GET https://kbin.spritesserver.nl/index.php/u/@scinde@discuss.tchncs.de/commented

Response
200 OK
IP
216.73.216.21
Profiled on
Token
29a06a

Security

Token

There is no security token.

Firewall

main Name
Security enabled
Stateless

Configuration

Key Value
provider security.user.provider.concrete.app_user_provider
context main
entry_point App\Security\KbinAuthenticator
user_checker App\Security\UserChecker
access_denied_handler (none)
access_denied_url (none)
authenticators 
[
  "two_factor"
  "remember_me"
  "App\Security\KbinAuthenticator"
  "App\Security\FacebookAuthenticator"
  "App\Security\GoogleAuthenticator"
  "App\Security\GithubAuthenticator"
  "App\Security\KeycloakAuthenticator"
]

Listeners

Listener Duration Response 
Symfony\Component\Security\Http\Firewall\ChannelListener {#723
  -map: Symfony\Component\Security\Http\AccessMap {#722 …}
  -logger: Monolog\Logger {#783 …}
  -httpPort: 80
  -httpsPort: 443
}
 0.00 ms (none) 
Symfony\Component\Security\Http\Firewall\ContextListener {#706
  -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage {#1017 …}
  -sessionKey: "_security_main"
  -logger: Monolog\Logger {#783 …}
  -userProviders: Symfony\Component\DependencyInjection\Argument\RewindableGenerator {#705 …}
  -dispatcher: Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher {#747 …}
  -registered: false
  -trustResolver: Scheb\TwoFactorBundle\Security\Authentication\AuthenticationTrustResolver {#780 …}
  -sessionTrackerEnabler: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage::enableUsageTracking(): void {#703 …}
}
 14.10 ms (none) 
Symfony\Component\Security\Http\Firewall\AuthenticatorManagerListener {#584
  -authenticatorManager: Symfony\Component\Security\Http\Authentication\AuthenticatorManager {#595 …}
}
 0.00 ms (none) 
Scheb\TwoFactorBundle\Security\Http\Firewall\TwoFactorAccessListener {#582
  -twoFactorFirewallConfig: Scheb\TwoFactorBundle\Security\TwoFactor\TwoFactorFirewallConfig {#842 …}
  -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …}
  -twoFactorAccessDecider: Scheb\TwoFactorBundle\Security\Authorization\TwoFactorAccessDecider {#581 …}
}
 0.06 ms (none) 
Symfony\Component\Security\Http\Firewall\AccessListener {#579
  -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …}
  -accessDecisionManager: Symfony\Component\Security\Core\Authorization\TraceableAccessDecisionManager {#937 …}
  -map: Symfony\Component\Security\Http\AccessMap {#722 …}
}
 0.00 ms (none) 
Symfony\Component\Security\Http\Firewall\LogoutListener {#786
  -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …}
  -options: [
    "csrf_parameter" => "_csrf_token"
    "csrf_token_id" => "logout"
    "logout_path" => "app_logout"
  ]
  -httpUtils: Symfony\Component\Security\Http\HttpUtils {#841 …}
  -csrfTokenManager: Symfony\Component\Security\Csrf\CsrfTokenManager {#1015 …}
  -eventDispatcher: Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher {#747 …}
}
 0.00 ms (none)

Authenticators

No authenticators have been recorded. Check previous profiles on your authentication endpoint.

Access Decision

affirmative Strategy
# Voter class
1 
"Symfony\Component\Security\Core\Authorization\Voter\AuthenticatedVoter"
2 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
3 
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
4 
"Symfony\Component\Security\Core\Authorization\Voter\ExpressionVoter"
5 
"App\Security\Voter\EntryCommentVoter"
6 
"App\Security\Voter\EntryVoter"
7 
"App\Security\Voter\MagazineVoter"
8 
"App\Security\Voter\MessageThreadVoter"
9 
"App\Security\Voter\MessageVoter"
10 
"App\Security\Voter\NotificationVoter"
11 
"App\Security\Voter\OAuth2UserConsentVoter"
12 
"App\Security\Voter\PostCommentVoter"
13 
"App\Security\Voter\PostVoter"
14 
"App\Security\Voter\UserVoter"

