frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

What happens when clergy take psilocybin

https://nautil.us/clergy-blown-away-by-psilocybin-1217112/
112•bookofjoe•8h ago•126 comments

How Frogger 2’s source code was recovered from a destroyed tape [video]

https://www.youtube.com/watch?v=lvEO4IaEJlw
48•perching_aix•1d ago•2 comments

Show HN: Chawan TUI web browser

https://chawan.net/news/chawan-0-2-0.html
218•shiomiru•9h ago•30 comments

Selfish reasons for building accessible UIs

https://nolanlawson.com/2025/06/16/selfish-reasons-for-building-accessible-uis/
33•feross•4h ago•12 comments

Show HN: I recreated 90s Mode X demoscene effects in JavaScript and Canvas

https://jdfio.com/pages-output/demos/x-mode/
11•gneissguise•1h ago•3 comments

Show HN: Canine – A Heroku alternative built on Kubernetes

https://github.com/czhu12/canine
192•czhu12•11h ago•84 comments

Benzene at 200

https://www.chemistryworld.com/opinion/benzene-at-200/4021504.article
193•Brajeshwar•14h ago•96 comments

WhatsApp introduces ads in its app

https://www.nytimes.com/2025/06/16/technology/whatsapp-ads.html
313•greenburger•16h ago•409 comments

The Humble Programmer (1972)

https://www.cs.utexas.edu/~EWD/transcriptions/EWD03xx/EWD340.html
19•squircle•4h ago•0 comments

ZX Spectrum graphics magic

https://zxonline.net/zx-spectrum-graphics-magic-the-basics-every-spectrum-fan-should-know/
54•ibobev•1d ago•4 comments

Snorting the AGI with Claude Code

https://kadekillary.work/blog/#2025-06-16-snorting-the-agi-with-claude-code
254•beigebrucewayne•18h ago•152 comments

Battle to eradicate invasive pythons in Florida achieves milestone

https://phys.org/news/2025-06-eradicate-invasive-pythons-florida-stunning.html
38•wglb•7h ago•29 comments

Iron nitride permanent magnets made with DIY ball mill [video]

https://www.youtube.com/watch?v=M6XIgdS1rzs
28•xqcgrek2•1d ago•0 comments

Show HN: Nexus.js - Fabric.js for 3D

https://punk.cam/lab/nexus
54•ges•9h ago•18 comments

Generative AI coding tools and agents do not work for me

https://blog.miguelgrinberg.com/post/why-generative-ai-coding-tools-and-agents-do-not-work-for-me
161•nomdep•5h ago•172 comments

The drawbridges come up: the dream of a interconnected context ecosystem is over

https://www.dbreunig.com/2025/06/16/drawbridges-go-up.html
14•dbreunig•5h ago•1 comments

Dull Men’s Club

https://www.theguardian.com/society/2025/jun/09/meet-the-members-of-the-dull-mens-club-some-of-them-would-bore-the-ears-off-you
98•herbertl•11h ago•59 comments

Natural rubber with high resistance to crack growth

https://www.nature.com/articles/s41893-025-01559-z.epdf?sharing_token=SST16F7yBaUkRDb702ZphtRgN0jAjWel9jnR3ZoTv0P9y52VPdTYScQoHBinE3JzdSvQ1aN3fhS4SSECYXRnvZ77nkrWJA2412S2E-26Il-ncine3ET1t1GzNaX2Oo2cK9GYzFNCrKSRycPCrQKJZ8QvfBeSTNR5d12_ZHLvyYkt26oAnSVTBuopgCE4tHIVPnWtjLZS3OhBz1H2OhtXQMmNFMhf-2lYu5vkTl596uaKjxxqTFBbSZj1phjSIDRELkwyRfUsM77Gu7S0VF_fPvJZAYxvV_2Hduld7MbfF1M4RO8vHe5OtCz383c2iHBjxkZ4gU59FErIjNBnLDPDT79Jaj04hbpqLWqUoVxoYCs%3D
3•cocoggu•3d ago•0 comments

OpenAI wins $200M U.S. defense contract

https://www.cnbc.com/2025/06/16/openai-wins-200-million-us-defense-contract.html
135•erikrit•7h ago•76 comments

