Hacker News: noinsight

New comment by noinsight in "The Windows 95 user interface: A case study in usability engineering (1996)"

noinsight — Sun, 01 Mar 2026 02:34:45 +0000

> Put the phone in their pocket and it felt a press and went into edit mode and edited the lock screen.

This is why I hate the flashlight and camera buttons on the lock screen - which you can activate without unlocking. When you have your hands in your pockets during cold weather you’ll suddenly be ”filming”… I never use the camera on my phone anyway. Thankfully at some point they added support for removing them.

New comment by noinsight in "Windows 11 Notepad to support Markdown"

noinsight — Wed, 25 Feb 2026 20:57:39 +0000

> Kate

So install Kate? There's a Windows build.

New comment by noinsight in "Windows 11 Notepad to support Markdown"

noinsight — Wed, 25 Feb 2026 20:52:33 +0000

It is preinstalled. Server 2025 (even Core Edition) and Windows 11 24H2 (or 25H2, not sure)...

New comment by noinsight in "Windows 11 Notepad to support Markdown"

noinsight — Wed, 25 Feb 2026 20:51:03 +0000

> EDIT.COM becoming the new Notepad.

edit.exe[1,2] actually. And it runs on Linux too! Linux had a real lack of good text editors.

[1] https://github.com/microsoft/edit

[2] https://learn.microsoft.com/en-us/windows/edit/

New comment by noinsight in "I can't upgrade to Windows 11, now leave me alone"

noinsight — Mon, 22 Dec 2025 06:47:11 +0000

> bypasses the TPM check

The caveat with this is that it will fail the check on subsequent version upgrades too and will refuse to upgrade.

Non-Enterprise editions are only supported for 2 years so your 25H2 (or whatever it is) installation will go sour in 2027.

New comment by noinsight in "SMB Direct – SMB3 over RDMA"

noinsight — Fri, 19 Dec 2025 14:05:55 +0000

This was probably added by/for Tuxera to increase Tuxera Fusion SMB performance.

New comment by noinsight in "Windows drive letters are not limited to A-Z"

noinsight — Sun, 30 Nov 2025 15:26:09 +0000

Windows is not limited to accessing partitions through drive letters either, it's just the existing convention.

You can mount partitions under directories just like you can in Linux/Unix.

PowerShell has Add-PartitionAccessPath for this:

> mkdir C:\Disk

> Add-PartitionAccessPath -DiskNumber 1 -PartitionNumber 2 -AccessPath "C:\Disk"

> ls C:\Disk

It will persist through reboots too.

New comment by noinsight in "Bear is now source-available"

noinsight — Mon, 01 Sep 2025 18:52:55 +0000

> We are also entering the age of "hey AI, take this repo, reimplement the same functionality".

Wouldn't you do this just against the/an API documentation? Interesting thought.

New comment by noinsight in "Critical Cache Poisoning Vulnerability in Dnsmasq"

noinsight — Tue, 19 Aug 2025 23:04:55 +0000

You can just use Unbound for DNS.

New comment by noinsight in "The bewildering phenomenon of declining quality"

noinsight — Sun, 20 Jul 2025 12:11:42 +0000

Bamboo isn’t even wood, it’s grass.

New comment by noinsight in "GNOME and Red Hat Linux eleven years ago (2009)"

noinsight — Sun, 15 Jun 2025 21:29:49 +0000

RIP Beefy Miracle...

https://beefymiracle.org/

New comment by noinsight in "Gandi March 9, 2025 incident postmortem"

noinsight — Mon, 05 May 2025 14:05:49 +0000

Amazon/AWS Registrar. They're a reseller for Gandi, but of course everything is managed through AWS and the pricing is at-cost instead of the rip-off that Gandi is now.

New comment by noinsight in "TLS certificate lifetimes will officially reduce to 47 days"

noinsight — Tue, 15 Apr 2025 15:37:10 +0000

Orchestrate the renewal with Ansible - renew on the "master" server remotely but pull the new key material to your orchestrator and then push them to your server fleet. That's what I do. It's not "clean" or "ideal" to my tastes, but it works.

It also occurred to me that there's nothing(?) preventing you from concurrently having n valid certificates for a particular hostname, so you could just enroll distinct certificates for each host. Provided the validation could be handled somehow.

The other option would maybe be doing DNS-based validation from a single orchestrator and then pushing that result onto the entire fleet.

New comment by noinsight in "Google Search to redirect its country level TLDs to Google.com"

noinsight — Tue, 15 Apr 2025 15:19:08 +0000

> allow better network management

Yeah, this would definitely block that.

DNS-based (hostname) allowlisting is just starting to hit the market (see: Microsoft's "Zero Trust DNS" [1]) and this would kill that. Even traditional proxy-based access control is neutered by this and the nice thing about that is that it can be done without TLS interception.

If you're left with only path-based rules you're back to TLS interception if you want to control network access.

[1] https://techcommunity.microsoft.com/blog/networkingblog/anno...

New comment by noinsight in "Apple pulls data protection tool after UK government security row"

noinsight — Fri, 21 Feb 2025 19:02:04 +0000

> non US citizens whose data is stored in the US

They don't even care where it's stored...

See: CLOUD Act [1]

[1] https://en.wikipedia.org/wiki/CLOUD_Act

New comment by noinsight in "“A calculator app? Anyone could make that”"

noinsight — Sun, 16 Feb 2025 19:28:59 +0000

How do you make the Win7 binary run? Last I tried it doesn’t run if you just have the .exe?

New comment by noinsight in "/bin/sh: the biggest Unix security loophole (1984) [pdf]"

noinsight — Sun, 12 Jan 2025 01:25:35 +0000

No, you are right. On Linux you can look at AUID. To be fair, I have no idea about others than Linux.

New comment by noinsight in "/bin/sh: the biggest Unix security loophole (1984) [pdf]"

noinsight — Sat, 11 Jan 2025 20:41:45 +0000

> Unix was very much made for multi user environments. ... The biggest security concern was making sure that everyone who was logged in was billed correctly.

I don't know about that... It doesn't even support multiple administrators. And you can't even distinguish between actions performed by the system itself and the administrative user.

Yes I know about sudo.

What do you need to do and what do the (even audit) logs say about who performed an activity whenever administrative activity happens?

New comment by noinsight in "Setelinleikkaus: When Finns snipped their cash in half to curb inflation"

noinsight — Tue, 26 Nov 2024 18:18:22 +0000

Finland did cross the old borders in parts, but we specifically didn’t participate in the Siege of Leningrad and refused all German demands for assistance.

New comment by noinsight in "YubiKey still selling old stock with vulnerable firmware"

noinsight — Tue, 12 Nov 2024 01:28:24 +0000

Yeah, but what isn't ever(?) mentioned is, "other" ECC keys are (should be) impacted by this too, not just FIDO2, i.e. ECC smart card certificates if you're using those.