Symfony Profiler

Security

Token

There is no security token.

Firewall

main Name

Security enabled

Stateless

Configuration

Key	Value
provider	security.user.provider.concrete.app_user_provider
context	main
entry_point	App\Security\KbinAuthenticator
user_checker	App\Security\UserChecker
access_denied_handler	(none)
access_denied_url	(none)
authenticators	[`"two_factor" "remember_me" "App\Security\KbinAuthenticator" "App\Security\FacebookAuthenticator" "App\Security\GoogleAuthenticator" "App\Security\GithubAuthenticator" "App\Security\KeycloakAuthenticator"`]

Listeners

Listener	Duration	Response
Symfony\Component\Security\Http\Firewall\ChannelListener {#723`-map: Symfony\Component\Security\Http\AccessMap {#722 …} -logger: Monolog\Logger {#783 …} -httpPort: 80 -httpsPort: 443`}	0.00 ms	(none)
Symfony\Component\Security\Http\Firewall\ContextListener {#706-tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage {#1017 …} -sessionKey: "_security_main" -logger: Monolog\Logger {#783 …} -userProviders: Symfony\Component\DependencyInjection\Argument\RewindableGenerator {#705 …} -dispatcher: Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher {#747 …} -registered: false -trustResolver: Scheb\TwoFactorBundle\Security\Authentication\AuthenticationTrustResolver {#780 …} -sessionTrackerEnabler: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage::enableUsageTracking(): void {#703 …}}	168.18 ms	(none)
Symfony\Component\Security\Http\Firewall\AuthenticatorManagerListener {#584`-authenticatorManager: Symfony\Component\Security\Http\Authentication\AuthenticatorManager {#595 …}`}	0.00 ms	(none)
Scheb\TwoFactorBundle\Security\Http\Firewall\TwoFactorAccessListener {#582`-twoFactorFirewallConfig: Scheb\TwoFactorBundle\Security\TwoFactor\TwoFactorFirewallConfig {#842 …} -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …} -twoFactorAccessDecider: Scheb\TwoFactorBundle\Security\Authorization\TwoFactorAccessDecider {#581 …}`}	0.51 ms	(none)
Symfony\Component\Security\Http\Firewall\AccessListener {#579`-tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …} -accessDecisionManager: Symfony\Component\Security\Core\Authorization\TraceableAccessDecisionManager {#937 …} -map: Symfony\Component\Security\Http\AccessMap {#722 …}`}	0.22 ms	(none)
Symfony\Component\Security\Http\Firewall\LogoutListener {#786`-tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …} -options: [ "csrf_parameter" => "_csrf_token" "csrf_token_id" => "logout" "logout_path" => "app_logout" ] -httpUtils: Symfony\Component\Security\Http\HttpUtils {#841 …} -csrfTokenManager: Symfony\Component\Security\Csrf\CsrfTokenManager {#1015 …} -eventDispatcher: Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher {#747 …}`}	0.00 ms	(none)

Authenticators

No authenticators have been recorded. Check previous profiles on your authentication endpoint.

Access Decision

affirmative Strategy


"Symfony\Component\Security\Core\Authorization\Voter\AuthenticatedVoter"
"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
"Symfony\Component\Security\Core\Authorization\Voter\ExpressionVoter"
"App\Security\Voter\EntryCommentVoter"
"App\Security\Voter\EntryVoter"
"App\Security\Voter\MagazineVoter"
"App\Security\Voter\MessageThreadVoter"
"App\Security\Voter\MessageVoter"
"App\Security\Voter\NotificationVoter"
"App\Security\Voter\OAuth2UserConsentVoter"
"App\Security\Voter\PostCommentVoter"
"App\Security\Voter\PostVoter"
"App\Security\Voter\UserVoter"

#	Voter class
1	"Symfony\Component\Security\Core\Authorization\Voter\AuthenticatedVoter"
2	"Scheb\TwoFactorBundle\Security\Authorization\Voter\TwoFactorInProgressVoter"
3	"Symfony\Component\Security\Core\Authorization\Voter\RoleHierarchyVoter"
4	"Symfony\Component\Security\Core\Authorization\Voter\ExpressionVoter"
5	"App\Security\Voter\EntryCommentVoter"
6	"App\Security\Voter\EntryVoter"
7	"App\Security\Voter\MagazineVoter"
8	"App\Security\Voter\MessageThreadVoter"
9	"App\Security\Voter\MessageVoter"
10	"App\Security\Voter\NotificationVoter"
11	"App\Security\Voter\OAuth2UserConsentVoter"
12	"App\Security\Voter\PostCommentVoter"
13	"App\Security\Voter\PostVoter"
14	"App\Security\Voter\UserVoter"

