Comment by 12345ieee
3 days ago
Unix users are THE tool to restrict tool permissions, at any given time there's 20+ services on a Unix machine that run in their user.
3 days ago
Unix users are THE tool to restrict tool permissions, at any given time there's 20+ services on a Unix machine that run in their user.
And how many of those services can check your box and find permission escalation strategies on its own?
Malware has been bundling rootkits for decades, so potentially all of them. Sometimes the attacks succeed, so these are defenses that need continual hardening, but there's no sense in setting up an entirely separate line of defense just because this time the threat has AI in it.
I guess time will tell, I know I'm not giving those things any direct stdin access without a hole suite of safeguards in between