Posts
490
Following
476
Followers
386
Linux Kernel security developer, working for Microsoft. Also W7TXT. Views are my own.
Topics: #Linux #kernel #security, #amateurradio, #RF, #hamradio, #electronics, #science, #radioastronomy, #physics, #space, #arduino.

📡 https://w7txt.net/
🐧 https://blog.namei.org/
☠️ https://www.facebook.com/w7txt


@vilmibm people take it for granted now that you can just click on things, but it took decades for the idea to take hold & become ubiquitous. Most of it was utterly awful until the web came along.

RE: https://tiny.tilde.website/@vilmibm/115177383467463329
0
0
0
Edited 2 days ago
Interesting paper: "Enter, Exit, Page Fault, Leak: Testing Isolation Boundaries for Microarchitectural Leaks"

https://www.microsoft.com/en-us/research/publication/enter-exit-page-fault-leak-testing-isolation-boundaries-for-microarchitectural-leaks/

"We found 4 new cross-domain leaks, successfully detected all 6 known leaks possible in the configurations that we tested and reproduced 6 known flaws in patches."

e.g.:

"We discovered a microarchitectural effect on AMD3 that allows an attacker VM to selectively infer any bit from the memory of another VM, provided the victim VM has previously accessed (i.e., cached) this bit. By repeatedly exploiting this effect, the attacker VM could read the victim’s memory one bit at a time, and thus learn the contents of an arbitrary memory range used by the victim. "
0
4
3

Linux Security Summit 🐧

📢 🐧 The videos from LSS-EU 🇪🇺 2025 in Amsterdam 🇳🇱 are now up!

📺 Here is the playlist:

https://youtube.com/playlist?list=PLbzoR-pLrL6rSxIlgQx8OYw74Az63TpaB&si=6DEbDaY4GJMtIH1m
0
7
4
@fustini @kicad feel free to point out any issues if you see them.
0
0
1
Learning KiCAD.



@kicad
1
0
3
Edited 12 days ago

4️⃣9️⃣ Here's the 49th post highlighting key new features of the upcoming v258 release of systemd.

One of the key features of systemd from day 1 on is socket activation, i.e. a mechanism where systemd binds sockets on behalf of services, watches them and only activates the services themselves later, possibly only at the moment they are actively used.

This has various benefits, for example reduces ahead of time cost of running a large number of services (which improves boot times).

1
6
1

📣 Reminder: Ticket prices go up in a few days for All Systems Go! 2025, the foundational user-space Linux technologies event in Berlin.
🎟️ Get yours today @ https://ti.to/all-systems-go/all-systems-go-2025
ℹ️ And more info @ https://all-systems-go.io/

0
5
1

Linux Security Summit 🐧

LSS-EU kicks off today in Amsterdam, with conference chair Elena Reshetova presenting opening remarks.

https://lsseu2025.sched.com/list/simple
1
3
2
Answer: Foam photography museum in Amsterdam.
0
0
1
@Gina yes, or you could replace the wires in that connector with longer ones. Looks like 240v? That is potentially deadly, FYI.
0
0
1
Where am I? Wrong answers welcome.
1
0
0
Got addicted to Severance on a recent flight, but I need to subscribe to 🍏 tv to see the full season now. This dystopia is getting very ~meta~ blobcatchefskiss
0
0
3
@MLE_online should drown out the screaming for a while?
0
0
2
@jann @securepaul yep, it was hit by spam bots and I haven’t had time to clean it up.
0
0
2
Edited 29 days ago

AI agents can potentially gain extensive access to user data, and even write or execute arbitrary code.

OpenAI Codex CLI uses sandboxing to reduce the risk of buggy or malicious commands: https://github.com/openai/codex/pull/763

For now, it only blocks arbitrary file changes, but there’s room to strengthen protections further, and the ongoing rewrite in will help: https://github.com/openai/codex/pull/629

Landlock is designed for exactly this kind of use case, providing unprivileged and flexible access control.

0
3
1
@Geojoek no point wasting power if the signal only needs to go in a particular direction
0
0
1
@david_chisnall @bradley @DavyJones also, the LLM you're using for all this might be compromised.
0
0
0
Show older