BLUE

tntr

@eyenx.ch

opensource / devops / ultrarunning / cats blog: eyenx.ch mstdn: eyenx@mastodon.social

95 followers119 following77 posts

Overview Posts Replies

Teyenx.chSep 12, 2024 9:28am

I want to be more active here. How is everyone? It's Either this or mastodon!

Teyenx.chJul 22, 2024 6:07am

wearewaylandnow.com

Teyenx.chApr 3, 2024 5:45am

March stats #running

Teyenx.chApr 2, 2024 6:50pm

Check your systems for #xz #cve20243094 github.com/robertdebock...

Teyenx.chApr 2, 2024 6:27pm

Downhill #running #trailrunning mastodon.social/@eyenx/11220...

Reposted by tntr

IClookitup.babyMar 29, 2024 7:30pm

Fucking wild mastodon.social/@AndresFreun...

Reposted by tntr

FVfilippo.abyssdomain.expertMar 29, 2024 7:33pm

Yeah ok this was 100% found by sheer luck. mastodon.social/@AndresFreun...bsky.app/profile/look...

Reposted by tntr

FVfilippo.abyssdomain.expertMar 30, 2024 5:13pm

I'm watching some folks reverse engineer the xz backdoor, sharing some *preliminary* analysis with permission. The hooked RSA_public_decrypt verifies a signature on the server's host key by a fixed Ed448 key, and then passes a payload to system(). It's RCE, not auth bypass, and gated/unreplayable.

FVfilippo.abyssdomain.expertMar 29, 2024 7:29pm

This might be the best executed supply chain attack we've seen described in the open, and it's a nightmare scenario: malicious, competent, authorized upstream in a widely used library. Looks like this got caught by chance. Wonder how long it would have taken otherwise.

Teyenx.chMar 30, 2024 10:23am

Hmmm

Reposted by tntr

AHamyhoy.bsky.socialMar 28, 2024 5:35pm

y'know, i used IRC for 20+ years and it never made me wait 5 minutes to "download an update."

f'in discord "Downloading update 1 of 1" interstitial

tntr

@eyenx.ch

opensource / devops / ultrarunning / cats blog: eyenx.ch mstdn: eyenx@mastodon.social

95 followers119 following77 posts