news newest ask show jobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

I still don't understand this SYN attack, but now I can block it easily

https://boston.conman.org/2026/01/28.2

4•todsacerdoti•1h ago

Comments

epc•1h ago

Is it just the classic (1996-1997 era?) SYN-ACK attack?

fennec-posix•1h ago

The destination IP has some high-value octets, almost wondering if it's a software bug in something out there:

Address: 66.252.224.242 01000010.11111100.11100000. 11110010

Maybe a long forgotten server with some ancient malware that keeps being moved around...

Mysterious

spc476•42m ago

The destination IP address is my server, the one being attacked. I don't see the significant of the high-value octets.

fennec-posix•3m ago

all good, probably just me seeing patterns.

rolph•33m ago

just looks like a SYN flood with spoofed address.

attacker crafts packets with a forged return IP.

they SYN as many of your ports and IPs, you send SYN-ACK to the spoofed IP destination, the destination knows it didnt SYN you and refuses to ACK the connection.

long TTL keeps the connection open longer, and it builds up to a DDOS for you when your ports are all half open.

depending on the real owner of the spoofed IP, they might blacklist your IP for spraying them with syn-ack.

spc476•10m ago

Yes.

Yes.

No, it's always port 443. But yes, the destination doesn't ACK the connection.

No, the TTL just means it can make more hops; it doesn't mean the connection is kept open for longer.

No, the IP addresses are unique and rarely repeat.

A Decoder-Based Framework for 3D-Printable Object Synthesis

https://arxiv.org/abs/2601.08015

1•PaulHoule•2m ago•0 comments

Climate TRACE: Independent Greenhouse Gas Emissions Tracking

https://climatetrace.org

1•csmantle•4m ago•0 comments

A clawdbot-like open-source project that connect my telegram only in 3 mins

https://twitter.com/WailiVery/status/2016707397155508393

1•waili•4m ago•0 comments

Agentic Vision in Gemini 3 Flash

https://blog.google/innovation-and-ai/technology/developers-tools/agentic-vision-gemini-3-flash/

1•geoffbp•6m ago•0 comments

Tesla FSD Hits 1.1M Users as Subscription Model Takes Over, 120 Eflops Compute

https://gearmusk.com/2026/01/29/tesla-fsd-hits-1-1m-users/

1•takumi123•7m ago•0 comments

PowerInfer: Fast LLM Inference on a Consumer-Grade GPU

https://github.com/Tiiny-AI/PowerInfer

1•oldfuture•11m ago•0 comments

Politics and the English Language, January 2026 edition

https://daringfireball.net/2026/01/politics_and_the_english_language_january_2026_edition

1•maxutility•12m ago•0 comments

Palestinian journalist Bisan Owda with 1.4M followers reports TikTok ban

https://www.aljazeera.com/news/2026/1/29/palestinian-journalist-bisan-owda-with-1-4m-followers-re...

5•siavosh•13m ago•0 comments

Show HN: AI tool to that reaches top in machine-learning competition

https://github.com/pentoai/ml-ralph

1•leopiney•13m ago•0 comments

The Hummingbird Clock (used by UK gov as forensic tool)

https://imgur.com/a/RLm2ILW

1•qingcharles•14m ago•0 comments

Overshoot: The World Is Hitting Point of No Return on Climate

https://e360.yale.edu/features/1.5-degrees-tipping-points

3•Brajeshwar•15m ago•0 comments

After 34 years, Linux community has a contingency plan to replace Linus Torvalds

https://www.tomshardware.com/software/linux/linux-kernel-community-draws-up-contingency-plan-to-r...

2•smurda•20m ago•0 comments

The Questions That Survive Every Answer

https://gilpignol.substack.com/p/the-questions-that-survive-every

1•light_triad•20m ago•0 comments

DECwindows Motif

https://products.vmssoftware.com/decwindowsmotif

1•doener•20m ago•0 comments

Isolation and Permissiveness of Distributed Transactions in MongoDB

https://www.mongodb.com/company/blog/engineering/formal-methods-beyond-correctness-isolation-perm...

1•todsacerdoti•21m ago•0 comments

Silicon Empires: The Political Economy of AI with Nick Srnicek

https://thedigradio.com/podcast/silicon-empires-w-nick-srnicek/

2•hirpslop•25m ago•0 comments

The Shape of Reasoning: Topological Analysis of Large Language Models

https://arxiv.org/abs/2510.20665

2•oldfuture•26m ago•0 comments

Craft Agents: Work with most powerful agents in the world, with the UX they dese

https://agents.craft.do

1•nateroling•26m ago•1 comments

SnapSafe: Just added encrypted video to my FOSS secure camera app

https://snapsafe.org/

1•Wavesonics•27m ago•1 comments

Show HN: Figma MCP is read-only,so I built a pilot MCP by code execution

https://github.com/youware-labs/figma-pilot

1•marv1nnnnn•28m ago•0 comments

Wordle but Roguelike

https://store.steampowered.com/app/4157850/Randels_Quest/

1•lafferty•28m ago•0 comments

LLMs and Executive Function

https://til.andrew-quinn.me/posts/claude-code-and-executive-function/

1•walterbell•30m ago•0 comments

Managing Through Reorganizations

https://nemethgergely.com/blog/managing-through-reorganizations

1•gergelyke•32m ago•0 comments

Show HN: Free Facebook Video Downloader with Original Audio Quality

https://facebookvideodownload.com

1•yaoluxing•33m ago•0 comments

Show HN: AI-Generated Trading View strategies with no lock in

https://staunch.ai/

1•irasigman•33m ago•0 comments

Removing the Gemini watermark: from OpenCV to LaMa to millisecond algorithm

https://geminiwatermarkcleaner.com/changelog.html

1•heftykoo•34m ago•2 comments

Flapping Airplanes is a frontier data efficiency lab

https://flappingairplanes.com/

2•thedataexchange•34m ago•1 comments

Show HN: Intent-Aware RAG – Moving from Vector Matching to 5W1H Accounting

https://github.com/nickhuang99/Intent-Aware-RAG

1•nickhuang99•36m ago•0 comments

Meta's crawler made 11M requests to my site in 30 days

https://old.reddit.com/r/webdev/comments/1qpqapj/metas_crawler_made_11_million_requests_to_my_site/

3•speckx•37m ago•0 comments

It's Time to Start Tooting Your Own Horn at Work

https://www.wsj.com/lifestyle/careers/its-time-to-start-tooting-your-own-horn-at-work-7838f92a

2•petethomas•37m ago•0 comments