Wednesday, July 03


Daily News Stuff 3 July 2024

Centrifugal Bumblefuck Edition

Top Story

  • Everything new is old again: A critical vulnerability in OpenSSH that was fixed all the way back in 2006 is back again.  (ZDNet)

    Oops.  Also, fuck.

    Dubbed regreSSHion - it has a cute name, so you know it's serious the bug lets you log into a server by not logging into it.

    That is, you start the login process repeatedly - a hundred times in parallel, if you can - and never complete it, and attach a sneaky payload that has a tiny chance of blowing up on the target server when your login times out.

    On older 32-bit systems it takes a few hours on average for this to work.

    On 64-bit systems it's more complicated to exploit and would take a week or more of constant effort; since the bug has only just been reported nobody has demonstrated a successful attack against a 64-bit system yet, so it may take even longer.

    Reviewing all the servers at work turned up one vulnerable system; every other server was properly locked down.  I don't know who set it up, but I curse their name.  Whatever it is.

Tech News

Disclaimer: We choose to nuke the Moon and do the other things, not because it is easy, but because fuck you, Gandhi.

Posted by: Pixy Misa at 06:32 PM | Comments (5) | Add Comment | Trackbacks (Suck)
Post contains 471 words, total size 4 kb.

1 That car battery might be enough in a small place like England, or even people who mostly stay in or near their own city in bigger countries.

Posted by: Rick C at Thursday, July 04 2024 02:10 AM (BMUHC)

2 That's what I'm thinking.  If it's half the size/weight/range and maybe half the price of a typical EV battery but has a four-minute charge time, that's a tradeoff that many people might accept.
For people who travel longer distances it's basically useless, but we're not all the same.

Posted by: Pixy Misa at Thursday, July 04 2024 04:48 PM (PiXy!)

3 It's a great way to keep people on the reservation.

Posted by: Mauser at Thursday, July 04 2024 05:20 PM (nk1Z+)

4 That...  Too.

Posted by: Pixy Misa at Thursday, July 04 2024 07:59 PM (PiXy!)

5 Gandhi, the Civilization lord of non-violent nukes.

Posted by: Kristophr at Saturday, July 06 2024 02:41 AM (iYdVP)

Hide Comments | Add Comment

Apple pies are delicious. But never mind apple pies. What colour is a green orange?

52kb generated in CPU 0.0131, elapsed 0.1245 seconds.
58 queries taking 0.117 seconds, 347 records returned.
Powered by Minx 1.1.6c-pink.