HackerLangs
TopNewTrendsCommentsPastAskShowJobs

cpach

7,988 karmajoined قبل 18 سنة
Sono Rintracciabile.

Residing in Södermanland, Sweden.

Get in touch? E-mail: c (at) tunnel53 (dot) net

Website: https://www.tunnel53.net/

Interesting HN people to follow: ('tptacek 'cperciva 'tlb 'FiloSottile 'Animats 'DannyBee 'mcpherrinm 'phasmantistes 'pbsd 'patio11)

Submissions

IBM looks beyond short-term AI gains, tripling entry-level hiring

cio.com
3 points·by cpach·قبل 4 أشهر·0 comments

Lessons Learned from 20 Years and Why You Should Blog

adamcaudill.com
2 points·by cpach·قبل 6 أشهر·0 comments

Using DNS for responding to ACME challenges

hsm.tunnel53.net
2 points·by cpach·قبل 10 أشهر·0 comments

comments

cpach
·أمس·discuss
Why does it matter?
cpach
·قبل 3 أيام·discuss
Direct link to Hoot: https://spritely.institute/hoot/
cpach
·قبل 15 يومًا·discuss
Brother HL-L2350DW (monochrome). Those things are very reliable.
cpach
·قبل 16 يومًا·discuss
dupe: https://news.ycombinator.com/item?id=48660159
cpach
·قبل 16 يومًا·discuss
See also https://news.ycombinator.com/item?id=48660159 (1 comment so far)
cpach
·قبل 19 يومًا·discuss
Why is this on the front page? :)
cpach
·قبل 22 يومًا·discuss
Feel free to launch your own CA.
cpach
·قبل 24 يومًا·discuss
Interesting!
cpach
·قبل 28 يومًا·discuss
Reading, writing, cooking, child-rearing.
cpach
·الشهر الماضي·discuss
What’s the performance when you do that?
cpach
·الشهر الماضي·discuss
Dupe: https://news.ycombinator.com/item?id=48265498
cpach
·قبل شهرين·discuss
Uhm… cryptography or cryptocurrency?
cpach
·قبل شهرين·discuss
For those who can I would recommend upgrading to Wireguard.
cpach
·قبل شهرين·discuss
If it was for personal use, surely there would be some kind of consumer organization or ombudsman one could contact for advice?

For B2B, I guess the local chamber of commerce might be able to advice.
cpach
·قبل شهرين·discuss
Same here, zero plugins for me.
cpach
·قبل شهرين·discuss
Regarding su…

  su -
might yield better results.
cpach
·قبل شهرين·discuss
Does anyone know how to mitigate this one? Is it sufficient to disable the esp4/esp6/rxrpc modules?
cpach
·قبل شهرين·discuss
Main discussion here: https://news.ycombinator.com/item?id=48058393
cpach
·قبل شهرين·discuss
Welcome to Hacker News! Please write in English here. Thank you in advance from a long-time member :)
cpach
·قبل شهرين·discuss
No, I haven’t.

My concern is to try to understand the mechanisms of the exploit.

Copy Fail is not simply ”hey, kernel, give me root”. I would say it’s more general than that. It’s rather: ”Hey, kernel, when you present file /foo to a process, make the contents of that file appear according to my wishes”. Which can be used (in various ways) to advance the attacker’s position.

That’s why I think it’s interesting to ponder if that power allows the attacker to simply sneak past security policies such as allowPrivilegeEscalation=false.