Login

Recent searches

No recent searches

Search options

Only available when logged in.
mastodon.ar.al is one of the many independent Mastodon servers you can use to participate in the fediverse.
This is my personal fediverse server.

Administered by:

Server stats:

1
active users

mastodon.ar.al: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.8

Public
Aral Balkan

Linux really needs to remove the “privileged ports” security theater bullshit.

We’re no longer living in the mainframe era. The security properties of the Internet are different to mainframes. This is actually an anti-feature that either complicates life or actually compromises security (when folks run servers as root and forget to drop privileges , etc.).

If anyone has any sway within the kernel team, etc., please do your thing.

source.small-tech.org/site.js/

GitLabDisable privileged ports security theatre on Linux instead of using setcap (#169) · Issues · Site.js / app Summary Currently, we’re using setcap to grant the CAP_NET_BIND_SERVICE privilege to allow Node.js (during development and testing) and the Site.js binary...
#linux#security#theatre
Public
paillp

@aral This is just about cap config

`sudo setcap 'cap_net_bind_service=+ep' /usr/bin/nc`

Aral Balkan

@paillp Please see the linked page (and the articles linked to that) :)

Aug 19, 2022, 10:09 AM·Public·Web
0boosts·1favorite
ExploreLive feeds
About