Access decision log

# Result Attributes Object
1 DENIED ROLE_USER 
null
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
2 DENIED moderate 
Proxies\__CG__\App\Entity\Entry {#1591
  +user: Proxies\__CG__\App\Entity\User {#1362 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: Proxies\__CG__\App\Entity\Image {#2096 …}
  +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
  +slug: "Just-a-PSA"
  +title: "Just a PSA"
  +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
  +body: null
  +type: "link"
  +lang: "en"
  +isOc: false
  +hasEmbed: true
  +commentCount: 102
  +favouriteCount: 929
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1728312011 {#2030
    date: 2024-10-07 16:40:11.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#2133 …}
  +votes: Doctrine\ORM\PersistentCollection {#2140 …}
  +reports: Doctrine\ORM\PersistentCollection {#2092 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
  +badges: Doctrine\ORM\PersistentCollection {#2338 …}
  +children: [
    4 => App\Entity\EntryComment {#1695
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 1
      +score: 0
      +lastActive: DateTime @1701859755 {#1433
        date: 2023-12-06 11:49:15.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1670 …}
      +nested: Doctrine\ORM\PersistentCollection {#1678 …}
      +votes: Doctrine\ORM\PersistentCollection {#1673 …}
      +reports: Doctrine\ORM\PersistentCollection {#1676 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
      -id: 201765
      -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5478925"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701859755 {#1430
        date: 2023-12-06 11:49:15.0 +01:00
      }
      +"title": 201765
    }
    3 => App\Entity\EntryComment {#1557
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1701873272 {#1558
        date: 2023-12-06 15:34:32.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1621 …}
      +nested: Doctrine\ORM\PersistentCollection {#1613 …}
      +votes: Doctrine\ORM\PersistentCollection {#1596 …}
      +reports: Doctrine\ORM\PersistentCollection {#1702 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
      -id: 202167
      -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5483013"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701873272 {#1556
        date: 2023-12-06 15:34:32.0 +01:00
      }
      +"title": 202167
    }
    1 => App\Entity\EntryComment {#1795
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 2
      +score: 0
      +lastActive: DateTime @1701877160 {#1686
        date: 2023-12-06 16:39:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
        "@veniasilente@lemm.ee"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1711 …}
      +nested: Doctrine\ORM\PersistentCollection {#1611 …}
      +votes: Doctrine\ORM\PersistentCollection {#1630 …}
      +reports: Doctrine\ORM\PersistentCollection {#1628 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
      -id: 202675
      -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5485061"
      +editedAt: DateTimeImmutable @1703252530 {#1691
        date: 2023-12-22 14:42:10.0 +01:00
      }
      +createdAt: DateTimeImmutable @1701877160 {#1692
        date: 2023-12-06 16:39:20.0 +01:00
      }
      +"title": 202675
    }
    2 => App\Entity\EntryComment {#1525
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 1
      +score: 0
      +lastActive: DateTime @1701863408 {#1578
        date: 2023-12-06 12:50:08.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1568 …}
      +nested: Doctrine\ORM\PersistentCollection {#1567 …}
      +votes: Doctrine\ORM\PersistentCollection {#1559 …}
      +reports: Doctrine\ORM\PersistentCollection {#1564 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
      -id: 201835
      -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5479755"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701863408 {#1561
        date: 2023-12-06 12:50:08.0 +01:00
      }
      +"title": 201835
    }
    0 => App\Entity\EntryComment {#1725
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1701881472 {#1617
        date: 2023-12-06 17:51:12.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1722 …}
      +nested: Doctrine\ORM\PersistentCollection {#1726 …}
      +votes: Doctrine\ORM\PersistentCollection {#1736 …}
      +reports: Doctrine\ORM\PersistentCollection {#1737 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
      -id: 203053
      -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5487436"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701881472 {#1731
        date: 2023-12-06 17:51:12.0 +01:00
      }
      +"title": 203053
    }
  ]
  -id: 20423
  -titleTs: "'psa':3"
  -bodyTs: null
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1701890574
  +visibility: "visible             "
  +apId: "https://lemmy.zip/post/6556311"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701804174 {#1697
    date: 2023-12-05 20:22:54.0 +01:00
  }
  +__isInitialized__: true
   …2
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS DENIED 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
3 DENIED edit 
Proxies\__CG__\App\Entity\Entry {#1591
