<eyJhb>
So I don't have to create a docker-hub account for them, plus, if you create a private repo, the registry is private too!
<eyJhb>
Oh... I love docker... E.g. getting that challenge up and running from yesterday - `docker run --rm -it -p 8080:5000 registry.gitlab.com/deviosec/challenges/aarhusctf2019/web-awesome-calculator:latest`
<eyJhb>
Even use Docker for the release part of my repos... Seemed like the most elegant solution tbh
Jackneilll has quit [Read error: Connection reset by peer]
Jackneill has joined #nixos-chat
Jackneill has quit [Read error: Connection reset by peer]
Jackneill has joined #nixos-chat
Jackneill has quit [Remote host closed the connection]
Jackneill has joined #nixos-chat
Jackneill has quit [Remote host closed the connection]
Jackneill has joined #nixos-chat
<manveru>
docker is fine, as long as you build your images with nix ;)
<eyJhb>
manveru what is the minimal size of a Nix Docker image?
<eyJhb>
Hmm, I would actually go as far as to say, that I wouldn't even want to approve a challenge which was Nix specific in that way, except if it was as a 'nix does this stupid thing, attack it'
<manveru>
well, it's not related to nix, it just makes reproducible images possible
<pie_>
eyjhb, its not a payload its a frontend :D you should try it
<eyJhb>
pie_ but I am doing maths :( And guess how fun it is by the title, Engineering Mathematics for Electronical Engineers.
<pie_>
i like math but maybe engineers make it boring :P
<eyJhb>
Wait. How is it a frontend? Isn't it a python script that contains, e.g. "runRemote"?
<eyJhb>
No no, engineering makes it more fun than normal maths. Because we like to just.. Throw stuff away when it is convenient for us
<pie_>
just copy paste it somewhere and run it :D
<pie_>
(no thats not sketchy at all)
<eyJhb>
I feel like there is something missing from what I have :p
<pie_>
man I wish R didnt do everything slightly different
<pie_>
or something, i dont even know what the problem is. spent a day and a half on some "simple" (?) data transformation
<pie_>
and counting
<eyJhb>
*python
<etu>
gods why is windows so garbage
<etu>
been spending hours just trying to get through the partitioning :D
<etu>
How can people cope with it?
<gchristensen>
partitioning?
<etu>
gchristensen: Yeah, where you chose where to install it and it creates a bunch of partitions
<gchristensen>
ah
<gchristensen>
I cope with it through liberal application of filesystem snapshots
<etu>
For me it created like 4 partitions and complained that they were in the wrong order
<gchristensen>
lol
<etu>
And then it complained that the ESP was NTFS (it's not)
<etu>
And then it complained that it couldn't make itself bootable
<pie_>
etu, wat. ive never had problems like that what are you doing xD
<gchristensen>
looks like my install created only 2 partitions
<pie_>
gchristensen, too bad windows cant do zfs eh
<gchristensen>
(1) it _can_ r/w ZFS (2) it _is_ on ZFS
<etu>
So I made a new USB stick, wiped the drive with a clean gpt partition, and selected the drive and pressed "New" as in new partition. Now it's been waiting for like 10 minutes.
<etu>
It's a hourglass as a cursor for the past 10 minutes :p
<pie_>
gchristensen, oh huh. (wat) or are you just using VMs
<__monty__>
Installed a security update today, removed my ublock for safari...
<__monty__>
And the recent firefox bugs affecting ublock origin aren't very comforting either.
<pie_>
__monty__, security updates making you les ssecure ;P
<pie_>
man i should be running this stuff in a VM
drakonis has quit [Ping timeout: 252 seconds]
das_j has quit [Quit: "Bye!";]
das_j has joined #nixos-chat
<eyJhb>
Have anybody actually escaped a privileged container?
<gchristensen>
you don't even need to escape if your container is privileged
<eyJhb>
How would you execute commands on the host gchristensen ?
<eyJhb>
I am really strugling to find anything useful
<gchristensen>
if you manage to get root, you have root on the host -- direct access to the kernel, hardware, memory,
<eyJhb>
Any PoC of this?
<gchristensen>
of what?
<gchristensen>
the getting root part, or the things you can do once you have root?
<eyJhb>
Once you have root, actually turning it into something useful
<gchristensen>
you can load kernel modules ...
<eyJhb>
I just find it weird, that I cannot find anything just "point and shoot"
<gchristensen>
okay
<gchristensen>
it is like asking for a PoC of any sytemy ou have root on.
<gchristensen>
docker run -it --privileged debian:jessie /bin/bash -c "for device in /dev/disk/by-id/*; do echo 'lololololoPoCnewbs' > $device; done"
<gchristensen>
/dev/disk/by-id mifght not actually exist, but your drives are exposed
<gchristensen>
you can manage NICs
<gchristensen>
*you can load kernel modules*
<gchristensen>
there is no point in providing a PoC, because there is no trick to it
<eyJhb>
But, e.g. mounting the disks inside the Docker container, is only possible from root, right?
<eyJhb>
Just thinking about this, since I have some stuff, that requires --privileged....
<cransom>
i have definitive proof here... i have a tshirt that says 'freebsd jails, there is no escape'. I don't have one of those for linux containers.
<gchristensen>
yes they would need to gain UID 0 in your container to have root
<eyJhb>
Wasn't really about, UID0 == Root, but yeah. Might have to set specific flags rather than just --privileged... Only need it to disable ASLR etc.
<gchristensen>
that would be a good choice :0
<eyJhb>
Not quite sure which.. But, problem for another day. So much else that can be done