Re: Security
Nicholas Geovanis wrote:
> On Fri, Jan 28, 2022, 6:57 AM Dan Ritter <dsr@randomstring.org> wrote:
>
> > Nicholas Geovanis wrote:
> > > On Wed, Jan 26, 2022, 12:39 PM Andrei POPESCU <andreimpopescu@gmail.com>
> > > wrote:
> > >
> > > > On Ma, 25 ian 22, 16:13:23, Nate Bargmann wrote:
> > > > And please don't bother to reply with "there are no other users on this
> > > > system I should worry about", the bad guys could still find ways to get
> > > > in, e.g. via a compromised browser, regardless if you are behind a
> > > > firewall or not[1].
> > > >
> > >
> > > Servers don't have browsers installed on them, for exactly this reason.
> >
> > Note that browsers can sneak in where you aren't expecting them;
> > "headless chromium" is a part of many automated QA systems and
> > HTML to PDF generators.
> >
>
> Absolutely, and also unnecessary on servers. Especially in presence of
> cloud where we can make a clean custom spin easily.
It turns out that not all software has the same requirements
and affordances that you consider universal.
-dsr-
Reply to:
- References:
- Security
- From: Polyna-Maude Racicot-Summerside <debian@polynamaude.com>
- Re: Security
- From: Nate Bargmann <n0nb@n0nb.us>
- Re: Security
- From: Andrei POPESCU <andreimpopescu@gmail.com>
- Re: Security
- From: Nicholas Geovanis <nickgeovanis@gmail.com>
- Re: Security
- From: Dan Ritter <dsr@randomstring.org>
- Re: Security
- From: Nicholas Geovanis <nickgeovanis@gmail.com>