(dotat.at)

140 points todsacerdoti | 1 comments | 22 Oct 24 12:36 UTC | HN request time: 0s | source

Show context

ricardo81 ◴[22 Oct 24 13:18 UTC] No.41913941[source]▶

>>41913610 (OP) #

I guess the general gist is shared spaces between users causes security issues.

I recall using 'shared hosting' where instead of using your default IP address for fetching anything from the network, you could do some funky stuff in the shared environment to discover many more IPs that could be used. Useful for scraping and such. Generally any shared hosting that used cpanel would expose all their network interfaces, often a /24 or two.

replies(1): >>41914050 #

deltaburnt ◴[22 Oct 24 13:28 UTC] No.41914050[source]▶

>>41913941 #

Any shared resource seems to give rise to security issues. Extracting data through side channels in the hardware's architecture is what woke me up to this.

replies(3): >>41914109 #>>41914140 #>>41915494 #

1. ricardo81 ◴[22 Oct 24 13:34 UTC] No.41914109[source]▶

>>41914050 #

I remember digging into this 10-15 years ago. 'shared hosting' per provider had some arbitrary resource restrictions, but you could still find out via a cron job or some such. Like `cat`ting /etc/network stuff. Basically a sieve.

↑

Against /Tmp