From: Steve Jobs. "Great idea, thank you." (🔥 Score: 171+ in 59 minutes)

Link: https://readhacker.news/s/6uadn
Comments: https://readhacker.news/c/6uadn

Reservoir Sampling (🔥 Score: 151+ in 3 hours)

Link: https://readhacker.news/s/6u9Ld
Comments: https://readhacker.news/c/6u9Ld

Ghost students are creating problems for California colleges (Score: 150+ in 1 day)

Link: https://readhacker.news/s/6u6ia
Comments: https://readhacker.news/c/6u6ia

Show HN: Using eBPF to see through encryption without a proxy (Score: 151+ in 4 hours)

Link: https://readhacker.news/s/6u9GG
Comments: https://readhacker.news/c/6u9GG

Hi HN, I'm Tyler Flint, one of the creators of qtap.
For a while now, my team and I at Qpoint.io have been grappling with the challenge of understanding what's actually happening inside the encrypted traffic leaving our production systems. Modern apps rely heavily on third-party APIs (think payment processors, data providers, etc.), but once TLS kicks in, figuring out exactly what data is being sent, identifying PII exposure, or debugging integration issues becomes incredibly difficult without resorting to complex and often brittle solutions.
Traditional approaches like forward proxies require terminating TLS (MITM), managing certificates, and often introduce performance bottlenecks or single points of failure. Network firewalls usually operate at L3/L4 and lack payload visibility. We felt there had to be a better way.
That's why we built qtap. It's a lightweight agent that uses eBPF to tap into network traffic at the kernel level. The key idea is to hook into common TLS libraries (like OpenSSL) before encryption and after decryption. This gives us deep visibility into the actual request/response payloads of HTTPS/TLS traffic without needing to terminate the connection or manage certs. Because it leverages eBPF, the performance impact is minimal compared to traditional methods.
With qtap, we can now see exactly which external services our apps are talking to, inspect the payloads for debugging or security auditing (e.g., spotting accidental PII leaks), monitor API performance/errors for third-party dependencies, and get a much clearer picture of our egress traffic patterns.
We've found this approach really powerful for improving reliability and security posture. We've packaged qtap as a Linux Binary, Docker container, and Helm chart for deployment.
This is still evolving, but we're excited about the potential of using eBPF for this kind of deep, yet non-intrusive, visibility.
We'd love to get the HN community's feedback:

    Do you face similar challenges monitoring encrypted egress traffic?
    What are your thoughts on using eBPF for this compared to other methods?
    Any suggestions or potential use cases we haven't considered?

Happy to answer any questions!

How three years at McKinsey shaped my second startup (❄️ Score: 150+ in 4 days)

Link: https://readhacker.news/s/6tUtn
Comments: https://readhacker.news/c/6tUtn

Notes on rolling out Cursor and Claude Code (Score: 150+ in 8 hours)

Link: https://readhacker.news/s/6u9D4
Comments: https://readhacker.news/c/6u9D4

Progress toward fusion energy gain as measured against the Lawson criteria (Score: 153+ in 9 hours)

Link: https://readhacker.news/s/6u9sK
Comments: https://readhacker.news/c/6u9sK

When Abandoned Mines Collapse (❄️ Score: 150+ in 2 days)

Link: https://readhacker.news/s/6u3n7
Comments: https://readhacker.news/c/6u3n7

LegoGPT: Generating Physically Stable and Buildable Lego (🔥 Score: 150+ in 3 hours)

Link: https://readhacker.news/s/6ubxM
Comments: https://readhacker.news/c/6ubxM

A flat pricing subscription for Claude Code (Score: 151+ in 10 hours)

Link: https://readhacker.news/s/6uaKt
Comments: https://readhacker.news/c/6uaKt

Starlink User Terminal Teardown (Score: 155+ in 6 hours)

Link: https://readhacker.news/s/6ubpW
Comments: https://readhacker.news/c/6ubpW

A cycle-accurate IBM PC emulator in your web browser (❄️ Score: 150+ in 4 days)

Link: https://readhacker.news/s/6tUUr
Comments: https://readhacker.news/c/6tUUr

Doge software engineer's computer infected by info-stealing malware (🔥 Score: 150+ in 3 hours)

Link: https://readhacker.news/s/6ubKn
Comments: https://readhacker.news/c/6ubKn

WASM 2.0 (Score: 153+ in 5 hours)

Link: https://readhacker.news/s/6ubNr
Comments: https://readhacker.news/c/6ubNr

NSF faces shake-up as officials abolish its 37 divisions (🔥 Score: 154+ in 2 hours)

Link: https://readhacker.news/s/6ucbT
Comments: https://readhacker.news/c/6ucbT

'I paid for the whole GPU, I am going to use the whole GPU' (Score: 150+ in 1 day)

Link: https://readhacker.news/s/6u7hs
Comments: https://readhacker.news/c/6u7hs

Audiobookshelf: Self-hosted audiobook and podcast server (Score: 150+ in 13 hours)

Link: https://readhacker.news/s/6ubki
Comments: https://readhacker.news/c/6ubki

Show HN: Hyvector – A fast and modern SVG editor (Score: 151+ in 5 hours)

Link: https://readhacker.news/s/6uc2C
Comments: https://readhacker.news/c/6uc2C

I have been working on Hyvector for the last five years and finally decided to present the result of my work.
Hyvector is an SVG editor that runs in all modern browsers. It is stable, very fast, and capable of handling complex SVG images.
Big new features like art strokes, vector tracing, colorizing are in the making, but for now the focus is on pushing a polished first release out of the door.
I would love to hear any feedback on what you like, missing features, or any bugs you encounter via our issue tracker: https://github.com/hyvectorapp/hyvector-issues
Note that while Hyvector should work on a phone, it is much more usable on a desktop computer or tablet.

ALICE detects the conversion of lead into gold at the LHC (🔥 Score: 155+ in 2 hours)

Link: https://readhacker.news/s/6ucB8
Comments: https://readhacker.news/c/6ucB8

Sofie: open-source web based system for automating live TV news production (🔥 Score: 152+ in 3 hours)

Link: https://readhacker.news/s/6uckJ
Comments: https://readhacker.news/c/6uckJ