Collaborate Disseminate
Does letting a website use the fonts on my computer post any security or privacy threat?
Example from https://acrobat.adobe.com/ accessed via Chrome on Windows 11:
acrobat.adobe.com wants to
Use the fonts on your computer so you can cre… Continue reading Does letting a website use the fonts on my computer pose any security or privacy threat?
I have a vague feeling that there is a wide spread security problem which goes unnoticed. I’m trying to find out how to check the level of relevance and awareness out there or how to maybe raise it.
Situation:
When using GitLab CI with the… Continue reading Does it matter (and go widely unnoticed) that GitLab CI+docker-executor produces world-writable files, or do "we" need to raise awareness for that?
Etckeeper is great, but it’s not clear from the docs, how to check out a commit or a branch directly in /etc in a secure way. The issue is when you do a check out, git doesn’t care about metadata and permissions, and you have to restore th… Continue reading etckeeper: check out in a safe way?
I’m trying to understand SUID privilege escalation and I’m trying to recreate some issues.
But both all my scripts and binaries drop the SUID-Bit and get executed with the user with which I’m executing the them.
Therefore my question how c… Continue reading Ubuntu 24.04 and SUID
Would there be any security concerns saving mongod.conf to $HOME/web-server/mongod.conf instead of /etc/mongod.conf ?
If the config was under $HOME/web-server/mongod.conf would that mean someone (or a buffer-overrun executable) could chang… Continue reading putting database mongod.conf under $HOME/web-server/. instead of /etc/
I’m reading Linux All-in-One for Dummies and it recommends verifying that the permissions on /etc/shadow are set to 400 (p. 456). Elsewhere on this site, I see that some distros set this to 600 instead, allowing write in addition to read. … Continue reading Practical difference between 600 and 400 permissions for /etc/shadow
When I use third party app for screen recording 1st time I have to give screen recording permission.
Then I don’t have to give that permission.
2nd 3rd times …. It can record.
I don’t find any settings in android 9.0 to revoke it.
It ask… Continue reading Screen Recording permission in Android 9.0 goes away when force stopping app [migrated]
What are the security vulnerability of these two permissions?
Is it possible that I’m typing something in chat heads of a fb messenger and other third app with "display over other app" permission listening it ?
Or drawing a fake … Continue reading Difference between "picture in picture" and "draw over other apps" in android. And their security vulnerability [migrated]
In all BLP model descriptions I’ve seen, the permissions set is defined to be {Read, Write, Append, Execute}.
None of the three BLP security properties
The Simple Security Property states that a subject at a given security level may not r… Continue reading Bell-Lapadula model "Execute" permission
I am trying to establish a secure folder in macOS Sonoma 14.3 which should be only accessible to applications with explicitly granted permissions. As far as I understand, this can be only done for certain folders (Documents, Downloads…) … Continue reading How to disable Files and Folders permissions for specific apps on macOS Sonoma?