Access decision log


null
"App\Security\Voter\UserVoter"
App\Entity\Entry {#2412
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +magazine: App\Entity\Magazine {#264
    +icon: Proxies\__CG__\App\Entity\Image {#245 …}
    +name: "linux@lemmy.ml"
    +title: "linux"
    +description: """
      From Wikipedia, the free encyclopedia\n
      \n
      Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
      \n
      Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
      \n
      ### Rules\n
      \n
      - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
      - No misinformation\n
      - No NSFW content\n
      - No hate speech, bigotry, etc\n
      \n
      ### Related Communities\n
      \n
      - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
      - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
      - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
      - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
      \n
      Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
      """
    +rules: null
    +subscriptionsCount: 1
    +entryCount: 1406
    +entryCommentCount: 28632
    +postCount: 6
    +postCommentCount: 214
    +isAdult: false
    +customCss: null
    +lastActive: DateTime @1729583542 {#274
      date: 2024-10-22 09:52:22.0 +02:00
    }
    +markedForDeletionAt: null
    +tags: null
    +moderators: Doctrine\ORM\PersistentCollection {#236 …}
    +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
    +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
    +entries: Doctrine\ORM\PersistentCollection {#179 …}
    +posts: Doctrine\ORM\PersistentCollection {#137 …}
    +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
    +bans: Doctrine\ORM\PersistentCollection {#116 …}
    +reports: Doctrine\ORM\PersistentCollection {#102 …}
    +badges: Doctrine\ORM\PersistentCollection {#80 …}
    +logs: Doctrine\ORM\PersistentCollection {#70 …}
    +awards: Doctrine\ORM\PersistentCollection {#1360 …}
    +categories: Doctrine\ORM\PersistentCollection {#1792 …}
    -id: 73
    +apId: "linux@lemmy.ml"
    +apProfileId: "https://lemmy.ml/c/linux"
    +apPublicUrl: "https://lemmy.ml/c/linux"
    +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
    +apInboxUrl: "https://lemmy.ml/inbox"
    +apDomain: "lemmy.ml"
    +apPreferredUsername: "linux"
    +apDiscoverable: true
    +apManuallyApprovesFollowers: null
    +privateKey: null
    +publicKey: null
    +apFetchedAt: DateTime @1729583596 {#268
      date: 2024-10-22 09:53:16.0 +02:00
    }
    +apDeletedAt: null
    +apTimeoutAt: null
    +visibility: "visible             "
    +createdAt: DateTimeImmutable @1698929468 {#270
      date: 2023-11-02 13:51:08.0 +01:00
    }
  }
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
  +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
  +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
  +url: null
  +body: """
    Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
    \n
    It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
    \n
    Thanks in advance.
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 28
  +favouriteCount: 41
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1700701501 {#2418
    date: 2023-11-23 02:05:01.0 +01:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1688 …}
  +votes: Doctrine\ORM\PersistentCollection {#1966 …}
  +reports: Doctrine\ORM\PersistentCollection {#1965 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
  +badges: Doctrine\ORM\PersistentCollection {#2439 …}
  +children: []
  -id: 15233
  -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
  -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1700690925
  +visibility: "visible             "
  +apId: "https://lemmy.world/post/8579713"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700604525 {#1858
    date: 2023-11-21 23:08:45.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\Entry {#2412
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +magazine: App\Entity\Magazine {#264
    +icon: Proxies\__CG__\App\Entity\Image {#245 …}
    +name: "linux@lemmy.ml"
    +title: "linux"
    +description: """
      From Wikipedia, the free encyclopedia\n
      \n
      Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
      \n
      Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
      \n
      ### Rules\n
      \n
      - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
      - No misinformation\n
      - No NSFW content\n
      - No hate speech, bigotry, etc\n
      \n
      ### Related Communities\n
      \n
      - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
      - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
      - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
      - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
      \n
      Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
      """
    +rules: null
    +subscriptionsCount: 1
    +entryCount: 1406
    +entryCommentCount: 28632
    +postCount: 6
    +postCommentCount: 214
    +isAdult: false
    +customCss: null
    +lastActive: DateTime @1729583542 {#274
      date: 2024-10-22 09:52:22.0 +02:00
    }
    +markedForDeletionAt: null
    +tags: null
    +moderators: Doctrine\ORM\PersistentCollection {#236 …}
    +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
    +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
    +entries: Doctrine\ORM\PersistentCollection {#179 …}
    +posts: Doctrine\ORM\PersistentCollection {#137 …}
    +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
    +bans: Doctrine\ORM\PersistentCollection {#116 …}
    +reports: Doctrine\ORM\PersistentCollection {#102 …}
    +badges: Doctrine\ORM\PersistentCollection {#80 …}
    +logs: Doctrine\ORM\PersistentCollection {#70 …}
    +awards: Doctrine\ORM\PersistentCollection {#1360 …}
    +categories: Doctrine\ORM\PersistentCollection {#1792 …}
    -id: 73
    +apId: "linux@lemmy.ml"
    +apProfileId: "https://lemmy.ml/c/linux"
    +apPublicUrl: "https://lemmy.ml/c/linux"
    +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
    +apInboxUrl: "https://lemmy.ml/inbox"
    +apDomain: "lemmy.ml"
    +apPreferredUsername: "linux"
    +apDiscoverable: true
    +apManuallyApprovesFollowers: null
    +privateKey: null
    +publicKey: null
    +apFetchedAt: DateTime @1729583596 {#268
      date: 2024-10-22 09:53:16.0 +02:00
    }
    +apDeletedAt: null
    +apTimeoutAt: null
    +visibility: "visible             "
    +createdAt: DateTimeImmutable @1698929468 {#270
      date: 2023-11-02 13:51:08.0 +01:00
    }
  }
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
  +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
  +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
  +url: null
  +body: """
    Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
    \n
    It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
    \n
    Thanks in advance.
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 28
  +favouriteCount: 41
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1700701501 {#2418
    date: 2023-11-23 02:05:01.0 +01:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1688 …}
  +votes: Doctrine\ORM\PersistentCollection {#1966 …}
  +reports: Doctrine\ORM\PersistentCollection {#1965 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
  +badges: Doctrine\ORM\PersistentCollection {#2439 …}
  +children: []
  -id: 15233
  -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
  -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1700690925
  +visibility: "visible             "
  +apId: "https://lemmy.world/post/8579713"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700604525 {#1858
    date: 2023-11-21 23:08:45.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\Entry {#2412
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +magazine: App\Entity\Magazine {#264
    +icon: Proxies\__CG__\App\Entity\Image {#245 …}
    +name: "linux@lemmy.ml"
    +title: "linux"
    +description: """
      From Wikipedia, the free encyclopedia\n
      \n
      Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
      \n
      Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
      \n
      ### Rules\n
      \n
      - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
      - No misinformation\n
      - No NSFW content\n
      - No hate speech, bigotry, etc\n
      \n
      ### Related Communities\n
      \n
      - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
      - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
      - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
      - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
      \n
      Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
      """
    +rules: null
    +subscriptionsCount: 1
    +entryCount: 1406
    +entryCommentCount: 28632
    +postCount: 6
    +postCommentCount: 214
    +isAdult: false
    +customCss: null
    +lastActive: DateTime @1729583542 {#274
      date: 2024-10-22 09:52:22.0 +02:00
    }
    +markedForDeletionAt: null
    +tags: null
    +moderators: Doctrine\ORM\PersistentCollection {#236 …}
    +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
    +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
    +entries: Doctrine\ORM\PersistentCollection {#179 …}
    +posts: Doctrine\ORM\PersistentCollection {#137 …}
    +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
    +bans: Doctrine\ORM\PersistentCollection {#116 …}
    +reports: Doctrine\ORM\PersistentCollection {#102 …}
    +badges: Doctrine\ORM\PersistentCollection {#80 …}
    +logs: Doctrine\ORM\PersistentCollection {#70 …}
    +awards: Doctrine\ORM\PersistentCollection {#1360 …}
    +categories: Doctrine\ORM\PersistentCollection {#1792 …}
    -id: 73
    +apId: "linux@lemmy.ml"
    +apProfileId: "https://lemmy.ml/c/linux"
    +apPublicUrl: "https://lemmy.ml/c/linux"
