• Kühe sind toll
    link
    fedilink
    269 months ago

    If the task would have been to find general security risks this would have counted. I mean, he did some serious harm, but he was able to find a security issue.

    • @[email protected]
      link
      fedilink
      English
      49 months ago

      I think there is kind of an assumption that the scenario is “outside host gains privileged access” so there’s not really a security issue with some attacker deleting root on their own box.

      • Kühe sind toll
        link
        fedilink
        69 months ago

        If it has been done properly you’re right. If this also affected the host machine it is a security issue.

    • @afraid_of_zombies
      link
      29 months ago

      They did but it might have been a good idea to prove that the command works instead of actually doing it.

    • @joel_feila
      link
      19 months ago

      Yeah so is tossing a molotov on thier machines, “found a security issue not firproofing everything”