miniblog.

← Back to all posts
Feb 4, 2016 at 22:24
On WebKit Security Updates https://blogs.gnome.org/mcatanzaro/2016/02/01/on-webkit-security-updates/ (browsers have a huge attack surface, release early and often!)
On WebKit Security Updates – Michael Catanzaro's Blog
Linux distributions have a problem with WebKit security. Major desktop browsers push automatic security updates directly to users on a regular basis, so most users don’t have to worry about security updates. But Linux users are dependent on their distributions to release updates. Apple fixed over 100 vulnerabilities in WebKit last year, so getting updates […]

Related Posts

Dec 18, 2025 at 18:11
64
I find it odd that people recommend Docker for sandboxing agentic coding tools. Isn't it easier to just create a separate user account on the machine? It's an established security boundary, and viewing output is easy (just make the user's home directory world readable).
Sep 26, 2024 at 03:56
I'm intrigued to see that Google has quantified that new code is generally buggier and less secure than code that has existed in your codebase for longer:
Google Online Security Blog: Eliminating Memory Safety Vulnerabilities at the Source
Aug 31, 2024 at 03:57
I'm a fan of the Software Unscripted podcast, and I particularly enjoyed this recent episode about CrowdStrike and security culture: https://www.youtube.com/watch?v=rzjaZssBEiI The guest (Kelly Shortridge) compares attackers to lawyers trying to find loopholes. This is such a great analogy.