Qué interesante esto!

Con un código de Python de 10 líneas podés acceder a una shell de root en la mayoría de las distros GNU/Linux 🤔

Lo acabo de probar en @archlinux (actualizado la semana pasada) y @kalilinux, y ambos son vulnerables.

🔥 Solución rápida: desactivar el módulo del kernel algif:

# echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif-aead.conf

# rmmod algif_aead 2>/dev/null

+info: https://xint.io/blog/copy-fail-linux-distributions

#happyHacking

#gnu #linux #copyfail

A quiet, productive day so far:

- Released 0.4.0 of my ODM `Den` with new features and bug fixes.
- Switched my web framework `Burrow` from Bun to Den and released 0.11.0.
- Moved the documentation for Burrow to readthedocs.org
https://burrow.readthedocs.io/en/stable/

A Sunday, that makes me happy.

#golang #happyhacking

Along with getting a NovaCustom laptop (discussed elsewhere) — in part b/c I didn't like the keyboard — I switched to traveling w/ an external keyboard. I chose the #HappyHacking Studio model which has a “pointer stick” (similar to a #TrackPoint). I like it enough I've replaced my very old #HHKB (3 models since discontinued) w/ Studio on the desk.

I do find my finger occasionally hits the stick when typing words w/ those nearby letters. I'm not sure how big the problem is, so I #AskFedi …(1/2)

#hackers and #tinkerers a new #2600 meeting in #Madrid & all the info about the next 2600 meeting, December 5 in Madrid, is on #usenet newsgroups #alt.2600 #alt.2600.madrid & #alt.2600.hackers also location is on https://2600.madrid and if you hate like myself the bloated web you can find it on #gemini at gemini://2600.madrid also for #worldwide meetings visit https://2600.com/meetings
#happyHacking #2600 #hackingIsNotACrime #hackerculture #usenet #hacking

@[email protected] @2600
@hispagatos