But what about monster HDMI cables?

His rationale was that Biden didn’t get enough drilling going, and if we had only drilled enough then we wouldn’t even care one way or another about the persian gulf.

Heard just today a republican actually blaming Biden for the gas prices…

And they accuse other people of being deranged about Trump…

No, these are just ‘love taps’

my pp gets hard

The way a lot of them are, they probably wish it still did that.

Yep, evolution always ends in crabs.

If you are already there, why bother?

While others put in more work than he, and certainly he didn’t work as hard as most any minimum wager that tends to work the hardest, your example at least showed he put in some effort and acumen, so it wouldn’t be my favorite example to bust the myth.

Musk I think is even better since basically his entire fortune builds upon just luck and conning folks without ever putting in useful work. He had a leg up from rich family, then was so weird about his dot-com that he put a PC in a big plastic thing to make it ‘look like a supercomputer’ and despite how utterly amateur hour it was… It worked on Compaq and he got millions for a site that never got off the ground. Then he took his millions and worked to cofound the first X.com, which was getting beat by a competitive product Paypal. Somehow the owners of Paypal despite winning agreed to a merger and agreed to put Musk in charge. And he boffed it hard and was forced to step down because his incompetence was destroying Paypal. But he still had a huge stake so when eBay came knocking, despite Musk doing nothing but screw up the company, he got the most money from that transaction. To this day some people will describe him as ‘the’ founder of Paypal, despite all this. Then with Tesla, he saw a company doing something cool with electrifying a Lotus and wanted in. Then after being in he threw a hissy fit that he should be a founder, despite the company existing prior to his coming along. Also plenty of word that Elon’s first round of actually getting things designed somewhat the way he wanted was the Cybertruck… and well…

Note that could prove you have it, but failure to execute does not prove yourself secure.

For example, someone reported to me that their RHEL9 system was not vulnerable based on this result. But it was because python was 3.9 and didn’t have os.splice, so the demonstrator failed, but the actual issue was there.

Similarly, if ‘/usr/bin/su’ isn’t exactly there (maybe it’s in /bin/su, or in /sbin/su, or /usr/sbin/su, or not there at all), the demonstrator will fail, but the kernel may still have the vulnerability, you just have to select a different victim utility (or change the cache for some other data other than an executable for other effects).

Looking at the binary blob, it’s a payload to assume privileges as possible and exec sh. So replace su with that and the binary gets to use su’s filesystem privileges without needing access to actually write it.

The vulnerability part is when the door opens to replace any file’s read cache with arbitrary content. The binary payload is just an obvious example of the sort of payload that could do a ton of damage.

Note that this is a rather narrow view of the scope of things.

Yes, the demonstrator is a python script that opens up ‘su’ and uses splice+this vulnerability to change it to ‘just assume all privileges and become sh’.

However, it’s that any process in any namespace can leverage a certain socket type and splice to effectively modify any filesystem content they want. It’s easy to see how this could be part of a chained attack to, for example, replace a protected service that is firewalled off with a shell. An RCE in a service permits rewriting nginx in an entirely different container and replaces it with a shell backend of your choosing.

That ‘flatpak’ application on your single user system that is guarded from touching your files that aren’t related? That isolation doesn’t mean anything if this issue is in play.

In terms of shared systems, while it should be avoided if possible, practically speaking there’s a lot of shared resources.

I don’t get why I’ve seen so many people saying “ehh, no big deal, privilege escalation is just a fact of life”.

Zombie processes do not use resources, well, a little, it’s basically an entry describing how it exited.

The parent process is the thing keeping the zombie entry open. Killing it’s parent should work if they bother you.

To be fair to the media, there just isn’t enough time to cover all of the blatant corruption of Trump and his orbit. There are only so many hours in the day…

I think Israel didn’t bother to ‘talk’, they just Leeroy Jenkinsed it up and the military decided they had to ride or die with it…

To be fair, this may be about as well as a run would go for me if I tried.

Trump didn’t make the leap to directly say to do that, but he did clearly think that strong lights and disinfectant in the body ‘should be looked into’. He was saved from directly making a terrible recommendation by having some amount of deference for the medical organizations, but did try to show ‘thought leadership’ in a very dumb direction.

It was not some sort of Stanford spinning up wild concepts, it was Trump taking very obvious things about how we handle these things outside the body and thinking that we would be the first to ask ‘but what about inside the body?’. Yes, he phrased it as a question to be looked into, but he clearly thought there could be something to it.

About the only credit you can give to first term Trump in this scenario is that he at least ultimately left health issues up to the health departments, even as he groused the whole time.

“Cigarettes can’t hurt you, anything that goes in the lungs you can just blow it back out again”

Nah, President Dwayne Elizondo Mountain Dew Camacho at least wanted the smartest man in the world trying to solve problems for him. This administration wouldn’t let a smart man near anything.

That’s just proof that he’s onto something, Big Cancer is afraid to admit that a cheap cancer cure already exists, obviously.

It’s grading on a curve.

Biden/Harris were weak on Israel, barely managing to occasionally wag a finger at them for misbehavior, but continuing to provide some support to Israel. This was bad.

Trump’s admin has been all in on it and has been ride or die for everything Netanyahu wants. This is even worse.

Makes sense, but what about your shoes?