Super HN

New Show
121. Messenger.com is no longer available for messaging
Learn how to continue messaging after Messenger web and desktop apps are no longer available.
122. AI chatbots to face strict online safety rules in UK
AI chatbot providers, including ChatGPT and Grok, are facing a crackdown on illegal content in the United Kingdom, as the government promises swift action to make the internet safer for children.
123. STM32G431 Analogue TV Transmitter
124. Dutch cops arrest man after sending him confidential files by mistake
125. Reading an Ancient Comic Strip
126. Hilbert Map of IPv6 address space
Inspired by xkcd's version. Data provided by IANA. Address space represented along a Hilbert Curve, using the hilbert-chart D3 component. See also the IPv4 version or the AS numbers version. Data Dependencies
127. The hidden control plane lurking in your commodity server
Unbeknownst to many, there is a hidden control plane lurking in your commodity server. When we started Oxide Computer Company in 2019, part of our vision was ridding ourselves of this hidden control plane -- and its ability to hijack your computer. The outermost part of the hidden control plane is the baseboard management controller (BMC) that handles the physical control of the machine (power sequencing, thermals, etc.) On the one hand, you do need something to do this, but the mechanism that the industry consolidated around -- from entirely proprietary vendors that you likely haven't heard of (e.g., ASPEED Technology) and connected to the brainstem of the system -- is unacceptable from a security perspective. We had seen vulnerabilities like the one Eclypsium, Inc. discovered -- dubbed "USBAnywhere" -- that (scarily!) allowed for total remote access to commodity servers: https://lnkd.in/gAipfrhp At Oxide, we eliminated the BMC, replacing it with a microcontroller running an open source operating system of our own design (aptly dubbed Hubris). You can learn more about our approach in Cliff L. Biffle's excellent OSFC talk: https://lnkd.in/gse9JcYB Just replacing the BMC with a slimmed down, fit-to-function service processor was a herculean undertaking, but there was actually something much more insidious that we had our eyes on eliminating: the UEFI BIOS. This is the software that first boots on the CPU; its job is supposed to (just) be a boot loader: to find the operating system that you actually want to run, and run that. But here's the problem: to boot the operating system you need... a booted operating system. That is, to load the payload that contains the operating system image, you need to read from a disk or over the network -- exactly the job of the operating system! So the UEFI BIOS contains within it ANOTHER entire operating system, but it's an opaque and proprietary one. And, unsurprisingly, it's riddled with vulnerabilities: https://lnkd.in/gepNFvb9 And what does the UEFI BIOS do when it actually boots the proper operating system? Ideally, it would obliterate itself, but it unfortunately stays resident, where the operating system can request things of it. But wait, it gets worse: the BIOS also installs software to be executed in something called System Management Mode (SMM) -- a backdoor that the processor can enter more or less whenever it feels like it. At Oxide, we managed to pull off what the industry thought impossible: we eliminated this layer and its backdoor entirely. So there is no UEFI BIOS because there is no BIOS. More on this in my OSFC talk on holistic boot: https://lnkd.in/gQfwtnuj So when you run an Oxide rack, you can be assured that this hidden control plane is gone -- and gone with it is the substantial attack surface that poses a real threat to infrastructure! | 60 comments on LinkedIn
128. Anthropic and the Government of Rwanda sign MOU for AI in health and education
Anthropic is an AI safety and research company that's working to build reliable, interpretable, and steerable AI systems.
129. Use Protocols, Not Services
The Internet is almost anonymous and privacy-preserving by design. I mean, unless some administrator actively tries to track you, there is no built-in...
130. Proton and NordVPN blocked in Spain during soccer matches
131. Radio host David Greene says Google's AI podcast tool stole his voice
132. LT6502: A 6502-based homebrew laptop
A 6502 based laptop design. Contribute to TechPaula/LT6502 development by creating an account on GitHub.
133. Hard problems in social media archiving
Preserving social media is easier said than done. What makes it so difficult for institutions to back up the Internet?
134. Git is a file system. We need a database for the code
GitHub Gist: instantly share code, notes, and snippets.
135. The Homeland Security Forum Where ICE Agents Talk Shit About Other Agents
Forum members have discussed their discomfort with mass deportation efforts, debate how federal agents have interacted with civilians, and complain about their working conditions.
136. (Ars) Editor's Note: Retraction of article containing fabricated quotations
We are reinforcing our editorial standards following this incident.
137. Reversed engineered game Starflight (1986)
Reverse engineered game Starflight (1986). Contribute to s-macke/starflight-reverse development by creating an account on GitHub.
138. When the sun sets, batteries rise: 24/7 solar in California
On February 1, 2026, California’s batteries bridged the solar gap with seamless precision. After discharging through the night until sunrise, they spent the daylight hours charging, then pivoted back to exporting power well past midnight—effectively sustaining the state on solar energy for a full 24-hour cycle.
139. The cultural evolution of pluralistic ignorance
140. AI is destroying Open Source, and it's not even good yet
Over the weekend Ars Technica retracted an article because the AI a writer used hallucinated quotes from an open source library maintainer. The irony here is the maintainer in question, Scott Shambaugh, was harassed by someone's AI agent over not merging its AI slop code. It's likely the bot was running through someone's local 'agentic AI' instance (likely using OpenClaw). The guy who built OpenClaw was just hired by OpenAI to "work on bringing agents to everyone." You'll have to forgive me if I'm not enthusastic about that.
141. Audio is the one area small labs are winning
The story of Gradium, the anatomy of audio AI models, and why smaller labs continue to edge out larger ones when it comes to voice.
142. Idea Raised for Nicer DRM Panic Screen Integration on Fedora Linux
DRM Panic is the Linux kernel infrastructure now supported by most of the Direct Rendering Manager (DRM) kernel graphics/display drivers for being able to render a QR code kernel error message or similar when a kernel panic occurs to provide a cleaner interface should your system run into serious problems
143. Richard Carrington's first portrait has been found
Richard Carrington’s name has long been connected with the most intense solar storm ever recorded, but his face was unknown until a lost portrait surfaced.
144. An AI CEO said something honest: ExperiencedDevs
145. Error payloads in Zig
146. Many consumer electronics manufacturers will bankrupt due to AI memory crisis
This mess is going to get a lot worse before it gets better.
147. My smart sleep mask broadcasts users' brainwaves to an open MQTT broker
I recently got a smart sleep mask from Kickstarter. I was not expecting to end up with the ability to read strangers' brainwaves and send them electric impul...
148. Show HN: Script to check if Notepad++ is backdoored by Lotus Blossom APT
Contribute to nHunter0/Notepad-vulnerability-checker development by creating an account on GitHub.
149. Hideki Sato, designer of all Sega's consoles, has died
Sato helmed design for consoles including Mega Drive, Saturn…
150. Magnus Carlsen Wins the Freestyle (Chess960) World Championship