emit Light();
Under the Blue Sky. 本频道中的内容仅代表发布者所扮演的黎明余光的个人观点,与频道所有者 @idawnlight 本人无关。
Show moreData loading in progress...
Find out who reads your channel
This graph will show you who besides your subscribers reads your channel and learn about other sources of traffic.Posts | Views | Shares | Views dynamics |
01 https://arxiv.org/abs/2405.18741 | 28 | 0 | Loading... |
02 https://fixupx.com/lakr233/status/1795702360658124964 | 67 | 2 | Loading... |
03 https://robindev.substack.com/p/cloudflare-took-down-our-website | 49 | 1 | Loading... |
04 《在 5G NR 时代,我们真的该大规模部署 TCP BBR 了》
https://blog.cyyself.name/5g-nr-tcp-cubic-vs-bbr/
总体而言,TCP BBR 拥塞控制算法可一定程度避免 5G NR 网络下的大缓冲区的 Long Fat Pipe 导致流量不断增广占满链路 Buffer 导致延迟增加的情况,一直到出现丢包为止才让速率收敛,但这还导致了不稳定的速率导致无法拥有较高的性能。而 TCP BBR 可根据其 ACK 延迟发现 Bufferbloat 事件,在发生丢包前就进行动态速率调整,避免该情况发生。
来自 @chenyy 的非常有趣的发现与测试,值得一看。 | 25 | 3 | Loading... |
05 https://www.ambionics.io/blog/iconv-cve-2024-2961-p1 | 51 | 0 | Loading... |
06 看剧情的时候思考了一下英文翻译得怎么区分「莱茵实验室」和「莱茵生命」,然后发现并没有区分,感觉是早期翻译埋下的坑( | 59 | 0 | Loading... |
07 IV 查看原文» | 61 | 0 | Loading... |
08 https://fixupx.com/usernamesstolen/status/1793673241569137101 | 104 | 3 | Loading... |
09 等《孤星》复刻,先来看看 1999 更新了什么( | 80 | 0 | Loading... |
10 https://github.com/Ph0enixKM/Amber | 78 | 0 | Loading... |
11 花了亿点点时间从弃坑前的主线 EP8 推到了 EP14( | 73 | 0 | Loading... |
12 surface用户的五个阶段
1. 否认:我觉得surface做的挺好的啊
2. 愤怒:他妈的微软怎么系统/硬件又炸了
3. 沮丧:妈的,我买sb,我是sb
4. 讨价还价:至少还有微软小玩具玩
5. 接受:他妈的下次再买我是狗
(然后他又买了) | 65 | 5 | Loading... |
13 我的 Release Notes 呢(again | 492 | 2 | Loading... |
14 您完全不考虑 fallback 是吗( | 93 | 1 | Loading... |
15 https://fixupx.com/LuftkoppTim/status/1792107111343600074
居然有人截到图了( | 99 | 1 | Loading... |
16 知道了! | 99 | 1 | Loading... |
17 实测在受影响的设备上,通过零宽空格的方式,可以绕过系统对读取路径的限制,访问其他应用的分区存储
这就是我们 Android 的分区存储啊,真是分分又区区
测试设备:小米 13 / HyperOS EEA 1.0.4.0.UMCEUXM | 71 | 2 | Loading... |
18 以防频道订户不知道,Minecraft 迎来了周年庆半价打折 | 45 | 1 | Loading... |
19 VMware Fusion and VMware Workstation are now available free for personal use
https://blogs.vmware.com/cloud-foundation/2024/05/14/vmware-desktop-hypervisor-pro-apps-now-available-for-personal-use/
🐟 | 73 | 1 | Loading... |
20 IV 查看原文» | 88 | 0 | Loading... |
21 https://zhuanlan.zhihu.com/p/697685138 | 96 | 1 | Loading... |
22 我的 Release Notes 呢( | 77 | 0 | Loading... |
23 https://fxtwitter.com/main_horse/status/1790099796193398831 | 84 | 0 | Loading... |
24 https://fxtwitter.com/nathudgens/status/1789357924847886797 | 73 | 0 | Loading... |
25 原来这个官方后门是这么放出来的( | 86 | 2 | Loading... |
26 无忧无虑地编程 | 97 | 3 | Loading... |
27 https://www.assetnote.io/resources/research/digging-for-ssrf-in-nextjs-apps | 98 | 1 | Loading... |
28 https://www.bbc.com/news/articles/cld0rxlqgggo.amp | 114 | 1 | Loading... |
29 https://frostming.com/2024/friendly-python-reuse/ | 78 | 2 | Loading... |
30 https://fxtwitter.com/WildCat_zh/status/1788325681820053516 | 78 | 0 | Loading... |
31 Here is a 72-byte alphanum MD5 collision with 1-byte difference for fun:
md5("TEXTCOLLBYfGiJUETHQ4hAcKSMd5zYpgqf1YRDhkmxHkhPWptrkoyz28wnI9V0aHeAuaKnak")
