@[email protected] to [email protected] • 5 months ago16 years of CVE-2008-0166 - Debian OpenSSL Bug16years.secvuln.infoexternal-linkmessage-square7fedilinkarrow-up191arrow-down12cross-posted to: linuxhackernewsnetsec
arrow-up189arrow-down1external-link16 years of CVE-2008-0166 - Debian OpenSSL Bug16years.secvuln.info@[email protected] to [email protected] • 5 months agomessage-square7fedilinkcross-posted to: linuxhackernewsnetsec
minus-square@[email protected]OPlinkfedilink13•5 months agoThats how they supposedly do this haha I suppose they have a very minimal webserver, hardened to the max and for sure not using docker
minus-square@[email protected]linkfedilinkEnglish13•5 months agoOh I know it’s minimal effort to spin one up, especially for a static page. It’s just funny that that’s how this goes now.
minus-square@[email protected]OPlinkfedilink20•5 months agoIts not, web dev is all about running 4 different Operating systems in containers, with huge dependency chains and slow loading javascript crap
minus-square@[email protected]linkfedilinkEnglish7•5 months agoAs a web developer, I’d say I feel insulted by such a wild accusation, but then I’d be lying. 😅
minus-square@[email protected]linkfedilink3•edit-25 months agoPlus downloading all your malicious software through unauth’d channels like npm, pip, cargo, docker hub, or github
minus-squarelemmyvorelinkfedilinkEnglish2•5 months ago…it doesn’t, you put static files on a CDN. Nobody in their right mind serves them from custom-made webservers (anymore). Those are intended exclusively for dynamic code (APIs for business logic, authentication, user actions, search etc.)
Thats how they supposedly do this haha
I suppose they have a very minimal webserver, hardened to the max and for sure not using docker
Oh I know it’s minimal effort to spin one up, especially for a static page. It’s just funny that that’s how this goes now.
Its not, web dev is all about running 4 different Operating systems in containers, with huge dependency chains and slow loading javascript crap
As a web developer, I’d say I feel insulted by such a wild accusation, but then I’d be lying. 😅
Plus downloading all your malicious software through unauth’d channels like npm, pip, cargo, docker hub, or github
…it doesn’t, you put static files on a CDN. Nobody in their right mind serves them from custom-made webservers (anymore). Those are intended exclusively for dynamic code (APIs for business logic, authentication, user actions, search etc.)