HN Reader

Tell HN: Help restore the tax deduction for software dev in the US (Section 174)

2437 points by dang 10d ago 906 comments

GCP Outage (status.cloud.google.com)

1463 points by thanhhaimai 7d ago 495 comments

Honda conducts successful launch and landing of experimental reusable rocket (global.honda)

1311 points by LorenDB 3d ago 416 comments

Andrej Karpathy: Software in the era of AI [video] (youtube.com)

1302 points by sandslash 1d ago 723 comments

Frequent reauth doesn't make you more secure (tailscale.com)

1271 points by ingve 7d ago 518 comments

A receipt printer cured my procrastination (laurieherault.com)

1247 points by laurieherault 8d ago 599 comments

The Grug Brained Developer (2022) (grugbrain.dev)

1062 points by smartmic 2d ago 555 comments

The last six months in LLMs, illustrated by pelicans on bicycles (simonwillison.net)

959 points by swyx 12d ago 233 comments

Magistral — the first reasoning model by Mistral AI (mistral.ai)

939 points by meetpateltech 10d ago 424 comments

If the moon were only 1 pixel: A tediously accurate solar system model (2014) (joshworth.com)

932 points by sdoering 7d ago 260 comments

Apple announces Foundation Models and Containerization frameworks, etc (apple.com)

860 points by thm 10d ago 489 comments

Working on databases from prison (turso.tech)

840 points by dvektor 4d ago 530 comments

Jemalloc Postmortem (jasone.github.io)

798 points by jasone 7d ago 235 comments

Show HN: Workout.cool – Open-source fitness coaching platform (github.com)

791 points by surgomat 2d ago 229 comments

Research suggests Big Bang may have taken place inside a black hole (port.ac.uk)

770 points by zaik 8d ago 604 comments

Containerization is a Swift package for running Linux containers on macOS (github.com)

768 points by gok 10d ago 409 comments

Apple introduces a universal design across platforms (apple.com)

738 points by meetpateltech 10d ago 1202 comments

US-backed Israeli company's spyware used to target European journalists (apnews.com)

731 points by 01-_- 7d ago 384 comments

Marines being mobilized in response to LA protests (cnn.com)

706 points by sapphicsnail 10d ago 1679 comments

WhatsApp introduces ads in its app (nytimes.com)

699 points by greenburger 4d ago 1009 comments

I convinced HP's board to buy Palm and watched them kill it (philmckinney.substack.com)

682 points by AndrewDucker 6d ago 495 comments

Chatterbox TTS (github.com)

668 points by pinter69 8d ago 188 comments

Show HN: Unregistry – “docker push” directly to servers without a registry (github.com)

657 points by psviderski 1d ago 154 comments

Resurrecting a dead torrent tracker and finding 3M peers (kianbradley.com)

637 points by k-ian 2d ago 201 comments

Congratulations on creating the one billionth repository on GitHub (github.com)

623 points by petercooper 8d ago 137 comments

Bruteforcing the phone number of any Google user (brutecat.com)

614 points by brutecat 11d ago 190 comments

How I program with agents (crawshaw.io)

614 points by bumbledraven 11d ago 294 comments

"Localhost tracking" explained. It could cost Meta €32B (zeropartydata.es)

593 points by donohoe 10d ago 272 comments

Launch HN: Vassar Robotics (YC X25) – $219 robot arm that learns new skills

580 points by charleszyong 9d ago 219 comments

Start your own Internet Resiliency Club (bowshock.nl)

576 points by todsacerdoti 4d ago 341 comments

Kagi Reaches 50k Users (kagi.com)

553 points by tigroferoce 11d ago 341 comments

Why SSL was renamed to TLS in late 90s (2014) (tim.dierks.org)

544 points by Bogdanp 5d ago 229 comments

Building Effective AI Agents (anthropic.com)

527 points by Anon84 2d ago 87 comments

OpenAI dropped the price of o3 by 80% (twitter.com)

517 points by mfiguiere 9d ago 494 comments

Waymo rides cost more than Uber or Lyft and people are paying anyway (techcrunch.com)

507 points by achristmascarl 8d ago 885 comments

Air India flight to London crashes in Ahmedabad with more than 240 onboard (theguardian.com)

499 points by Gud 8d ago 583 comments

Self-Host and Tech Independence: The Joy of Building Your Own (ssp.sh)

498 points by articsputnik 12d ago 241 comments

The Zed Debugger Is Here (zed.dev)

487 points by SupremumLimit 1d ago 198 comments

I have reimplemented Stable Diffusion 3.5 from scratch in pure PyTorch (github.com)

480 points by yousef_g 6d ago 77 comments

New US visa rules will force foreign students to unlock social media profiles (theguardian.com)

479 points by sva_ 1d ago 625 comments

Meta invests $14.3B in Scale AI to kick-start superintelligence lab (nytimes.com)

468 points by RyanShook 7d ago 477 comments

We’re secretly winning the war on cancer (vox.com)

459 points by lr0 11d ago 217 comments

Joining Apple Computer (2018) (folklore.org)

457 points by tosh 12d ago 123 comments

Building supercomputers for autocrats probably isn't good for democracy (helentoner.substack.com)

454 points by rbanffy 11d ago 259 comments

Danish Ministry Replaces Windows and Microsoft Office with Linux and LibreOffice (heise.de)

450 points by jlpcsl 8d ago 227 comments

Scrappy – Make little apps for you and your friends (pontus.granstrom.me)

443 points by 8organicbits 2d ago 141 comments

My iPhone 8 Refuses to Die: Now It's a Solar-Powered Vision OCR Server (terminalbytes.com)

437 points by hemant6488 1d ago 182 comments

Convert photos to Atkinson dithering (gazs.github.io)

437 points by nvahalik 12d ago 54 comments

Fossify – A suite of open-source, ad-free apps (github.com)

433 points by jalict 3d ago 130 comments

Rendering Crispy Text on the GPU (osor.io)

420 points by ibobev 7d ago 131 comments

SAML vs. SSO

3 debarshri 3 6/20/2025, 7:51:33 AM adaptive.live ↗

Comments (3)

scrapheap · 7h ago
The way I've tackled this type of issue in the past is to use Kerberos. You get you client machines set up to get their Ticket Granting Ticket on user login and then that can be used to connect to most relational databases. You then set up your IdP to support SPNEGO and then your users don't even interacts with the IdP in their web browser.
debarshri · 24m ago
it is privileged access management that you are describing. One of the key requirements for compliance frameworks is also to record the user sessions. Authentication is one aspect of it, i think key problem is authorization too.
sophiabannet1 · 5h ago
Excellent breakdown, this clearly illustrates why SSO is only half the story and PAM is essential for securing real privileged access.