oh jesus tapdancing christ
-
i know i'm an AI skeptic, but i did not expect "virally popular agent does no authentication checks before escalating system privileges"
@neurovagrant I'm not surprised in the least. Seriously. Exactly the kind of stuff I would have expected.
-
@neurovagrant I'm not surprised in the least. Seriously. Exactly the kind of stuff I would have expected.
@lauren @neurovagrant I had been thinking about setting up an instance to see what all the fuss was about but every news story I see makes me glad I’ve dragged my feet.
-
i know i'm an AI skeptic, but i did not expect "virally popular agent does no authentication checks before escalating system privileges"
thing is, this is likely to cause many downstream enterprise breaches, even in enterprises that actively ban openclaw.
unauthorized instances, or instances that allow a threat actor to pivot from private hardware to work hardware.
pure negligence, rolling OpenClaw out in the way they did, both the devs and all the hosting companies that saw profit in providing easy-install packages.
-
thing is, this is likely to cause many downstream enterprise breaches, even in enterprises that actively ban openclaw.
unauthorized instances, or instances that allow a threat actor to pivot from private hardware to work hardware.
pure negligence, rolling OpenClaw out in the way they did, both the devs and all the hosting companies that saw profit in providing easy-install packages.
@neurovagrant say, you wanna do the thing today?
-
RE: https://social.lansky.name/@hn50/116341899721749250
oh jesus tapdancing christ
@neurovagrant The real fun bonus parts are the scolds in the HN comments telling people that if they set this code they love up wrong then they deserve to be hacked, as if it's possible to set this thing up in a safe way as multiple hacks (including this one) demonstrate.
-
thing is, this is likely to cause many downstream enterprise breaches, even in enterprises that actively ban openclaw.
unauthorized instances, or instances that allow a threat actor to pivot from private hardware to work hardware.
pure negligence, rolling OpenClaw out in the way they did, both the devs and all the hosting companies that saw profit in providing easy-install packages.
the other fun part?
even if you don't set up an exposed instance
even if you require auth
if any entity you pair openclaw with gets compromised, regardless of its permissions level, it can escalate to admin and pwn you
-
@neurovagrant say, you wanna do the thing today?
@Viss sure what time?
-
@Viss sure what time?
@neurovagrant i literally have all day open, and the entire day is earmarked for dealing with it, so just throw a dart for whenever is comfy for you
-
i know i'm an AI skeptic, but i did not expect "virally popular agent does no authentication checks before escalating system privileges"
@neurovagrant I’m honestly surprised it took this long for it to crackle.
One of the ”enthusiasts” at work recently explained to me why they think Clown Cod
is safe to use. To paraphrase them ”it automatically checks the fist two words in bash commands for anything malicious”.What worries me most about this ride through the Gartner Hype Cycle is that this time it’s not the senior engineers that are at the steering wheel. We’re more often found in the trunk tied up and gagged.
-
i know i'm an AI skeptic, but i did not expect "virally popular agent does no authentication checks before escalating system privileges"
@neurovagrant The AI bros see security as something to be circumvented. “Move fast and break stuff.”
-
@neurovagrant i literally have all day open, and the entire day is earmarked for dealing with it, so just throw a dart for whenever is comfy for you
@Viss 1500 Eastern / 1200 pacific?
-
@Viss 1500 Eastern / 1200 pacific?
@neurovagrant done!
-
@Viss sweet, will email you a Meet link, thanks man
-
B bogwitch@social.data.coop shared this topic
