sidoshi's comments

sidoshi · 2025-07-04T12:45:10 1751633110

I was looking for a solution like this as rspc isn't maintained anymore. I love how clean it looks. But I am a bit new to rust and I am not sure about poem. Axum is very popular and seems like a stable crate. Can you share your thoughts on Poem? Does it feel outdated or unstable? Does it cover all your needs?

vaylian · 2025-07-04T12:49:54 1751633394

> Can you share your thoughts on Poem?

There's the poem crate and then there is the poem-openapi crate. The latter is used in this case and it provides very ergonomic ways to define an OpenAPI service in pure Rust. It's nicer than using the utoipa crate with axum (whilch ist still fairly nice, so no shade here).

I'm happy with poem-openapi.

sidoshi · 2025-07-04T13:00:17 1751634017

But if I understand correctly, poem_openapi must be used with poem, correct? That brings me to the question of if I am okay with using poem to power the http API. Would be awesome if I could use the poem_openapi style with axum.

vaylian · 2025-07-04T15:32:06 1751643126

> But if I understand correctly, poem_openapi must be used with poem, correct?

poem_openapi uses poem under the hood.

> Would be awesome if I could use the poem_openapi style with axum.

If you prefer to use axum, have a look at the utoipa-axum crate. But poem and poem_openapi seem to be well-maintained as well.

sidoshi · on July 26, 2024

That's a great idea! Would love to see a lightweight version of this as a VScode extension only to browse through the code.

sidoshi · on July 16, 2024

How do you Image an iphone device?

einsteinx2 · on July 16, 2024

I assume you can desolder the flash chip and directly dump its contents. Not trivial, but not too difficult for someone with the right skills.

kalleboo · on July 16, 2024

That won't give you the encryption keys, which are stored in the Secure Enclave.

aziaziazi · on July 16, 2024

Isn’t the Secure Enclave another separate flash chip?

wkat4242 · on July 16, 2024

Yes but with the controller built in and hardware hardening.

They are designed precisely to prevent this kind of attack.

I bet most of the exploits used by these boxes have nothing to do with the secure element but just bypass security using exploits in standard system or USB code. Most phones will be captured with the OS running but just the UI locked, with all encrypted volumes already mounted.

neuralRiot · on July 16, 2024

If they can access the iCloud account then the phone can be backed up remotely then read the backup.

wkat4242 · on July 16, 2024

True but only if the user actually uses iCloud backup of course. I never did when I had an iPhone, for that reason, I don't want all my personal stuff in the cloud.

But this is not how cellebrite boxes work anyway. They focus on the device.

kalleboo · on July 17, 2024

Assuming the user hasn't enabled end-to-end encrypted backups (which is an option, not the default)

filoleg · on July 16, 2024

Yeah, I had the same question. Because the grandparent comment explanation felt very much like the “…and then draw the rest of the owl” joke.

sidoshi · on July 29, 2023

The part about learning the language couldn't be more on point