Claude 4 (anthropic.com)

2012 points by meetpateltech 9d ago 1163 comments

Mozilla to shut down Pocket and Fakespot (support.mozilla.org)

1217 points by phantomathkg 9d ago 758 comments

CSS Minecraft (benjaminaster.com)

1197 points by mudkipdev 5d ago 139 comments

Postgres IDE in VS Code (techcommunity.microsoft.com)

1036 points by Dowwie 8d ago 405 comments

Trump administration halts Harvard's ability to enroll international students (nytimes.com)

922 points by S0y 9d ago 1031 comments

Photos taken inside musical instruments (dpreview.com)

883 points by worik 22h ago 46 comments

Find Your People (foundersatwork.posthaven.com)

802 points by jl 8d ago 282 comments

German court sends VW execs to prison over Dieselgate scandal (politico.eu)

784 points by Tomte 5d ago 310 comments

Owls in Towels (owlsintowels.org)

760 points by schaum 4d ago 98 comments

Square Theory (aaronson.org)

727 points by aaaronson 4d ago 136 comments

Claude 4 System Card (simonwillison.net)

698 points by pvg 6d ago 250 comments

WeatherStar 4000+: Weather Channel Simulator (weatherstar.netbymatt.com)

693 points by adam_gyroscope 2d ago 130 comments

The Who Cares Era (dansinker.com)

688 points by NotInOurNames 3d ago 712 comments

Hacker News now runs on top of Common Lisp (lisp-journey.gitlab.io)

656 points by Tomte 5d ago 434 comments

I used o3 to find a remote zeroday in the Linux SMB implementation (sean.heelan.io)

656 points by zielmicha 7d ago 221 comments

Human coders are still better than LLMs (antirez.com)

613 points by longwave 2d ago 717 comments

Reinvent the Wheel (endler.dev)

608 points by zdw 6d ago 221 comments

Show HN: I rewrote my Mac Electron app in Rust (desktopdocs.com)

583 points by katrinarodri 3d ago 438 comments

At Amazon, some coders say their jobs have begun to resemble warehouse work (nytimes.com)

577 points by milkshakes 6d ago 863 comments

That fractal that's been up on my wall for years (chriskw.xyz)

570 points by chriskw 9d ago 39 comments

US Trade Court finds Trump tariffs illegal (bloomberg.com)

562 points by master_crab 2d ago 507 comments

John Carmack talk at Upper Bound 2025 (twitter.com)

555 points by tosh 8d ago 359 comments

The ‘white-collar bloodbath’ is all part of the AI hype machine (cnn.com)

552 points by lwo32k 1d ago 991 comments

My website is ugly because I made it (goodinternetmagazine.com)

537 points by surprisetalk 3d ago 127 comments

Open Source Society University – Path to a free self-taught education in CS (github.com)

530 points by saikatsg 6d ago 162 comments

How to live on $432 a month in America (shagbark.substack.com)

522 points by cactusplant7374 8d ago 731 comments

Show HN: My LLM CLI tool can run tools now, from Python code or plugins (simonwillison.net)

520 points by simonw 3d ago 165 comments

FLUX.1 Kontext (bfl.ai)

512 points by minimaxir 2d ago 117 comments

GitHub MCP exploited: Accessing private repositories via MCP (invariantlabs.ai)

503 points by andy99 5d ago 297 comments

Trying to teach in the age of the AI homework machine (solarshades.club)

478 points by notarobot123 5d ago 643 comments

Denmark to raise retirement age to 70 (telegraph.co.uk)

471 points by wslh 6d ago 1240 comments

Google shared my phone number (danq.me)

469 points by luu 5d ago 174 comments

How a hawk learned to use traffic signals to hunt more successfully (frontiersin.org)

458 points by layer8 4d ago 138 comments

As a developer, my most important tools are a pen and a notebook (hamatti.org)

455 points by ingve 3d ago 284 comments

Duolingo CEO tries to walk back AI-first comments, fails (htxt.co.za)

455 points by Improvement 5d ago 317 comments

Japan Post launches 'digital address' system (japantimes.co.jp)

454 points by jmsflknr 3d ago 289 comments

Root for your friends (josephthacker.com)

436 points by rez0123 7d ago 168 comments

Show HN: I wrote a modern Command Line Handbook (commandline.stribny.name)

433 points by petr25102018 2d ago 108 comments

Deepseek R1-0528 (huggingface.co)

430 points by error404x 3d ago 249 comments

Scientific conferences are leaving the US amid border fears (nature.com)

429 points by mdhb 6d ago 410 comments

Show HN: Lazy Tetris (lazytetris.com)

428 points by admtal 4d ago 147 comments

Show HN: Defuddle, an HTML-to-Markdown alternative to Readability (github.com)

416 points by kepano 8d ago 68 comments

Gurus of 90s Web Design: Zeldman, Siegel, Nielsen (cybercultural.com)

413 points by panic 2d ago 181 comments

The radix 2^51 trick (2017) (chosenplaintext.ca)

412 points by blobcode 1d ago 80 comments

Why I no longer have an old-school cert on my HTTPS site (rachelbythebay.com)

409 points by mcbain 8d ago 418 comments

A new class of materials that can passively harvest water from air (blog.seas.upenn.edu)

397 points by Tycho 5d ago 204 comments

Show HN: AutoThink – Boosts local LLM performance with adaptive reasoning

394 points by codelion 3d ago 64 comments

Long live American Science and Surplus (milwaukeerecord.com)

390 points by thinkalone 2d ago 111 comments

Pyrefly vs. Ty: Comparing Python's two new Rust-based type checkers (blog.edward-li.com)

390 points by edwardjxli 4d ago 158 comments

Run a C# file directly using dotnet run app.cs (devblogs.microsoft.com)

374 points by soheilpro 2d ago 319 comments

Kea DHCP: Local Vulnerabilities in Many Linux and BSD Distributions

22 zdw 3 5/29/2025, 5:57:46 PM security.opensuse.org ↗

Comments (3)

hulitu · 1d ago

> The Kea DHCP distribution is the next generation DHCP server suite offered by the Internet Systems Consortium (ISC). It replaces the traditional ISC DHCP software which has reached its end of life.

> ) Security Issues 3.1) Local Privilege Escalation by Injecting a Hook Library via the set-config Command (CVE-2025-32801) 3.2) Arbitrary File Overwrite via config-write Command (CVE-2025-32802) 3.3) Redirection of Log Files to Arbitrary Paths (shared CVE with 3.2) 3.4) Service Spoofing with Sockets in /tmp (shared CVE with 3.2) 3.5) Denial-of-Service issues with Sockets in /tmp (shared CVE with 3.2) 3.6) World-Readable DHCP Lease Files in /var/lib/kea/*.cvs (CVE-2025-32803) 3.7) World-Readable Kea Log Files (shared CVE with 3.6)

So CADT all over. Why fix old bugs when you can introduce new ones.

eliaspro · 21h ago

At a first glance, it looks like every single one of those vulnerabilities is mitigated by mostly standard practices for systemd service units, like not running as root in the first place, using NoNewPrivileges=, ProtectSystem=, PrivateTmp=, StateDirectory= and ConfigurationDirectory= etc

bogantech · 1d ago

Why are so many distros running Kea as root?