HackerTrans
TopNewTrendsCommentsPastAskShowJobs

shellpipe

no profile record

Submissions

Data Access Patterns That Makes Your CPU Angry

blog.weineng.me
5 points·by shellpipe·17 dni temu·0 comments

Reading a cryptominer from its strace

frn.sh
3 points·by shellpipe·w zeszłym miesiącu·2 comments

Flipping two bytes to stop ls from being a program

frn.sh
2 points·by shellpipe·w zeszłym miesiącu·0 comments

Where Is Every Byte?

frn.sh
1 points·by shellpipe·3 miesiące temu·0 comments

Investigating Node.js memory bloat: V8 lazy GC and glibc arena fragmentation

frn.sh
2 points·by shellpipe·4 miesiące temu·0 comments

What happens inside Postgres when IOPS runs out

frn.sh
3 points·by shellpipe·5 miesięcy temu·0 comments

What Is a Program?

frn.sh
1 points·by shellpipe·7 miesięcy temu·0 comments

Understanding copy-on-write: why Redis needs memory overcommit

frn.sh
4 points·by shellpipe·8 miesięcy temu·0 comments

comments

shellpipe
·w zeszłym miesiącu·discuss
Not entirely sure, but my best guess is that the previous DevOps engineer was running a PostgreSQL 14 instance exposed to the internet with the password set to postgres. There's even an old CVE describing a remote code execution path for that kind of setup. Unfortunately, the PostgreSQL logs had been deleted, so I was never able to confirm it.
shellpipe
·8 miesięcy temu·discuss
Haha. Great idea, I might try this one.
shellpipe
·8 miesięcy temu·discuss
this is great. having a few screenshots would be sweet.