Hacker News: uhx

New comment by uhx in "Claude Code Found a Linux Vulnerability Hidden for 23 Years"

uhx — Mon, 06 Apr 2026 13:26:51 +0000

Thank you for clarification. It actually helped: at first I was overcomplicating it in my head.

After thinking about it for an hour I came up with this:

LLM claims that there is a bug. We dont know whether it really exist. We run a second LLM that is capable to write unit-tests/reproducer (dont have to be E2E, shorter data flow -> bigger success rate for LLM), compile program and run the test for ASAN assert. ASAN error means proven bug. No error, as you said, does not prove anything, because it may simply mean LLM failed to write a correct test.

Still don't know how much $ it would cost for LLM reasoning, but this technically should work much better than manually investigating everything.

Sorry for "have-you-ever" thing :)

New comment by uhx in "Claude Code Found a Linux Vulnerability Hidden for 23 Years"

uhx — Sat, 04 Apr 2026 17:10:32 +0000

> Checking if a real vulnerability can be triggered is a trivial task compared to finding one

Have you ever tried to write PoC for any CVE?

This statement is wrong. Sometimes bug may exist but be impossible to trigger/exploit. So it is not trivial at all.

New comment by uhx in "How kernel anti-cheats work"

uhx — Sun, 15 Mar 2026 10:18:28 +0000

Everything you described increases the cost of attack (creating a cheat), and as a result, not everyone can afford it, which means anti-cheats work. They don't have to be a panacea. Gameplay analysis will only help against blatant cheaters, but will miss players with simple ESP.

It's almost the same as saying "you don't need a password on your phone" or something like that.

New comment by uhx in "Show HN: Axe – A 12MB binary that replaces your AI framework"

uhx — Fri, 13 Mar 2026 10:53:13 +0000

you cant be serious

chroot is not a security tool and never has been

New comment by uhx in "Show HN: Axe – A 12MB binary that replaces your AI framework"

uhx — Fri, 13 Mar 2026 02:14:53 +0000

> - Path-sandboxed file ops. Keeps agents locked to a working directory

How is it supposed to work, if agent can simply run "cat" command instead of using skill for file read/write/etc?

New comment by uhx in "1Password pricing increasing up to 33% in March"

uhx — Tue, 24 Feb 2026 21:28:13 +0000

Subscriptions are fine, companies are greedy

New comment by uhx in "Notepad++ hijacked by state-sponsored actors"

uhx — Mon, 02 Feb 2026 04:45:03 +0000

By analyzing payloads / C2 address, etc...

New comment by uhx in "The best YouTube downloaders, and how Google silenced the press"

uhx — Sat, 20 Sep 2025 00:55:54 +0000

Same here. Couldn't find any source code

New comment by uhx in "Floor796"

uhx — Sun, 19 May 2024 11:50:03 +0000

Not that much Here is an article about implementation from the author (translate it from russian): google "habr floor796"

New comment by uhx in "How to copy a file between devices? (2022)"

uhx — Thu, 15 Feb 2024 14:26:06 +0000

https://github.com/tfg13/LanXchange

LAN, Android / PCs, easy to use for non techs

no middleware and other sh..