undefined | Better HN

0 pointscf141q53254y ago0 comments

Sandboxes can be escaped from.

0 comments

You can only get guaranteed protection from malware infections through the internet if you turn off your machine.

Even then there might be some remote management exploits which would work on turned off machines, so unplug the cables aswell.

cf141q5325OP4y ago

Thats not a reason to fudge with the definitions. The existence of sandboxes doesnt mean there are no more pdf exploits. There still are and sandboxes dont mitigate it entirely.

There is also more ways then just turning off your machine. Its needlessly oversimplifying complex topics. Topics that are very interesting and have severe implications. Especially if we are talking about state level espionage.

So in short, no you are wrong. PDF exploits are still a thing. You made unjustified assumptions.

Reading my post it sounds confrontational. Thats not my intent.

faeyanpiraat4y ago

I only confirmed what you said.

The best way to reduce the number of bugs (exploits) in a system is to get rid of it.

Since you've brought up state level espionage, this might be the reason why states are run by hordes of bureocrats processing physical paperwork (this is an oversimplification of course).

1 more reply

j / k navigate · click thread line to collapse

0 comments

faeyanpiraat4y ago

You can only get guaranteed protection from malware infections through the internet if you turn off your machine.

Even then there might be some remote management exploits which would work on turned off machines, so unplug the cables aswell.

cf141q5325OP4y ago

Thats not a reason to fudge with the definitions. The existence of sandboxes doesnt mean there are no more pdf exploits. There still are and sandboxes dont mitigate it entirely.

So in short, no you are wrong. PDF exploits are still a thing. You made unjustified assumptions.

Reading my post it sounds confrontational. Thats not my intent.

faeyanpiraat4y ago

I only confirmed what you said.

The best way to reduce the number of bugs (exploits) in a system is to get rid of it.

Since you've brought up state level espionage, this might be the reason why states are run by hordes of bureocrats processing physical paperwork (this is an oversimplification of course).

1 more reply

j / k navigate · click thread line to collapse