    +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
    +apInboxUrl: "https://lemmy.ml/inbox"
    +apDomain: "lemmy.ml"
    +apPreferredUsername: "linux"
    +apDiscoverable: true
    +apManuallyApprovesFollowers: null
    +privateKey: null
    +publicKey: null
    +apFetchedAt: DateTime @1729583596 {#268
      date: 2024-10-22 09:53:16.0 +02:00
    }
    +apDeletedAt: null
    +apTimeoutAt: null
    +visibility: "visible             "
    +createdAt: DateTimeImmutable @1698929468 {#270
      date: 2023-11-02 13:51:08.0 +01:00
    }
  }
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
  +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
  +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
  +url: null
  +body: """
    Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
    \n
    It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
    \n
    Thanks in advance.
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 28
  +favouriteCount: 41
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1700701501 {#2418
    date: 2023-11-23 02:05:01.0 +01:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1688 …}
  +votes: Doctrine\ORM\PersistentCollection {#1966 …}
  +reports: Doctrine\ORM\PersistentCollection {#1965 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
  +badges: Doctrine\ORM\PersistentCollection {#2439 …}
  +children: []
  -id: 15233
  -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
  -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1700690925
  +visibility: "visible             "
  +apId: "https://lemmy.world/post/8579713"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700604525 {#1858
    date: 2023-11-21 23:08:45.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4035
  +user: App\Entity\User {#3983 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: """
    Do you run docker container in privileged mode? [phoenixnap.com/kb/docker-privileged](https://phoenixnap.com/kb/docker-privileged)\n
    \n
    And do you run nano inside the container?\n
    \n
    Docker container running in privileged mode has root permissions to host filesystem and devices (limited by said restrictions).
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 7
  +score: 0
  +lastActive: DateTime @1700627280 {#4044
    date: 2023-11-22 05:28:00.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4033 …}
  +nested: Doctrine\ORM\PersistentCollection {#4031 …}
  +votes: Doctrine\ORM\PersistentCollection {#4029 …}
  +reports: Doctrine\ORM\PersistentCollection {#4027 …}
  +favourites: Doctrine\ORM\PersistentCollection {#3995 …}
  +notifications: Doctrine\ORM\PersistentCollection {#3999 …}
  -id: 149604
  -bodyTs: "'/kb/docker-privileged](https://phoenixnap.com/kb/docker-privileged)':11 'contain':5,19,21 'devic':33 'docker':4,20 'filesystem':31 'host':30 'insid':17 'limit':34 'mode':8,25 'nano':16 'permiss':28 'phoenixnap.com':10 'phoenixnap.com/kb/docker-privileged](https://phoenixnap.com/kb/docker-privileged)':9 'privileg':7,24 'restrict':37 'root':27 'run':3,15,22 'said':36"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://sopuli.xyz/comment/4799032"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700627280 {#3980
    date: 2023-11-22 05:28:00.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4035
  +user: App\Entity\User {#3983 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: """
    Do you run docker container in privileged mode? [phoenixnap.com/kb/docker-privileged](https://phoenixnap.com/kb/docker-privileged)\n
    \n
    And do you run nano inside the container?\n
    \n
    Docker container running in privileged mode has root permissions to host filesystem and devices (limited by said restrictions).
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 7
  +score: 0
  +lastActive: DateTime @1700627280 {#4044
    date: 2023-11-22 05:28:00.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4033 …}
  +nested: Doctrine\ORM\PersistentCollection {#4031 …}
  +votes: Doctrine\ORM\PersistentCollection {#4029 …}
  +reports: Doctrine\ORM\PersistentCollection {#4027 …}
  +favourites: Doctrine\ORM\PersistentCollection {#3995 …}
  +notifications: Doctrine\ORM\PersistentCollection {#3999 …}
  -id: 149604
  -bodyTs: "'/kb/docker-privileged](https://phoenixnap.com/kb/docker-privileged)':11 'contain':5,19,21 'devic':33 'docker':4,20 'filesystem':31 'host':30 'insid':17 'limit':34 'mode':8,25 'nano':16 'permiss':28 'phoenixnap.com':10 'phoenixnap.com/kb/docker-privileged](https://phoenixnap.com/kb/docker-privileged)':9 'privileg':7,24 'restrict':37 'root':27 'run':3,15,22 'said':36"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://sopuli.xyz/comment/4799032"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700627280 {#3980
    date: 2023-11-22 05:28:00.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4035
  +user: App\Entity\User {#3983 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: """
    Do you run docker container in privileged mode? [phoenixnap.com/kb/docker-privileged](https://phoenixnap.com/kb/docker-privileged)\n
    \n
    And do you run nano inside the container?\n
    \n
    Docker container running in privileged mode has root permissions to host filesystem and devices (limited by said restrictions).
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 7
  +score: 0
  +lastActive: DateTime @1700627280 {#4044
    date: 2023-11-22 05:28:00.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4033 …}
  +nested: Doctrine\ORM\PersistentCollection {#4031 …}
  +votes: Doctrine\ORM\PersistentCollection {#4029 …}
  +reports: Doctrine\ORM\PersistentCollection {#4027 …}
  +favourites: Doctrine\ORM\PersistentCollection {#3995 …}
  +notifications: Doctrine\ORM\PersistentCollection {#3999 …}
  -id: 149604
  -bodyTs: "'/kb/docker-privileged](https://phoenixnap.com/kb/docker-privileged)':11 'contain':5,19,21 'devic':33 'docker':4,20 'filesystem':31 'host':30 'insid':17 'limit':34 'mode':8,25 'nano':16 'permiss':28 'phoenixnap.com':10 'phoenixnap.com/kb/docker-privileged](https://phoenixnap.com/kb/docker-privileged)':9 'privileg':7,24 'restrict':37 'root':27 'run':3,15,22 'said':36"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://sopuli.xyz/comment/4799032"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700627280 {#3980
    date: 2023-11-22 05:28:00.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4072
  +user: App\Entity\User {#4055 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: """
    The directory you are creating your files in likely is set to immutable or append only.\n
    \n
    lsattr -d /path/to/directory\n
    \n
    if you see i or a, then that's the issue.\n
    \n
    You can remove them with  \n
     sudo chattr -i /path/to/dir #removes immutable  \n
     sudo chattr -a /path/to/dir #removes append only\n
    \n
    Same goes for files but if it happens to all files in a directory, then that is probably it.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 4
  +score: 0
  +lastActive: DateTime @1700617195 {#4073
    date: 2023-11-22 02:39:55.0 +01:00
  }
  +ip: null
  +tags: [
    "removes"
  ]
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4070 …}
  +nested: Doctrine\ORM\PersistentCollection {#4068 …}
  +votes: Doctrine\ORM\PersistentCollection {#4066 …}
  +reports: Doctrine\ORM\PersistentCollection {#4063 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4059 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4057 …}
  -id: 149322
  -bodyTs: "'/path/to/dir':39,45 '/path/to/directory':19 'append':15,47 'chattr':37,43 'creat':5 'd':18 'directori':2,62 'file':7,52,59 'goe':50 'happen':56 'immut':13,41 'issu':30 'like':9 'lsattr':17 'probabl':66 'remov':33,40,46 'see':22 'set':11 'sudo':36,42"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://kbin.social/m/linux@lemmy.ml/t/645793/-/comment/3703818"
  +editedAt: DateTimeImmutable @1701080650 {#4078
    date: 2023-11-27 11:24:10.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700617195 {#4076
    date: 2023-11-22 02:39:55.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4072
  +user: App\Entity\User {#4055 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: """
    The directory you are creating your files in likely is set to immutable or append only.\n
    \n
    lsattr -d /path/to/directory\n
    \n
    if you see i or a, then that's the issue.\n
    \n
    You can remove them with  \n
     sudo chattr -i /path/to/dir #removes immutable  \n
     sudo chattr -a /path/to/dir #removes append only\n
    \n
    Same goes for files but if it happens to all files in a directory, then that is probably it.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 4
  +score: 0
  +lastActive: DateTime @1700617195 {#4073
    date: 2023-11-22 02:39:55.0 +01:00
  }
  +ip: null
  +tags: [
    "removes"
  ]
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4070 …}
  +nested: Doctrine\ORM\PersistentCollection {#4068 …}
  +votes: Doctrine\ORM\PersistentCollection {#4066 …}
  +reports: Doctrine\ORM\PersistentCollection {#4063 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4059 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4057 …}
  -id: 149322
  -bodyTs: "'/path/to/dir':39,45 '/path/to/directory':19 'append':15,47 'chattr':37,43 'creat':5 'd':18 'directori':2,62 'file':7,52,59 'goe':50 'happen':56 'immut':13,41 'issu':30 'like':9 'lsattr':17 'probabl':66 'remov':33,40,46 'see':22 'set':11 'sudo':36,42"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://kbin.social/m/linux@lemmy.ml/t/645793/-/comment/3703818"
  +editedAt: DateTimeImmutable @1701080650 {#4078
    date: 2023-11-27 11:24:10.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700617195 {#4076
    date: 2023-11-22 02:39:55.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4072
  +user: App\Entity\User {#4055 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: """