William Langewiesche, the 'Steve McQueen of Journalism,' Dies at 70

https://www.nytimes.com/2025/06/16/business/media/william-langewiesche-dead.html
14•rsingel•1h ago•3 comments

Nanonets-OCR-s – OCR model that transforms documents into structured markdown

https://huggingface.co/nanonets/Nanonets-OCR-s
297•PixelPanda•23h ago•67 comments

Show HN: Zeekstd – Rust Implementation of the ZSTD Seekable Format

https://github.com/rorosen/zeekstd
186•rorosen•1d ago•41 comments

OpenTelemetry for Go: Measuring overhead costs

https://coroot.com/blog/opentelemetry-for-go-measuring-the-overhead/
109•openWrangler•14h ago•36 comments

Blaze (YC S24) Is Hiring

https://www.ycombinator.com/companies/blaze-2/jobs/dzNmNuw-junior-software-engineer
1•faiyamrahman•8h ago

Open-Source RISC-V: Energy Efficiency of Superscalar, Out-of-Order Execution

https://arxiv.org/abs/2505.24363
72•PaulHoule•13h ago•19 comments

Working on databases from prison

https://turso.tech/blog/working-on-databases-from-prison
737•dvektor•17h ago•470 comments

Privacy implications of browsers’ (mis)implementations of Widevine EME (2023)

https://hal.science/hal-04179324v1/document
96•exceptione•7h ago•54 comments

Retrobootstrapping Rust for some reason

https://graydon2.dreamwidth.org/317484.html
111•romac•9h ago•38 comments

Breaking Quadratic Barriers: A Non-Attention LLM for Ultra-Long Context Horizons

https://arxiv.org/abs/2506.01963
50•PaulHoule•10h ago•20 comments

Is gravity just entropy rising? Long-shot idea gets another look

https://www.quantamagazine.org/is-gravity-just-entropy-rising-long-shot-idea-gets-another-look-20250613/
277•pseudolus•1d ago•237 comments
Open in hackernews

Privacy implications of browsers’ (mis)implementations of Widevine EME (2023)

https://hal.science/hal-04179324v1/document
96•exceptione•7h ago

Comments

exceptione•7h ago
(I had to editorialize to get the title within the limits)
JCattheATM•5h ago
I flat out have DRM disabled in my browser. If I really really need it, then that's what VMs and VPNs are for.
neilv•5h ago
Same here. For one interim pragmatic purpose, I do have a dedicated setup that has DRM, which I use only for that purpose. I hope to get rid of the nasty DRM altogether in the future.

(For the browser part of the DRM setup, I use Chrome/Chromium, the violate-me-all-the-ways browser. For all other browser purposes, I use both Firefox, the violate-me-fewer-ways browser, and Tor Browser, the draw-fire-of-state-actors-but-thwart-techbro-actors browser.)

kiney•5h ago
I'm curious what are those use-cases where you really need it? I have DRM disabled since forever and never experience any problems that I can relate to that.
Aerroon•5h ago
Which really makes you wonder why so many people fought hard to get it into the browser.
bevr1337•5h ago
Streaming television
msgodel•5h ago
I think spotify doesn't work without it but I switched back to keeping all my music local long ago.
kiney•4h ago
ok, never used that...
Groxx•4h ago
Music and TV/movie streaming, and that's about it afaict. I've got it disabled too, and I essentially never see issues unless I go to Netflix.
Tijdreiziger•4h ago
News videos don’t always work without it either.
gruez•3h ago
Maybe I don't visit enough news sites, but I never saw a news website have DRM on their videos.
Groxx•3h ago
I think I've seen it on news sites like once? And thanked my settings for stopping something that was surely going to annoy me.

But broadly yeah, same

shmerl•5h ago
Not surprising at all.
mattl•5h ago
Yeah this feels very much the point of DRM in browsers. I will never understand why Firefox caved. This is 100% the kind of thing they should fight.
wizardforhire•5h ago
In this day and age I dont understand why there isnt a more successful fork of firefox or a new opensource browser thats more succesful with privacy as a concern. My only speculation is collective lazyness and lack of sex appeal as new technologies have emerged. I’m probably biased as I lived through the browser wars. I guess I’m probably projecting combined with curiosity. I know most of the old greybeards have moved on and those of us left are stuck carrying the torch, but man it sure seems the culture has been eroded significantly. Case in point back in my day it seemed like there was a new browser every few months or so. I’m done ranting, I’ve got kids to yell at to get off my lawn.
mattl•4h ago
WebKit seems to be doing at least some of that, rejecting some of the more invasive new web APIs. Why does my browser ever need to know my battery status?
charcircuit•4h ago
I don't understand why anyone would bother forking Firefox when forking Chromium is available which is more advanced and more modular.