  +user: Proxies\__CG__\App\Entity\User {#1362 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: Proxies\__CG__\App\Entity\Image {#2096 …}
  +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
  +slug: "Just-a-PSA"
  +title: "Just a PSA"
  +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
  +body: null
  +type: "link"
  +lang: "en"
  +isOc: false
  +hasEmbed: true
  +commentCount: 102
  +favouriteCount: 929
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1728312011 {#2030
    date: 2024-10-07 16:40:11.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#2133 …}
  +votes: Doctrine\ORM\PersistentCollection {#2140 …}
  +reports: Doctrine\ORM\PersistentCollection {#2092 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
  +badges: Doctrine\ORM\PersistentCollection {#2338 …}
  +children: [
    4 => App\Entity\EntryComment {#1695
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 1
      +score: 0
      +lastActive: DateTime @1701859755 {#1433
        date: 2023-12-06 11:49:15.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1670 …}
      +nested: Doctrine\ORM\PersistentCollection {#1678 …}
      +votes: Doctrine\ORM\PersistentCollection {#1673 …}
      +reports: Doctrine\ORM\PersistentCollection {#1676 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
      -id: 201765
      -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5478925"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701859755 {#1430
        date: 2023-12-06 11:49:15.0 +01:00
      }
      +"title": 201765
    }
    3 => App\Entity\EntryComment {#1557
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1701873272 {#1558
        date: 2023-12-06 15:34:32.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1621 …}
      +nested: Doctrine\ORM\PersistentCollection {#1613 …}
      +votes: Doctrine\ORM\PersistentCollection {#1596 …}
      +reports: Doctrine\ORM\PersistentCollection {#1702 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
      -id: 202167
      -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5483013"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701873272 {#1556
        date: 2023-12-06 15:34:32.0 +01:00
      }
      +"title": 202167
    }
    1 => App\Entity\EntryComment {#1795
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 2
      +score: 0
      +lastActive: DateTime @1701877160 {#1686
        date: 2023-12-06 16:39:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
        "@veniasilente@lemm.ee"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1711 …}
      +nested: Doctrine\ORM\PersistentCollection {#1611 …}
      +votes: Doctrine\ORM\PersistentCollection {#1630 …}
      +reports: Doctrine\ORM\PersistentCollection {#1628 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
      -id: 202675
      -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5485061"
      +editedAt: DateTimeImmutable @1703252530 {#1691
        date: 2023-12-22 14:42:10.0 +01:00
      }
      +createdAt: DateTimeImmutable @1701877160 {#1692
        date: 2023-12-06 16:39:20.0 +01:00
      }
      +"title": 202675
    }
    2 => App\Entity\EntryComment {#1525
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 1
      +score: 0
      +lastActive: DateTime @1701863408 {#1578
        date: 2023-12-06 12:50:08.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1568 …}
      +nested: Doctrine\ORM\PersistentCollection {#1567 …}
      +votes: Doctrine\ORM\PersistentCollection {#1559 …}
      +reports: Doctrine\ORM\PersistentCollection {#1564 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
      -id: 201835
      -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5479755"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701863408 {#1561
        date: 2023-12-06 12:50:08.0 +01:00
      }
      +"title": 201835
    }
    0 => App\Entity\EntryComment {#1725
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1701881472 {#1617
        date: 2023-12-06 17:51:12.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1722 …}
      +nested: Doctrine\ORM\PersistentCollection {#1726 …}
      +votes: Doctrine\ORM\PersistentCollection {#1736 …}
      +reports: Doctrine\ORM\PersistentCollection {#1737 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
      -id: 203053
      -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5487436"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701881472 {#1731
        date: 2023-12-06 17:51:12.0 +01:00
      }
      +"title": 203053
    }
  ]
  -id: 20423
  -titleTs: "'psa':3"
  -bodyTs: null
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1701890574
  +visibility: "visible             "
  +apId: "https://lemmy.zip/post/6556311"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701804174 {#1697
    date: 2023-12-05 20:22:54.0 +01:00
  }
  +__isInitialized__: true
   …2
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS DENIED 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
4 DENIED moderate 
Proxies\__CG__\App\Entity\Entry {#1591
  +user: Proxies\__CG__\App\Entity\User {#1362 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: Proxies\__CG__\App\Entity\Image {#2096 …}
  +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
  +slug: "Just-a-PSA"
  +title: "Just a PSA"