    The directory you are creating your files in likely is set to immutable or append only.\n
    \n
    lsattr -d /path/to/directory\n
    \n
    if you see i or a, then that's the issue.\n
    \n
    You can remove them with  \n
     sudo chattr -i /path/to/dir #removes immutable  \n
     sudo chattr -a /path/to/dir #removes append only\n
    \n
    Same goes for files but if it happens to all files in a directory, then that is probably it.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 4
  +score: 0
  +lastActive: DateTime @1700617195 {#4073
    date: 2023-11-22 02:39:55.0 +01:00
  }
  +ip: null
  +tags: [
    "removes"
  ]
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4070 …}
  +nested: Doctrine\ORM\PersistentCollection {#4068 …}
  +votes: Doctrine\ORM\PersistentCollection {#4066 …}
  +reports: Doctrine\ORM\PersistentCollection {#4063 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4059 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4057 …}
  -id: 149322
  -bodyTs: "'/path/to/dir':39,45 '/path/to/directory':19 'append':15,47 'chattr':37,43 'creat':5 'd':18 'directori':2,62 'file':7,52,59 'goe':50 'happen':56 'immut':13,41 'issu':30 'like':9 'lsattr':17 'probabl':66 'remov':33,40,46 'see':22 'set':11 'sudo':36,42"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://kbin.social/m/linux@lemmy.ml/t/645793/-/comment/3703818"
  +editedAt: DateTimeImmutable @1701080650 {#4078
    date: 2023-11-27 11:24:10.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700617195 {#4076
    date: 2023-11-22 02:39:55.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4153
  +user: App\Entity\User {#4166 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: "What are the permissions on the directory the file resides in?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 6
  +score: 0
  +lastActive: DateTime @1701119859 {#4148
    date: 2023-11-27 22:17:39.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4154 …}
  +nested: Doctrine\ORM\PersistentCollection {#4156 …}
  +votes: Doctrine\ORM\PersistentCollection {#4158 …}
  +reports: Doctrine\ORM\PersistentCollection {#4160 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4162 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4164 …}
  -id: 149084
  -bodyTs: "'directori':7 'file':9 'permiss':4 'resid':10"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489160"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700610057 {#4149
    date: 2023-11-22 00:40:57.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4153
  +user: App\Entity\User {#4166 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: "What are the permissions on the directory the file resides in?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 6
  +score: 0
  +lastActive: DateTime @1701119859 {#4148
    date: 2023-11-27 22:17:39.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4154 …}
  +nested: Doctrine\ORM\PersistentCollection {#4156 …}
  +votes: Doctrine\ORM\PersistentCollection {#4158 …}
  +reports: Doctrine\ORM\PersistentCollection {#4160 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4162 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4164 …}
  -id: 149084
  -bodyTs: "'directori':7 'file':9 'permiss':4 'resid':10"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489160"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700610057 {#4149
    date: 2023-11-22 00:40:57.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4153
  +user: App\Entity\User {#4166 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: "What are the permissions on the directory the file resides in?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 6
  +score: 0
  +lastActive: DateTime @1701119859 {#4148
    date: 2023-11-27 22:17:39.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4154 …}
  +nested: Doctrine\ORM\PersistentCollection {#4156 …}
  +votes: Doctrine\ORM\PersistentCollection {#4158 …}
  +reports: Doctrine\ORM\PersistentCollection {#4160 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4162 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4164 …}
  -id: 149084
  -bodyTs: "'directori':7 'file':9 'permiss':4 'resid':10"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489160"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700610057 {#4149
    date: 2023-11-22 00:40:57.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4430
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4153
    +user: App\Entity\User {#4166 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: "What are the permissions on the directory the file resides in?"
    +lang: "en"
    +isAdult: false
    +favouriteCount: 6
    +score: 0
    +lastActive: DateTime @1701119859 {#4148
      date: 2023-11-27 22:17:39.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4154 …}
    +nested: Doctrine\ORM\PersistentCollection {#4156 …}
    +votes: Doctrine\ORM\PersistentCollection {#4158 …}
    +reports: Doctrine\ORM\PersistentCollection {#4160 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4162 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4164 …}
    -id: 149084
    -bodyTs: "'directori':7 'file':9 'permiss':4 'resid':10"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5489160"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700610057 {#4149
      date: 2023-11-22 00:40:57.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4153}
  +body: "I already talked about it in this thread – it shows my sudoer username on both columns."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700610170 {#4428
    date: 2023-11-22 00:42:50.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@RatsOffToYa@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4431 …}
  +nested: Doctrine\ORM\PersistentCollection {#4433 …}
  +votes: Doctrine\ORM\PersistentCollection {#4435 …}
  +reports: Doctrine\ORM\PersistentCollection {#4437 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4439 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4441 …}
  -id: 149093
  -bodyTs: "'alreadi':2 'column':16 'show':10 'sudoer':12 'talk':3 'thread':8 'usernam':13"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489216"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700610170 {#4429
    date: 2023-11-22 00:42:50.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4430
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4153
    +user: App\Entity\User {#4166 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: "What are the permissions on the directory the file resides in?"
    +lang: "en"
    +isAdult: false
    +favouriteCount: 6
    +score: 0
    +lastActive: DateTime @1701119859 {#4148
      date: 2023-11-27 22:17:39.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4154 …}
    +nested: Doctrine\ORM\PersistentCollection {#4156 …}
    +votes: Doctrine\ORM\PersistentCollection {#4158 …}
    +reports: Doctrine\ORM\PersistentCollection {#4160 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4162 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4164 …}
    -id: 149084
    -bodyTs: "'directori':7 'file':9 'permiss':4 'resid':10"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5489160"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700610057 {#4149
      date: 2023-11-22 00:40:57.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4153}
  +body: "I already talked about it in this thread – it shows my sudoer username on both columns."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700610170 {#4428
    date: 2023-11-22 00:42:50.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@RatsOffToYa@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4431 …}
  +nested: Doctrine\ORM\PersistentCollection {#4433 …}
  +votes: Doctrine\ORM\PersistentCollection {#4435 …}
  +reports: Doctrine\ORM\PersistentCollection {#4437 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4439 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4441 …}
  -id: 149093
  -bodyTs: "'alreadi':2 'column':16 'show':10 'sudoer':12 'talk':3 'thread':8 'usernam':13"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489216"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700610170 {#4429
    date: 2023-11-22 00:42:50.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4430
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4153
    +user: App\Entity\User {#4166 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: "What are the permissions on the directory the file resides in?"
    +lang: "en"
    +isAdult: false
    +favouriteCount: 6
    +score: 0
    +lastActive: DateTime @1701119859 {#4148
      date: 2023-11-27 22:17:39.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4154 …}
    +nested: Doctrine\ORM\PersistentCollection {#4156 …}
    +votes: Doctrine\ORM\PersistentCollection {#4158 …}
    +reports: Doctrine\ORM\PersistentCollection {#4160 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4162 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4164 …}
    -id: 149084
    -bodyTs: "'directori':7 'file':9 'permiss':4 'resid':10"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5489160"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700610057 {#4149
      date: 2023-11-22 00:40:57.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4153}
  +body: "I already talked about it in this thread – it shows my sudoer username on both columns."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700610170 {#4428
    date: 2023-11-22 00:42:50.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@RatsOffToYa@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4431 …}
  +nested: Doctrine\ORM\PersistentCollection {#4433 …}
  +votes: Doctrine\ORM\PersistentCollection {#4435 …}
  +reports: Doctrine\ORM\PersistentCollection {#4437 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4439 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4441 …}
  -id: 149093
