Lup Yuen Lee 李立源 @lupyuen@qoto.org
- Pronouns/Gender/Sexuality
- He/Him/They, Bisexual/Asexual 🇸🇬
- Date of Birth
- 1969
- Articles
- https://lupyuen.org
IoT Techie and Educator / Apache NuttX PMC
Joined Jan 2020
Martijn Braam: "Why I left #PINE64"
"Programming Breakthroughs we need"
"Postgres running in your local Web Browser" (#WebAssembly)
https://www.crunchydata.com/blog/learn-postgres-at-the-playground
Compiling our #ZigLang Sensor App for Apache #NuttX RTOS
https://lupyuen.github.io/articles/visual?10#compile-zig-app
Connecting Bosch BME280 Sensor to PineCone #BL602 ... For testing #Blockly on Apache #NuttX RTOS
https://lupyuen.github.io/articles/visual?9#connect-bme280-sensor
Boggle Solver with #RustLang, WebAssembly, OpenCV, TensorFlow
Comparing #RustLang and C++'s Concurrency Library
New Linux build runs Nintendo Switch games on Arm64
https://www.tomshardware.com/news/horizon-linux-runs-switch-games-on-arm64-computers
"Most Hated Apps in Every Country" (Roblox / Hinge)
https://www.electronicshub.org/the-most-hated-apps-in-every-country-and-u-s-state/
"If you're buying Magnets, particularly the high-grade magnets more reliant on Heavy Rare Earths, there's a good chance some amount of material has come from Myanmar"
https://www.globalwitness.org/en/campaigns/natural-resource-governance/myanmars-poisoned-mountains/
"A group of hackers was able to take control of a decommissioned Satellite and use it to stream a hacking conference’s talks and hacker movies" (DEF CON)
"In this series, we will explore leveraging glibc to exploit a vulnerable program on a x86 64-bit CPU"
https://www.control.rip/posts/2022/08/16/leveraging-glibc-in-exploitation-p1/
How #Blockly transmits our Sensor Data over #LoRaWAN
https://lupyuen.github.io/articles/visual?7#transmit-message-block
How an online community took back the Legend of Zelda
https://www.theverge.com/23301428/legend-of-zelda-ship-of-harkinian
How we compose a Sensor Data Message in #Blockly ... Encoded with CBOR
https://lupyuen.github.io/articles/visual?6#compose-message-block
Lup Yuen Lee 李立源
boosted
@Lup Yuen Lee 李立源
I wonder how not using a package manager makes it more secure, would you be able to pinpoint that? Is there any kind of security check to verify ?
To me it looks a bit like AppImages on Linux (or snaps, and somewhat to flatpacks). AppImages simply take the source and see git as "it is secure"
Running it in a container does not mean one should run unsafe software imho
These new container images significantly improve security posture:
Ultra-small images (reduced size and attack surface)No package manager (avoids a whole class of attacks)No shell (avoids a whole class of attacks)Non-root (avoids a whole class of attacks)
I wonder how not using a package manager makes it more secure, would you be able to pinpoint that? Is there any kind of security check to verify ?
To me it looks a bit like AppImages on Linux (or snaps, and somewhat to flatpacks). AppImages simply take the source and see git as "it is secure"
Running it in a container does not mean one should run unsafe software imho
- Pronouns/Gender/Sexuality
- He/Him/They, Bisexual/Asexual 🇸🇬
- Date of Birth
- 1969
- Articles
- https://lupyuen.org
IoT Techie and Educator / Apache NuttX PMC
Joined Jan 2020
