blog.solidsnail.com npm search RCE? - Escape Sequence Injection
How many programmers does it take to filter out 36 characters? You may think this is an opening to a joke, but it’s not.
Posts
7
Comments
9
Joined
2 yr. ago
Point it out explicitly in your resume. Don't expect them to figure out your github activity on their own.
It's definitely better to have open source experience than no experience.
run gF programmatically?
Anyone aware of a way to run gF programmatically (i.e. lua) but with a different value instead of what's under the curser?
I believe he was comparing it to a similar broadband grant in a comidic fashion
blog.solidsnail.com It’s not a Feature, It’s a Vulnerability
It takes a special kind of person to name a company after their own body part. Fortunately the Microsoft Security Response Center doesn’t seem to have inherited that kind of mentality, because when I have reported not a bug but a feature as a vulnerability - they accepted it.
cross-posted from: https://infosec.pub/post/5707149
I talk about a report I've made to MSRC in the beginning of the year regarding vscode.
It's a bit different. There's no in depth technical stuff, because I basically just reported the feature, not a bug.
It doesn't necessarily mean that. It could also be that they attempt to block the rise of new platforms, and by doing so limiting the amount of platforms that they have to compromise.
For Linux there's gnome keyring.
I think technically what they sell is services related to RHEL and not it itself (correct me if I'm wrong).
\
To me at least, a big problem with it is the hypocrisy. RHEL started itself by repackaging another piece of software. Why is it not OK for others to do the same to them? Especially when the gpl license allows that, and requires them to allow that!
The Linux license allows anyone to distribute it for profit (under certain conditions). If I wanted to sell CDs with the Linux kernel I could. Wouldn't be a good business, but I could.
Same
Where's the docstring?
Wdym? Are devs not functional?
Support for modern standby on Ubuntu?
cross-posted from: https://programming.dev/post/276519
Is anyone aware of the state of modern standby (S0ix/S2idle) in ubuntu?
From what I can gather, there is support for it in the kernel, but I couldn't find any specifics regarding ubuntu (there is a post on reddit but the subreddit is set to private...).
How is is this cyber security related?
And it's not P2P...
Jami is p2p for example. Direct communication between peers.
domain registrar recommendation?
Any recommendations for a trust worthy and reliable domain registrar?
arstechnica.com Red Hat’s new source code policy and the intense pushback, explained
A (reasonably) condensed version of two weeks' worth of heated GPL argument.