  +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
  +body: null
  +type: "link"
  +lang: "en"
  +isOc: false
  +hasEmbed: true
  +commentCount: 102
  +favouriteCount: 929
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1728312011 {#2030
    date: 2024-10-07 16:40:11.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#2133 …}
  +votes: Doctrine\ORM\PersistentCollection {#2140 …}
  +reports: Doctrine\ORM\PersistentCollection {#2092 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
  +badges: Doctrine\ORM\PersistentCollection {#2338 …}
  +children: [
    4 => App\Entity\EntryComment {#1695
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 1
      +score: 0
      +lastActive: DateTime @1701859755 {#1433
        date: 2023-12-06 11:49:15.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1670 …}
      +nested: Doctrine\ORM\PersistentCollection {#1678 …}
      +votes: Doctrine\ORM\PersistentCollection {#1673 …}
      +reports: Doctrine\ORM\PersistentCollection {#1676 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
      -id: 201765
      -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5478925"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701859755 {#1430
        date: 2023-12-06 11:49:15.0 +01:00
      }
      +"title": 201765
    }
    3 => App\Entity\EntryComment {#1557
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1701873272 {#1558
        date: 2023-12-06 15:34:32.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1621 …}
      +nested: Doctrine\ORM\PersistentCollection {#1613 …}
      +votes: Doctrine\ORM\PersistentCollection {#1596 …}
      +reports: Doctrine\ORM\PersistentCollection {#1702 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
      -id: 202167
      -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5483013"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701873272 {#1556
        date: 2023-12-06 15:34:32.0 +01:00
      }
      +"title": 202167
    }
    1 => App\Entity\EntryComment {#1795
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 2
      +score: 0
      +lastActive: DateTime @1701877160 {#1686
        date: 2023-12-06 16:39:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
        "@veniasilente@lemm.ee"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1711 …}
      +nested: Doctrine\ORM\PersistentCollection {#1611 …}
      +votes: Doctrine\ORM\PersistentCollection {#1630 …}
      +reports: Doctrine\ORM\PersistentCollection {#1628 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
      -id: 202675
      -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5485061"
      +editedAt: DateTimeImmutable @1703252530 {#1691
        date: 2023-12-22 14:42:10.0 +01:00
      }
      +createdAt: DateTimeImmutable @1701877160 {#1692
        date: 2023-12-06 16:39:20.0 +01:00
      }
      +"title": 202675
    }
    2 => App\Entity\EntryComment {#1525
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 1
      +score: 0
      +lastActive: DateTime @1701863408 {#1578
        date: 2023-12-06 12:50:08.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1568 …}
      +nested: Doctrine\ORM\PersistentCollection {#1567 …}
      +votes: Doctrine\ORM\PersistentCollection {#1559 …}
      +reports: Doctrine\ORM\PersistentCollection {#1564 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
      -id: 201835
      -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5479755"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701863408 {#1561
        date: 2023-12-06 12:50:08.0 +01:00
      }
      +"title": 201835
    }
    0 => App\Entity\EntryComment {#1725
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
      +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1701881472 {#1617
        date: 2023-12-06 17:51:12.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@possiblylinux127@lemmy.zip"
        "@doctorn@r.nf"
        "@hemko@lemmy.dbzer0.com"
        "@scinde@discuss.tchncs.de"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1722 …}
      +nested: Doctrine\ORM\PersistentCollection {#1726 …}
      +votes: Doctrine\ORM\PersistentCollection {#1736 …}
      +reports: Doctrine\ORM\PersistentCollection {#1737 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
      -id: 203053
      -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://discuss.tchncs.de/comment/5487436"
      +editedAt: null
      +createdAt: DateTimeImmutable @1701881472 {#1731
        date: 2023-12-06 17:51:12.0 +01:00
      }
      +"title": 203053
    }
  ]
  -id: 20423
  -titleTs: "'psa':3"
  -bodyTs: null
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1701890574
  +visibility: "visible             "
  +apId: "https://lemmy.zip/post/6556311"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701804174 {#1697
    date: 2023-12-05 20:22:54.0 +01:00
  }
  +__isInitialized__: true
   …2
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS DENIED 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
5 DENIED ROLE_USER 
null
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
6 DENIED moderate 
App\Entity\EntryComment {#1695
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695}
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1701859755 {#1433
