miniblog.

← Back to all posts
Oct 15, 2019 at 19:12
A security bug in sudo: https://sensorstechforum.com/cve-2019-14287-sudo-bug/ It requires a pretty liberal sudoers file, but it's remarkable that old tools still have security issues!
Just a moment...

Related Posts

Dec 18, 2025 at 18:11
64
I find it odd that people recommend Docker for sandboxing agentic coding tools. Isn't it easier to just create a separate user account on the machine? It's an established security boundary, and viewing output is easy (just make the user's home directory world readable).
Sep 26, 2024 at 03:56
I'm intrigued to see that Google has quantified that new code is generally buggier and less secure than code that has existed in your codebase for longer:
Google Online Security Blog: Eliminating Memory Safety Vulnerabilities at the Source
Aug 31, 2024 at 03:57
I'm a fan of the Software Unscripted podcast, and I particularly enjoyed this recent episode about CrowdStrike and security culture: https://www.youtube.com/watch?v=rzjaZssBEiI The guest (Kelly Shortridge) compares attackers to lawyers trying to find loopholes. This is such a great analogy.