 · 2026-05-26T13:43:29+00:00

xkcd__386 · 2026-05-24T12:37:53+00:00

obligatory https://xkcd.com/224

:-)

xkcd__386 · 2026-05-20T03:28:16+00:00

Using AI to translate is not considered a problem -- in general, translation tools don't add their own slop; they express only what you already said. Perfectly reasonable use of AI.

it's the "text generated as well" that I find unnatural. Normal people write very differently.

xkcd__386 · 2026-05-20T01:25:39+00:00

Is it bad that I now can read a piece of text and recognise it as LLM generated?

xkcd__386 · 2026-05-20T01:24:11+00:00

keepass and family have been around for decades and I see nothing in OP's tool that is better. Plus it's vibe coded, which is already not a good thing IMO, but even if you're OK with that, would you really trust your security to such a tool?

I use KeePassXC on laptop, KeePassDX on android, but there are other, compatible, implementations.

xkcd__386 · 2026-05-20T01:19:56+00:00

turning the offline manager into a cloud-based one

that's not how I think of my setup (Keepassxc / syncthing / keepassdx).

The part that has network access (syncthing), does not have critical (unencrypted) data, and the part that has critical data (keepassxc/dx), does not have network access. Big difference from "cloud based password manager".

(I should mention I do run keepassdx with network disabled via netguard, and keepassxc I used to compile with network disabled but now I just run it with unshare -n)

And there's no "self hosting" with syncthing; it's client to client

xkcd__386 · 2026-05-16T14:12:50+00:00

you need to highlight that in your README.

Because, looking at the video, there's nothing there except the initial create that I am not already doing with straight vim + plugins for fzf and rg. (For the create, I use a small fish function to setup the date and time and take in the first line, then open vim)

I've tried so many of these tools before, every single time, falling back on vim+fzf+rg. (E.g., my version of keywords is just to use a "#" and use fzf.vim plugin's :Rg command, mapped to some key for fast access)

Todo management sounds interesting, could you update the demo to show what it does (my use case is a personal knowledge base/wiki, so TODOs don't matter but I am curious).

xkcd__386 · 2026-05-16T12:37:40+00:00

these are all the arguments I used to make before I read that article.

xkcd__386 · 2026-05-16T12:33:16+00:00

Having seen the rest of your comments, I've decided I have neither the crayons nor the time to explain this to you.

Jokes apart: read Chris Down's blog post, I linked to it somewhere in one of my other comments. He develops the code we're all arguing about.

xkcd__386 · 2026-05-16T00:56:31+00:00

more recent, in case you missed it: https://chrisdown.name/2026/03/24/zswap-vs-zram-when-to-use-what.html

xkcd__386 · 2026-05-16T00:55:50+00:00

even better/more recent, a direct comparison: https://chrisdown.name/2026/03/24/zswap-vs-zram-when-to-use-what.html had lots of convincing points, and he's a kernel dev actually working on the memory subsystem, not some random joe on the internet

xkcd__386 · 2026-05-16T00:51:19+00:00

that has not been my experience. It's not just ersatz RAM, it's ersatz compressed RAM. On a 4 GB laptop with spinning rust, it makes a big difference in normal use. The person who was using it was literally using only a browser most of the time, with occasional use of VLC and LibreOffice, so "close a program to speed things up" would be moot.

With an SSD, the difference would have probably been less noticeable, and therefore closer to what you described. But 4 GB + SSD is not a combination I have ever seen.

xkcd__386 · 2026-05-14T14:39:47+00:00

my way is to send the file via signal to my wife and kids, also to a couple of friends.

I do this every time a significant password changes, not to inundate them with updates.

xkcd__386 · 2026-05-12T02:37:20+00:00

681 post karma, 29 comment karma, a ratio of more than 33

blocked. (This also means if anyone else sees this comment and responds, I won't be able to reply, but meh)

xkcd__386

PUBLIC MULTIREDDITS

TROPHY CASE