Search results

  1. _martin

    jails Is my plan for moving cloud jails to local server sensible?

    One thing that cloud (or whatever remote hosting) has to offer is (D)DOS attack protections. One can expect less fuzz on those services as you mentioned it's for your own use. But still some script kiddies may catch it and play around. Most likely your ISP doesn't provide such services and you...
  2. _martin

    Changing the runtime gid of the rtld linker

    I meant dump from userspace. Perhaps I should have included this in your quote: On x86 user that can execute binary can dump it and read it. At least by default. You could make it harder ( security.bsd.unprivileged_proc_debug) but with dynamic ELF you could still inject with LD_PRELOAD. Static...
  3. _martin

    Changing the runtime gid of the rtld linker

    At least on x86 architecture execute implies read. You can always dump pages marked as executable only and hence read them.
  4. _martin

    What do you find the most great scientific accomplishment ?

    While it may not qualify as an absolute scientific accomplishment JWST is definitely shaking up theories about cosmos. I do think it does matter enough to consider it as huge accomplishment. If only all the money spent on useless wars went to such experiments.
  5. _martin

    It's all about jokes, funny pics...

    Well this is before system boots. It was classic 'grub related' issue. scottro yeah, it was done in that exact spirit. It shouldn't be possible to step outside of the LAB network at all; I had my little fun. ;)
  6. _martin

    It's all about jokes, funny pics...

    It supposed to be an isolated env so you don't have access to anything outside of lab. Official fix was to fix it so it boots back to rhel (broken setup). But I improved it ;) This is truly just a trolling though (while still an interesting approach to deploy) it's a bug in a LAB (I reported...
  7. _martin

    It's all about jokes, funny pics...

    Not sure if you're familiar with the RedHat trainings. Actually, they are not that bad. I do like the fact exams are not some stupid MCMA or MCSA questions without having access to terminal but rather you need to actually deploy something. And on higher level exams it can get interesting. This...
  8. _martin

    An admin needs to delete my account

    I agree, too much drama. I didn't want to poke my nose too much but I noticed the mistake I mentioned above. His examples after "This is probably what you want (does the file exist and is it executable)" are ok. But if you have a look at this: It seems like gpatrick said that. But he didn't...
  9. _martin

    An admin needs to delete my account

    :) I keep seeing this thread "How to tell if a program exists and is executable" in the latest posts as it's quite active topic. There's plenty of answers there already but I was curious to see why is it still so active. The feature of quoting on this forum didn't help gpatrick's case. The...
  10. _martin

    An admin needs to delete my account

    Right, that would, as Crivens mentioned above, create also inconsistencies on forums. It's just account and private data around it. So threads are not linked to name then. While way back machine can help there I think nobody cares that much (or at least almost nobody ;) ).
  11. _martin

    An admin needs to delete my account

    By forum's Privacy policy he has right to have his account removed. This also follows GDPR (which is good). I just don't understand this public show off. OP should follow terms and rules, contact admins and ask for removal.
  12. _martin

    gpart device permissions security hole (/dev/geom.ctl)

    If I speculate a bit, and this is far fetched I know. If there's a drive on a server where you regularly create a partition/FS and then destroy it (e.g. you create partition, have a scratch FS, then you remove it ) you could create a payload (blob of data (created and prepped as a root on other...
  13. _martin

    gpart device permissions security hole (/dev/geom.ctl)

    It would not be able to modify partitions that are actively mounted either. It seems like unwanted behavior altogether. ralphbsz you can easily test: $ id uid=1002(pwn) gid=5(operator) groups=5(operator) $ $ ls -al /dev/nvd1* crw-r----- 1 root operator 0x5d Feb 19 00:23 /dev/nvd1 crw-r-----...
  14. _martin

    Solved linuxulator switching to non root user in the chroot to run davinci resolve

    I didn't use linuxator on FreeBSD for more than 10 years. Just my 2c: There's absolutely no reason for bash to have permissions 700. Not in the emulated word, not in the real Linux world. What is your umask settings when you use debootstrap? Nevertheless, why don't you just change the...
  15. _martin

    general/other Instant Workstation - Use FreeBSD in web browser

    As I said in my previous post, I do like this idea. While vagrant might be able to provide similar things the UI is what makes it better. And I absolutely love the upload/download UI for it. It has some nice features, it's intuitive and simple. Now I was pumped by pwning RedHat's RHRE image...
  16. _martin

    Solved MC Midnight Commander slow start

    csh is in the base, you don't need to install it. But I agree, that's not a solution to a problem but rather an observation. It's an interesting issue. I tried to have a quick look into it on FreeBSD 14 (4.8.30) and Debian 12.4 (4.8.29). Version mismatch doesn't matter, we observed this issue...
  17. _martin

    general/other Instant Workstation - Use FreeBSD in web browser

    He's forwarding VNC ports of given VMs (on host) to outside completely; VMs run on isolated network.
  18. _martin

    general/other Instant Workstation - Use FreeBSD in web browser

    Most likely due to default UseDNS yes in /etc/ssh/sshd_config. Change defaults to no and try then (note sshd has to be restarted, or image redeployed in this case).
  19. _martin

    general/other Instant Workstation - Use FreeBSD in web browser

    Absolutely love this idea, awesome project. Definitely worth bookmarking. 🍻
  20. _martin

    vbox Virtual Box resolution is 1024x768, how to get it MUCH higher

    Extension pack and guest additions are not the same thing. Here you want additions; side note: FreeBSD host has very limited extension pack support. Package name explanation: virtualbox-ose: hypervisor you install on FreeBSD host virtualbox-ose-additions: additions for FreeBSD guest should...
Back
Top