  -bodyTs: "'alreadi':2 'column':16 'show':10 'sudoer':12 'talk':3 'thread':8 'usernam':13"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489216"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700610170 {#4429
    date: 2023-11-22 00:42:50.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4516
  +user: Proxies\__CG__\App\Entity\User {#4517 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4430
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4153
      +user: App\Entity\User {#4166 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "What are the permissions on the directory the file resides in?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701119859 {#4148
        date: 2023-11-27 22:17:39.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4154 …}
      +nested: Doctrine\ORM\PersistentCollection {#4156 …}
      +votes: Doctrine\ORM\PersistentCollection {#4158 …}
      +reports: Doctrine\ORM\PersistentCollection {#4160 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4162 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4164 …}
      -id: 149084
      -bodyTs: "'directori':7 'file':9 'permiss':4 'resid':10"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5489160"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700610057 {#4149
        date: 2023-11-22 00:40:57.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4153}
    +body: "I already talked about it in this thread – it shows my sudoer username on both columns."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700610170 {#4428
      date: 2023-11-22 00:42:50.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@RatsOffToYa@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4431 …}
    +nested: Doctrine\ORM\PersistentCollection {#4433 …}
    +votes: Doctrine\ORM\PersistentCollection {#4435 …}
    +reports: Doctrine\ORM\PersistentCollection {#4437 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4439 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4441 …}
    -id: 149093
    -bodyTs: "'alreadi':2 'column':16 'show':10 'sudoer':12 'talk':3 'thread':8 'usernam':13"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5489216"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700610170 {#4429
      date: 2023-11-22 00:42:50.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4153}
  +body: "Show the full output of `ls -ld directory` (replace “directory” with real directory path)."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700651224 {#4513
    date: 2023-11-22 12:07:04.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@RatsOffToYa@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4518 …}
  +nested: Doctrine\ORM\PersistentCollection {#4520 …}
  +votes: Doctrine\ORM\PersistentCollection {#4522 …}
  +reports: Doctrine\ORM\PersistentCollection {#4524 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4526 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4528 …}
  -id: 150179
  -bodyTs: "'directori':8,10,13 'full':3 'ld':7 'ls':6 'output':4 'path':14 'real':12 'replac':9 'show':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6019030"
  +editedAt: DateTimeImmutable @1701120138 {#4514
    date: 2023-11-27 22:22:18.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700651224 {#4515
    date: 2023-11-22 12:07:04.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4516
  +user: Proxies\__CG__\App\Entity\User {#4517 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4430
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4153
      +user: App\Entity\User {#4166 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "What are the permissions on the directory the file resides in?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701119859 {#4148
        date: 2023-11-27 22:17:39.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4154 …}
      +nested: Doctrine\ORM\PersistentCollection {#4156 …}
      +votes: Doctrine\ORM\PersistentCollection {#4158 …}
      +reports: Doctrine\ORM\PersistentCollection {#4160 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4162 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4164 …}
      -id: 149084
      -bodyTs: "'directori':7 'file':9 'permiss':4 'resid':10"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5489160"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700610057 {#4149
        date: 2023-11-22 00:40:57.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4153}
    +body: "I already talked about it in this thread – it shows my sudoer username on both columns."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700610170 {#4428
      date: 2023-11-22 00:42:50.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@RatsOffToYa@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4431 …}
    +nested: Doctrine\ORM\PersistentCollection {#4433 …}
    +votes: Doctrine\ORM\PersistentCollection {#4435 …}
    +reports: Doctrine\ORM\PersistentCollection {#4437 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4439 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4441 …}
    -id: 149093
    -bodyTs: "'alreadi':2 'column':16 'show':10 'sudoer':12 'talk':3 'thread':8 'usernam':13"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5489216"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700610170 {#4429
      date: 2023-11-22 00:42:50.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4153}
  +body: "Show the full output of `ls -ld directory` (replace “directory” with real directory path)."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700651224 {#4513
    date: 2023-11-22 12:07:04.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@RatsOffToYa@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4518 …}
  +nested: Doctrine\ORM\PersistentCollection {#4520 …}
  +votes: Doctrine\ORM\PersistentCollection {#4522 …}
  +reports: Doctrine\ORM\PersistentCollection {#4524 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4526 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4528 …}
  -id: 150179
  -bodyTs: "'directori':8,10,13 'full':3 'ld':7 'ls':6 'output':4 'path':14 'real':12 'replac':9 'show':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6019030"
  +editedAt: DateTimeImmutable @1701120138 {#4514
    date: 2023-11-27 22:22:18.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700651224 {#4515
    date: 2023-11-22 12:07:04.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4516
  +user: Proxies\__CG__\App\Entity\User {#4517 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4430
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4153
      +user: App\Entity\User {#4166 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "What are the permissions on the directory the file resides in?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701119859 {#4148
        date: 2023-11-27 22:17:39.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4154 …}
      +nested: Doctrine\ORM\PersistentCollection {#4156 …}
      +votes: Doctrine\ORM\PersistentCollection {#4158 …}
      +reports: Doctrine\ORM\PersistentCollection {#4160 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4162 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4164 …}
      -id: 149084
      -bodyTs: "'directori':7 'file':9 'permiss':4 'resid':10"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5489160"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700610057 {#4149
        date: 2023-11-22 00:40:57.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4153}
    +body: "I already talked about it in this thread – it shows my sudoer username on both columns."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700610170 {#4428
      date: 2023-11-22 00:42:50.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@RatsOffToYa@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4431 …}
    +nested: Doctrine\ORM\PersistentCollection {#4433 …}
    +votes: Doctrine\ORM\PersistentCollection {#4435 …}
    +reports: Doctrine\ORM\PersistentCollection {#4437 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4439 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4441 …}
    -id: 149093
    -bodyTs: "'alreadi':2 'column':16 'show':10 'sudoer':12 'talk':3 'thread':8 'usernam':13"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5489216"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700610170 {#4429
      date: 2023-11-22 00:42:50.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4153}
  +body: "Show the full output of `ls -ld directory` (replace “directory” with real directory path)."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700651224 {#4513
    date: 2023-11-22 12:07:04.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@RatsOffToYa@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4518 …}
  +nested: Doctrine\ORM\PersistentCollection {#4520 …}
  +votes: Doctrine\ORM\PersistentCollection {#4522 …}
  +reports: Doctrine\ORM\PersistentCollection {#4524 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4526 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4528 …}
  -id: 150179
  -bodyTs: "'directori':8,10,13 'full':3 'ld':7 'ls':6 'output':4 'path':14 'real':12 'replac':9 'show':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6019030"
  +editedAt: DateTimeImmutable @1701120138 {#4514
    date: 2023-11-27 22:22:18.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700651224 {#4515
    date: 2023-11-22 12:07:04.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4226
  +user: App\Entity\User {#4239 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 6
  +score: 0
  +lastActive: DateTime @1701120740 {#4221
    date: 2023-11-27 22:32:20.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4227 …}
  +nested: Doctrine\ORM\PersistentCollection {#4229 …}
  +votes: Doctrine\ORM\PersistentCollection {#4231 …}
  +reports: Doctrine\ORM\PersistentCollection {#4233 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
