Yeah you need native code execution, and if you have AF_ALG access there is clearly no sandboxing in place. At that point it's game over on Linux, there are too many bugs. Even if you fix all the known ones in the current kernel, by the time the version with those fixes is qualified and released (not to mention, the machine must reboot), new LPEs have been discovered.
Look at the CVE database. Most of those UAFs are LPE. Many of the OOBs and many of the race conditions too. These are fixed in Linus' master but you are running an old kernel.
Then look at the KASAN reports on the syzkaller dashboard. Many of them are LPE. Many of the WARNs and crashes are revealing and underlying bugs that is also an LPE. Most of these never get fixed.
Then try pointing your LLM at the codebase and saying "find an LPE". It will find as many as you want (you will exhaust your tokens long before it stops finding bugs). 99.99% of them will be bogus so you need a way to evaluate them at scale, currently this is the weakest approach but we'll get better at it.
I can't actually point you to a list of confirmed LPEs coz the only way they get confirmed is when someone exploits them, but there aren't enough exploit authors to do this for all of them. If inference gets really cheap and someone builds a really good agent harness we might start to see it get automated at some point.
In an interview with Zelinsky Trump asks "why haven't you had an election? " Zelensky
: "because we are at war" you can see the idea percolating then. People think I'm a nutter for suggesting there just won't be another election but that's where my money is. I'm waiting for his version of the Gestapo, ICE seems to be a proving ground
An important detail here is that Ukraine's constitution says they can't have an election while they're at war. The US constitution does not say that, and the USA has had elections during wars several times.
You're not a nutter. Trump constantly projects what he's going to do and no one takes him seriously because what he says is so beyond the pale. I explicitly remember the exact instance you're talking about because I thought the same thing as you are thinking.
There will be a sham election, like in Russia, but a sizable number of people will be unable to vote. Trump only need to steal the election in a few key districts
People like married women who changed their name, or foreign sounding people, they will be prevented to vote in 2026. ICE will guard polls to physically make people unable to reach the ballots
For machine tools I just use an oil can with a finer than normal tapered tip, this will depress the ball bearing in zerk / grease nipple fittings no problems, this also works with the ball oilers typically found on lathes etc. You can cut a tiny slit in the end too if that helps get oil in https://www.wentztech.com/metalworking/projects/convert-a-ch...
Pretty much. I think it's the whole virtue signaling and intellectual hand wavy dishonesty that really bugs me about these companies. They want to have the cake and eat it too.
Do companies like Apple say macOS is open source (I mean the entire OS, not just Darwin)? No. Some people are fine with it because we know this.
LSP (Language Server Protocol) a way for editors to talk to language tools to provide auto complete, warnings errors etc. this means the language tools can be written once and then any editor that has LSP support can use it https://en.m.wikipedia.org/wiki/Language_Server_Protocol
Same, I'm using it in CI/CD for full E2E tests of web apps in combination with Playwright for app interaction, and it's awesome. Same test flow can nicely simulate user interactions and verify that emails with the correct content go out from the backend, all in seconds within a normal Gitlab CI test job.
May take a look at Mailpit though. It has the advantage of having a native Docker image build, whereas for Mailcatcher I'm using a third-party Alpine-based image.
How would "node architecture" make people vulnerable to this?
You have to have shell access to a victim first right? Or am I missing something?
reply