<rss version="2.0" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Hacker News: tuetuopay</title><link>https://news.ycombinator.com/user?id=tuetuopay</link><description>Hacker News RSS</description><docs>https://hnrss.org/</docs><generator>hnrss v2.1.1</generator><lastBuildDate>Thu, 09 Jul 2026 00:10:50 +0000</lastBuildDate><atom:link href="https://hnrss.org/user?id=tuetuopay" rel="self" type="application/rss+xml"></atom:link><item><title><![CDATA[New comment by tuetuopay in "Every new car sold in the European Union must include a driver monitoring camera"]]></title><description><![CDATA[
<p>I agree, and I don't remember whether I had the blinker. I, however, also respectfully disagree as in all fairness we should drive 100% perfectly 100% of the time, but we're humans. Expecting 100% driving all the times is the worst as it puts strain on the driver (I say that as someone that's pretty strict on blinkers).<p>What is special is one time it was a one way lane next to the tram with a concrete stub down. I wouldn't be surprised if the anti-collision kicked in and applied lane assist even with the blinker.<p>At any rate, the principle of least surprise still applies: heavy machinery must not jerk unexpectedly to the side. Never ever ever.</p>
]]></description><pubDate>Wed, 08 Jul 2026 09:26:03 +0000</pubDate><link>https://news.ycombinator.com/item?id=48829645</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48829645</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48829645</guid></item><item><title><![CDATA[New comment by tuetuopay in "Every new car sold in the European Union must include a driver monitoring camera"]]></title><description><![CDATA[
<p>I almost slammed bicycles in Paris on a few occasions because of that crap. Shift a bit to the left to overtake them, get lane assist slam me back right. Thankfully those were close calls, but only thanks to the cyclist being used to traffic in Paris and having good reflexes.<p>Any dangerous machine (like a car) must not do anything unexpected out of the driver's control. A lane assist that resists the wheel when trying to get out? Why not, but dangerous. A lane assist that slam you back in the lane? Criminal. (same with anti-collision braking that triggers too strong too early and surprises drivers behind you)<p>I'm definitely of the opinion that all those features reduce security. The alarm fatigue is real, because the car <i>always</i> finds something to beep at you. Heck, even your hands not being a perfect 10-2 o'clock on the wheel is reason enough on some cars. You quickly ignore the beeps because there are so many reasons for the car to beep it's hard to even understand why.</p>
]]></description><pubDate>Wed, 08 Jul 2026 07:21:15 +0000</pubDate><link>https://news.ycombinator.com/item?id=48828668</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48828668</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48828668</guid></item><item><title><![CDATA[New comment by tuetuopay in "I found 10k GitHub repositories distributing Trojan malware"]]></title><description><![CDATA[
<p>Definitely. If bitwarden does not shows a little "1" icon I'm basically lolnope'ing out.<p>Still, it pains me to see that practices from the early keylogger era are still "good practices".</p>
]]></description><pubDate>Fri, 19 Jun 2026 13:27:57 +0000</pubDate><link>https://news.ycombinator.com/item?id=48598329</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48598329</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48598329</guid></item><item><title><![CDATA[New comment by tuetuopay in "I found 10k GitHub repositories distributing Trojan malware"]]></title><description><![CDATA[
<p>It's a bank, and a rather old at that. I fully expect them to store the password in cleartext. (hence the security theatre qualification)<p>Banks are notorious for taking security as a strict cost/savings measure. I would not be surprised if they enforce weak passwords stored in cleartext on purpose to save on support agents for the people that forget/lose their password. Imagine the customer service reviews: "they were able to find my password back, 5/5". Probably enough savings to offset the cost of refunding people that got their account pwnd. Cost of doing business.</p>
]]></description><pubDate>Fri, 19 Jun 2026 13:26:20 +0000</pubDate><link>https://news.ycombinator.com/item?id=48598308</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48598308</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48598308</guid></item><item><title><![CDATA[New comment by tuetuopay in "I found 10k GitHub repositories distributing Trojan malware"]]></title><description><![CDATA[