=
md5("TEXTCOLLBYfGiJUETHQ4hEcKSMd5zYpgqf1YRDhkmxHkhPWptrkoyz28wnI9V0aHeAuaKnak")
Twitter | 56 | 0 | Loading... |
32 https://0ver.org/ | 94 | 1 | Loading... |
33 https://www.v2ex.com/t/1035883 | 75 | 1 | Loading... |
34 Oversecured 称其在小米设备搭载的系统中发现了 20 个重大安全漏洞
5 月 2 日,移动安全公司 Oversecured 在其报告中指出,小米设备搭载的系统存在重大安全漏洞,覆盖了预装软件到系统组件,数量高达 20 个,可以对所有小米用户构成威胁。
漏洞可能会导致以系统权限访问任意活动、接收器和服务、窃取任意文件,泄露手机、设置和小米账户的数据等。
目前,这些漏洞已被报告给小米。漏洞的详细复现细节也已在报告中被公开。
在原文阅读报告细节 -> https://blog.oversecured.com/20-Security-Issues-Found-in-Xiaomi-Devices/ | 51 | 1 | Loading... |
35 淘宝发布了「致 taobao.com 用户的一封信」,表示完成了网页端的升级
省流:
完成了对淘宝 PC 网页端的升级,解决了网页端看不到宝贝详情、显示卷后价和优惠明细、登录状态保持等功能。重启淘江湖论坛。
刚刚试了一下,宝贝内容确实可以正常显示了,网页端也可以正常按照优惠价结算(建议京东跟进)。
文艺复兴了,买东西的时候终于不用再在手机的小屏幕上一点点戳了,还是值得鼓励的。
https://bbs.taobao.com/detail.html?postId=10328201 | 49 | 4 | Loading... |
36 Media files | 95 | 1 | Loading... |
37 一个似乎并没有什么好的解决方案的问题( | 98 | 0 | Loading... |
38 美国航空系统误将 101 岁老人识别为婴儿。
BBC 报道:美航将 1922 年出生的成人票旅客识别为 2022 年出生。
[感谢 夜坂雅 提供此消息。]
https://www.bbc.com/news/articles/c9wz7pvvjypo
#US #CompSci | 76 | 0 | Loading... |
39 #WTF #SoftwareGore
Youtube 的视频标题自动翻译似乎用了一些LLM,但这个自动翻译的业务逻辑实现本身似乎有点欠火候? | 59 | 0 | Loading... |
40 https://medium.com/@pedbap/telegram-web-app-xss-session-hijacking-1-click-95acccdc8d90 | 91 | 1 | Loading... |
Large language models (LLMs) like ChatGPT, Gemini, or LLaMA have been trending recently, demonstrating considerable advancement and generalizability power in countless domains. However, LLMs...
擦 Sparkle.framework 是这么用的?
TL;DR: We've been on the Cloudflare Business plan ($250/month) for years. They suddenly contacted us and asked us to either pay them $120k up front for one year of Enterprise within 24 hours or they would take down all of our domains. While this escalated up our business we had 3 sales calls with them, trying to figure out what was happening and how to reach a reasonable contract in a week. When we told them we were also in talks with Fastly, they suddenly "purged" all our domains, causing huge downtime in our core business, sleepless nights migrating away from CF, irreparable loss in customer trust and weeks of ongoing downtime in our internal systems.
总体而言,TCP BBR 拥塞控制算法可一定程度避免 5G NR 网络下的大缓冲区的 Long Fat Pipe 导致流量不断增广占满链路 Buffer 导致延迟增加的情况,一直到出现丢包为止才让速率收敛,但这还导致了不稳定的速率导致无法拥有较高的性能。而 TCP BBR 可根据其 ACK 延迟发现 Bufferbloat 事件,在发生丢包前就进行动态速率调整,避免该情况发生。来自 @chenyy 的非常有趣的发现与测试,值得一看。
A few months ago, I stumbled upon a 24 years old buffer overflow in the glibc, the base library for linux programs. Despite being reachable in multiple well-known libraries or executables, it proved rarely exploitable — while it didn't provide much leeway, it required hard-to-achieve preconditions. Looking for targets lead mainly to disappointment. On PHP however, the bug shone, and proved useful in exploiting its engine in two different ways.
ChatGPT, but it's late 2000s.
💎 Amber the programming language compiled to bash. Contribute to Ph0enixKM/Amber development by creating an account on GitHub.