  -id: 148944
  -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6007101"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700607326 {#4222
    date: 2023-11-21 23:55:26.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4226
  +user: App\Entity\User {#4239 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 6
  +score: 0
  +lastActive: DateTime @1701120740 {#4221
    date: 2023-11-27 22:32:20.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4227 …}
  +nested: Doctrine\ORM\PersistentCollection {#4229 …}
  +votes: Doctrine\ORM\PersistentCollection {#4231 …}
  +reports: Doctrine\ORM\PersistentCollection {#4233 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
  -id: 148944
  -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6007101"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700607326 {#4222
    date: 2023-11-21 23:55:26.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4226
  +user: App\Entity\User {#4239 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 6
  +score: 0
  +lastActive: DateTime @1701120740 {#4221
    date: 2023-11-27 22:32:20.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4227 …}
  +nested: Doctrine\ORM\PersistentCollection {#4229 …}
  +votes: Doctrine\ORM\PersistentCollection {#4231 …}
  +reports: Doctrine\ORM\PersistentCollection {#4233 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
  -id: 148944
  -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6007101"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700607326 {#4222
    date: 2023-11-21 23:55:26.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4415
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4226
    +user: App\Entity\User {#4239 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
    +lang: "en"
    +isAdult: false
    +favouriteCount: 6
    +score: 0
    +lastActive: DateTime @1701120740 {#4221
      date: 2023-11-27 22:32:20.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4227 …}
    +nested: Doctrine\ORM\PersistentCollection {#4229 …}
    +votes: Doctrine\ORM\PersistentCollection {#4231 …}
    +reports: Doctrine\ORM\PersistentCollection {#4233 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
    -id: 148944
    -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.ml/comment/6007101"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700607326 {#4222
      date: 2023-11-21 23:55:26.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700607702 {#4412
    date: 2023-11-22 00:01:42.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4416 …}
  +nested: Doctrine\ORM\PersistentCollection {#4418 …}
  +votes: Doctrine\ORM\PersistentCollection {#4420 …}
  +reports: Doctrine\ORM\PersistentCollection {#4422 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
  -id: 148957
  -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488421"
  +editedAt: DateTimeImmutable @1701065626 {#4413
    date: 2023-11-27 07:13:46.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700607702 {#4414
    date: 2023-11-22 00:01:42.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4415
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4226
    +user: App\Entity\User {#4239 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
    +lang: "en"
    +isAdult: false
    +favouriteCount: 6
    +score: 0
    +lastActive: DateTime @1701120740 {#4221
      date: 2023-11-27 22:32:20.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4227 …}
    +nested: Doctrine\ORM\PersistentCollection {#4229 …}
    +votes: Doctrine\ORM\PersistentCollection {#4231 …}
    +reports: Doctrine\ORM\PersistentCollection {#4233 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
    -id: 148944
    -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.ml/comment/6007101"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700607326 {#4222
      date: 2023-11-21 23:55:26.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700607702 {#4412
    date: 2023-11-22 00:01:42.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4416 …}
  +nested: Doctrine\ORM\PersistentCollection {#4418 …}
  +votes: Doctrine\ORM\PersistentCollection {#4420 …}
  +reports: Doctrine\ORM\PersistentCollection {#4422 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
  -id: 148957
  -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488421"
  +editedAt: DateTimeImmutable @1701065626 {#4413
    date: 2023-11-27 07:13:46.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700607702 {#4414
    date: 2023-11-22 00:01:42.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4415
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4226
    +user: App\Entity\User {#4239 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
    +lang: "en"
    +isAdult: false
    +favouriteCount: 6
    +score: 0
    +lastActive: DateTime @1701120740 {#4221
      date: 2023-11-27 22:32:20.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4227 …}
    +nested: Doctrine\ORM\PersistentCollection {#4229 …}
    +votes: Doctrine\ORM\PersistentCollection {#4231 …}
    +reports: Doctrine\ORM\PersistentCollection {#4233 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
    -id: 148944
    -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.ml/comment/6007101"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700607326 {#4222
      date: 2023-11-21 23:55:26.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700607702 {#4412
    date: 2023-11-22 00:01:42.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4416 …}
  +nested: Doctrine\ORM\PersistentCollection {#4418 …}
  +votes: Doctrine\ORM\PersistentCollection {#4420 …}
  +reports: Doctrine\ORM\PersistentCollection {#4422 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
  -id: 148957
  -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488421"
  +editedAt: DateTimeImmutable @1701065626 {#4413
    date: 2023-11-27 07:13:46.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700607702 {#4414
    date: 2023-11-22 00:01:42.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4468
  +user: App\Entity\User {#4239 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4415
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4226
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701120740 {#4221
        date: 2023-11-27 22:32:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4227 …}
      +nested: Doctrine\ORM\PersistentCollection {#4229 …}
      +votes: Doctrine\ORM\PersistentCollection {#4231 …}
      +reports: Doctrine\ORM\PersistentCollection {#4233 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
      -id: 148944
      -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007101"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700607326 {#4222
        date: 2023-11-21 23:55:26.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700607702 {#4412
      date: 2023-11-22 00:01:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4416 …}
    +nested: Doctrine\ORM\PersistentCollection {#4418 …}
    +votes: Doctrine\ORM\PersistentCollection {#4420 …}
    +reports: Doctrine\ORM\PersistentCollection {#4422 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
    -id: 148957
    -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488421"
    +editedAt: DateTimeImmutable @1701065626 {#4413
      date: 2023-11-27 07:13:46.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607702 {#4414
      date: 2023-11-22 00:01:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 5
  +score: 0
  +lastActive: DateTime @1700608457 {#4466
    date: 2023-11-22 00:14:17.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4469 …}
  +nested: Doctrine\ORM\PersistentCollection {#4471 …}
  +votes: Doctrine\ORM\PersistentCollection {#4473 …}
  +reports: Doctrine\ORM\PersistentCollection {#4475 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
  -id: 149010
  -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6007526"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700608457 {#4467
    date: 2023-11-22 00:14:17.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4468
  +user: App\Entity\User {#4239 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4415
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4226
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701120740 {#4221
        date: 2023-11-27 22:32:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4227 …}
      +nested: Doctrine\ORM\PersistentCollection {#4229 …}
      +votes: Doctrine\ORM\PersistentCollection {#4231 …}
      +reports: Doctrine\ORM\PersistentCollection {#4233 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
      -id: 148944
      -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007101"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700607326 {#4222
        date: 2023-11-21 23:55:26.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700607702 {#4412
      date: 2023-11-22 00:01:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4416 …}
    +nested: Doctrine\ORM\PersistentCollection {#4418 …}
    +votes: Doctrine\ORM\PersistentCollection {#4420 …}
    +reports: Doctrine\ORM\PersistentCollection {#4422 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
    -id: 148957
    -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488421"
    +editedAt: DateTimeImmutable @1701065626 {#4413
      date: 2023-11-27 07:13:46.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607702 {#4414
      date: 2023-11-22 00:01:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 5
  +score: 0
  +lastActive: DateTime @1700608457 {#4466
    date: 2023-11-22 00:14:17.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4469 …}
  +nested: Doctrine\ORM\PersistentCollection {#4471 …}
  +votes: Doctrine\ORM\PersistentCollection {#4473 …}
  +reports: Doctrine\ORM\PersistentCollection {#4475 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
  -id: 149010
