はてなブックマーク

Everybody will tell you that a chroot jail (that is, making a process think that a directory is instead the root folder, and not letting it access or modify anything outside of that) is ineffective against a process with root privileges1 (UID 0). Let’s see why. The escape basically works like this: We create a temporary folder (I named mine .42, hidden not to draw too much attention) and we chroot

Enter a hostname to test the server for CVE-2016-2107. This test has been discontinued in March 2021. You can use the open-source command line tool or the SSL Labs online test. All good, seems fixed or unaffected! Uh-oh, something went wrong: IS VULNERABLE. You can specify a port like this example.com:4433. 443 by default. To learn more about the vulnerability, read my zero-to-decryption write-up.

Superfish, Komodia, PrivDog vulnerability test (retired) This test has been retired in favor of the badssl.com Dashboard. You can still find Superfish removal instructions here. Test disabled. What's this about? Turns out Lenovo preloaded their laptops with adware that will intercept all your secure connections, and allow criminals to do it, too. After investigating the Lenovo incident we found ou

26 Mar 2014 Why Go is elegant and makes my code elegant This is a enthusiast blog post. I'm not even gonna speak about how concurrency comes easy with Go. Honestly, I'm not good enough to speak about it. I'll just speak about how using Go in my everyday programming makes me happy. Go has elegance, good tools and has had the possibility to start designing from scratch. The following should not be a

The next step in my playing with chroot escapes is crafting some shellcode. Recently my main dev machine is a MacBook running OS X, so it felt reasonable to fiddle with making system calls of that platform. By the way, a system call is a function of the kernel invoked by a userspace program and it can be something like writing to a file descriptor, or even exiting. Usually, these are wrapped by C

If there are problems, head to the FAQ Results are now cached globally for up to 6 hours. Enter a URL or a hostname to test the server for CVE-2014-0160. This test has been discontinued in March 2019. You can use the open-source command line tool or the SSL Labs online test. All good, seems fixed or unaffected! Uh-oh, something went wrong: Check what it means at the FAQ. It might mean that the ser

If there are problems, head to the FAQ Results are now cached globally for up to 6 hours. Enter a URL or a hostname to test the server for CVE-2014-0160. This test has been discontinued in March 2019. You can use the open-source command line tool or the SSL Labs online test. All good, seems fixed or unaffected! Uh-oh, something went wrong: Check what it means at the FAQ. It might mean that the ser

13 Mar 2014 Native scrolling and iTerm2 tl;dr See the bullet points for the supported programs and the last paragraph for installation. Something I always wanted is native touchpad/mousewheel scrolling in all my terminal programs. MouseTerm hacks that into the OS X Terminal, but I am a iTerm2 user. I tried and gave up researching this a while ago, but today I got a notification from a Google Code