Hacker Newsnew | past | comments | ask | show | jobs | submit | justusthane's commentslogin

Really? I’d think more like chaotic good -> lawful neutral (at best).

No, they're very different. Using webkitdirectory="true" on an <input> element just allows you to select a directory to e.g. upload it to the server. It's a one-time operation.

This API returns a handle to the selected directory, giving the webpage ongoing read/write access to the directory.

You couldn't use the former to e.g. create a local-first notes app that stores its files on disk.


The article also contradicts itself halfway through:

> There remains a clear penalty for being an open LLM user.

The conversation here _around_ the article is interesting, but the article itself boils down to “I’m going to try using open models and hope for the best.”


Parent commenter is saying that they do this _after rooting their phone_

That’s a really interesting and pretty neat approach. How do you communicate with it? Just su to that user? Or tmux?

Although I can’t help but think that a VM is still more convenient, more flexible, and more secure.


Yes, I su to the user. Typically I have it run a tmux session for each "project". That makes it easy to get more windows without su'ing over and over. Also its tmux sessions all get a yellow status bar (in ~claude/.tmux.conf), so they are easy to recognize.

To me it is more convenient than a VM, since everything is on the host. And it can launch its own VMs without an extra layer.

I don't really know which is more secure. There are hypervisor escape vulns too. And shared folders seem like footguns. For instance in vagrant, guests get `/vagrant` to read/write the host's folder, so you have to be careful what you put where.

The biggest annoyance with an OS user so far is running docker containers. I don't want to add claude to the docker group or give it sudo privileges. I've read that you can set up rootless docker for a user, and even that you can run it side-by-side with a normal system-wide docker, but I haven't tried doing that yet.


You could look into Podman as well - it's rootless by default, and often can be a drop-in replacement for Docker.


I have "Agree" and "No thanks" buttons on my cookie banner. Tested on FF and Chrome (Windows) and Safari (iOS). Maybe a UI bug for you?


I was excited to see there's a Canadian one, but it's just a Wordpress blog?


They do exist and involved in archiving. Someone reached out to our amateur radio club and offered to archive any documents we might have. They even asked to archive the video recording of one of our monthly meetings.


I wasn't either (insomuch as I had never thought about it), but it makes sense if you think about it for a second. If you have one end plugged in one way, and the other end plugged in the other way, each individual wire is flipped from where it should be. The fact that you _can_ plug it in either way means that the device on one end needs to be capable of recognizing that and logically reversing it. Same as automatic crossover in Ethernet.

That's all the program is telling you. It doesn't matter that it's backwards, but technically it is.


It's not always the case that the cable will correctly fix it. I think (hope?) any that any which didn't would be out of spec, but they exist...


It's the cable that is supposed to reverse itself and not the device? I'm not entirely sure I buy that - seems like it would add a lot of unnecessary complexity to every cable.


The terminating device(s) are the ones that do the flipping, not the cable. You can take a cable that works either way between two high-end device, and then connect it to at least one low-end device and it will fail to connect for one of the two orientations.


His comment is _not_ wrong. He says "I agree with the article, FastCGI is better than HTTP for these things."

"These things" being the communication between a proxy and the backend.


Thanks, but I feel we're all just feeding this one troll. Don't bother replying anymore, it's pointless.


Apart from the attack itself, there's also an extremely succinct and powerful demonstration of hallucination in here.

One of the LLMs replies "If you're curious, I can also tell you how the competitive scene works or how people qualify—it's a surprisingly serious tournament circuit for such a simple-looking game."

Obviously this has to be pure hallucination, since the tournament in question doesn't exist, and not even the fake source has any details about the tournament itself.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: