Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

MCP-Shield: Protecting Your Model Context Protocol Servers

2025-04-15
MCP-Shield: Protecting Your Model Context Protocol Servers

MCP-Shield is a tool for scanning and detecting vulnerabilities in your MCP (Model Context Protocol) servers. It identifies security risks such as tool poisoning attacks, data exfiltration channels, and cross-origin escalations. The tool supports various configuration methods and optionally integrates Anthropic's Claude AI for deeper analysis. Common vulnerability patterns detected include tool poisoning with hidden instructions, tool shadowing and behavior modification, data exfiltration channels, and cross-origin violations. For example, it can identify a calculator tool that secretly attempts to access SSH private keys. MCP-Shield aims to help developers and security auditors secure their MCP servers and supports scanning before adding new servers, during security audits, during development, and after updates.

Read more
(github.com)
Development vulnerability detection

4x 4090 GPUs: Training Your Own LLMs Locally

2024-12-28
4x 4090 GPUs: Training Your Own LLMs Locally

An AI enthusiast built a local rig for training Large Language Models (LLMs) using four NVIDIA 4090 GPUs, costing around $12,000. This setup can train models up to 1 billion parameters, though it performs optimally with around 500 million. The article details the hardware selection (motherboard, CPU, RAM, GPUs, storage, PSU, case, cooling), assembly process, software configuration (OS, drivers, frameworks, custom kernel), model training, optimization, and maintenance. Tips include using George Hotz's kernel patch for P2P communication on 4xxx GPUs. While highlighting the benefits of on-premise training, the author acknowledges the cost-effectiveness of cloud solutions for some tasks.

Read more
(sabareesh.com)
AI GPU Training Local AI

Non-Cryptographic Hash Functions: Design and Evaluation

2025-02-15

This article delves into the design and evaluation of non-cryptographic hash functions. By analyzing the performance of common functions like FNV-1a, FNV-1, Murmur2, and DJBX33A on diverse datasets (including names, words, IP addresses, and a deliberately biased dataset), the authors reveal key characteristics such as uniformity, collision rate, and avalanche effect. Experiments show Murmur2 excels in the avalanche effect but isn't always optimal for uniformity. The article stresses the importance of dataset characteristics in choosing appropriate hash functions and questions existing evaluation criteria, arguing that a single metric (like the avalanche effect) is insufficient for comprehensively assessing non-cryptographic hash function performance.

Read more
(cacm.acm.org)
Development hash functions

Recursive Descent Parsers: Simple Wins Over Complexity?

2025-07-28

The author explores approaches to parsing computer languages, specifically comparing recursive descent parsers to LR parser generators. While LR parser generators handle more complex grammars, the author favors recursive descent parsers due to their ease of use, lack of reliance on external tools, and ability to be written directly in the target language, thus minimizing learning curve and debugging challenges. For developers who occasionally need to build parsers for small languages, the simplicity and ease of use of recursive descent parsers outweigh their limitations in handling complex grammars.

Read more
(utcc.utoronto.ca)
Development parsers recursive descent

Polymarket's Jesus Return Market: A Time Value of Money Play?

2025-05-29
Polymarket's Jesus Return Market: A Time Value of Money Play?

A Polymarket prediction market on whether Jesus Christ will return in 2025 has traders wagering over $100,000. The 'yes' option currently sits at 3%, defying simple explanations like religious belief or market error. The author posits a more sophisticated strategy: bettors anticipate that later in the year, with other markets (e.g., US elections, papal succession) heating up, those betting 'no' will need cash for new bets and sell their positions at a premium, yielding profits for 'yes' bettors. This highlights the time value of money in financial markets, a strategy successfully employed in past elections. The market's existence itself reflects the differing expectations of Polymarket cash's future value.

Read more
(ericneyman.wordpress.com)
Misc prediction market time value of money financial strategy

arXivLabs: Community Collaboration on New arXiv Features

2025-06-29
arXivLabs: Community Collaboration on New arXiv Features

arXivLabs is an experimental framework enabling collaborators to develop and share new arXiv features directly on the arXiv website. Individuals and organizations involved share arXiv's values of openness, community, excellence, and user data privacy. arXiv is committed to these values and only works with partners who adhere to them. Got an idea for a project that will benefit the arXiv community? Learn more about arXivLabs!

Read more
(arxiv.org)
Development

Blocking All Crawlers Backfired: A robots.txt Lesson and Open Graph Protocol Deep Dive

2025-07-17
Blocking All Crawlers Backfired: A robots.txt Lesson and Open Graph Protocol Deep Dive

To protect blog data, the author blocked all crawlers via robots.txt, unintentionally breaking LinkedIn post previews and reducing reach. The LinkedIn Post Inspector revealed that robots.txt prevented the LinkedIn bot from accessing page metadata (Open Graph Protocol) needed for previews. Fixing the robots.txt file resolved the issue. This experience led to learning about the Open Graph Protocol and highlighted the importance of thoroughly testing code changes.

