Links about Security
This is going to be a collection of security related Links.
A Hearthbleed in Rust…
Just because you’re using a type save language don’t mean you can’t leak plaintext. This applies to Rust (Tedbleed) as Java (JetLeak).However the type safeness would reduce the impact of the vulnerability.
How Hearthbleed would be in Rust.
Tony Arcier takes the time to disect the issue and comes to the conclution that rust would have prevented heartbleed.
POC for NOT using
curl $URL|bash. This allow you alter the download code based on your system piping something.
Follow up in regards of ThunderStrike attack, as a presentation of coreboot payload call HEADs.
Project page: https://trmm.net/Heads_33c3
best regards Akendo