Unprivileged Linux users with UID> INT_MAX can execute any command.

Sit down, I have news that shocks you now
 
 
In Linux operating systems, there is an overt vulnerability that allows a user with low privileges to execute any systemctl command (and even become root - translator’s comment) if its UID is greater than 2147483647.
 
 
Unprivileged Linux users with UID> INT_MAX can execute any command.
 
proof-of-concept (PoC) to successfully demonstrate a vulnerability that requires a user with a UID of ?00?00?000. 3r3127.  
 
Red Hat recommends that system administrators not allow any negative UID or UID greater than 2147483646 to mitigate the problem before the patch is released.
 
 
[h3] Several methods of operation from the translator ...[/h]
+ 0 -

Analysis of the Linux kernel boot process

+ 0 -

Build a web-based server farm for Kubernetes using LTSP

3r33815. Build a web-based server farm for Kubernetes using LTSP  3r33824. 3r33815. In this article, I would like to show you one cool technology, I successfully use it for Kubernetes. It can be really useful for building large clusters. 3r33818.
 3r33824. 3r33815. From this point on, you no longer have to think about installing the OS and the individual packages on each node. What for? You can do it all automatically through Dockerfile! 3r33818.
 3r33824. 3r33815. The fact that you can buy hundreds of new servers, add them to your work environment and almost instantly get them ready for use is truly amazing! 3r33818.
 3r33824. 3r33815. Intrigued? Now let's ...
+ 0 -

What we read in April: useful articles for Angular developers and a selection of the best with ng-conf

What we read in April: useful articles for Angular developers and a selection of the best with ng-conf
 
This April was, of course, not the most successful month for reading about the good and eternal; all in the soap rushed for the raging RKN and glued battered saucers. However, life outside the zone of its responsibility did not stop. Our frontend developer Maxim Popov, even in the midst of the fighting, was tracking interesting news on Angular and sharing them with colleagues. In addition, he reviewed the reports of past ng-conf and prepared a selection of the most valuable. With his kind permission I share this information with Khabra - will have something to read and, most importantly, to look at the ...
+ 0 -

Eternal photo archive for the house

I do not understand the desire to nostalgic for old photographs. But the girls can not be altered, so I had to think about the vault for everyone, so that they no longer bothered to show off the company of the falcon and seals. In a public cloud to spread all the pictures in a row do not want to.
 
Eternal photo archive for the house
 
Theory
 
The SSD resource of the drive is theoretically unlimited, if not to exceed the number of rewriting cycles per cell.
 
Task
 
Make a system of storing and viewing the home photo archive from any device in the house,
 
and take it away for the next 10 or 20 years. At the same time, you can pour and see ...
+ 0 -