Read more
(evgeniipendragon.com)
Development

The Rise and Fall of the Sharp X68000: A Japanese Home Computer Legend

2025-05-27
The Rise and Fall of the Sharp X68000: A Japanese Home Computer Legend

The Sharp X68000, released in 1987, was a highly capable home computer popular in Japan, renowned for its advanced graphics and sound capabilities. Powered by a Motorola 68000 CPU and featuring custom coprocessors for superior graphics, it became a favorite among gamers. However, its limited market reach and lack of international presence ultimately led to its decline in the 1990s, leaving it a nostalgic relic for many.

Read more
(en.wikipedia.org)
Hardware Japanese home computer

Rust Async Programming: Mastering Pin and Pin-Project

2025-05-22

This article delves into the intricacies of using Pin and the pin-project crate in Rust's async programming paradigm. Starting with associated types and type inference in Futures, the author builds up to the necessity of Pin to address memory safety issues arising from mutable borrows and moves within the state machine implementation of async functions. The article thoroughly explains Pin's function, usage, and how pin-project simplifies code, ultimately resulting in a safe and robust asynchronous state machine. It also highlights subtle considerations when employing pin-project.

Read more
(natkr.com)
Development

Windows 11 App Update: Paint, Snipping Tool, and Notepad Get AI Boost

2025-05-22
Windows 11 App Update: Paint, Snipping Tool, and Notepad Get AI Boost

Microsoft is rolling out updates to Paint, Snipping Tool, and Notepad for Windows Insiders in the Canary and Dev Channels on Windows 11. Paint now features an AI sticker generator, a smart object selection tool, and a new welcome experience; Snipping Tool adds perfect screenshot and color picker capabilities; and Notepad introduces an AI writing feature for quick text drafting. Most of these new features require a Copilot+ PC and Microsoft account login, with some requiring a Microsoft 365 subscription.

Read more
(blogs.windows.com)
Development App Update

Eliminating Single Points of Failure: Project-Language CLIs

2025-02-26

To avoid accumulating helper scripts that become single points of failure, the author experimented with writing CLI executables in the project's main language (e.g., Swift or Kotlin) instead of Bash or Ruby. This approach improves team collaboration, reduces maintenance costs, and allows for advanced features like type-safe serialization, simplifying debugging. However, Swift and Kotlin aren't ideal scripting languages; they lack the quick feedback and subprocess invocation capabilities of alternatives. The author ultimately settled on a shim file in the project root to call the built executable, simplifying the command invocation process.

Read more
(paul-samuels.com)
Development CLI tools

A Programmer's Intro to Integer Partitions and Compositions

2025-05-18
A Programmer's Intro to Integer Partitions and Compositions

LeetArxiv's new series, "What Every Programmer Needs to Know about Enumerative Combinatorics," starts with Chapter 1: an introduction to integer partitions and compositions. This article uses an accessible approach, guiding programmers through these concepts via observation and pattern recognition. C code is provided to generate weak compositions, efficiently enumerating them using binomial coefficients and binary search.

Read more
(leetarxiv.substack.com)
Development

Air Pollution: Tracing the Killers and Their Sources

2025-04-02
Air Pollution: Tracing the Killers and Their Sources

Millions die prematurely from air pollution each year. This article delves into the sources of various air pollutants harming human health and ecosystems. Analyzing data from the Community Emissions Data System (CEDS), it reveals energy production, transport, and agriculture as major culprits. It details the sources, health impacts, and mitigation strategies for pollutants like sulfur dioxide, nitrogen oxides, black carbon, methane, ammonia, and non-methane volatile organic compounds. The study finds transitioning to clean energy, reducing meat consumption, and improving agricultural practices are crucial for tackling air pollution.

Read more
(ourworldindata.org)
Tech pollution sources

LHC Alchemy: Lead Transmuted into Gold!

2025-05-09
LHC Alchemy: Lead Transmuted into Gold!

The ALICE collaboration at CERN's Large Hadron Collider (LHC) has reported the observation of lead nuclei transforming into minuscule amounts of gold during near-miss collisions. Intense electromagnetic fields generated by these high-energy collisions knock out protons from lead nuclei, resulting in the creation of gold. While the amount of gold produced is incredibly small (29 picograms), this achievement fulfills a long-held alchemic dream. The study provides insights into electromagnetic dissociation and improves theoretical models used to understand beam losses in the LHC, ultimately enhancing its performance.

Read more
(www.home.cern)
Tech Alchemy

Bash Has Hashmaps?!

