@kuramanga @sortiecat Or, you could lobby to make them upgrade to dropbear.
@laurentbercot @kuramanga @sortiecat Dropbear actually has really bad security design, like NEVER dropping root so it can remove utmp lines.
-
-
@kuramanga@laurentbercot@sortiecat No, it's even more basic than privsep. You should always drop root immediately after auth, or sooner.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@laurentbercot@kuramanga@sortiecat Dropbear is _fixable_, and simple enough to understand and fix. But not great out of the box.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
@RichFelker@kuramanga@sortiecat That should indeed be fixed; what current systems still use utmp today?Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.