Why are you rolling out your own crypto? Timing attacks, unvalidated inputs and no bounds checking.

> I am not a cryptographer. ... However I am fairly confident that this is at least safer than pass. Feel free to prove me wrong.

Translation: I have no experience in safe cooking. Please use my garlic oil, and my chicken salad. Feel free to prove me wrong - from the ER ward.

It's not like I'm writing the algorithms from scratch, OpenSSL is doing all of the heavy lifting. I'm aiming for actual simplicity, and so my vault format is harder to get wrong than parsing PGP packets (sure, that's handled by GPG in the case of pass, but it is still needless complexity for a password manager).

As for the "safer than pass" thing, pass does not encrypt entry names, so yes encrypting my way is safer than not encrypting at all in that aspect at least. Plus the whole KDF + symmetric only thing, though if you don't trust the way I handle it I have nothing to add here.

And I wouldn't translate "use it at your own risk" to "please use it". More like "you may use it if you choose so". You are free to back me up or tear it apart, or do nothing and go about your day. The software is not production-ready, though any help to change that is welcome.

Thank you for your attention.

What is the name of the genre of name-dropping in two or three passages and leaving the reader guessing why oh why he read this blissful snippet of wisdom?

At the very least, have the audacity to talk about congestion management in more than two words.

Upvoting for visibility. Yet, why am I not surprised? In the immortal words of Claude Rains (modified): them are the usual suspects.

A literally deadly book with arsenic-laced pages. See also: https://en.wikipedia.org/wiki/Poison_Book_Project

Reddit (and quite possibly, a few other fora) has banned online communities that unite enthusiasts of 3D printing weapon parts.

TL;DR Stack Overflow poisons its data dump. Grifters gonna grift, it seems.

Προσδοκῶ ἀνάστασιν νεκρῶν. Καὶ ζωὴν τοῦ μέλλοντος αἰῶνος. Ἀμήν

'nuff said.

When things like these get posted to HN, there is a plot twist... Always a plot twist.

How to optimize applications on NVIDIA GPUs

Not a fan or foe of protectionism per se yet getting books printed literally across the ocean and then shipped back on fossil fuel-guzzling container ships isn't my definition of an environmentally sound activity.

If you drive to a bookstore a mile away to pick up the book, the carbon emissions from that final mile are higher than from shipping the book across the ocean. Large ships are very energy efficient and their payload fractions are high. Which is why it makes economic sense to ship even low-value bulk goods such as oil over long distances.

It's not ideal, but what's the alternative if nowhere else has a decent setup for producing boardgame components?

I don't know how boardgaming compares to other past-times in terms of CO2, but my hunch is that it would be a lot better than some other hobbies. Once the boardgame is purchased, it can be replayed many times without further CO2 emissions (ignoring snacks/drinks that may be consumed whilst playing).