    date: 2023-12-06 11:49:15.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1670 …}
  +nested: Doctrine\ORM\PersistentCollection {#1678 …}
  +votes: Doctrine\ORM\PersistentCollection {#1673 …}
  +reports: Doctrine\ORM\PersistentCollection {#1676 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
  -id: 201765
  -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5478925"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701859755 {#1430
    date: 2023-12-06 11:49:15.0 +01:00
  }
  +"title": 201765
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
7 DENIED edit 
App\Entity\EntryComment {#1695
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695}
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1701859755 {#1433
    date: 2023-12-06 11:49:15.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1670 …}
  +nested: Doctrine\ORM\PersistentCollection {#1678 …}
  +votes: Doctrine\ORM\PersistentCollection {#1673 …}
  +reports: Doctrine\ORM\PersistentCollection {#1676 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
  -id: 201765
  -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5478925"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701859755 {#1430
    date: 2023-12-06 11:49:15.0 +01:00
  }
  +"title": 201765
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
8 DENIED moderate 
App\Entity\EntryComment {#1695
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695}
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1701859755 {#1433
    date: 2023-12-06 11:49:15.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1670 …}
  +nested: Doctrine\ORM\PersistentCollection {#1678 …}
  +votes: Doctrine\ORM\PersistentCollection {#1673 …}
  +reports: Doctrine\ORM\PersistentCollection {#1676 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
  -id: 201765
  -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5478925"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701859755 {#1430
    date: 2023-12-06 11:49:15.0 +01:00
  }
  +"title": 201765
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
9 DENIED ROLE_USER 
null
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
10 DENIED moderate 
App\Entity\EntryComment {#1557
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557}
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1701873272 {#1558
    date: 2023-12-06 15:34:32.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1621 …}
  +nested: Doctrine\ORM\PersistentCollection {#1613 …}
  +votes: Doctrine\ORM\PersistentCollection {#1596 …}
  +reports: Doctrine\ORM\PersistentCollection {#1702 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
  -id: 202167
  -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5483013"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701873272 {#1556
    date: 2023-12-06 15:34:32.0 +01:00
  }
  +"title": 202167
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
11 DENIED edit 
App\Entity\EntryComment {#1557
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557}
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1701873272 {#1558
    date: 2023-12-06 15:34:32.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1621 …}
  +nested: Doctrine\ORM\PersistentCollection {#1613 …}
  +votes: Doctrine\ORM\PersistentCollection {#1596 …}
  +reports: Doctrine\ORM\PersistentCollection {#1702 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
  -id: 202167
  -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5483013"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701873272 {#1556
    date: 2023-12-06 15:34:32.0 +01:00
  }
  +"title": 202167
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
12 DENIED moderate 
App\Entity\EntryComment {#1557
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557}
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1701873272 {#1558
    date: 2023-12-06 15:34:32.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1621 …}
  +nested: Doctrine\ORM\PersistentCollection {#1613 …}
  +votes: Doctrine\ORM\PersistentCollection {#1596 …}
  +reports: Doctrine\ORM\PersistentCollection {#1702 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
  -id: 202167
  -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5483013"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701873272 {#1556
    date: 2023-12-06 15:34:32.0 +01:00
  }
  +"title": 202167
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
13 DENIED ROLE_USER 
null
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
14 DENIED moderate 
App\Entity\EntryComment {#1795
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795}
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1701877160 {#1686
    date: 2023-12-06 16:39:20.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
    "@veniasilente@lemm.ee"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1711 …}
  +nested: Doctrine\ORM\PersistentCollection {#1611 …}
  +votes: Doctrine\ORM\PersistentCollection {#1630 …}
  +reports: Doctrine\ORM\PersistentCollection {#1628 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
  -id: 202675
  -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5485061"
  +editedAt: DateTimeImmutable @1703252530 {#1691
    date: 2023-12-22 14:42:10.0 +01:00
  }
  +createdAt: DateTimeImmutable @1701877160 {#1692
    date: 2023-12-06 16:39:20.0 +01:00
  }
  +"title": 202675
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
15 DENIED edit 
App\Entity\EntryComment {#1795
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795}
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1701877160 {#1686
    date: 2023-12-06 16:39:20.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
    "@veniasilente@lemm.ee"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1711 …}
  +nested: Doctrine\ORM\PersistentCollection {#1611 …}
  +votes: Doctrine\ORM\PersistentCollection {#1630 …}
  +reports: Doctrine\ORM\PersistentCollection {#1628 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
  -id: 202675
  -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5485061"
  +editedAt: DateTimeImmutable @1703252530 {#1691
    date: 2023-12-22 14:42:10.0 +01:00
  }
  +createdAt: DateTimeImmutable @1701877160 {#1692
    date: 2023-12-06 16:39:20.0 +01:00
  }
  +"title": 202675
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
16 DENIED moderate 
App\Entity\EntryComment {#1795
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795}
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1701877160 {#1686
    date: 2023-12-06 16:39:20.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
    "@veniasilente@lemm.ee"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1711 …}
  +nested: Doctrine\ORM\PersistentCollection {#1611 …}
  +votes: Doctrine\ORM\PersistentCollection {#1630 …}
  +reports: Doctrine\ORM\PersistentCollection {#1628 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
  -id: 202675
  -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5485061"
  +editedAt: DateTimeImmutable @1703252530 {#1691
    date: 2023-12-22 14:42:10.0 +01:00
  }
  +createdAt: DateTimeImmutable @1701877160 {#1692
    date: 2023-12-06 16:39:20.0 +01:00
  }
  +"title": 202675
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
17 DENIED ROLE_USER 
null
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
18 DENIED moderate 
App\Entity\EntryComment {#1525
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525}
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1701863408 {#1578
    date: 2023-12-06 12:50:08.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1568 …}
  +nested: Doctrine\ORM\PersistentCollection {#1567 …}
  +votes: Doctrine\ORM\PersistentCollection {#1559 …}
  +reports: Doctrine\ORM\PersistentCollection {#1564 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
  -id: 201835
  -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5479755"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701863408 {#1561
    date: 2023-12-06 12:50:08.0 +01:00
  }
  +"title": 201835
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
19 DENIED edit 
App\Entity\EntryComment {#1525
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525}
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1701863408 {#1578
    date: 2023-12-06 12:50:08.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1568 …}
  +nested: Doctrine\ORM\PersistentCollection {#1567 …}
  +votes: Doctrine\ORM\PersistentCollection {#1559 …}
  +reports: Doctrine\ORM\PersistentCollection {#1564 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
  -id: 201835
  -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5479755"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701863408 {#1561
    date: 2023-12-06 12:50:08.0 +01:00
  }
  +"title": 201835
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
20 DENIED moderate 
App\Entity\EntryComment {#1525
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525}
      0 => App\Entity\EntryComment {#1725
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701881472 {#1617
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1722 …}
        +nested: Doctrine\ORM\PersistentCollection {#1726 …}
        +votes: Doctrine\ORM\PersistentCollection {#1736 …}
        +reports: Doctrine\ORM\PersistentCollection {#1737 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
        -id: 203053
        -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5487436"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701881472 {#1731
          date: 2023-12-06 17:51:12.0 +01:00
        }
        +"title": 203053
      }
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1701863408 {#1578
    date: 2023-12-06 12:50:08.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1568 …}
  +nested: Doctrine\ORM\PersistentCollection {#1567 …}
  +votes: Doctrine\ORM\PersistentCollection {#1559 …}
  +reports: Doctrine\ORM\PersistentCollection {#1564 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
  -id: 201835
  -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5479755"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701863408 {#1561
    date: 2023-12-06 12:50:08.0 +01:00
  }
  +"title": 201835
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
21 DENIED ROLE_USER 
null
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
22 DENIED moderate 
App\Entity\EntryComment {#1725
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725}
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1701881472 {#1617
    date: 2023-12-06 17:51:12.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1722 …}
  +nested: Doctrine\ORM\PersistentCollection {#1726 …}
  +votes: Doctrine\ORM\PersistentCollection {#1736 …}
  +reports: Doctrine\ORM\PersistentCollection {#1737 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
  -id: 203053
  -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5487436"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701881472 {#1731
    date: 2023-12-06 17:51:12.0 +01:00
  }
  +"title": 203053
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
23 DENIED edit 
App\Entity\EntryComment {#1725
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725}
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1701881472 {#1617
    date: 2023-12-06 17:51:12.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1722 …}
  +nested: Doctrine\ORM\PersistentCollection {#1726 …}
  +votes: Doctrine\ORM\PersistentCollection {#1736 …}
  +reports: Doctrine\ORM\PersistentCollection {#1737 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
  -id: 203053
  -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5487436"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701881472 {#1731
    date: 2023-12-06 17:51:12.0 +01:00
  }
  +"title": 203053
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
24 DENIED moderate 
App\Entity\EntryComment {#1725
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1591
    +user: Proxies\__CG__\App\Entity\User {#1362 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
    +image: Proxies\__CG__\App\Entity\Image {#2096 …}
    +domain: Proxies\__CG__\App\Entity\Domain {#2129 …}
    +slug: "Just-a-PSA"
    +title: "Just a PSA"
    +url: "https://lemmy.zip/pictrs/image/1062c651-6c60-4a3f-81b4-80ae320b626f.webp"
    +body: null
    +type: "link"
    +lang: "en"
    +isOc: false
    +hasEmbed: true
    +commentCount: 102
    +favouriteCount: 929
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1728312011 {#2030
      date: 2024-10-07 16:40:11.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2133 …}
    +votes: Doctrine\ORM\PersistentCollection {#2140 …}
    +reports: Doctrine\ORM\PersistentCollection {#2092 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2333 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2191 …}
    +badges: Doctrine\ORM\PersistentCollection {#2338 …}
    +children: [
      4 => App\Entity\EntryComment {#1695
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1668 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "It’s probably to protect against any potential security vulnerabilities in the text editor program itself, not to protect you from yourself."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701859755 {#1433
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1670 …}
        +nested: Doctrine\ORM\PersistentCollection {#1678 …}
        +votes: Doctrine\ORM\PersistentCollection {#1673 …}
        +reports: Doctrine\ORM\PersistentCollection {#1676 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1586 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1572 …}
        -id: 201765
        -bodyTs: "'editor':14 'potenti':8 'probabl':3 'program':15 'protect':5,19 'secur':9 'text':13 'vulner':10"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5478925"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701859755 {#1430
          date: 2023-12-06 11:49:15.0 +01:00
        }
        +"title": 201765
      }
      3 => App\Entity\EntryComment {#1557
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1555 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1701873272 {#1558
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1621 …}
        +nested: Doctrine\ORM\PersistentCollection {#1613 …}
        +votes: Doctrine\ORM\PersistentCollection {#1596 …}
        +reports: Doctrine\ORM\PersistentCollection {#1702 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1683 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1680 …}
        -id: 202167
        -bodyTs: "'attack':32 'call':28 'cannot':21 'escal':31 'fix':43 'found':46 'get':5,23,42 'kernel':40 'mean':4 'modifi':10 'permiss':25 'privileg':30 'program':13 'quick':44 'root':6,24 'run':17 'serious':36 'su':11 'user':20 'vulner':37"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5483013"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701873272 {#1556
          date: 2023-12-06 15:34:32.0 +01:00
        }
        +"title": 202167
      }
      1 => App\Entity\EntryComment {#1795
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1705 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1701877160 {#1686
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
          "@veniasilente@lemm.ee"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1711 …}
        +nested: Doctrine\ORM\PersistentCollection {#1611 …}
        +votes: Doctrine\ORM\PersistentCollection {#1630 …}
        +reports: Doctrine\ORM\PersistentCollection {#1628 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1599 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1625 …}
        -id: 202675
