Digests » 240

this week's favorite

From Markdown to RCE in Atom

Recently I took a look at Atom, a text editor by GitHub. With a little bit of work, I was able to chain multiple vulnerabilities in Atom into an actual Remote Code Execution.

Using a logbook to improve your programming

In this post, I’ll describe the engineering practice of keeping a logbook, and show how it can be applied to programming work.

More than a Million Pro-Repeal Net Neutrality Comments were Likely Faked

I used natural language processing techniques to analyze net neutrality comments submitted to the FCC from April-October 2017, and the results were disturbing.

How a single PostgreSQL config change improved slow query performance by 50x

By tracking latency at different levels we figured one particular PostgreSQL query was taking 20 sec to finish. This was a surprise for us, as both tables have indexes on the joined column.

Why _blank_ Gets You Root

In case you haven't heard the news there is a massive security flaw which affects the latest version of macOS (High Sierra). Essentially, bug allows anybody to log into the root account with a blank, or password of their choosing.

Join over 15,500 readers for a free weekly email with fresh news, articles and tutorials.