| ▲ | aykutseker 2 hours ago | |||||||
good example from the article: the chroot+nss CVE. the rule that nss is dynamic and dlopens libraries from inside the chroot isn't anywhere obvious. it's encoded in 25+ years of sysadmins finding it out. clean-room rewrites end up re-learning that, usually as new CVEs. and LLM ports of the same code inherit the problem: the function signature is what they read, but the scars are what they need. | ||||||||
| ▲ | cataflutter 2 hours ago | parent [-] | |||||||
> the function signature is what they read, but the scars are what they need. This feels like a golden quote. Don't know if you intended for it to rhyme, but well done :D | ||||||||
| ||||||||