This is a false equivalence.

A compiler is a predictable, testable, deterministic piece of software.

An LLM is not.

Sure, all abstractions leak; so, at some point in time, for some reason, you may need to check its compiled code ( cough cough gcc 2.96 ). But, if today your code compiles properly, it will properly compile tomorrow as well.

what is on the kindle will stay and keep working.

if you reset the kindle, DRMed content won't work anymore.

Did I claim something different? I just didn’t use that feature on other OSes.

I'm not sure what the author really wants to say. mmap is available in many languages (e.g. Python) on Linux (and many other *nix I suppose). C provides you with raw memory access, so using mmap is sort-of-convenient for this use case.

But if you use Python then, yes, you'll need a bytearray, because Python doesn't give you raw access to such memory - and I'm not sure you'd want to mmap a PyObject anyway?

Then, writing and reading this kind of raw memory can be kind of dangerous and non-portable - I'm not really sure that the pickle analogy even makes sense. I very much suppose (I've never tried) that if you mmap-read malicious data in C, a vulnerability would be _quite_ easy to exploit.

“ Impact summary: A stack buffer overflow may lead to a crash, causing Denial of Service, or potentially remote code execution.”

From: https://openssl-library.org/news/secadv/20260127.txt

Otherwise just the huge amount of addresses should make ipv6 “more secure” imho.

That's what was always offered.

If somebody wants to read the full document about the fine (in italian) it's here: https://www.agcom.it/sites/default/files/provvedimenti/delib...

Part of this doc states:

``` The rights holders also declared, under their own responsibility, providing certified documentary evidence of the current nature of the unlawful conduct, that the reported domain names and IP addresses were unequivocally intended to infringe the copyright and related rights of the audiovisual works relating to live broadcast sporting events and similar events covered by the reports. ```

So, I'm not sure anybody verified that what the right holders claimed was actually true. While I understand what AGCOM (the italian FCC, more-or-less) is trying to do, it seems that, as usual, a law was created without verifying how the implementation of such law would work in practice (something very common in Italy), and this is the result.

Cloudflare CEO seems irate, and some of his references are not great, but I'd be inclined at thinking he's got at least _some_ reason on his side.

But, this is probably a net improvement over the current situation, and this is still experimental, so, changes can happen before it gets to GA.

Comments URL: https://news.ycombinator.com/item?id=46217965

Points: 33

# Comments: 2

Projects can and will fail or run late; but heck; a 6-months projects cannot found late after 5 months and 29 days; things must be discovered early, so that the most important issues can be addressed.

Comments URL: https://news.ycombinator.com/item?id=45914151

Points: 3

# Comments: 0

This seems to be a common practice for some CAs or companies, but it’s not required AFAICT; and it contributes to the gigantic CRLsets that we have - most of those revocations wouldn’t actually be needed from a security pov.

This requires a per-vehicle (not per model) specific flow which may take long and cost a lot, and you may be fined if you use the vehicle outside its stated purpose.

I can remember some collectors importing cybertruck indeed, I don’t know the limitations for its use.

That’s usd 150k per year. Probably low for SF, but may be a lot in other areas.