social.kernel.org

James Morris

@jmorris

Posts

490

Following

476

Followers

386

Linux Kernel security developer, working for Microsoft. Also W7TXT. Views are my own. Topics: #Linux #kernel #security, #amateurradio, #RF, #hamradio, #electronics, #science, #radioastronomy, #physics, #space, #arduino.

📡 https://w7txt.net/
🐧 https://blog.namei.org/
☠️ https://www.facebook.com/w7txt

James Morris

jmorris

yesterday

@vilmibm people take it for granted now that you can just click on things, but it took decades for the idea to take hold & become ubiquitous. Most of it was utterly awful until the web came along.

RE: https://tiny.tilde.website/@vilmibm/115177383467463329

James Morris

jmorris

2 days ago

Edited 2 days ago

Interesting paper: "Enter, Exit, Page Fault, Leak: Testing Isolation Boundaries for Microarchitectural Leaks"

https://www.microsoft.com/en-us/research/publication/enter-exit-page-fault-leak-testing-isolation-boundaries-for-microarchitectural-leaks/

"We found 4 new cross-domain leaks, successfully detected all 6 known leaks possible in the configurations that we tested and reproduced 6 known flaws in patches."

e.g.:

"We discovered a microarchitectural effect on AMD3 that allows an attacker VM to selectively infer any bit from the memory of another VM, provided the victim VM has previously accessed (i.e., cached) this bit. By repeatedly exploiting this effect, the attacker VM could read the victim’s memory one bit at a time, and thus learn the contents of an arbitrary memory range used by the victim. "

James Morris

repeated

Linux Security Summit 🐧

LinuxSecSummit

3 days ago

📢 🐧 The videos from LSS-EU 🇪🇺 2025 in Amsterdam 🇳🇱 are now up!

📺 Here is the playlist:

https://youtube.com/playlist?list=PLbzoR-pLrL6rSxIlgQx8OYw74Az63TpaB&si=6DEbDaY4GJMtIH1m

James Morris

jmorris

3 days ago

Reply to @fustini

@fustini @kicad feel free to point out any issues if you see them.

James Morris

jmorris

3 days ago

Learning KiCAD.

@kicad

James Morris

repeated

Lennart Poettering

pid_eins@mastodon.social

12 days ago

Edited 12 days ago

4️⃣9️⃣ Here's the 49th post highlighting key new features of the upcoming v258 release of systemd. #systemd258

One of the key features of systemd from day 1 on is socket activation, i.e. a mechanism where systemd binds sockets on behalf of services, watches them and only activates the services themselves later, possibly only at the moment they are actively used.

This has various benefits, for example reduces ahead of time cost of running a large number of services (which improves boot times).

James Morris

jmorris

15 days ago

Reply to @pdp7@fosstodon.org

@pdp7 coming to LSS-EU?

James Morris

repeated

All Systems Go!

allsystemsgo@fosstodon.org

17 days ago

📣 Reminder: Ticket prices go up in a few days for All Systems Go! 2025, the foundational user-space Linux technologies event in Berlin.
🎟️ Get yours today @ https://ti.to/all-systems-go/all-systems-go-2025
ℹ️ And more info @ https://all-systems-go.io/

James Morris

repeated

Linux Security Summit 🐧

LinuxSecSummit

16 days ago

LSS-EU kicks off today in Amsterdam, with conference chair Elena Reshetova presenting opening remarks.

https://lsseu2025.sched.com/list/simple

James Morris

jmorris

16 days ago

Reply to @jmorris

Answer: Foam photography museum in Amsterdam.

James Morris

jmorris

16 days ago

Reply to @Gina@fosstodon.org

@Gina yes, or you could replace the wires in that connector with longer ones. Looks like 240v? That is potentially deadly, FYI.

James Morris

jmorris

17 days ago

Where am I? Wrong answers welcome.

James Morris

jmorris

23 days ago

Got addicted to Severance on a recent flight, but I need to subscribe to 🍏 tv to see the full season now. This dystopia is getting very ~meta~

James Morris

jmorris

23 days ago

Reply to @MLE_online@social.afront.org

@MLE_online should drown out the screaming for a while?

James Morris

jmorris

27 days ago

Reply to @securepaul@hachyderm.io

@jann @securepaul yep, it was hit by spam bots and I haven’t had time to clean it up.

James Morris

repeated

Mickaël Salaün

l0kod@mastodon.social

29 days ago

Edited 29 days ago

AI agents can potentially gain extensive access to user data, and even write or execute arbitrary code.

OpenAI Codex CLI uses #Landlock sandboxing to reduce the risk of buggy or malicious commands: https://github.com/openai/codex/pull/763

For now, it only blocks arbitrary file changes, but there’s room to strengthen protections further, and the ongoing rewrite in #Rust will help: https://github.com/openai/codex/pull/629

Landlock is designed for exactly this kind of use case, providing unprivileged and flexible access control.

James Morris

jmorris

1 month ago

Reply to

@Geojoek no point wasting power if the signal only needs to go in a particular direction

James Morris

jmorris

1 month ago

Reply to

@HopelessDemigod @brhfl is that legal?

James Morris

jmorris

1 month ago

Reply to @brauner@mastodon.social

@brauner @jann How so?

James Morris

jmorris

1 month ago

Reply to @david_chisnall@infosec.exchange

@david_chisnall @bradley @DavyJones also, the LLM you're using for all this might be compromised.

Show older

About social.kernel.org

Terms of service

Please do not use this service in violation of the Linux Kernel Code of Conduct. Doing so will result in your account suspension with the referral of the matter to the CoC committee.
"Repeating"/"boosting" someone else's status on this platform will be treated as endorsement and will fall under rule #1.
You are encouraged to use this platform to promote your work on the Linux Kernel, but there is no restriction on permitted topics (with the exception of anything covered by #1 above).
There is no requirement to post in English, but it should be considered the primary language of communication on this platform.

Privacy notice

The admins of this service have access to all posted statuses. They aren't looking, but if it's something they shouldn't know about, then you should not post it on this platform.

Please see the Linux Foundation Privacy Policy, which applies to this platform as well.

Getting your own account

If you would like an account on this instance, please check that the following applies to you:

You are listed in MAINTAINERS or CREDITS
OR: You have a kernel.org account or email address
OR: You have a long and established history of involvement with the Linux Kernel

If the above is true and you agree with the Terms of Service and Privacy Notice listed above, please use these instructions to request an account:

How to request an account on social.kernel.org