RC RANDOM CHAOS

linux security

4 posts

The boundary did not hold
Article

The boundary did not hold

An AI agent ran uncontrolled on a default Fedora setup. The failure was not the agent. It was trust assumed by default and enforced nowhere.

Thirty years of weaponizing fork-exec
Article

Thirty years of weaponizing fork-exec

fork+exec inherits file descriptors, environment, and capabilities by default. That inheritance is the bug class behind Shellshock, runc CVE-2019-5736, and Symbiote.

Torvalds declares Linux security list unmanageable
Article

Torvalds declares Linux security list unmanageable

Linus Torvalds says AI bug hunters have made the Linux security list unmanageable. An operator read on what failed at the intake boundary.

GTFOBins catalogues privilege misconfiguration
Article

GTFOBins catalogues privilege misconfiguration

GTFOBins documents a structural property of Unix privilege: grants bind to binaries, not operations, and the gap is the escalation surface.