AkshitGarg's comments

AkshitGarg | 4 years ago | on: Twitter.com's HTML, which is produced by React Native for Web, explained

Flutter web has issues with accessibility. They do support screen readers once you enable accessibility by pressing a button, but its rather bad right now. Also scrolling is emulated and doesn't feel great.

AkshitGarg | 4 years ago | on: Competitive programming is useless

So much of this. In my CS class, I could hardly find anyone who actually had some curiosity to learn. Everyone does their homework by sharing answers on the class chat. And in team projects, either there is one person who does all the work, or they end up copying from google and stackoverflow.

AkshitGarg | 4 years ago | on: Ash HN: Go or Rust for JavaScript developer in the next 20 years?

Not to mention a lot of critical components of modern infrastructure like docker, podman and kubernetes are built using go

AkshitGarg | 4 years ago | on: WinFsp – Windows File System Proxy

It also has a FUSE compat layer which maybe useful when porting existing *nix software

AkshitGarg | 4 years ago | on: Facebook hacker beat my 2FA, bricked my Oculus, and hit the company credit card

> impersonate you for the next 30 seconds.

AFAIK some websites allow you to use the previous TOTP code for convenience for some more seconds. That makes the total time to impersonate you to be 30 (or whatever was configured while issuing the TOTP secret) plus the grace period websites allow.

Edit: formatting

AkshitGarg | 4 years ago | on: Facebook hacker beat my 2FA, bricked my Oculus, and hit the company credit card

It certainly recognizes the domain, but thats more of a convenience feature than a security feature. Nothing is stopping you from putting your example.com code into legit-example.com manually. Sure the extension won't do it automatically, but if the user is convinced to put the password into the fake website, user could also put in the TOTP code

AkshitGarg | 4 years ago | on: Show HN: Simple Image encrypt/decrypt using Python

Or maybe argon2 as it is "memory hard"

AkshitGarg | 4 years ago | on: Launch HN: SigmaOS (YC S21) – A MacOS web browser designed for faster work

Tab groups also exist in chrome, brave and edge (was behind a flag last time I checked), and presumably other chromium-based browsers too

AkshitGarg | 4 years ago | on: MeiliSearch: A Minimalist Full-Text Search Engine

Not sure, but I think they are taking about the recent licensing changes of the elasticsearch server [0] and restricting elasticsearch clients to only be compatible with elasticsearch, not any forks [1]

[0]: https://www.elastic.co/pricing/faq/licensing [1]: https://news.ycombinator.com/item?id=28110610

AkshitGarg | 4 years ago | on: Ask HN: Is Vagrant Dead?

I just checked their GitHub [0], and they seem to have a release on 27th July, 2021. Also it looks like they are re-writing vagrant 3.0 using go [1]

[0]: https://github.com/hashicorp/vagrant

[1]: https://www.hashicorp.com/blog/toward-vagrant-3-0

AkshitGarg | 4 years ago | on: Git password authentication is shutting down

You can still use a PAT (personal access token) to authenticate via HTTPS. Instead of sending username and password, you send username and the PAT token for authentication

AkshitGarg | 4 years ago | on: Why WebAssembly is innovative even outside the browser

WebAssembly in the browser currently can't manipulate the DOM directly. Neither can it make HTTP requests. You need to use a JS bridge to do that. That has some overhead. So I don't think webassembly will replace JavaScript anytime soon. It might be reserved for high-performance compute, or maybe canvas based rendering for the time being.

AkshitGarg | 4 years ago | on: Ask HN: How did web development become so bizarrely complex?

> we now have a generation of programmers who think a GET request only returns JSON, and were never taught it can also return HTML

Can't relate more to this. I sometimes find it difficult to accept that some of my peers in the college thought that fetch is the only way to submit a form. Those were the same people who fetched json to render a static blog post

AkshitGarg | 4 years ago | on: Launch HN: Atmana (YC S21) – An app to help cut down on compulsive porn usage

Along with this, you could maybe also enforce google safe search or similar for search engines? As far as I know, Google allows such a thing

AkshitGarg | 4 years ago | on: Old Vidme embeds turn into porn after domain purchase

Genuinely curious, how does a company manage their domains after they shut down their services to prevent this kind of stuff

AkshitGarg | 4 years ago | on: Elixir protocols vs. Clojure multimethods

There is also lfe [1] which is a lisp for the BEAM VM

[1] https://lfe.io/

AkshitGarg | 4 years ago | on: Google is capping Meet’s group video calls to an hour for free accounts

> I don’t understand what is difficult with WebRTC videos.

It is difficult to scale a pure p2p model to multiple participants. Each participant would need to create multiple WebRTC streams, one for each participant. So if some call has 10 participants, each one of them would need to broadcast 9 streams and receive 9 streams with the assumption that each one of them have their microphone and cameras turned on. This would consume a lot of CPU and bandwidth. There are alternate models where you send your stream to a central server, and that server distributes the stream to other participants. This reduces the CPU and bandwidth required per participant, but requires a central server. This looks like the model google follows. So I don't think keeping such a service unauthenticated would be a good idea.

AkshitGarg | 4 years ago | on: Microsoft is bringing Android apps to Windows 11

Anbox (https://anbox.io/) does seem to do this. I couldn't try this because I couldn't get it to run on my machine a few years back

AkshitGarg | 4 years ago | on: Brave, the false sensation of privacy

That still doesn't hide the IP you are connecting to unless you are on a VPN. They still know that if you are connecting to 209.216.230.240, it _could_ be hacker news. With the widespread use of CDNs, and hosting of multiple services on a single IP, this won't be 100% accurate, but the ISP can still connect the dots I guess

AkshitGarg | 4 years ago | on: Fastly Outage

Well they thought that using a CDN over a CDN would be a good idea