所有文章
Linux Shell 程式設計與管理實務讀者釋疑
Linux Shell 程式設計與管理實務 p159 範例6-5-1:
#! /bin/bash
#
# 範例6-5-1
#
# 用途: 找出 /etc 目錄中最新的檔案,符號連結檔不計入。
#
unset -v newfile
for f in /etc/*; do
[ -f …OpenSSH 可移植版-遠端代碼競行漏洞
sshd(8) in Portable OpenSSH versions 8.5p1 to 9.7p1 (inclusive). Race condition resulting in potential remote code execution. A race condition in sshd(8) could allow remote code execution as root on non-OpenBSD systems. This attack could be prevented by disabling the login grace timeout (LoginGraceTime …
xz-utils 植入後門 (CVE-2024-3094)
xz-utils: backdoor in upstream xz/liblzma leading to ssh server compromise
Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing …
白宮敦促開發人員放棄 C 和 C++
拜登政府呼籲開發人員採用記憶體安全的程式語言,並遠離那些導致緩衝區溢位和其他記憶體存取漏洞的語言。
純文字簡報工具 sent
C++ for Python programmers
OpenBSD 工作站安全強化技巧
給 Geany IDE 加一個 clang 外掛
外掛 .so 能上了,再進下一步 ...
OpenSSH 9.6 (2023/12/18)
OpenSSH 9.6 釋出,修正 SSH 傳輸協定的缺陷,避免 Terrapin 攻擊(MITM 中間人水龜攻擊):
當客戶端和伺服器都支援時,OpenSSH 9.6 新的「嚴格 KEX」協定 …