2007 stories
·
10 followers

Saturday Morning Breakfast Cereal - Onions

2 Shares


Click here to go see the bonus panel!

Hovertext:
Drawing all those stupid onions was worth it for the phrase keystone onion.


Today's News:
Read the whole story
llucax
8 days ago
reply
Berlin
Share this story
Delete

More Memory Safety for Let’s Encrypt: Deploying ntpd-rs

1 Share

When we look at the general security posture of Let’s Encrypt, one of the things that worries us most is how much of the operating system and network infrastructure is written in unsafe languages like C and C++. The CA software itself is written in memory safe Golang, but from our server operating systems to our network equipment, lack of memory safety routinely leads to vulnerabilities that need patching.

Partially for the sake of Let’s Encrypt, and partially for the sake of the wider Internet, we started a new project called Prossimo in 2020. Prossimo’s goal is to make some of the most critical software infrastructure for the Internet memory safe. Since then we’ve invested in a range of software components including the Rustls TLS library, Hickory DNS, River reverse proxy, sudo-rs, Rust support for the Linux kernel, and ntpd-rs.

Let’s Encrypt has now taken a step that was a long time in the making: we’ve deployed ntpd-rs, the first piece of memory safe software from Prossimo that has made it into the Let’s Encrypt infrastructure.

Most operating systems use the Network Time Protocol (NTP) to accurately determine what time it is. Keeping track of time is a critical task for an operating system, and since it involves interacting with the Internet it’s important to make sure NTP implementations are secure.

In April of 2022, Prossimo started work on a memory safe and generally more secure NTP implementation called ntpd-rs. Since then, the implementation has matured and is now maintained by Project Pendulum. In April of 2024 ntpd-rs was deployed to the Let’s Encrypt staging environment, and as of now it’s in production.

Over the next few years we plan to continue replacing C or C++ software with memory safe alternatives in the Let’s Encrypt infrastructure: OpenSSL and its derivatives with Rustls, our DNS software with Hickory, Nginx with River, and sudo with sudo-rs. Memory safety is just part of the overall security equation, but it’s an important part and we’re glad to be able to make these improvements.

We depend on contributions from our community of users and supporters in order to provide our services. If your company or organization would like to sponsor Let’s Encrypt please email us at sponsor@letsencrypt.org. We ask that you make an individual contribution if it is within your means.

Read the whole story
llucax
25 days ago
reply
Berlin
Share this story
Delete

Electric vs Gas

3 Comments and 5 Shares
An idling gas engine may be annoyingly loud, but that's the price you pay for having WAY less torque available at a standstill.
Read the whole story
llucax
30 days ago
reply
Berlin
Share this story
Delete
3 public comments
kazriko
28 days ago
reply
Electric motors would be good if not for the tons of expensive, inefficient, flammable, fragile, degrading to uselessness within 10 years batteries you have to drag around. Electric motors with Fuel Cells might make it actually feasible for someone beyond the rich. Though, I think in the short term series hybrids with small batteries might work out better for those who aren't rich.
Colorado Plateau
satadru
26 days ago
Can't one just swap out standardized rechargeable batteries for most portable electric motor appliances that have replaced 2 cycle engines these days? I think the only problem currently is with electric vehicles...
kazriko
26 days ago
I'm mainly referring to electric vehicles. The smaller portable electric motors are actually in a lot better shape, though their batteries are still pretty expensive, usually $100ish each, but that's still a far cry from the $20k-$27.5k that electric car batteries cost, and how they usually wear out in under 10 years.
satadru
26 days ago
Ah yes. Still a bit of a shit show...
iustinp
30 days ago
reply
Touché!
Switzerland
WorldMaker
30 days ago
reply
😼
Louisville, Kentucky

Magnet Fishing

2 Shares
The ten-way tie was judged a ten-way tie, so no one won the grand prize, a rare fishing monopole.
Read the whole story
llucax
39 days ago
reply
Berlin
Share this story
Delete

Saturday Morning Breakfast Cereal - Vidjagames

1 Comment and 4 Shares


Click here to go see the bonus panel!

Hovertext:
First Person Murder Spree VII was the high watermark, of course.


Today's News:
Read the whole story
llucax
50 days ago
reply
Berlin
Share this story
Delete
1 public comment
jlvanderzwan
50 days ago
reply
The difference is that the murder simulators (hopefully) weren't replacing actual daily needs. The AI-backed "replace having a social life" however…

Of course the real issue is the disappearance of freely accessible shared public spaces to meet friends, but whatever

Saturday Morning Breakfast Cereal - (Mathematics)

1 Share


Click here to go see the bonus panel!

Hovertext:
Come on Depths of Wikipedia, where's your topological Pair of Pants post?


Today's News:
Read the whole story
llucax
56 days ago
reply
Berlin
Share this story
Delete
Next Page of Stories