HackerTrans
トップ新着トレンドコメント過去質問紹介求人

thinkst

no profile record

投稿

[untitled]

1 ポイント·投稿者 thinkst·2 年前·0 コメント

[untitled]

1 ポイント·投稿者 thinkst·2 年前·0 コメント

Unfashionably secure: why we use isolated VMs

blog.thinkst.com
3 ポイント·投稿者 thinkst·2 年前·0 コメント

コメント

thinkst
·2 年前·議論
We've got several product features that have been driven by our offensive security background... thanks for the prod, we'll blog it.
thinkst
·2 年前·議論
Product builders can learn loads from malware in terms of deployment and operational ease. Malware needs to operate without any assistance in unknown environments. Nobody is allowing outbound comms deliberately for malware, so tunnel methods were developed.

Networks have these capabilities, inherently they're part of the specs. But only malware seems to realise that and use it. We love reusing offensive techniques for defence (see our Canarytokens stuff), and DNS comms fits that perfectly. Our customers get an actual 2-minute install, not a 2-minute-and-then-wait-a-week-for-the-firewall-rules install.
thinkst
·2 年前·議論
The updates in universe are definitely best effort.

We were paying for Ubuntu Pro through an AWS subscription on 2k EC2 instances, and could not get Canonical to update a package with a CVSS 7.8 in the 18.04 LTS.

We've moved off Ubuntu Pro as a result. Blogged it at https://blog.thinkst.com/2024/07/unobtrusively-upgrading-ubu...