>or a new opensource browser

Brave browser fulfills that role.

https://brave.com/compare/firefox-vs-brave/

throwaway60397•1h ago
> I don't understand why anyone would bother forking Firefox when forking Chromium is available which is more advanced and more modular.

No uBlock is a deal breaker. Chromium is stuck with the neutered uBlock Lite thanks to Manifest V3.

> Brave browser fulfills that role

Sure, and it's also funded by VC money. How long until the vultures start swooping in to get a return on their investiment?

Eisenstein•4h ago
Brave is such a browser but seeing as it is backed by Thiel's VC money and involves a crypto monetization incentive for the user (which can easily be turned off, btw) it evokes strong emotions in people who are rightly averse to such things. However, it does do pretty much everything privacy advocates ask for as soon as you turn off a few settings. I use it and would recommend it for people who want a anti-tracking, anti-ad browser if you can live with the drama around it.
ipaddr•4h ago
Many forks exist like LibreWolf
bevr1337•5h ago
They "caved" because it's a browser for humans and lots of humans stream TV. I don't miss the daily "how can I watch Netflix on Ubuntu?" posts in different communities. Users can disable Widevine in FF.
mattl•4h ago
I’d be surprised if close to 100% of those users aren’t using Chrome, not Firefox for any streaming purposes.
bevr1337•4h ago
You'd be surprised if less-than 99% of Firefox users didn't switch to Chrome to stream television? Am I understanding?
mattl•4h ago
I think the number of people who care about streaming DRM media probably already used Chrome at the time of the EME stuff being added to Firefox.
AnthonyMouse•4h ago
People do this:

https://news.ycombinator.com/item?id=44294402

So they use Firefox 99% of the time and then if they encounter the rare thing that requires DRM they treat it like toxic waste that has to run in an isolated sandbox, which doesn't need to be the same browser they use for anything else.

The only other sensible option is to get out the reversing toolkit and break the DRM.

bevr1337•4h ago
It's unlikely we can extrapolate market share and user-base data from individuals who self-select into discussing DRM on Hackernews.
AnthonyMouse•4h ago
Aren't those the only people who don't already use Chrome? "People who hate privacy-invading stuff like DRM" is pretty much the Firefox user base.
tombert•3h ago
There is absolutely no way I would be able to convince my parents to do streaming that way, and I'm reasonably certain that they're a much more representative set of the community than people who hang around HN.
AnthonyMouse•2h ago
You absolutely would and it's the default way that normal people actually do it, which is to isolate Netflix into some kind of TV or HDMI stick instead of putting it in a browser on a PC.
userbinator•3h ago
The answer should be "go sail the high seas."
Dylan16807•2h ago
This is the point? Not preventing screen capture?
jwrallie•5h ago
Interestingly, DRM is also being used by Signal for privacy concerns over Windows Recall, as discussed on HN [0] previously.

[0] https://news.ycombinator.com/item?id=44053364

sodality2•5h ago
"Used" is a strong term, they're not really utilizing the DRM codepaths, AFAIK it simply tells the OS that the window is software that does use DRM and thus should be excluded from any screenshots. The existence of DRM and desire of Windows to abide by its rules are what Signal relies on.
AnthonyMouse•5h ago
That's more of a double-edged sword hack than "using DRM". The theory of DRM is for the system to restrict the content from the user, i.e. the system is adversarial to the user and vice versa.

What Signal is doing is trying to get the system to restrict the content from the rest of the system. Which might work as a transient hack but doesn't actually work to protect the user when the system is adversarial, because Microsoft (the adversary) has the DRM private keys. Even some hypothetical DRM system which is effective in oppressing the user wouldn't prevent Microsoft from purloining the user's data whenever they want because they're the ones who make the DRM.

bitpush•4h ago
Microsoft cant and will not break that trust, because then Netflix and others will stop serving content to Microsoft products.

