| ▲ | 12345ieee 7 hours ago |
| Unix users are THE tool to restrict tool permissions, at any given time there's 20+ services on a Unix machine that run in their user. |
|
| ▲ | khalic 6 hours ago | parent [-] |
| And how many of those services can check your box and find permission escalation strategies on its own? |
| |
| ▲ | __MatrixMan__ 6 hours ago | parent [-] | | Malware has been bundling rootkits for decades, so potentially all of them. Sometimes the attacks succeed, so these are defenses that need continual hardening, but there's no sense in setting up an entirely separate line of defense just because this time the threat has AI in it. | | |
| ▲ | khalic 6 hours ago | parent [-] | | I guess time will tell, I know I'm not giving those things any direct stdin access without a hole suite of safeguards in between |
|
|