{"version": "https://jsonfeed.org/version/1", "title": "/dev/posts/ - Archive for 2022", "home_page_url": "https://www.gabriel.urdhr.fr", "feed_url": "/2022/feed.json", "items": [{"id": "http://www.gabriel.urdhr.fr/2022/12/03/entering-podman-namespaces/", "title": "Entering in Podman containers", "url": "https://www.gabriel.urdhr.fr/2022/12/03/entering-podman-namespaces/", "date_published": "2022-12-03T00:00:00+01:00", "date_modified": "2022-12-03T00:00:00+01:00", "tags": ["computer", "linux", "system", "podman", "container", "security"], "content_html": "

Some commands for interacting with the namespaces\nof Podman containers.

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/10/13/switching-from-docker-to-podman/", "title": "Switching from Docker to Podman", "url": "https://www.gabriel.urdhr.fr/2022/10/13/switching-from-docker-to-podman/", "date_published": "2022-10-13T00:00:00+02:00", "date_modified": "2022-10-13T00:00:00+02:00", "tags": ["computer", "container", "podman", "docker"], "content_html": "

Some notes about using Podman instead of Docker,\non Linux.\nThis has been tested on Podman v3.4.7.

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/08/28/trying-to-run-stable-diffusion-on-amd-ryzen-5-5600g/", "title": "Stable Diffusion on an AMD Ryzen 5 5600G", "url": "https://www.gabriel.urdhr.fr/2022/08/28/trying-to-run-stable-diffusion-on-amd-ryzen-5-5600g/", "date_published": "2022-08-28T00:00:00+02:00", "date_modified": "2022-08-28T00:00:00+02:00", "tags": ["computer", "machine-learning", "deep-learning", "generative-art", "neural-networks"], "content_html": "

Executing\nthe Stable Diffusion\ntext-to-image model on an AMD Ryzen 5 5600G integrated GPU (iGPU).

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/07/06/extract-schema-from-remote-ldap/", "title": "Extract the schema from a remote LDAP server", "url": "https://www.gabriel.urdhr.fr/2022/07/06/extract-schema-from-remote-ldap/", "date_published": "2022-07-06T00:00:00+02:00", "date_modified": "2022-07-06T00:00:00+02:00", "tags": ["computer", "ldap"], "content_html": "

How to extract the schema from a remote LDAP server\nand use it on a OpenLDAP instance.

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/06/07/impact-of-the-different-wifi-security-modes/", "title": "Impact of the different Wifi security modes", "url": "https://www.gabriel.urdhr.fr/2022/06/07/impact-of-the-different-wifi-security-modes/", "date_published": "2022-06-07T00:00:00+02:00", "date_modified": "2024-01-05T13:47:35+01:00", "tags": ["computer", "network", "wifi", "security"], "content_html": "

Comparing the different Wifi/WPA authentication and key distribution methods (PSK, EAP, SEA).

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/05/05/browser-mediated-attacks-on-webdriver/", "title": "Browser-based attacks on WebDriver implementations", "url": "https://www.gabriel.urdhr.fr/2022/05/05/browser-mediated-attacks-on-webdriver/", "date_published": "2022-05-05T00:00:00+02:00", "date_modified": "2022-05-05T00:00:00+02:00", "tags": ["computer", "security", "web", "vulnerability", "webdriver", "firefox", "dns-rebinding", "csrf"], "content_html": "

Some context and analysis about attacks on\nin WebDriver implementations.

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/03/24/zap-no-certificate-validation/", "title": "Lack of X.509 TLS certificate validation in OWASP ZAP", "url": "https://www.gabriel.urdhr.fr/2022/03/24/zap-no-certificate-validation/", "date_published": "2022-03-24T00:00:00+01:00", "date_modified": "2022-03-24T00:00:00+01:00", "tags": ["computer", "security", "zap", "tls", "vulnerability"], "content_html": "

Lack of X.509 TLS certificate validation in OWASP ZAP\n(Zed Attack Proxy)\ncould be used for man-in-the-middle attacks.

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/03/15/dns-rebinding-readymedia/", "title": "DNS rebinding on ReadyMedia/minidlna v1.3.0 and below", "url": "https://www.gabriel.urdhr.fr/2022/03/15/dns-rebinding-readymedia/", "date_published": "2022-03-15T00:00:00+01:00", "date_modified": "2022-03-15T00:00:00+01:00", "tags": ["computer", "security", "upnp", "dns-rebinding", "vulnerability"], "content_html": "

A DNS rebinding vulnerability I found\nin ReadyMedia (formerly MiniDLNA)\nv1.3.0 and below.\nThis is CVE-2022-26505.

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/02/26/tls1.3-intro/", "title": "Introduction to TLS v1.3", "url": "https://www.gabriel.urdhr.fr/2022/02/26/tls1.3-intro/", "date_published": "2022-02-26T00:00:00+01:00", "date_modified": "2024-11-23T01:15:07+01:00", "tags": ["computer", "web", "network", "tls", "cryptography"], "content_html": "

Some notes about how TLS v1.3 works.\nThis is a follow-up of the previous episode\nabout TLS v1.2.\nAs before, the goal is to have a high-level overview\nabout how the protocol works,\nwhat is the role of the different messages\nand be able to understand (and debug) a network traffic dump.

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/02/07/selenium-standalone-server-csrf-dns-rebinding-rce/", "title": "CSRF and DNS-rebinding to RCE in Selenium Server (Grid)", "url": "https://www.gabriel.urdhr.fr/2022/02/07/selenium-standalone-server-csrf-dns-rebinding-rce/", "date_published": "2022-02-07T22:15:00+01:00", "date_modified": "2022-02-07T22:15:00+01:00", "tags": ["computer", "security", "web", "vulnerability", "webdriver", "csrf", "dns-rebinding"], "content_html": "

Vulnerabilities in found on the WebDriver\nendpoints of Selenium Server (Grid).

\n"}, {"id": "http://www.gabriel.urdhr.fr/2022/02/07/geckodriver-dns-rebinding-rce/", "title": "DNS rebinding vulnerability to RCE in GeckoDriver", "url": "https://www.gabriel.urdhr.fr/2022/02/07/geckodriver-dns-rebinding-rce/", "date_published": "2022-02-07T22:10:00+01:00", "date_modified": "2022-02-07T22:10:00+01:00", "tags": ["computer", "security", "web", "vulnerability", "webdriver", "firefox", "dns-rebinding"], "content_html": "

A DNS rebinding vulnerability I found in\nGeckoDriver which could be used to execute arbitrary shell commands.\nThis is bug #1652612\nand CVE-2021-4138.

\n"}]}