Hacker Newsnew | past | comments | ask | show | jobs | submit | chris_wot's commentslogin

I keep saying this (and I keep getting voted to oblivion) but we really need an alternative to DNS.

reply


Then go ahead and use one. Of course, most projects in this regard try to tackle multiple things (e.g. Tor), including DNS, but there are projects like OpenNIC that take on DNS alone if you prefer. As usual, the mass majority won't adopt these, but they are ready to use for anyone who wants them.

reply


I'll be honest - I've never heard of this! Thanks for the info.

reply


IP addresses.

https://letsencrypt.org/2025/07/01/issuing-our-first-ip-addr...

reply


Michel Foucault's Panopticon is alive and well I see.

reply


I contacted TM Bank and they would't let me do this.

reply


Subscriptions are not a contract of payment. Your bank pre-authorizes these payments, simply ask them to remove pre-authorization. If they can't do that, then the bank is spending your money without your consent.

reply


Might be an idea to switch to a bank or credit union that have better customer service?

reply


The same thing you did. What sort of question is that?

reply


I didn't know anything about any of the above.

reply


Can it handle modules?

reply


Can someone elaborate on the limitations bit?

"Little Snitch for Linux is built for privacy, not security, and that distinction matters. The macOS version can make stronger guarantees because it can have more complexity. On Linux, the foundation is eBPF, which is powerful but bounded: it has strict limits on storage size and program complexity. Under heavy traffic, cache tables can overflow, which makes it impossible to reliably tie every network packet to a process or a DNS name. And reconstructing which hostname was originally looked up for a given IP address requires heuristics rather than certainty. The macOS version uses deep packet inspection to do this more reliably. That's not an option here."

Is this a limitation of the eBPF implementation? Pardon my ignorance, I'm genuinely curious about this.

reply


eBPF limits the size of the code, its complexity and how data can be stored. You cannot just implement any algorithm in eBPF for that reason.

That's not only a weakness, it's also a strength of eBPF. This way it can provide security and safety guarantees on the code loaded into the kernel.

reply


I’m knee deep in refactoring LibreOffice code around text rendering. I can assure you, it’s complex but it doesn’t require a GPU!


What lawsuit?!?


This is so sad Michael. You gave me an opportunity at Collabora many years ago (I was definitely too inexperienced!) and I’ll never forget this. Collabora is a force for good, and it is sad things have cone to this.


Oh shit, I’m so sorry Noel. That’s awful!


Please do read TDF's side of the story as well: https://blog.documentfoundation.org/blog/2026/04/01/comment-...


I read it, and was hoping I would be more sympathetic to their side, but it was essentially 'they violated the rules our newly added non-contributor board members set, and by those rules, we kicked them out'.

Essentially this 100% confirms the Collabora story, just elaborates a bit on how the administrative takeover was done.


Not just this, it the way the vote was announced seems very, very bad. Italo may have found legal issues, but one of the things he said was that legal action was being taken by Collabora. That… doesn’t seem to be the case.

Italo and co removed some very dedicated contributors from the TDF. What an absolute disaster.


Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: