Daily routine

14/June/2026 Meteor75MikroTik

MikroTik Switch CRS354
MikroTik Switch CRS354 5712x4284
mikrotik_network_stand.jpg
Pressure Sensor
Pressure Sensor 4032x3024
26-06-14_13-45-16.jpg
BetaFPV Meteor75
BetaFPV Meteor75 4032x3024
meteor75_6.jpg
Pressure Sensor | Oscilloscope readings - empty state 1920x1021 empty.png
Pressure Sensor | Oscilloscope readings - empty state


Daily routine

WiFi socket, declared as 20 Amps

9/June/2026 wall-socket

WiFi Wall socket
WiFi Wall socket 4032x3024
ima_145e6a7.jpg
LN822HKI
LN822HKI 4032x3024
ima_9a69bb5.jpg
Wall socket PCB
Wall socket PCB 4032x3024
ima_4b1e157.jpg


What could be wrong here?

WiFi socket, declared...

Critical remote vulnerability in Nginx CVE-2026-9256

23/May/2026 nginxdebianCVE

Let’s rebuild Nginx with CVE-2026-9256 patch according to the Debian-way.

Debian Nginx CVE-2026-9256 1600x900 CVE-2026-9256.png
Debian Nginx CVE-2026-9256

A critical vulnerability in nginx allows remote code execution with the privileges of the nginx worker process by sending a specially crafted HTTP request.
But that’s not the point.
The problem is that Debian maintainers are in no hurry to release a new patch package.

1
2
3
4
5
apt --no-install-recommends \
    --no-install-suggests install \
    build-essential \
    fakeroot \
    devscripts

nano /etc/apt/sources.list

1
2
3
4
# trixie sources
deb-src https://deb.debian.org/debian/ trixie main contrib non-free non-free-firmware
deb-src http://security.debian.org/debian-security/ trixie-security main contrib non-free non-free-firmware
deb-src https://deb.debian.org/debian/ trixie-updates main contrib non-free non-free-firmware
Critical remote vulnerability...

You were given the choice between security and convenience. You chose convenience, and you will have neither convenience nor security

5/May/2026 zero-trustsecurity

Security Engineer imported a malicious script to his account 1280x1080 nice-security-engineering_exw.png
Security Engineer imported a malicious script to his account

Only six months had passed, but the news feed continued to bring new funny vulnerabilities.
As usual, I don’t focus on system vulnerabilities in snapd / Rust Coreutils / Flatpak, or kernel (Copy Fail, Dirty Frag, Fragnesia, pidfd, PinTheft, GRO Frag) or AppArmor.


No matter how dangerous they may be, they are “conditionally” passive, meaning that if they are present, a number of factors and active actions from within or outside are required for successful exploitation.

I’m much more interested in tracking compromises of package distribution systems, libraries, and other package repositories.

Because these are “active” and direct attacks, they require almost no combination of factors; after downloading, they will immediately hit the developer’s repository, then collect their personal/financial/authorization information, and then continue to act in a chain fashion on all servers to which they had access.

You were given...
Page 1 from 13