(dmitrybrant.com)

925 points dmitrybrant | 1 comments | 07 Sep 25 23:53 UTC | HN request time: 0.2s | source

Show context

unethical_ban ◴[08 Sep 25 00:14 UTC] No.45163504[source]▶

Neat stuff. I just got Claude code and am training myself on Rails, I'm excited to have assistance working through some ideas I have and seeing it handle this kind of iterative testing is great.

One note: I think the author could have modified sudoers file to allow loading and unloading the module* without password prompt.

replies(3): >>45163525 #>>45163609 #>>45163836 #

anyfoo ◴[08 Sep 25 00:17 UTC] No.45163525[source]▶

>>45163504 #

... which would allow you to load arbitrary code into the kernel, pretty much bypassing any and all security. You might as well not have a password at all. Which, incidentally, can be a valid strategy for isolated external dev boards, or QEMU VMs. But on a machine with stuff you care about? You're basically ripping it open.

replies(4): >>45163564 #>>45163571 #>>45163585 #>>45163590 #

1. ◴[08 Sep 25 00:29 UTC] No.45163590[source]▶

>>45163525 #

↑

Using Claude Code to modernize a 25-year-old kernel driver