All Secure Copy Protocol (SCP) implementations contain 4 security vulnerabilities that allow malicious SCP servers to make changes on the client's side:

zdnet.com/article/scp-implemen

– all SCP implementations (OpenSSH, Putty, WinSCP etc.) are affected
– vulnerabilities are there since 1983
– CVE-2018-20685, CVE-2019-6111, CVE-2019-6109, CVE-2019-6110
– at the moment, only WinSCP provides a patch (WinSCP 5.14)

#scp #ssh #openssh #winscp #putty #vulnerability #infosec #cybersecurity #security

@erkunev RT @assortedfiles: Scully distracts Mulder from corrupt FBI agents. Mulder urgently seeks monster pinups.

Scully distracts Mulder from corrupt FBI agents. Mulder urgently seeks monster pinups.

Г-н Макмеън оценява различни варианти на популярни български коледни гозби. 😆

#смях 🤣 #меме 😂

i like how ableton's default shortcut for the pencil tool is b

bencil

Metal Gear Liquid
Metal Gear Gas
Metal Gear Plasma
Metal Gear Bose–Einstein condensate

When I look at Slack Engineering’s flowchart on whether to send notifications or not (and cutting back on its gargantuan memory usage), I can’t help but wonder whether any of this should have been built on top of XMPP somehow and written in a language other than JavaScript

It seems a lot of software is a never-ending cycle of finding solutions to problems that shouldn’t exist

Or were largely solved a decade ago

slack.engineering/reducing-sla

Show more
Petko's "Social" Space

My private instance