Mastodawn

Recordings of OC3 2026 (Open Confidential Computing Conference) are now available:
https://www.youtube.com/playlist?list=PLEhAl3D5WVvSqGrHPmtH9aHly3n2bwkYk

#ConfidentialComputing #Cloud #CloudSecurity #AI

OC3 2026

YouTube

Trundle 2d ago

When you glance into a commonly used library and the first look is UB

Trundle Mar 4

Gabriele Svelto Mar 4

A few years ago I designed a way to detect bit-flips in Firefox crash reports and last year we deployed an actual memory tester that runs on user machines after the browser crashes. Today I was looking at the data that comes out of these tests and now I'm 100% positive that the heuristic is sound and a lot of the crashes we see are from users with bad memory or similarly flaky hardware. Here's a few numbers to give you an idea of how large the problem is. 🧵 1/5

Trundle Feb 26

nolen Feb 26

ssh is an obscure but widely-deployed command. It stands for Secure Snake Home and was made in the 90s to securely play snake online

I made a massively multiplayer backend for it with support for thousands of concurrent snake players

ssh snakes.run to join!

Trundle Jan 28

Arson Copperflame Jan 28

Just uploaded my bachelor's thesis to GitHub!

In it, I detail how I created a bootstrap chain for @nixos_org which builds the whole system from a small hand-auditable binary seed.

Read the thesis: https://nzbr.github.io/nixos-full-source-bootstrap/thesis.pdf
Check out the code: https://github.com/nzbr/nixos-full-source-bootstrap
My post on the NixOS discourse: https://discourse.nixos.org/t/a-full-source-bootstrap-for-nixos/74801

Trundle Jan 26

John Bull Jan 26

As an older tech person, it's legit heartwarming watching the TikTok generation discover why we all hate Oracle.

Trundle Jan 26

daniel:// stenberg://Jan 26

The end of the #curl bug-bounty

https://daniel.haxx.se/blog/2026/01/26/the-end-of-the-curl-bug-bounty/

The end of the curl bug-bounty

tldr: an attempt to reduce the terror reporting. There is no longer a curl bug-bounty program. It officially stops on January 31, 2026. After having had a few half-baked previous takes, in April 2019 we kicked off the first real curl bug-bounty with the help of Hackerone, and while it stumbled a bit at first … Continue reading The end of the curl bug-bounty →

daniel.haxx.se

Trundle Jan 22

Rust Language Jan 22

Rust 1.93.0 has been released! 🌈 🦀✨

This release includes a new musl version for the *-linux-musl targets, adds support for #[cfg] inside asm!(), and adds [T]::as_array, VecDeque::{pop_front_if, pop_back_if}, Vec/String::into_raw_parts, fmt::form_fn, and more! ✨

Check out the blog post and release notes for all the details: https://blog.rust-lang.org/2026/01/22/Rust-1.93.0/

Announcing Rust 1.93.0 | Rust Blog

Empowering everyone to build reliable and efficient software.

Trundle Jan 19

Aurora borealis: confirmed

Trundle Jan 15

Leah Neukirchen Jan 15

Life pro tip: if you replace /epdf/ with /pdf/ on the new ACM.org you get a PDF reader that works (your browser).