We all login to the CFarm system using ssh keys.
IF you use agent forwarding AND a key trusted elsewhere, you could be a
target of ssh-agent hijacking.
-Paul
On Sat, Jan 6, 2018 at 2:30 AM, Stas Boukarev via cfarm-users <
cfarm-users@lists.tetaneutral.net> wrote:
> Do people really process sensi
Well, don’t do that? You already have to trust the farm admins not to do
that.
I wouldn’t want a compiler farm to slow down because somebody is doing
online banking on it.
On Sat, 6 Jan 2018 at 21:07 Paul Hargrove wrote:
> We all login to the CFarm system using ssh keys.
> IF you use agent forwa
Why would I care. They are already on the server, can already do these
things.
On Sat, 6 Jan 2018 at 19:42 Bart Van Assche wrote:
> On 01/06/18 02:30, Stas Boukarev via cfarm-users wrote:
> > Do people really process sensitive data on the compiler farm?
>
> Would you like it if a security bug w
On 01/06/18 02:30, Stas Boukarev via cfarm-users wrote:
Do people really process sensitive data on the compiler farm?
Would you like it if a security bug would allow someone to log in under
your account and abuse your account to perform e.g. a DOS attack or to
attempt to hack another server?
On Fri, Jan 05, 2018 at 09:21:23PM -0500, Jeffrey Walton via cfarm-users wrote:
> It looks like PoCs are starting to be released for the CPU bugs. Or
> there's a PoC in the wild for ARM processors. The farm may want to
> accelerate deployment of the fixes if it has not done so.
We'll just do the d
Do people really process sensitive data on the compiler farm?
On Sat, Jan 6, 2018 at 5:21 AM Jeffrey Walton via cfarm-users <
cfarm-users@lists.tetaneutral.net> wrote:
> Hi Everyone,
>
> It looks like PoCs are starting to be released for the CPU bugs. Or
> there's a PoC in the wild for ARM proces
Hi Everyone,
It looks like PoCs are starting to be released for the CPU bugs. Or
there's a PoC in the wild for ARM processors. The farm may want to
accelerate deployment of the fixes if it has not done so.
Early reports:
* https://amp.reddit.com/r/sysadmin/comments/7nl8r0/intel_bug_incoming/
* ht
