Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
bitlevel
on Aug 20, 2021
|
parent
|
context
|
favorite
| on:
Another free CA as an alternative to Let's Encrypt
Because it's not conjusive to a minimal attack surface - by way of example:
https://www.helpnetsecurity.com/2019/02/13/cve-2019-7304/
Osiris
on Aug 20, 2021
[–]
Not to completely minimize it, but that says local attacker, not remote attacker. So someone would still have to gain access to the system in question in the first place.
phone8675309
on Aug 20, 2021
|
parent
[–]
Just because a server is headless does not mean that it isn't interactive in some way or running some user-submitted scripts or code.
Also, compromising a service running as a user (not root) would be sufficient to then escalate.
Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
