boredsquirrel@slrpnk.net to Linux@lemmy.ml · 6 months ago16 years of CVE-2008-0166 - Debian OpenSSL Bug16years.secvuln.infoexternal-linkmessage-square7fedilinkarrow-up191arrow-down12cross-posted to: security@lemmy.ml
arrow-up189arrow-down1external-link16 years of CVE-2008-0166 - Debian OpenSSL Bug16years.secvuln.infoboredsquirrel@slrpnk.net to Linux@lemmy.ml · 6 months agomessage-square7fedilinkcross-posted to: security@lemmy.ml
minus-squareboredsquirrel@slrpnk.netOPlinkfedilinkarrow-up13·6 months agoThats how they supposedly do this haha I suppose they have a very minimal webserver, hardened to the max and for sure not using docker
minus-squarePseudorandomNoise@lemmy.worldlinkfedilinkEnglisharrow-up13·6 months agoOh I know it’s minimal effort to spin one up, especially for a static page. It’s just funny that that’s how this goes now.
minus-squareboredsquirrel@slrpnk.netOPlinkfedilinkarrow-up20·6 months agoIts not, web dev is all about running 4 different Operating systems in containers, with huge dependency chains and slow loading javascript crap
minus-squaredohpaz42@lemmy.worldlinkfedilinkEnglisharrow-up7·6 months agoAs a web developer, I’d say I feel insulted by such a wild accusation, but then I’d be lying. 😅
minus-squaredelirious_owl@discuss.onlinelinkfedilinkarrow-up3·edit-26 months agoPlus downloading all your malicious software through unauth’d channels like npm, pip, cargo, docker hub, or github
minus-squarelemmyvore@feddit.nllinkfedilinkEnglisharrow-up2·6 months ago…it doesn’t, you put static files on a CDN. Nobody in their right mind serves them from custom-made webservers (anymore). Those are intended exclusively for dynamic code (APIs for business logic, authentication, user actions, search etc.)
Thats how they supposedly do this haha
I suppose they have a very minimal webserver, hardened to the max and for sure not using docker
Oh I know it’s minimal effort to spin one up, especially for a static page. It’s just funny that that’s how this goes now.
Its not, web dev is all about running 4 different Operating systems in containers, with huge dependency chains and slow loading javascript crap
As a web developer, I’d say I feel insulted by such a wild accusation, but then I’d be lying. 😅
Plus downloading all your malicious software through unauth’d channels like npm, pip, cargo, docker hub, or github
…it doesn’t, you put static files on a CDN. Nobody in their right mind serves them from custom-made webservers (anymore). Those are intended exclusively for dynamic code (APIs for business logic, authentication, user actions, search etc.)