Systems Administrator, Arizona Genomics Institute
-
University of Arizona
- Tucson, AZ
-
10:43
(UTC -07:00) - https://www.genome.arizona.edu/person/chandler-sobel-sorenson
- https://orcid.org/0009-0008-5032-5117
- in/chandler-sobel-sorenson
Pinned Loading
-
The "Copy.Fail" Page Cache Exploit: ...
The "Copy.Fail" Page Cache Exploit: Why drop_caches doesn't always work and how to fully? clean it up 1If you're testing the copy.fail/exp Python exploit (or similar modern Linux page cache poisoning exploits) and find that `echo 3 > /proc/sys/vm/drop_caches` does not remove the backdoor, here is the technical breakdown of what actually happened to your system and how to fix it.
23TL;DR: The exploit bypasses the dirty flag, but the page can be flushed to disk if a kernel `sync` or background process touches that memory segment. If you wait too long to drop the caches like I did, the Linux kernel's background threads will permanently write the backdoor to your physical disk. I had to force-reinstall the package and clear my bash hash cache to fully cleanup this exploit.
45Here is a deep dive into my findings (with Gemini's help):
-
-
-
UA-CALES-SPLS-AGI/HiFi-16S-workflow
UA-CALES-SPLS-AGI/HiFi-16S-workflow PublicForked from PacificBiosciences/HiFi-16S-workflow
Nextflow pipeline to analyze PacBio HiFi full-length 16S data
R
-
UA-CALES-SPLS-AGI/Infiniband-Copy
UA-CALES-SPLS-AGI/Infiniband-Copy PublicA high-performance cluster copy tool optimized for InfiniBand networks. It leverages RDMA for single files and massively parallel, memory-buffered TCP streams via mbuffer and GNU parallel to trans…
-
UA-CALES-SPLS-AGI/smrt-dashboard
UA-CALES-SPLS-AGI/smrt-dashboard PublicA real-time monitoring dashboard for PacBio sequencing instruments, built as a static Next.js app, talking directly to SMRT Link REST API from the browser
TypeScript
Something went wrong, please refresh the page to try again.
If the problem persists, check the GitHub status page or contact support.
If the problem persists, check the GitHub status page or contact support.