  -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6007526"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700608457 {#4467
    date: 2023-11-22 00:14:17.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4468
  +user: App\Entity\User {#4239 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4415
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4226
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701120740 {#4221
        date: 2023-11-27 22:32:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4227 …}
      +nested: Doctrine\ORM\PersistentCollection {#4229 …}
      +votes: Doctrine\ORM\PersistentCollection {#4231 …}
      +reports: Doctrine\ORM\PersistentCollection {#4233 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
      -id: 148944
      -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007101"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700607326 {#4222
        date: 2023-11-21 23:55:26.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700607702 {#4412
      date: 2023-11-22 00:01:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4416 …}
    +nested: Doctrine\ORM\PersistentCollection {#4418 …}
    +votes: Doctrine\ORM\PersistentCollection {#4420 …}
    +reports: Doctrine\ORM\PersistentCollection {#4422 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
    -id: 148957
    -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488421"
    +editedAt: DateTimeImmutable @1701065626 {#4413
      date: 2023-11-27 07:13:46.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607702 {#4414
      date: 2023-11-22 00:01:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 5
  +score: 0
  +lastActive: DateTime @1700608457 {#4466
    date: 2023-11-22 00:14:17.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4469 …}
  +nested: Doctrine\ORM\PersistentCollection {#4471 …}
  +votes: Doctrine\ORM\PersistentCollection {#4473 …}
  +reports: Doctrine\ORM\PersistentCollection {#4475 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
  -id: 149010
  -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6007526"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700608457 {#4467
    date: 2023-11-22 00:14:17.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4571
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4468
    +user: App\Entity\User {#4239 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4415
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4226
        +user: App\Entity\User {#4239 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: null
        +root: null
        +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
        +lang: "en"
        +isAdult: false
        +favouriteCount: 6
        +score: 0
        +lastActive: DateTime @1701120740 {#4221
          date: 2023-11-27 22:32:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4227 …}
        +nested: Doctrine\ORM\PersistentCollection {#4229 …}
        +votes: Doctrine\ORM\PersistentCollection {#4231 …}
        +reports: Doctrine\ORM\PersistentCollection {#4233 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
        -id: 148944
        -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.ml/comment/6007101"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700607326 {#4222
          date: 2023-11-21 23:55:26.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700607702 {#4412
        date: 2023-11-22 00:01:42.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4416 …}
      +nested: Doctrine\ORM\PersistentCollection {#4418 …}
      +votes: Doctrine\ORM\PersistentCollection {#4420 …}
      +reports: Doctrine\ORM\PersistentCollection {#4422 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
      -id: 148957
      -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488421"
      +editedAt: DateTimeImmutable @1701065626 {#4413
        date: 2023-11-27 07:13:46.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700607702 {#4414
        date: 2023-11-22 00:01:42.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 5
    +score: 0
    +lastActive: DateTime @1700608457 {#4466
      date: 2023-11-22 00:14:17.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4469 …}
    +nested: Doctrine\ORM\PersistentCollection {#4471 …}
    +votes: Doctrine\ORM\PersistentCollection {#4473 …}
    +reports: Doctrine\ORM\PersistentCollection {#4475 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
    -id: 149010
    -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.ml/comment/6007526"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700608457 {#4467
      date: 2023-11-22 00:14:17.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700608692 {#4569
    date: 2023-11-22 00:18:12.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4572 …}
  +nested: Doctrine\ORM\PersistentCollection {#4574 …}
  +votes: Doctrine\ORM\PersistentCollection {#4576 …}
  +reports: Doctrine\ORM\PersistentCollection {#4578 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
  -id: 149020
  -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488740"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700608692 {#4570
    date: 2023-11-22 00:18:12.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4571
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4468
    +user: App\Entity\User {#4239 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4415
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4226
        +user: App\Entity\User {#4239 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: null
        +root: null
        +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
        +lang: "en"
        +isAdult: false
        +favouriteCount: 6
        +score: 0
        +lastActive: DateTime @1701120740 {#4221
          date: 2023-11-27 22:32:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4227 …}
        +nested: Doctrine\ORM\PersistentCollection {#4229 …}
        +votes: Doctrine\ORM\PersistentCollection {#4231 …}
        +reports: Doctrine\ORM\PersistentCollection {#4233 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
        -id: 148944
        -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.ml/comment/6007101"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700607326 {#4222
          date: 2023-11-21 23:55:26.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700607702 {#4412
        date: 2023-11-22 00:01:42.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4416 …}
      +nested: Doctrine\ORM\PersistentCollection {#4418 …}
      +votes: Doctrine\ORM\PersistentCollection {#4420 …}
      +reports: Doctrine\ORM\PersistentCollection {#4422 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
      -id: 148957
      -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488421"
      +editedAt: DateTimeImmutable @1701065626 {#4413
        date: 2023-11-27 07:13:46.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700607702 {#4414
        date: 2023-11-22 00:01:42.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 5
    +score: 0
    +lastActive: DateTime @1700608457 {#4466
      date: 2023-11-22 00:14:17.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4469 …}
    +nested: Doctrine\ORM\PersistentCollection {#4471 …}
    +votes: Doctrine\ORM\PersistentCollection {#4473 …}
    +reports: Doctrine\ORM\PersistentCollection {#4475 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
    -id: 149010
    -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.ml/comment/6007526"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700608457 {#4467
      date: 2023-11-22 00:14:17.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700608692 {#4569
    date: 2023-11-22 00:18:12.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4572 …}
  +nested: Doctrine\ORM\PersistentCollection {#4574 …}
  +votes: Doctrine\ORM\PersistentCollection {#4576 …}
  +reports: Doctrine\ORM\PersistentCollection {#4578 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
  -id: 149020
  -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488740"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700608692 {#4570
    date: 2023-11-22 00:18:12.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4571
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4468
    +user: App\Entity\User {#4239 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4415
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4226
        +user: App\Entity\User {#4239 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: null
        +root: null
        +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
        +lang: "en"
        +isAdult: false
        +favouriteCount: 6
        +score: 0
        +lastActive: DateTime @1701120740 {#4221
          date: 2023-11-27 22:32:20.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4227 …}
        +nested: Doctrine\ORM\PersistentCollection {#4229 …}
        +votes: Doctrine\ORM\PersistentCollection {#4231 …}
        +reports: Doctrine\ORM\PersistentCollection {#4233 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
        -id: 148944
        -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.ml/comment/6007101"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700607326 {#4222
          date: 2023-11-21 23:55:26.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700607702 {#4412
        date: 2023-11-22 00:01:42.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4416 …}
      +nested: Doctrine\ORM\PersistentCollection {#4418 …}
      +votes: Doctrine\ORM\PersistentCollection {#4420 …}
      +reports: Doctrine\ORM\PersistentCollection {#4422 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
      -id: 148957
      -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488421"
      +editedAt: DateTimeImmutable @1701065626 {#4413
        date: 2023-11-27 07:13:46.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700607702 {#4414
        date: 2023-11-22 00:01:42.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 5
