Repeat after me: Rust is a machine that turns security incidents into downtime incidents
Uncategorized
10
Posts
4
Posters
10
Views
-
Repeat after me: Rust is a machine that turns security incidents into downtime incidents
-
Repeat after me: Rust is a machine that turns security incidents into downtime incidents
@mcc@mastodon.social the scary thing about this framing is that it rather highlights the fact that security issues don't tend to have (short term) cash flow implications, while downtime incidents do.
-
Repeat after me: Rust is a machine that turns security incidents into downtime incidents
@mcc isn't a DoS vulnerability (which boils down to "downtime") a type of security incident?
-
@mcc isn't a DoS vulnerability (which boils down to "downtime") a type of security incident?
@whitequark *thinks* Making sure I understand the question. You're suggesting someone will find a endpoint tickle that in mediocre C++ code would have resulted in a security incident and in mediocre Rust results in a program halt, and then call this endpoint tickle repeatedly as a DOS?
-
@whitequark *thinks* Making sure I understand the question. You're suggesting someone will find a endpoint tickle that in mediocre C++ code would have resulted in a security incident and in mediocre Rust results in a program halt, and then call this endpoint tickle repeatedly as a DOS?
@mcc @whitequark an example would be an out-of-bounds access that is benign in the actual compiled binary (e.g if due to luck it always returns zero, which is harmless in the context), which is reasonably common. so in that case you're escalating a code issue, that has no security relevance in the actual product, to a DoS which does.
-
@mcc @whitequark an example would be an out-of-bounds access that is benign in the actual compiled binary (e.g if due to luck it always returns zero, which is harmless in the context), which is reasonably common. so in that case you're escalating a code issue, that has no security relevance in the actual product, to a DoS which does.
@dotstdy @whitequark "i.e. due to luck it always returns zero"
I do not believe in this sort of luck. In my experience, this sort of "luck" has a tendency to evaporate on events like ABI changes or compiler upgrades.
-
@dotstdy @whitequark "i.e. due to luck it always returns zero"
I do not believe in this sort of luck. In my experience, this sort of "luck" has a tendency to evaporate on events like ABI changes or compiler upgrades.
@mcc @whitequark right, and I'm not suggesting it's a good security posture. but you are turning potentially benign issues into a denial of service CVE, in that case.
-
@mcc @whitequark right, and I'm not suggesting it's a good security posture. but you are turning potentially benign issues into a denial of service CVE, in that case.
@dotstdy @whitequark I decline to recognize "potentially benign" as a category
-
undefined oblomov@sociale.network shared this topic on
-
@dotstdy @whitequark I decline to recognize "potentially benign" as a category
@mcc @whitequark "not exploitable" is probably a better category anyway. issues which cannot be leveraged into a compromise.
-
@mcc @whitequark "not exploitable" is probably a better category anyway. issues which cannot be leveraged into a compromise.
@mcc @whitequark btw for a fun example of DoS being an "actual" compromise, you can consider matchmaking in video games. If you're losing and you have a way to kill the game server, you can trigger your denial of service to take out the game server as soon as it looks like you're losing. voila: 100% win-rate matchmaking exploit! (plus any kind of fail-open system can be bypassed with a DoS)
Gli ultimi otto messaggi ricevuti dalla Federazione
-
@admiralwonderboat [insert bot comment here]
-
If your going to make a bot account can you at least make it error free ? Errors or missing text just kind of kill the illusion you know ? Even if I really want to believe !
#bots #mastodon
-
This post did not contain any content.
-
This post did not contain any content.
-
FM 3-0 (#USA) e AJP-3 (#NATO) consentono pre-emptive strikes contro minacce imminenti (Caroline test), non preventive. Esempio: "launch under attack" o "pre-emptive degrade" se indicatori multipli (fuelling + RF).
È una "corsa contro il tempo" asimmetrica: #Russia ha vantaggio posizione, NATO ha superiorità intel/sensori. Un falso allarme = potenziale apocalisse. Per questo prevalgono diplomazia/blocco, non strikes casuali. La pace regge sul terrore condiviso.
(Perplexity)
-
This post did not contain any content.
-
Finestra di reazione
Segnali rilevati: satelliti/radar vedono fueling o erezione TEL in 30-60 secondi.
Conferma intel: analisti/IA validano in 30-90 secondi (2-3 indicatori).
Decisione e lancio strike: ordini catena comando + volo armi NATO (es. F-35 da base Polonia o ATACMS): 1-2 minuti max.
Totale: hai 1-3 minuti per distruggere il lanciatore prima che il missile decolli. Oltre, è intercettazione disperata (Patriot ha ~70% vs ipersonici).
Fonte: Perplexity
