We should have the ability to run any code we want on hardware we own (hugotunius.se)

2071 points by K0nserv 16d ago 1203 comments

Cognitive load is what matters (github.com)

1582 points by nromiun 17d ago 526 comments

NPM debug and chalk packages compromised (aikido.dev)

1368 points by universesquid 8d ago 754 comments

Hosting a website on a disposable vape (bogdanthegeek.github.io)

1345 points by BogdanTheGeek 1d ago 448 comments

I didn't bring my son to a museum to look at screens (sethpurcell.com)

1168 points by arch_deluxe 6d ago 388 comments

Show HN: A store that generates products from anything you type in search (anycrap.shop)

1142 points by kafked 3d ago 326 comments

I ditched Docker for Podman (codesmash.dev)

1120 points by codesmash 11d ago 654 comments

Germany is not supporting ChatControl – blocking minority secured (digitalcourage.social)

1113 points by xyzal 5d ago 357 comments

30 minutes with a stranger (pudding.cool)

1102 points by MaxLeiter 12d ago 375 comments

Charlie Kirk killed at event in Utah (nbcnews.com)

1077 points by david927 6d ago 3285 comments

Show HN: Term.everything – Run any GUI app in the terminal (github.com)

1077 points by mmulet 7d ago 144 comments

996 (lucumr.pocoo.org)

1053 points by genericlemon24 10d ago 532 comments

Next.js is infuriating (blog.meca.sh)

1033 points by Bogdanp 14d ago 579 comments

EU court rules nuclear energy is clean energy (weplanet.org)

1031 points by mpweiher 4d ago 1222 comments

Show HN: I recreated Windows XP as my portfolio (mitchivin.com)

1028 points by mitchivin 9d ago 322 comments

The MacBook has a sensor that knows the exact angle of the screen hinge (twitter.com)

1021 points by leephillips 9d ago 487 comments

Anthropic agrees to pay $1.5B to settle lawsuit with book authors (nytimes.com)

989 points by acomjean 11d ago 738 comments

Signal Secure Backups (signal.org)

988 points by keyboardJones 8d ago 442 comments

Man jailed for parole violations after refusing to decrypt his Tor node (reddit.com)

939 points by heavyset_go 10h ago 341 comments

Using Claude Code to modernize a 25-year-old kernel driver (dmitrybrant.com)

920 points by dmitrybrant 8d ago 319 comments

iPhone Air (apple.com)

902 points by excerionsforte 7d ago 1950 comments

Pontevedra, Spain declares its entire urban area a "reduced traffic zone" (greeneuropeanjournal.eu)

870 points by robtherobber 6d ago 941 comments

I replaced Animal Crossing's dialogue with a live LLM by hacking GameCube memory (joshfonseca.com)

865 points by vuciv 6d ago 185 comments

Google can keep its Chrome browser but will be barred from exclusive contracts (cnbc.com)

864 points by colesantiago 14d ago 632 comments

UTF-8 is a brilliant design (iamvishnu.com)

842 points by vishnuharidas 4d ago 342 comments

We all dodged a bullet (xeiaso.net)

827 points by WhyNotHugo 7d ago 483 comments

Stripe Launches L1 Blockchain: Tempo (tempo.xyz)

808 points by _nvs 12d ago 1070 comments

Mistral raises 1.7B€, partners with ASML (mistral.ai)

802 points by TechTechTech 7d ago 423 comments

New Mexico is first state in US to offer universal child care (governor.state.nm.us)

787 points by toomuchtodo 7d ago 661 comments

Chat Control Must Be Stopped (privacyguides.org)

787 points by Improvement 8d ago 259 comments

The treasury is expanding the Patriot Act to attack Bitcoin self custody (tftc.io)

778 points by bilsbie 4d ago 557 comments

“This telegram must be closely paraphrased before being communicated to anyone” (history.stackexchange.com)

775 points by azeemba 16d ago 135 comments

Shai-Hulud malware attack: Tinycolor and over 40 NPM packages compromised (stepsecurity.io)

773 points by jamesberthoty 11h ago 604 comments

Almost anything you give sustained attention to will begin to loop on itself (henrikkarlsson.xyz)

772 points by jger15 12d ago 223 comments

Where's the shovelware? Why AI coding claims don't add up (mikelovesrobots.substack.com)

770 points by dbalatero 13d ago 482 comments

Models of European metro stations (stations.albertguillaumes.cat)

729 points by tcumulus 2d ago 158 comments

Google AI Overview made up an elaborate story about me (bsky.app)

698 points by jsheard 15d ago 278 comments

Linux phones are more important now than ever (feddit.org)

693 points by wicket 22h ago 443 comments

iPhone dumbphone (stopa.io)

690 points by joshmanders 8d ago 395 comments

Claude Code: Now in Beta in Zed (zed.dev)

682 points by meetpateltech 13d ago 406 comments

Why our website looks like an operating system (posthog.com)

681 points by bnc319 4d ago 486 comments

Eternal Struggle (yoavg.github.io)

680 points by yurivish 16d ago 136 comments

Corporations are trying to hide job openings from US citizens (thehill.com)

678 points by b_mc2 4d ago 523 comments

KDE launches its own distribution (lwn.net)

677 points by Bogdanp 6d ago 526 comments

Many hard LeetCode problems are easy constraint problems (buttondown.com)

674 points by mpweiher 4d ago 525 comments

React is winning by default and slowing innovation (lorenstew.art)

670 points by dbushell 1d ago 781 comments

ICE is using fake cell towers to spy on people's phones (forbes.com)

667 points by coloneltcb 7d ago 255 comments

Hosting a website on a disposable vape (bogdanthegeek.github.io)

659 points by dmazin 1d ago 15 comments

Court rejects Verizon claim that selling location data without consent is legal (arstechnica.com)

658 points by nobody9999 5d ago 86 comments

Claude now has access to a server-side container environment (anthropic.com)

658 points by meetpateltech 7d ago 343 comments

New security stuff in the Linux 6.17

4 slashben 1 9/16/2025, 7:16:14 PM armosec.io ↗

Comments (1)

slashben · 3h ago

I wrote up a summary of the major security changes coming in the upcoming Linux 6.17 kernel release. Highlights include:

Attack Vector Controls: a new framework to manage CPU vulnerability mitigations by attack vector class rather than per-mitigation toggles

Refined Spectre/SRSO mitigations

Rust integration now built with the same speculative execution defenses as C code

SELinux gets a neversaudit flag and a 5-second delay on a deprecated sysfs interface

Lockdown LSM has active maintainers again

AppArmor can now mediate AF_UNIX sockets with fine-grained rules

Kernel stack erasing improvements for better memory safety

Full post here: https://www.armosec.io/blog/linux-6-17-security-features/

Curious what the HN crowd thinks — do these changes make Linux more secure in practice? Any hidden trade-offs or regressions people have seen testing 6.17-rc?