Monthly Archives: September 2023

Publisher: $2.5k for Academics to Post Their Own Manuscript to Their Own Repos

Source: Hacker News

Article note: Can we please just burn the entire academic publishing industry to the ground? It is in every possible way impeding a healthy research process.
Comments
Posted in News | Leave a comment

Linux’s modprobe adds the ability to load a module from anywhere on the file-system

Source: OSNews

Article note: Huh, I always thought the modprobe (only from tree)/ insmod (load your own random modules) distinction was intentional.

With today’s release of kmod 31, Linux’s modprobe utility for loading kernel modules can finally allow arbitrary paths to allow loading new kernel modules from anywhere on the file-system.

Surprisingly it took until 2023 for allowing Linux’s modprobe to accept loading kernel modules from any arbitrary path. Rather than just specifying the module name and then looking up the module within the running kernel’s modules directory, modprobe can now allow passing a path to the module. Relative paths are also supported when prefixed with “./” for the path to the desired module.

Finally.

Posted in News | Leave a comment

The Raspberry Pi 5 is finally here

Source: The Verge - All Posts

Article note: Interesting. They have a custom IC doing the glue, but it's still a Broadcom SoC (this time a BCM 2712) which probably means it still does the "boot via a blackbox running on the GPU" bullshit. Performance looks comparable to an RK3588 system so (as always) it's largely going to come down to software support and other ecosystem effects. The 4GB=$60, 8GB=$80 pricing isn't unreasonable. The 1x PCI-E lane on FPC is cool and should enable some nice applications and less-shitty storage media. The dedicated connections for UART and fan are nice, as is keeping analog video on some pins for those who want it. Hopefully they don't run into another supply chain choke.
A photo showing the Raspberry Pi 5 with USB cables and a micro HDMI cable plugged in
Photo by Emma Roth / The Verge

Despite doubts that the Raspberry Pi 5 would launch this year, the latest version of the microcomputer has arrived with some notable upgrades at a $60 starting price. Not only is it supposed to perform better than its predecessor but it’s also the first Raspberry Pi to come with in-house silicon.

Powering the brain of the Raspberry Pi 5 is a 64-bit quad-core Arm Cortex-A76 processor that runs at 2.4GHz, allowing for two to three times the performance boost when compared to the four-year-old Raspberry Pi 4. The device also comes with an 800MHz VideoCore VII graphics chip that the Raspberry Pi Foundation says offers a “substantial uplift” in graphics performance.

I got to try out the device for myself. While I didn’t have time to do much...

Continue reading…

Posted in News | Leave a comment

Why does trying to break into the NT 3.1 kernel reboot my 486DX4 machine?

Source: Hacker News

Article note: This is a nifty tale of architectural details and subtly different instructions. Nice example for why knowing assembly is useful even if you don't generally work directly in it.
Comments
Posted in News | Leave a comment

Lisp Badge LE

Source: Hacker News

Article note: I love goofy little standalone computers. I'm always a bit puzzled why so many people who build them choose Lisp.
Comments
Posted in News | Leave a comment

GPUs from all major suppliers are vulnerable to new pixel-stealing attack

Source: Ars Technica

Article note: This is some insane shit. The fact that "GPU-accelerated CSS filters on a cross-origin iframe" are a thing is psychotic and and indictment against the state of the Web on multiple levels. The fact that someone figured out they can use the mechanism to launch side-channel attacks by building filters with different execution times based on pixel properties is super nifty in a horrifying way.
GPUs from all major suppliers are vulnerable to new pixel-stealing attack

Enlarge

GPUs from all six of the major suppliers are vulnerable to a newly discovered attack that allows malicious websites to read the usernames, passwords, and other sensitive visual data displayed by other websites, researchers have demonstrated in a paper published Tuesday.

The cross-origin attack allows a malicious website from one domain—say, example.com—to effectively read the pixels displayed by a website from example.org, or another different domain. Attackers can then reconstruct them in a way that allows them to view the words or images displayed by the latter site. This leakage violates a critical security principle that forms one of the most fundamental security boundaries safeguarding the Internet. Known as the same origin policy, it mandates that content hosted on one website domain be isolated from all other website domains.

Optimizing bandwidth at a cost

GPU.zip, as the proof-of-concept attack has been named, starts with a malicious website that places a link to the webpage it wants to read inside of an iframe, a common HTML element that allows sites to embed ads, images, or other content hosted on other websites. Normally, the same origin policy prevents either site from inspecting the source code, content, or final visual product of the other. The researchers found that data compression that both internal and discrete GPUs use to improve performance acts as a side channel that they can abuse to bypass the restriction and steal pixels one by one.

