Ask HN: What is with the new URLs on facebook.com?

[evandrix]

https://www.ghacks.net/2022/07/17/facebook-has-started-to-en...

Ask HN: Anyone Interested in Capture the Flag (CTF) Events?

[evandrix]

Christmas CTF https://twitter.com/sudosev/status/1075213434273320960 https://pastebin.com/raw/7VL6usg6 https://pastebin.com/raw/Sm9PCxWv https://twitter.com/sudosev/status/1079069504498556930

HACKvent 2018 https://hackvent.hacking-lab.com

SANS Holiday Hack Challenge 2018 https://www.holidayhackchallenge.com/2018

GreHack 2018 https://2018.challenge.grehack.fr writeup https://www.synacktiv.com/posts/challenges/grehack-2018-qual...

CSAW Red Team Competition 2018 https://red.csaw.io/challenges

Hacktober.org https://hacktober.org

Advent Calendar of Advanced Cyber Fun 2018 https://xmas.rip repository https://github.com/takeshixx/advent-calendar-2018 writeup https://gist.githubusercontent.com/BenGardiner/03e2a7edeb764... writeup https://emanuelduss.ch/2018/12/advent-calendar-of-advanced-c...

OverTheWire Advent Bonanza 2018 https://advent2018.overthewire.org writeup https://ctftime.org/event/721/tasks

35C3 https://archive.aachen.ccc.de/35c3ctf.ccc.ac/challenges/inde... writeup https://ctftime.org/event/718/tasks

HITB-XCTF Dubai CTF 2018 https://ctftime.org/event/720

Ask HN: What should a systems/low-level software engineer know?

[evandrix]

assembly

An 'alt+space' launcher for Windows, built with Electron

[evandrix]

How does this match up to Launchy?

[reitanqild]

Launchy doesn't require you to install npm first.

[bengotow]

I don't think you're intended to build it from source - you can just get a binary: https://github.com/appetizermonster/Hain/releases

[reitanqild]

Ah, thanks, again honestly.

That is my main complaint against anything Node.js: after having struggled with Node.js before I don't feel like building anything bsed on it.

Guess I'll stay with Launcy (or even the new Windows start menu) but this sorts most of my issues.

[eps]

FOURTY FIVE MEGABYTES

/facepalm

[ygra]

Well, it bundles Webkit and a kitchen sink.

[SlashmanX]

Neither does this...

Traceroute

[evandrix]

Where's the direct link to obtain a copy of this updated GeoLite data (Apr 2015) pls?

Haskell for Mac

[evandrix]

Paid App to do Haskell? pfft.

Traceroute

[evandrix]

uTorrent offers a nice viz over a 3D globe

Traceroute

[evandrix]

any chance tracing to a malicious server via this can attack scripts.mit.edu?

[geofft]

All I can think of is stuff like DNS cache poisoning from forcing lookups, which shouldn't be a threat these days (and there are infinite other ways to force the server to do DNS lookups). The purpose of scripts.mit.edu involves students and faculty running old versions of WordPress and writing custom PHP to learn the language, so the threat model very much assumes that malicious people have compromised at least one unprivileged account at any given time. Hostname lookups are a drop in the bucket compared to that.

Traceroute

[evandrix]

DEBUG = True error page when visiting http://csvoss.mit.edu/traceroute/request

@ http://i.imgur.com/ry9Voss.jpg

[csvoss]

Fixed DEBUG to be False now -- thanks! I'll see if I can fix this 500, too. :)

OS X 10.10.5 kernel local privilege escalation

[evandrix]

use `clang`, not `gcc`.

clang version 3.6.1 (tags/RELEASE_361/final) Target: x86_64-apple-darwin14.4.0 Thread model: posix

<-- can confirm it works out-of-the-box on OSX 10.10.4

[fit2rule]

Cool, thanks for pointing that out. I was pretty glib about my attempt to check it out ..