<p>That's without considering a lot of banks have non-textual inputs for their passwords. Man they love their scrambled virtual keyboard!<p>I think the worst I ever had was HSBC that asked me for <i>fragments</i> of my password, like characters 4, 6, 7, 11, and 12. Absolute bonkers of a security theatre.</p>
]]></description><pubDate>Thu, 18 Jun 2026 18:31:14 +0000</pubDate><link>https://news.ycombinator.com/item?id=48589499</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48589499</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48589499</guid></item><item><title><![CDATA[New comment by tuetuopay in "10Gb/s Ethernet: switching to a Broadcom SFP+ module"]]></title><description><![CDATA[
<p>So much this. The rule of thumb is: avoid SFP-RJ45 converters at all costs, you'll be burned by them (literally and figuratively).<p>They all are little snowflakes. Compatibility is hit-or-miss. They run hot. They eat more power. They're finnicky. Heck, they plain out lie about what they are (I've got some that pretend to be fibre with 3m of copper, sure).<p>So yeah, DAC it is for patch, fibre for anything more.</p>
]]></description><pubDate>Tue, 16 Jun 2026 22:31:29 +0000</pubDate><link>https://news.ycombinator.com/item?id=48563149</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48563149</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48563149</guid></item><item><title><![CDATA[New comment by tuetuopay in "Statement on US government directive to suspend access to Fable 5 and Mythos 5"]]></title><description><![CDATA[
<p>Yeah a bit like I’ll be impressed by a humanoid robot that can fold a shirt from a freeform state (i.e. thrown as a ball on the laundry chair, or straight out of the dryer). Just like repeatable movements an balance are the easy(er) parts of robotics, text processing is the easy part of AI.</p>
]]></description><pubDate>Sat, 13 Jun 2026 06:07:57 +0000</pubDate><link>https://news.ycombinator.com/item?id=48513880</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48513880</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48513880</guid></item><item><title><![CDATA[New comment by tuetuopay in "How much do amd64 microarchitecture levels help in Go?"]]></title><description><![CDATA[
<p>Yes, it's in the platform options. You can specify --platform linux/amd64/v3 for a v3 image.</p>
]]></description><pubDate>Tue, 09 Jun 2026 10:26:31 +0000</pubDate><link>https://news.ycombinator.com/item?id=48459141</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48459141</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48459141</guid></item><item><title><![CDATA[New comment by tuetuopay in "GitHub and the crime against software"]]></title><description><![CDATA[
<p>They've made a <i>lot</i> of progress in the recent years, and the last two major releases downright feel snappy compared to GitHub (really, browsing a repo tree is literally snappy). Oh, and their SPA implementation actually works, the back button is not broken 90% of the time like it is on GH.<p>And mind you, that's on a small 4 core VM on 2019 mid-range Xeons, which I would not consider to be a huge amount of compute (granted, not Raspberry Pi level, but I'd expect the SD card to be much more of an issue).<p>So yeah, along with the sane(r) way to do CI pipelines, and usable review tools, it's a net improvement over GitHub.</p>
]]></description><pubDate>Mon, 01 Jun 2026 22:32:39 +0000</pubDate><link>https://news.ycombinator.com/item?id=48363498</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48363498</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48363498</guid></item><item><title><![CDATA[New comment by tuetuopay in "Show HN: Write your BPF programs in Go, not C"]]></title><description><![CDATA[
<p>Nitpick: you definitely can do loops as long as the verifier can prove they're bounded.<p>At my previous job, I've written production eBPF exclusively in Rust using Aya (mentioned by a sibling comment), and it's been a blast. Being able to share the type definitions between the kernel-space and the user-space code is a blessing to avoid subtle issues when going through the maps. And, at least in Rust, you can re-use crates and types that make you gain time. As a (simple) example, being able to use the standard library's IpAddr types or the ipnet crate to not have to roll your own IP and network manipulation libraries is a (small) timesave. It's main value is not needing to onboard new developers.<p>The Rust type system is a good helper in keeping the verifier happy. Slices, iterators, match statements, etc are very good in my experience (e.g. Option is a godsend to ensure you stay withing the bounds of the input packet, esp. slice::split_at when parsing headers).<p>But you're right that reading C is non-negotiatable, especially since pretty much all example code on the internet is in C.</p>
]]></description><pubDate>Tue, 26 May 2026 07:40:07 +0000</pubDate><link>https://news.ycombinator.com/item?id=48276399</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48276399</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48276399</guid></item><item><title><![CDATA[New comment by tuetuopay in "Migrating from Go to Rust"]]></title><description><![CDATA[
<p>The difference is, unwrap will stick out like a sore thumb, and it’s opt-in. You explicitly tell "this may panic".<p>As for error handling, this kind of enrichment is usually left to the caller (that is, the end application), with error libraries like anyhow where you can add arbitrary string contexts to an error. You would end up writing `Config::load(path).with_context(|| format!("Failed to load configuration file {path}"))?`.</p>
]]></description><pubDate>Mon, 25 May 2026 15:55:49 +0000</pubDate><link>https://news.ycombinator.com/item?id=48268321</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48268321</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48268321</guid></item><item><title><![CDATA[New comment by tuetuopay in "Bun Rust rewrite: "codebase fails basic miri checks, allows for UB in safe rust""]]></title><description><![CDATA[
<p>As for the specific issue: it does not exist in Zig, because Zig does not have ownership.<p>In a nutshell, the LLM created abstractions that allow you to write <i>unsound</i> code in <i>safe</i> rust, which is squarely against the language.<p>To be specific: the abstraction takes a (shared) reference and uses unsafe to wrap it in an owned object, completely erasing le lifetime. In practice, this means users of the abstraction think they own the underlying memory: they choose when to free it. However, it just wraps a pointer that’s owned by someone else (it was a shared reference, remember?), thus it <i>will</i> be freed when you don’t expect it.<p>So why does it not exist in Zig: it’s a false contract about what it is. The Zig pointer is a pointer with no added lifetime information. You can hold a Zig pointer wrong, but you <i>will</i> hold a lying abstraction wrong. You will misuse it because it doesn’t do what’s written on the tin. You will write bugs with it.<p>And, LLMs will too. If they do not have the abstraction definition in their context, they also have no way to know the contract is lying.</p>
]]></description><pubDate>Sat, 16 May 2026 11:07:37 +0000</pubDate><link>https://news.ycombinator.com/item?id=48159057</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48159057</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48159057</guid></item><item><title><![CDATA[New comment by tuetuopay in "CERT is releasing six CVEs for serious security vulnerabilities in dnsmasq"]]></title><description><![CDATA[
<p>Well, it <i>is</i> a good thing to get control of your own hardware, when the vendor decides that no you won't do what you want with it.</p>
]]></description><pubDate>Wed, 13 May 2026 13:24:49 +0000</pubDate><link>https://news.ycombinator.com/item?id=48121606</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48121606</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48121606</guid></item><item><title><![CDATA[New comment by tuetuopay in "I hate soldering"]]></title><description><![CDATA[
<p>Give a shot to the SAC305 mix. It’s a low temperature lead-free alloy, and it’s the one that made me ditch leaded solder definitively. Use more flux and a bit more iron temperature and you’ll never touch leaded solder again. Oh, and it’s available both as a hand-soldering wire reel and solder paste.</p>
]]></description><pubDate>Tue, 12 May 2026 07:51:16 +0000</pubDate><link>https://news.ycombinator.com/item?id=48105429</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48105429</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48105429</guid></item><item><title><![CDATA[New comment by tuetuopay in "I'm going back to writing code by hand"]]></title><description><![CDATA[
<p>I interpret it as "in practice", "now". Non-native English speaker here, so I may have missed your meaning.<p>If you meant they’re now better at mimicking compilers, sure, but they’re only mimicks.</p>