Read 15 remaining paragraphs | Comments

Posted in News | Leave a comment

PiWrite – Kindle Paperwhite to Write

Source: Hacker News

Article note: ...This is a webserver running on a Pi Zero serving a page to the feeble internal browser on the Kindle over Wifi, and talking to a Bluetooth keyboard. There's that SolarWriter app that does the same trick with a phone as the intermediary. Either way, there are two relatively powerful computers (as in... bigger than minicomputer that would have served a whole department in the late 70s) running Linux and a complete web stack at each end, to attach a keyboard and display for simple text editing. It's shocking how the "little eink terminal" market has failed and always spirals into this kind of weird complexity and/or goofy proprietary closed devices freewriter type things.
Comments
Posted in News | Leave a comment

Google is killing Gmail’s Basic HTML View in early 2024

Source: Hacker News

Article note: This caused me to think. Remember when a little bit of judicious JS to do small updates on the client made pages seems super fast compared to doing a bunch of network roundtrips in the early 2000s? Notice how now connections are only slightly faster (only slightly lower latency, typical bandwidth has improved more) and most JS pages are so bloated they consume enough resources to be the limiting factor on otherwise-usable computers, which has made static HTML pages seem startlingly fast while typical JS-heavy pages are sluggish? It's quite an indictment of where the web has gone. Plus, we lost local presentation control/structure (for theming and alternative displays and screen readers and such) in the process.
Comments
Posted in News | Leave a comment

The invisible problem: text editing on Android and iOS sucks

Source: OSNews

Article note: I don't immediately love the demo, but I absolutely agree that the consensus approach for text editing on fondleslabs is absolutely awful, and much of the problem is occlusion. The "swipe space bar to move cursor" trick some keyboards do is the biggest improvement to happen in some time, but I think touchscreens are just not very good fine input devices.

Android and iOS share a common problem: they copied desktop text editing conventions, but without a menu bar or mouse. This forced them to overload the tap gesture with a wide range of actions: placing the cursor, moving it, selecting text, and invoking a pop-up menu. This results in an overly complicated and ambiguous mess-o-taps, leading to a variety of user errors.

It’s less of a problem if you only do short bursts of text in social media or messaging apps. But doing anything more complicated like an email gets tedious. However, in my user study on text editing, I was surprised to find that everyone had significant problems and rather severe workaround for editing text.

With the extremely talented Olivier Bau, together we created a prototype called Eloquent, which offers a much simpler solution. We presented this work at UIST 2021.

This is now one of my favourite articles I’ve ever read. I despise text input and text editing on mobile devices, whether they be Android or iOS. I hate it with the passion of a thousand burning suns, but it seems like nobody else cares. Luckily, the author of this article, Scott Jenson, a man with an impressive career doing UI work at Apple, Google, and others, agrees with me, and together with his colleagues, during his time at Google, he came up with an entirely different, touch-first way of editing text.

The end result – be sure to watch the video to see it in action – immediately clicks for me. I want this. Now. This would be a massive usability improvement, and the fact it isn’t in Android yet, despite being developed at Google, is further evidence Google has no clue how to make good ideas float to the top. Jenson explains why Eloquent, as they called their new input/editing system, won’t ship with Android, while he expresses a bit more optimism Apple might be more open to rethinking mobile text editing:

Unfortunately, shipping something like Eloquent would be challenging. First, as too many people mistakenly see text editing as “done”, there is little appetite to fix it. Second, users have been trained to cope with this error-prone approach for well over a decade. Asking people to change at this point would be hard.

But most importantly, fixing text editing isn’t seen as important enough in the war between Android and iOS. It’s not the flashy feature that shifts your Net Promoter Scores. What I find ironic is that a fundamental change, like fixing text editing, could make people feel much more at ease using their phones and could be an enormous reason to switch. But it would be a slow burn and take years of steady effort. Android just can’t think this way. Apple just might.

Android needs this.

Posted in News | Leave a comment

Amazon adding ads to Prime Video in 2024 unless you pay $2.99 extra

Source: Ars Technica

Article note: Just like the descent of Cable from "Paid so ad free" to "You pay more and ALSO we advertise to you and bundle and rentseek in every other way that is possible and legal." the same bullshit is going down in the Streaming market. Everyone who can will just go back to piracy as the service gets worse.
Screenshot from The Boys S2 teaser

Enlarge (credit: YouTube/Amazon Prime)

Next year, watching TV shows and movies on Amazon Prime Video without ads will cost more than it does now. In early 2024, Amazon will show ads with Prime Video content unless you pay $2.99 extra.

Amazon announced today that Prime Video users in the US, Canada, Germany, and the UK will automatically start seeing advertisements "in early 2024." Subscribers will receive a notification email "several weeks" in advance, at which point they can opt to pay $2.99 extra for ad-free Prime Video, Amazon said.

That takes the price of ad-free Prime Video from $8.99/month alone to $11.98/month and from $14.99/month with Prime to $17.98/month.

Read 7 remaining paragraphs | Comments

Posted in News | Leave a comment