Lobster Roll

All Programming (General) 8177 Systems / Low-Level / OS 6631 Programming Languages / CS Theory 4253 Data / Databases / Infrastructure 3847 Web Development 2761 AI / Machine Learning 2325 Security / Privacy 2166 Culture / Philosophy / History / Reading 2105 Productivity / Career / Business 1501 Maker / DIY / Hardware 1281 Gaming / Retro Computing 995 Design / UX / Visualization 915 Science / Math / Physics 837 Apple / macOS / iOS 697 Internet / Digital Culture 332 Health / Fitness / Lifestyle 24 Crypto / Blockchain 10

Security / Privacy

oss-security - runc container breakouts via procfs writes: CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881 (openwall.com)
22 pts 4 comments by eyberg Nov 5, 2025 security Security / Privacy
Defeating KASLR by Doing Nothing at All (googleprojectzero.blogspot.com)
7 pts 1 comments by fro Nov 3, 2025 androidsecurity Security / Privacy
RDSEED Failure on AMD “Zen 5” Processors (amd.com)
27 pts 12 comments by dryya Nov 3, 2025 security Security / Privacy
CHERIoT 1.0 Released (cheriot.org)
97 pts 4 comments by lorddimwit Nov 3, 2025 hardwaresecurity Security / PrivacyMaker / DIY / Hardware
Notes by djb on using Fil-C (cr.yp.to)
77 pts 33 comments by eatonphil Nov 2, 2025 csecurity Systems / Low-Level / OSSecurity / Privacy
Attacking macOS XPC helpers: Protocol reverse engineering and interface analysis (tonygo.tech)
8 pts 0 comments by jmillikin Nov 2, 2025 macreversingsecurity Systems / Low-Level / OSSecurity / PrivacyApple / macOS / iOS
X.Org Security Advisory: multiple security issues X.Org X server and Xwayland (lists.x.org)
26 pts 8 comments by janus Nov 1, 2025 securityunix Systems / Low-Level / OSSecurity / Privacy
The Tailscale Fall Update in under 8 minutes (youtube.com)
1 pts 0 comments by diktomat Nov 1, 2025 networkingsecurityvideo Data / Databases / InfrastructureSecurity / Privacy
Ten years of joeblu.com (joeblu.com)
2 pts 1 comments by abnercoimbre Oct 31, 2025 cultureprivacyweb Web DevelopmentSecurity / PrivacyCulture / Philosophy / History / Reading
Hacking India’s largest automaker: Tata Motors (eaton-works.com)
23 pts 6 comments by mtlynch Oct 31, 2025 security Security / Privacy
Fix your FODs (garnix.io)
24 pts 6 comments by jkarni Oct 30, 2025 nixsecurity Systems / Low-Level / OSSecurity / Privacy
Introducing Aardvark: OpenAI’s agentic security researcher (openai.com)
2 pts 1 comments by mantej Oct 30, 2025 aisecurity AI / Machine LearningSecurity / Privacy
Language Models are Injective and Hence Invertible (arxiv.org)
25 pts 6 comments by Corbin Oct 30, 2025 aimathsecurity AI / Machine LearningSecurity / PrivacyScience / Math / Physics
NPM flooded with malicious packages downloaded more than 86,000 times (arstechnica.com)
34 pts 9 comments by laktak Oct 30, 2025 nodejsprogrammingsecurity Web DevelopmentProgramming (General)Security / Privacy
Introducing fnox: A secret manager that pairs well with mise (fnox.jdx.dev)
25 pts 3 comments by kingmob Oct 30, 2025 privacysecurity Security / Privacy
I'm Independently Verifying Go's Reproducible Builds (agwa.name)
63 pts 5 comments by FiloSottile Oct 29, 2025 gosecurity Programming (General)Security / Privacy
HTTPS by default (security.googleblog.com)
29 pts 5 comments by kwas Oct 29, 2025 browserssecurity Web DevelopmentSecurity / Privacy
TEE.fail: Breaking Trusted Execution Environments via DDR5 Memory Bus Interposition (tee.fail)
13 pts 3 comments by gsora Oct 29, 2025 hardwaresecurity Security / PrivacyMaker / DIY / Hardware
filepizza: Peer-to-peer file transfers in your browser (github.com)
20 pts 4 comments by ngoldbaum Oct 28, 2025 privacyweb Web DevelopmentSecurity / Privacy
What We Talk About When We Talk About Sideloading (f-droid.org)
79 pts 26 comments by marcprux Oct 28, 2025 androidmobilesecurity Security / Privacy
Firefox Security & Privacy Newsletter 2025 Q3 (attackanddefense.dev)
2 pts 0 comments by freddyb Oct 28, 2025 browsersprivacysecurity Web DevelopmentSecurity / PrivacyInternet / Digital Culture
Why IP address truncation fails at anonymization (00f.net)
7 pts 2 comments by untitaker Oct 27, 2025 lawprivacy Security / Privacy
When 'perfect' code fails (marma.dev)
29 pts 18 comments by mrk Oct 26, 2025 javascriptsecurityweb Web DevelopmentProgramming (General)Security / Privacy
Encryption using SSH Keys with age in Linux (ittavern.com)
27 pts 20 comments by WorksOnMyMachine Oct 26, 2025 cryptographylinux Systems / Low-Level / OSSecurity / Privacy
Sandbox Your Program Using FreeBSD's Capsicum (m.youtube.com)
4 pts 0 comments by mccd Oct 26, 2025 freebsdosdevsecurityvideo Systems / Low-Level / OSProgramming (General)Security / Privacy
An Overview of Attestations in CI (github.com)
0 pts 4 comments by jbeckford Oct 26, 2025 security Security / Privacy
An analysis of iBoot’s Image4 parser (amarioguy.github.io)
6 pts 0 comments by calvin Oct 25, 2025 reversingsecurity Systems / Low-Level / OSSecurity / Privacy
NewPipe is turning 10 (newpipe.net)
32 pts 5 comments by two Oct 24, 2025 androidhistoricalprivacyreversing Systems / Low-Level / OSSecurity / PrivacyCulture / Philosophy / History / Reading
Date bug affects Ubuntu 25.10 automatic updates (lwn.net)
11 pts 6 comments by varjag Oct 24, 2025 rustsecurity Systems / Low-Level / OSSecurity / Privacy
Object-capability Programming in Javascript (youtube.com)
3 pts 0 comments by kuijsten Oct 23, 2025 javascriptsecurityvideo Web DevelopmentProgramming (General)Security / Privacy