GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    feld (feld@bikeshed.party)'s status on Thursday, 20-Jul-2023 02:58:59 JST feld feld
    in reply to
    • Lobsters
    > if an attacker had access to the server where Alice's ssh-agent is
    forwarded to, and had an unprivileged access to Alice's workstation,

    if at attacker has any access at all you should assume they have a root exploit laying around and will be using it
    In conversation Thursday, 20-Jul-2023 02:58:59 JST from gnusocial.jp permalink
    • Embed this notice
      Lobsters (lobsters@botsin.space)'s status on Thursday, 20-Jul-2023 02:59:00 JST Lobsters Lobsters

      CVE-2023-38408: Remote Code Execution in OpenSSH's forwarded ssh-agent https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt | https://lobste.rs/s/n3jlhj #security

      In conversation Thursday, 20-Jul-2023 02:59:00 JST permalink

      Attachments


      1. Invalid filename.
      2. Domain not in remote thumbnail source whitelist: lobste.rs
        CVE-2023-38408: Remote Code Execution in OpenSSH's forwarded ssh-agent
        0 comments

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.