frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

"Boobs check" – Technique to verify if sites behind CDN are hosted in Iran

https://twitter.com/hkashfi/status/1995109785679573167
71•defly•1h ago
https://xcancel.com/hkashfi/status/1995109785679573167

Comments

ThePowerOfFuet•30m ago
https://xcancel.com/hkashfi/status/1995109785679573167
Boogie_Man•17m ago
Thanks for posting this. I mostly gave up on viewing the one or two Twitter feeds that interest me after nitter stopped working. It wasn't ideological, I just wasn't able to reliably view and navigate without an account, and when I made an account it just kept showing me like "black HS football player bad sportsmanship".

Look like I've got about two years of James Cage White story arcs to check in on.

KiranRao0•18m ago
Does anyone have sample sites that return this?
phgn•1m ago
Also interested in a sample site where the request successfully resolves :)
lovegrenoble•10m ago
Why not?
Aloisius•7m ago
So presumably Iran has a reverse proxy in front of the entire internet for HTTP?

I really want to know what's on the webpage for the iframe.

Yokolos•5m ago
I'm wondering for what purpose one would be interested in finding out if a site is hosted in Iran or not.
shishcat•4m ago
This behavior only works when the reverse proxy or CDN is configured like this:

Proxy/CDN: HTTPS (443) → Origin server: plain HTTP (80)

If the origin server uses any proper TLS configuration, even a self-signed certificate, this method stops working. It only succeeds when the upstream connection to the origin is unsecured.

If you want to test this on a random site without Cloudflare or reverse proxy in general on HTTP: curl http://www.digiboy.ir/boobs.jpg -v

Writing a Good Claude.md

https://www.humanlayer.dev/blog/writing-a-good-claude-md
147•objcts•4h ago•46 comments

Advent of Code 2025

https://adventofcode.com/2025/about
627•vismit2000•8h ago•205 comments

Windows drive letters are not limited to A-Z

https://www.ryanliptak.com/blog/windows-drive-letters-are-not-limited-to-a-z/
305•LorenDB•8h ago•143 comments

Migrating Dillo from GitHub

https://dillo-browser.org/news/migration-from-github/
229•todsacerdoti•7h ago•136 comments

ETH-Zurich: Digital Design and Computer Architecture; 227-0003-10L, Spring, 2025

https://safari.ethz.ch/ddca/spring2025/doku.php?id=start
96•__rito__•4h ago•13 comments

LLVM-MOS – Clang LLVM fork targeting the 6502

https://llvm-mos.org/wiki/Welcome
79•jdmoreira•5h ago•15 comments

Program-of-Thought Prompting Outperforms Chain-of-Thought by 15% (2022)

https://arxiv.org/abs/2211.12588
44•mkagenius•3h ago•13 comments

ESA Sentinel-1D delivers first high-resolution images

https://www.esa.int/Applications/Observing_the_Earth/Copernicus/Sentinel-1/Sentinel-1D_delivers_f...
49•giuliomagnifico•4h ago•9 comments

"Boobs check" – Technique to verify if sites behind CDN are hosted in Iran

https://twitter.com/hkashfi/status/1995109785679573167
72•defly•1h ago•19 comments

GitHub to Codeberg: my experience

https://eldred.fr/blog/forge-migration/
75•todsacerdoti•5h ago•25 comments

CachyOS: Fast and Customizable Linux Distribution

https://cachyos.org/
232•doener•11h ago•216 comments

Don't push AI down our throats

https://gpt3experiments.substack.com/p/dont-push-ai-down-our-throats
241•nutanc•3h ago•139 comments

A Second Look at Geolocation and Starlink

https://www.potaroo.net/ispcol/2025-11/starlinkgeo2.html
18•speckx•5d ago•5 comments

Stop Hacklore (modern urban legends about digital safety)

https://www.hacklore.org/letter
7•zdw•4d ago•0 comments

Show HN: Boing

https://boing.greg.technology/
678•gregsadetsky•18h ago•131 comments

RetailReady (YC W24) Is Hiring Associate Product Manager

https://www.ycombinator.com/companies/retailready/jobs/KPKDu3D-associate-product-manager
1•sarah74•5h ago

NixOS 25.11 released

https://nixos.org/blog/announcements/2025/nixos-2511/
108•trulyrandom•3h ago•27 comments

There is No Quintic Formula [video]

https://www.youtube.com/watch?v=9HIy5dJE-zQ
26•DamnInteresting•3h ago•14 comments

Show HN: Real-time system that tracks how news spreads across 200k websites

https://yandori.io/news-flow/
203•antiochIst•4d ago•51 comments

Show HN: Fixing Google Nano Banana Pixel Art with Rust

https://github.com/Hugo-Dz/spritefusion-pixel-snapper
90•HugoDz•4d ago•14 comments

People keep flocking to Linux, not just to escape Windows

https://www.zdnet.com/article/why-people-keep-flocking-to-linux-in-2025-and-its-not-just-to-escap...
46•breve•1h ago•7 comments

Langjam Gamejam: Build a programming language then make a game with it

https://langjamgamejam.com/
37•birdculture•6h ago•22 comments

Modern cars are spying on you. Here's what you can do about it

https://apnews.com/article/auto-car-privacy-3674ce59c9b30f2861d29178a31e6ab7
183•MilnerRoute•6h ago•186 comments

Zigbook Is Plagiarizing the Zigtools Playground

https://zigtools.org/blog/zigbook-plagiarizing-playground/
437•todsacerdoti•18h ago•127 comments

Paul Hegarty's updated CS193p SwiftUI course released by Stanford

https://cs193p.stanford.edu/
120•yehiaabdelm•4d ago•30 comments

Finding the grain of sand in a heap of Salt

https://blog.cloudflare.com/finding-the-grain-of-sand-in-a-heap-of-salt/
6•privacyops•3d ago•2 comments

Notes on Shadowing a Hospitalist

https://humaninvariant.substack.com/p/notes-on-shadowing-a-hospitalist
33•surprisetalk•4h ago•13 comments

All it takes is for one to work out

https://alearningaday.blog/2025/11/28/all-it-takes-is-for-one-to-work-out-2/
736•herbertl•1d ago•357 comments

The Easiest Way to Build a Type Checker

https://jimmyhmiller.com/easiest-way-to-build-type-checker
69•surprisetalk•3d ago•21 comments

What's Hiding Inside Haribo's Power Bank and Headphones?

https://www.lumafield.com/first-article/posts/whats-hiding-inside-haribos-power-bank-and-headphones
194•rozenmd•3d ago•69 comments