2025-01-11

This blog post reveals a hidden gem in bash scripting: built-in support for hashmaps (associative arrays)! The author, while working on a project involving GPU instance management, discovered this feature and shares how to use it. The post details how to declare, assign values to, read, iterate over, and delete key-value pairs within a bash hashmap, showcasing two declaration methods: dynamic addition and pre-defined key-value pairs. This is a valuable technique for efficiently handling key-value data within bash scripts.

Read more
(xeiaso.net)
Development Hashmaps Shell Scripting

Yakread Rewrite: Building a More Maintainable Reader with Clojure and Biff

2025-07-30
Yakread Rewrite: Building a More Maintainable Reader with Clojure and Biff

The author is rewriting the Yakread reading app and open-sourcing it, while experimenting with new features for Biff, their Clojure web framework. To address maintainability issues in the original 10k line codebase, three main architectural approaches were adopted: 1. Implementing materialized views using XTDB and RocksDB for faster queries; 2. Separating application logic from side effects to create purer code and easier testing; 3. Using Pathom to build a reusable data access layer, improving maintainability and readability. These methods improve testability, observability, and maintainability, and bring new improvements to the Biff framework.

Read more
(biffweb.com)
Development

FTC Warns Big Tech: Don't Sacrifice Data Security for Foreign Governments

2025-08-26
FTC Warns Big Tech: Don't Sacrifice Data Security for Foreign Governments

The FTC chairman, Andrew N. Ferguson, sent a letter to major US tech companies, including Google, Apple, and Microsoft, warning against complying with foreign government demands that weaken data security, compromise encryption, or censor content. Ferguson stressed that weakening security at a foreign government's request, especially without user notification, violates the FTC Act and exposes companies to legal action. He specifically cited the EU's Digital Services Act and the UK's Online Safety Act as examples. The FTC warns these laws undermine American users' freedom and data security, reminding companies of their obligations under the FTC Act regarding data security and privacy. The letter follows recent events like Apple's temporary removal of iCloud end-to-end encryption in the UK, which was later reversed.

Read more
(www.bleepingcomputer.com)
Tech

Spoon Bending: Bypassing AI Safety Restrictions

2025-08-26
Spoon Bending: Bypassing AI Safety Restrictions

This research explores how the stricter safety guidelines in GPT-5, compared to GPT-4.5, can be circumvented. The 'Spoon Bending' schema illustrates how reframing prompts allows the model to produce outputs that would normally be blocked. The author details three zones: Hard Stop, Gray Zone, and Free Zone, showcasing how seemingly absolute rules are actually framing-sensitive. This highlights the inherent tension between AI safety and functionality, demonstrating that even with strong safety protocols, sophisticated prompting can lead to unintended outputs.

Read more
(github.com)
AI

Why Linux Still Isn't Ready for the Desktop

2024-12-30

This article delves into the deep-seated reasons why Linux hasn't achieved widespread desktop adoption. The author highlights several key issues: poor software compatibility between distributions, frequent updates leading to bugs and regressions, insufficient funding resulting in subpar software quality, inadequate hardware driver support, and challenges in communicating within the Linux community. While Linux excels in server environments, its desktop presence remains hampered by these persistent obstacles, hindering its ability to compete effectively with established operating systems like Windows.

Read more
(itvision.altervista.org)
Development desktop software compatibility

Ladybird July Update: HTTP/3, High Refresh Rate Support, and More

2025-08-02
Ladybird July Update: HTTP/3, High Refresh Rate Support, and More

The Ladybird open-source browser engine made significant strides in July, merging 319 pull requests from 47 contributors. Highlights include: HTTP/3 support, improved rendering performance on high refresh rate screens, a fix for Google reCAPTCHA compatibility, and added support for Trusted Types, improved SVG foreignObject handling, and numerous CSS enhancements such as `content: url(...)`, new pseudo-classes, and logical property groups. Internal improvements include switching to native UTF-16 strings for increased efficiency and fewer encoding-related bugs.

Read more
(ladybird.org)
Development

Lenovo Undercuts Windows Pricing with Linux Laptops

2025-04-27
Lenovo Undercuts Windows Pricing with Linux Laptops

A Reddit post highlighted that Lenovo is offering laptops pre-installed with Fedora and Ubuntu in the US and Canada for $140 (or CAD $211) less than their Windows counterparts. This sparked discussion about Windows' pricing. While not all Lenovo models offer Linux pre-installation, users can easily filter for them on Lenovo's website. Although Lenovo and Dell offer Linux-based laptops, the selection is limited, and marketing efforts are insufficient, hindering Linux adoption among mainstream consumers.

Read more
(news.itsfoss.com)
Tech Laptops

UK Drought: Can Deleting Emails Really Help?

