One of my devs didn't understand how his new code was subject to a code injection attack. So another one wrote a harmless PoC to demonstrate it. First dev misunderstood and thought it couldn't lead to anything dangerous. So second dev used
Then he wanted to see if it would work in staging… and now he's learning how to rebuild our staging env (the relevant part of which is still on bare metal…)
dd if=/dev/random of=/dev/sda
as an example, intending the first dev to try it out in a local Docker image, which he didThen he wanted to see if it would work in staging… and now he's learning how to rebuild our staging env (the relevant part of which is still on bare metal…)
unlofl [Promoted Toot]
•Lord Kusuriya :tower:
•silverwizard
calcifer :nes_fire:
•Vulns don't respect privsep 🤣
silverwizard likes this.
Extruded Plastic Dingus
•