HackerLangs
TopNewTrendsCommentsPastAskShowJobs

cpach

7,988 karmajoined há 18 anos
Sono Rintracciabile.

Residing in Södermanland, Sweden.

Get in touch? E-mail: c (at) tunnel53 (dot) net

Website: https://www.tunnel53.net/

Interesting HN people to follow: ('tptacek 'cperciva 'tlb 'FiloSottile 'Animats 'DannyBee 'mcpherrinm 'phasmantistes 'pbsd 'patio11)

Submissions

IBM looks beyond short-term AI gains, tripling entry-level hiring

cio.com
3 points·by cpach·há 4 meses·0 comments

Lessons Learned from 20 Years and Why You Should Blog

adamcaudill.com
2 points·by cpach·há 6 meses·0 comments

Using DNS for responding to ACME challenges

hsm.tunnel53.net
2 points·by cpach·há 10 meses·0 comments

comments

cpach
·ontem·discuss
Why does it matter?
cpach
·há 3 dias·discuss
Direct link to Hoot: https://spritely.institute/hoot/
cpach
·há 15 dias·discuss
Brother HL-L2350DW (monochrome). Those things are very reliable.
cpach
·há 16 dias·discuss
dupe: https://news.ycombinator.com/item?id=48660159
cpach
·há 16 dias·discuss
See also https://news.ycombinator.com/item?id=48660159 (1 comment so far)
cpach
·há 18 dias·discuss
Why is this on the front page? :)
cpach
·há 22 dias·discuss
Feel free to launch your own CA.
cpach
·há 24 dias·discuss
Interesting!
cpach
·há 28 dias·discuss
Reading, writing, cooking, child-rearing.
cpach
·mês passado·discuss
What’s the performance when you do that?
cpach
·mês passado·discuss
Dupe: https://news.ycombinator.com/item?id=48265498
cpach
·há 2 meses·discuss
Uhm… cryptography or cryptocurrency?
cpach
·há 2 meses·discuss
For those who can I would recommend upgrading to Wireguard.
cpach
·há 2 meses·discuss
If it was for personal use, surely there would be some kind of consumer organization or ombudsman one could contact for advice?

For B2B, I guess the local chamber of commerce might be able to advice.
cpach
·há 2 meses·discuss
Same here, zero plugins for me.
cpach
·há 2 meses·discuss
Regarding su…

  su -
might yield better results.
cpach
·há 2 meses·discuss
Does anyone know how to mitigate this one? Is it sufficient to disable the esp4/esp6/rxrpc modules?
cpach
·há 2 meses·discuss
Main discussion here: https://news.ycombinator.com/item?id=48058393
cpach
·há 2 meses·discuss
Welcome to Hacker News! Please write in English here. Thank you in advance from a long-time member :)
cpach
·há 2 meses·discuss
No, I haven’t.

My concern is to try to understand the mechanisms of the exploit.

Copy Fail is not simply ”hey, kernel, give me root”. I would say it’s more general than that. It’s rather: ”Hey, kernel, when you present file /foo to a process, make the contents of that file appear according to my wishes”. Which can be used (in various ways) to advance the attacker’s position.

That’s why I think it’s interesting to ponder if that power allows the attacker to simply sneak past security policies such as allowPrivilegeEscalation=false.