Netflix researcher spots TCP SACK flaws in Linux and FreeBSD

Three vulnerabilities in the FreeBSD and Linux kernels could allow attackers to induce a denial-of-service by clogging networking I/O. Continue reading Netflix researcher spots TCP SACK flaws in Linux and FreeBSD

SACK TCP flaws can crash, slow down Linux-based systems

An engineering manager at Netflix has unearthed several TCP networking vulnerabilities in Linux and FreeBSD kernels that could lead to systems crashing or consuming too many resources and (consequently) slowing down. About the vulnerabilities The flaws… Continue reading SACK TCP flaws can crash, slow down Linux-based systems

Thunderclap: Apple Macs at risk from malicious Thunderbolt peripherals

Researchers have revealed how malicious Thunderbolt and PCI Express (PCIe) peripherals could be used to compromise computers running macOS, Windows, Linux and FreeBSD. Continue reading Thunderclap: Apple Macs at risk from malicious Thunderbolt peripherals

New Flaws Re-Enable DMA Attacks On Wide Range of Modern Computers

Security researchers have discovered a new class of security vulnerabilities that impacts all major operating systems, including Microsoft Windows, Apple macOS, Linux, and FreeBSD, allowing attackers to bypass protection mechanisms introduced to defend… Continue reading New Flaws Re-Enable DMA Attacks On Wide Range of Modern Computers

Do systemd-nspawn containers provide the same security guarantees as FreeBSD jails?

I am evaluating the systemd-nspawn containers security and would like to know if the systemd-nspawn containers provide the same security guarantees as FreeBSD jails?

Specially, can an attacker escape from the container or manipulate the h… Continue reading Do systemd-nspawn containers provide the same security guarantees as FreeBSD jails?

Is the traversal permission in a Unix filesystem exploitable by itself, in the absence of any other permissions/ACLs?

Scenario/question:

A unix directory tree has NTFv4 ACLs configured to allow an unprivileged account traversal on all dirs (but no other ACL granting further rights on any file/dir anywhere

In such a case, is it completely s… Continue reading Is the traversal permission in a Unix filesystem exploitable by itself, in the absence of any other permissions/ACLs?

In Samba, what is the security difference between "wide links" and "insecure wide links"?

I think I need to allow wide links of some kind, to handle a set of mountpoints in Samba.

The actual scenario is that I want to make a dataset’s /.zfs/snapshot (and some of its descendant individual snaps and some of their… Continue reading In Samba, what is the security difference between "wide links" and "insecure wide links"?