        -bodyTs: "'attack':98 'certain':55 'comment':8 'design':18 'even':68 'fewer':66 'focus':36,78 'imposs':46 'inher':25 'keep':59 'less':30 'let':84 'like':2 'lot':65 'mind':22 'minim':94 'need':14,71 'non':34,76 'occur':56,60 'permiss':73 'point':91 'program':12,37,50,79,86 'repli':4 'root':15,72 'say':42 'secur':20,27,35,49,77 'shouldn':82 'still':81 'surfac':96 'vulner':31,53 'whole':90"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5485061"
        +editedAt: DateTimeImmutable @1703252530 {#1691
          date: 2023-12-22 14:42:10.0 +01:00
        }
        +createdAt: DateTimeImmutable @1701877160 {#1692
          date: 2023-12-06 16:39:20.0 +01:00
        }
        +"title": 202675
      }
      2 => App\Entity\EntryComment {#1525
        +user: App\Entity\User {#264 …}
        +entry: Proxies\__CG__\App\Entity\Entry {#1591 …2}
        +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
        +image: null
        +parent: Proxies\__CG__\App\Entity\EntryComment {#1527 …}
        +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
        +body: "Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 1
        +score: 0
        +lastActive: DateTime @1701863408 {#1578
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@possiblylinux127@lemmy.zip"
          "@doctorn@r.nf"
          "@hemko@lemmy.dbzer0.com"
          "@scinde@discuss.tchncs.de"
        ]
        +children: Doctrine\ORM\PersistentCollection {#1568 …}
        +nested: Doctrine\ORM\PersistentCollection {#1567 …}
        +votes: Doctrine\ORM\PersistentCollection {#1559 …}
        +reports: Doctrine\ORM\PersistentCollection {#1564 …}
        +favourites: Doctrine\ORM\PersistentCollection {#1563 …}
        +notifications: Doctrine\ORM\PersistentCollection {#1565 …}
        -id: 201835
        -bodyTs: "'abl':55 'although':20 'could':47 'design':6 'editor':17 'even':49 'help':42 'impact':45 'like':24 'lot':59 'malici':32 'mind':10 'mitig':43 'program':14,33 'root':40 'run':30 'secur':8,13 'specif':5 'still':53 'sudo':3 'sure':1 'text':16 'though':50 'trust':26 'user':36,62 'vim':27 'vscode':29 'wherea':15"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://discuss.tchncs.de/comment/5479755"
        +editedAt: null
        +createdAt: DateTimeImmutable @1701863408 {#1561
          date: 2023-12-06 12:50:08.0 +01:00
        }
        +"title": 201835
      }
      0 => App\Entity\EntryComment {#1725}
    ]
    -id: 20423
    -titleTs: "'psa':3"
    -bodyTs: null
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1701890574
    +visibility: "visible             "
    +apId: "https://lemmy.zip/post/6556311"
    +editedAt: null
    +createdAt: DateTimeImmutable @1701804174 {#1697
      date: 2023-12-05 20:22:54.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1584 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1723 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1667 …}
  +body: "Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano)."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1701881472 {#1617
    date: 2023-12-06 17:51:12.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@possiblylinux127@lemmy.zip"
    "@doctorn@r.nf"
    "@hemko@lemmy.dbzer0.com"
    "@scinde@discuss.tchncs.de"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1722 …}
  +nested: Doctrine\ORM\PersistentCollection {#1726 …}
  +votes: Doctrine\ORM\PersistentCollection {#1736 …}
  +reports: Doctrine\ORM\PersistentCollection {#1737 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1732 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1735 …}
  -id: 203053
  -bodyTs: "'addit':60 'algorithm':35 'appli':4 'attack':53,58,74 'channel':57 'cours':2 'cryptographi':23 'differ':50 'editor':104 'establish':30 'exampl':17,55 'give':91 'i.e':46 'implement':63 'kind':51 'librari':31,39 'like':105 'mind':45 'minim':70 'nano':106 'need':99 'one':83 'other':15 'permiss':93 'point':67 'program':10,26,95 'proper':64 'protect':48 'root':92 'secur':43,81 'side':56 'softwar':7 'surfac':72 'system':78 'text':103 'use':28 'vulner':13 'want':20 'way':84 'whole':66 'write':33 'written':41"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5487436"
  +editedAt: null
  +createdAt: DateTimeImmutable @1701881472 {#1731
    date: 2023-12-06 17:51:12.0 +01:00
  }
  +"title": 203053
}
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryCommentVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
25 DENIED ROLE_ADMIN 
null
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details
26 DENIED ROLE_MODERATOR 
null
 
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
 ACCESS ABSTAIN 
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
 ACCESS DENIED 
"App\Security\Voter\EntryCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\EntryVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MagazineVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageThreadVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\MessageVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\NotificationVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\OAuth2UserConsentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostCommentVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\PostVoter"
 ACCESS ABSTAIN 
"App\Security\Voter\UserVoter"
 ACCESS ABSTAIN
Show voter details