]]></description><pubDate>Mon, 11 May 2026 19:24:08 +0000</pubDate><link>https://news.ycombinator.com/item?id=48099507</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48099507</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48099507</guid></item><item><title><![CDATA[New comment by tuetuopay in "An AI coding agent, used to write code, needs to reduce your maintenance costs"]]></title><description><![CDATA[
<p>Which is how to keep shareholders and product managers happy /s</p>
]]></description><pubDate>Mon, 11 May 2026 17:53:55 +0000</pubDate><link>https://news.ycombinator.com/item?id=48098271</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48098271</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48098271</guid></item><item><title><![CDATA[New comment by tuetuopay in "I'm going back to writing code by hand"]]></title><description><![CDATA[
<p>They’re not, and will never be in their current form and architecture.<p>Compilers are mechanical and engineered to produce a correct output. A compiler emitting incorrect machine code is exceedingly rare, and considered a bug. They have heuristics and probabilities in them, but those are to pick between a set of known-good outputs.<p>An AI is a bag of weights outputting a probability of the most plausible token that follows [1]. It is inherently probabilistic in nature and its output is organic (by design, they’re designed to mimic human speech), as opposed to mechanical like a compiler.<p>A compiler follows hard rules. An AI does its best.<p>And to be fair, AIs are no better than human in this regard: humans are pretty bad at generating correct code without mechanical tools to keep them in line (compilers, linters, formatters). It’s not a wonder we use the same tools to keep LLM output in line as we do humans. (And, to be fair, LLMs are <i>better</i> than humans at oneshotting valid code).<p>[1]: to those that tell me this vision of an LLM is outdated: nope. The heavy lifting is done in the probability generation. Debates about understanding are not relevant here, and the net output of an LLM is a probability vector over raw tokens. This basic description can be contrasted to a compiler whose output is a glorified Jinja template.</p>
]]></description><pubDate>Mon, 11 May 2026 17:47:57 +0000</pubDate><link>https://news.ycombinator.com/item?id=48098185</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48098185</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48098185</guid></item><item><title><![CDATA[New comment by tuetuopay in "IBM didn't want Microsoft to use the Tab key to move between dialog fields"]]></title><description><![CDATA[
<p>Wow I never thought about that, but it makes complete sense. I just tried shifting my hands "as if" the nubs were on D and K and wow, it should have been this way.<p>Oh well, just like caps lock can be remapped, so can my keycaps be swapped (perks of blank keyboards I guess), though it'd be even harder to use a keyboard that's not mine I guess.</p>
]]></description><pubDate>Tue, 05 May 2026 21:34:47 +0000</pubDate><link>https://news.ycombinator.com/item?id=48028908</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48028908</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48028908</guid></item><item><title><![CDATA[New comment by tuetuopay in "IBM didn't want Microsoft to use the Tab key to move between dialog fields"]]></title><description><![CDATA[
<p>Yeah but, even ones that don't use literal tab characters use the tab key to write code, right? RIGHT? Like, does he hit space N times?<p>I somewhat get the argument, but if you're writing code in the HN textarea you're doing something wrong (for code where tab/space matters anyways). Like, any code editor will use the tab key properly.<p>Though, it sills maddens me there's no somewhat universal tab-entry in OSes like we have with enter (somewhat because there's a mix of shift+enter, alt+enter and cmd+enter). All of shift/alt/ctrl tab are usually <i>also</i> hijacked.</p>
]]></description><pubDate>Tue, 05 May 2026 19:06:58 +0000</pubDate><link>https://news.ycombinator.com/item?id=48027048</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48027048</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48027048</guid></item><item><title><![CDATA[New comment by tuetuopay in "IBM didn't want Microsoft to use the Tab key to move between dialog fields"]]></title><description><![CDATA[
<p>Its whole purpose is to be remapped as CTRL, as god intended.</p>
]]></description><pubDate>Tue, 05 May 2026 19:02:10 +0000</pubDate><link>https://news.ycombinator.com/item?id=48026967</link><dc:creator>tuetuopay</dc:creator><comments>https://news.ycombinator.com/item?id=48026967</comments><guid isPermaLink="false">https://news.ycombinator.com/item?id=48026967</guid></item></channel></rss>