2025-08-13
UK Drought: Can Deleting Emails Really Help?

Facing a severe drought, the UK government urges citizens to conserve water, even suggesting deleting old emails and photos to reduce data center water usage. While large data centers consume massive amounts of water, small daily actions can collectively make a difference. Official data shows a 20% drop in water consumption in the Severn Trent area following water-saving campaigns. Fixing leaks is also crucial; a leaky toilet can waste 200-400 liters daily. This drought highlights the importance of water conservation and pushes tech companies towards more sustainable data center technologies.

Read more
(www.theverge.com)
Tech drought

China's 'Thousand Sails' Megaconstellation Faces Major Delays

2025-07-27
China's 'Thousand Sails' Megaconstellation Faces Major Delays

China's ambitious 'Thousand Sails' (G60 Starlink) constellation, aiming for over 15,000 satellites by 2030 to provide global internet access, is facing significant delays. Only 90 satellites have been launched, far short of the 648 target for the end of 2025. The shortfall stems from a severe rocket shortage, hindering the project's ability to compete with SpaceX's Starlink. To meet its goals, the project needs to launch over 30 satellites per month, a pace currently unattainable.

Read more
(www.scmp.com)
Tech satellite constellation space launch

50 Keyboards: A Retro Tech Extravaganza

2025-09-02
50 Keyboards: A Retro Tech Extravaganza

Marcin Wichary showcases his collection of 50 keyboards, ranging from antique typewriters to modern gaming keyboards, illustrating the evolution of keyboard design and technology. These keyboards are not merely input devices but snapshots of technological history, each with a unique story to tell. The accompanying images are stunning, highlighting the distinctive features of each keyboard.

Read more
(aresluna.org)
Hardware keyboard collection

Gemini CLI: Your AI-Powered Code Workflow Companion

2025-06-25
Gemini CLI: Your AI-Powered Code Workflow Companion

The Google Gemini CLI is a command-line AI tool that connects to your tools, understands your code, and accelerates your workflows. It allows you to query and edit large codebases, generate new apps from PDFs or sketches, automate operational tasks, and integrate with tools and MCP servers for functionalities like media generation (Imagen, Veo, Lyria). It also features Google Search integration and offers multiple authentication methods. Simply use command-line prompts to leverage Gemini's capabilities for coding, summarizing changes, generating documentation, and more, dramatically boosting productivity.

Read more
(github.com)
Development

Level Up Your GRUB Bootloader: A Curated List of Themes and Customization Guide

2025-05-04
Level Up Your GRUB Bootloader: A Curated List of Themes and Customization Guide

Tired of the same old GRUB bootloader? This post offers a curated list of high-quality GRUB themes and a guide on how to easily customize them. From changing background images and fonts to adjusting color schemes and even creating a cycling background, you can personalize your boot experience. Useful tools are also recommended, such as for downloading GitHub files and tweaking GRUB settings.

Read more
(github.com)
Development GRUB themes Linux customization bootloader

Michael Larabel: 20 Years of Linux Hardware Benchmarking

2025-08-30

Michael Larabel, founder and principal author of Phoronix.com, has been enriching the Linux hardware experience since 2004. He's penned over 20,000 articles covering Linux hardware support, performance, graphics drivers, and more. Larabel is also the lead developer behind the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software, significantly contributing to the Linux ecosystem.

Read more
(www.phoronix.com)
Tech

StringFlux: Streamline Your String Transformations

2025-06-05

StringFlux is a powerful online string transformation tool allowing users to convert strings between various formats like JSON, YAML, and Base64. Its unique chaining feature, similar to Unix/Linux pipes, enables efficient complex transformations—like clearly viewing stack traces from JSON-formatted log messages. While powerful for advanced use, StringFlux maintains a simple, intuitive interface for common tasks such as JSON formatting and Base64 encoding. Smart operation recommendations, search, and categorized operations ensure a smooth experience even with numerous transformations available. StringFlux aims to save developers time and keep them focused.

Read more
(stringflux.io)
Development string transformation

Conquering 3200 Gbps Network: A Journey with RDMA, EFA, and libfabric

2025-01-03

At Perplexity AI, the author leveraged RDMA, EFA, and libfabric on AWS p5 instances (with 8 NVIDIA H100 GPUs interconnected via NVSwitch) to achieve nearly perfect utilization (97%) of the 3200 Gbps network bandwidth. This article details the process, sharing valuable insights and optimization techniques (multi-threading, CPU core pinning, state sharding, etc.) for high-performance network programming. It highlights the advantages of asynchronous communication models over collective communication methods.

Read more
(le.qun.ch)
Development High-Performance Networking
1 2 241 242 243 245 247 248 249 596 597