This is similar to HTTPS certificate chain of trust. The root signing authority needs to be trusted, but once you break that trust there's no going back. It is a self-regulating system.

AnthonyMouse•4h ago
Why does Netflix care if Microsoft is hoovering up all the user's data? Why would they even care if Microsoft was giving itself access to the Netflix streams? Unlike with Signal there are no real secrets in there.

Plus, what is Netflix even going to do? Stop supporting streaming on Microsoft platforms and then lose a bunch of subscribers for no benefit to themselves?

j-bos•3h ago
I imagine it wouldn't be Netflix enforcing that decision but rather the hollywood studios.
AnthonyMouse•2h ago
So ask the same question of them. Would you expect them to care about invasions of user privacy? To give up money over it?
lyu07282•1h ago
But why does Hollywood even care about this DRM in the first place? I don't really understand why all this wasted effort, going so far with HDCP encrypted video signals.. I mean every new release is pirated within hours despite all of these protections anyway, so what exactly is the point? It's even easier and faster to just download a 4K torrent than to get Netflix in 4k working on many system configurations because of these overbearing DRM requirements.
nemomarx•3h ago
In this case, if Recall records the screen constantly then it can get the DRMed video from Netflix, and therefore possibly exfiltrate it to the user for piracy easier? I think they nominally try to prevent you streaming it / recording it to shut that down.
AnthonyMouse•2h ago
The expectation is that Microsoft is exfiltrating this data because they want to use it for AI training, ad targeting etc. That doesn't require the user to have access to it, they'd just need some new rationale for exfiltrating it. Insert malware scanning excuse etc.

Also, the issue is that somebody is going to copy a ~30 fps video using screenshots without audio taken at an interval of ~0.2 fps? Nobody is going to do it that way.

kevincox•3h ago
I believe that they could just ignore the Signal app's request to DRM protect the content. Unless Signal is actually encrypting the whole app content before submitting it to Windows it is just a request.

This is a bit different to encrypted video where it is actually being encrypted off device.

Dylan16807•3h ago
> because Microsoft (the adversary) has the DRM private keys

Let's be clear here. That's a fine point in the generic sense, but in the Signal situation there are no private keys and it's not really DRM.

AnthonyMouse•2h ago
It kind of is though?

Suppose a third party app wants to make screen captures. Windows prevents it, because otherwise it could do the same thing to Netflix and capture the video. The thing preventing the app from bypassing that constraint is DRM.

Whereas suppose Microsoft wants to distribute an update to the video rendering code in Windows. It will have access to the data on the screen because it's the thing converting it into pixels, so Microsoft signs the new code with their private keys and distributes it to your PC and it gets access to what's on your screen. Which they could also do with code designed to exfiltrate it.

Dylan16807•1h ago
But Signal is not Netflix. Signal is not managing any digital rights with this toggle, and also the user has full control over the toggle.

Also if Microsoft wanted to bypass it they could just ignore the function call, they wouldn't have to do any clever workarounds.

tgsovlerkhgsel•4h ago
I've set DRM to require explicit approval in the browser, and I've seen random web sites that have no obvious reason to do so randomly request the permission.

I don't know what exactly causes this, since it's intermittent (the same web site doesn't always do it) and happens even with various ad and tracking blockers in place.

mjevans•3h ago
I detest auto-play videos and in fact am usually happy when some random news site I'm reading an article on gets blocked by not having DRM.
tgsovlerkhgsel•3h ago
That's the thing though - I don't think it blocked videos on the site, if there even were any.
__MatrixMan__•3h ago
That has been my experience too. Brave asks me if I want to install widevine, I say no, and then nothing appears broken.
tcoff91•3h ago
Sounds like fingerprinting
NooneAtAll3•1h ago
I wish it was possible to auto-reject it instead of constant pop-ups
1vuio0pswjnm7•2h ago
Popular web browsers way too complex, far too difficult to control.

Simpler software could satisfy web users.

Could reduce potential for surveillance and annoying distractions. Easier to audit and control.

conception•1h ago
We should have stopped with gopher. I’m not even sure I’m joking.
kbrosnan•57m ago
No, simpler software is not accepted by the general public. For a few years Firefox rejected EME/Widevine. When Netflix does not work then they will just use a browser that works.