logoalt Hacker News

0xbadcafebeelast Monday at 6:17 AM6 repliesview on HN

Do we really need infosec companies now that a skid with claude can find decades-old kernel privesc over a weekend?

Also can we talk about how bad Linux security is? At this point it's becoming a real liability to run anything on Linux that needs to be secure. OpenBSD has been around for ages, is written in C, and is really, really secure. Do they support containers yet (or microVMs)? Cuz if they do, I'm moving my workloads to obsd.


Replies

titularcommentlast Monday at 8:20 AM

OpenBSD is the Linux of a decade or two ago, not attracting attention and not being compatible or useful for quite a lot of stuff.

show 2 replies
NexRebularlast Monday at 2:07 PM

Try illumos with zones. We run all critical services on SmartOS nowadays. Even linux bhyve VMs get confined inside a zone.

show 1 reply
close04last Monday at 7:04 AM

> Do we really need infosec companies now that a skid with claude can find decades-old kernel privesc over a weekend?

Why are you not making easy money hand over fist from these rewards? A couple of weekends of work and you can retire early.

Maybe that's exactly what these infosec companies are. And maybe you need more than "a skid with claude over a weekend" to get anything worthwhile.

inigyoulast Monday at 10:56 AM

Why didn't you find it with claude over a weekend?

_deflast Monday at 7:56 AM

> and is really, really secure

... until its getting popular usage and gets targeted for vulnerability research

asimovDevlast Monday at 8:22 AM

TIL OpenBSD doesn't have jails