    +score: 0
    +lastActive: DateTime @1700608457 {#4466
      date: 2023-11-22 00:14:17.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4469 …}
    +nested: Doctrine\ORM\PersistentCollection {#4471 …}
    +votes: Doctrine\ORM\PersistentCollection {#4473 …}
    +reports: Doctrine\ORM\PersistentCollection {#4475 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
    -id: 149010
    -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.ml/comment/6007526"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700608457 {#4467
      date: 2023-11-22 00:14:17.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700608692 {#4569
    date: 2023-11-22 00:18:12.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4572 …}
  +nested: Doctrine\ORM\PersistentCollection {#4574 …}
  +votes: Doctrine\ORM\PersistentCollection {#4576 …}
  +reports: Doctrine\ORM\PersistentCollection {#4578 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
  -id: 149020
  -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488740"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700608692 {#4570
    date: 2023-11-22 00:18:12.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4641
  +user: App\Entity\User {#4239 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4571
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4468
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4415
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4226
          +user: App\Entity\User {#4239 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: null
          +root: null
          +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
          +lang: "en"
          +isAdult: false
          +favouriteCount: 6
          +score: 0
          +lastActive: DateTime @1701120740 {#4221
            date: 2023-11-27 22:32:20.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4227 …}
          +nested: Doctrine\ORM\PersistentCollection {#4229 …}
          +votes: Doctrine\ORM\PersistentCollection {#4231 …}
          +reports: Doctrine\ORM\PersistentCollection {#4233 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
          -id: 148944
          -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.ml/comment/6007101"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700607326 {#4222
            date: 2023-11-21 23:55:26.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1700607702 {#4412
          date: 2023-11-22 00:01:42.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4416 …}
        +nested: Doctrine\ORM\PersistentCollection {#4418 …}
        +votes: Doctrine\ORM\PersistentCollection {#4420 …}
        +reports: Doctrine\ORM\PersistentCollection {#4422 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
        -id: 148957
        -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488421"
        +editedAt: DateTimeImmutable @1701065626 {#4413
          date: 2023-11-27 07:13:46.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700607702 {#4414
          date: 2023-11-22 00:01:42.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 5
      +score: 0
      +lastActive: DateTime @1700608457 {#4466
        date: 2023-11-22 00:14:17.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4469 …}
      +nested: Doctrine\ORM\PersistentCollection {#4471 …}
      +votes: Doctrine\ORM\PersistentCollection {#4473 …}
      +reports: Doctrine\ORM\PersistentCollection {#4475 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
      -id: 149010
      -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007526"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700608457 {#4467
        date: 2023-11-22 00:14:17.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700608692 {#4569
      date: 2023-11-22 00:18:12.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4572 …}
    +nested: Doctrine\ORM\PersistentCollection {#4574 …}
    +votes: Doctrine\ORM\PersistentCollection {#4576 …}
    +reports: Doctrine\ORM\PersistentCollection {#4578 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
    -id: 149020
    -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488740"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700608692 {#4570
      date: 2023-11-22 00:18:12.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: """
    Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
    \n
    -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 6
  +score: 0
  +lastActive: DateTime @1700609022 {#4639
    date: 2023-11-22 00:23:42.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4642 …}
  +nested: Doctrine\ORM\PersistentCollection {#4644 …}
  +votes: Doctrine\ORM\PersistentCollection {#4646 …}
  +reports: Doctrine\ORM\PersistentCollection {#4648 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
  -id: 149042
  -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6007744"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609022 {#4640
    date: 2023-11-22 00:23:42.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4641
  +user: App\Entity\User {#4239 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4571
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4468
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4415
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4226
          +user: App\Entity\User {#4239 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: null
          +root: null
          +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
          +lang: "en"
          +isAdult: false
          +favouriteCount: 6
          +score: 0
          +lastActive: DateTime @1701120740 {#4221
            date: 2023-11-27 22:32:20.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4227 …}
          +nested: Doctrine\ORM\PersistentCollection {#4229 …}
          +votes: Doctrine\ORM\PersistentCollection {#4231 …}
          +reports: Doctrine\ORM\PersistentCollection {#4233 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
          -id: 148944
          -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.ml/comment/6007101"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700607326 {#4222
            date: 2023-11-21 23:55:26.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1700607702 {#4412
          date: 2023-11-22 00:01:42.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4416 …}
        +nested: Doctrine\ORM\PersistentCollection {#4418 …}
        +votes: Doctrine\ORM\PersistentCollection {#4420 …}
        +reports: Doctrine\ORM\PersistentCollection {#4422 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
        -id: 148957
        -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488421"
        +editedAt: DateTimeImmutable @1701065626 {#4413
          date: 2023-11-27 07:13:46.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700607702 {#4414
          date: 2023-11-22 00:01:42.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 5
      +score: 0
      +lastActive: DateTime @1700608457 {#4466
        date: 2023-11-22 00:14:17.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4469 …}
      +nested: Doctrine\ORM\PersistentCollection {#4471 …}
      +votes: Doctrine\ORM\PersistentCollection {#4473 …}
      +reports: Doctrine\ORM\PersistentCollection {#4475 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
      -id: 149010
      -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007526"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700608457 {#4467
        date: 2023-11-22 00:14:17.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700608692 {#4569
      date: 2023-11-22 00:18:12.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4572 …}
    +nested: Doctrine\ORM\PersistentCollection {#4574 …}
    +votes: Doctrine\ORM\PersistentCollection {#4576 …}
    +reports: Doctrine\ORM\PersistentCollection {#4578 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
    -id: 149020
    -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488740"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700608692 {#4570
      date: 2023-11-22 00:18:12.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: """
    Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
    \n
    -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 6
  +score: 0
  +lastActive: DateTime @1700609022 {#4639
    date: 2023-11-22 00:23:42.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4642 …}
  +nested: Doctrine\ORM\PersistentCollection {#4644 …}
  +votes: Doctrine\ORM\PersistentCollection {#4646 …}
  +reports: Doctrine\ORM\PersistentCollection {#4648 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
  -id: 149042
  -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6007744"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609022 {#4640
    date: 2023-11-22 00:23:42.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4641
  +user: App\Entity\User {#4239 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4571
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4468
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4415
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4226
          +user: App\Entity\User {#4239 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: null
          +root: null
          +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
          +lang: "en"
          +isAdult: false
          +favouriteCount: 6
          +score: 0
          +lastActive: DateTime @1701120740 {#4221
            date: 2023-11-27 22:32:20.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4227 …}
          +nested: Doctrine\ORM\PersistentCollection {#4229 …}
          +votes: Doctrine\ORM\PersistentCollection {#4231 …}
          +reports: Doctrine\ORM\PersistentCollection {#4233 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
          -id: 148944
          -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.ml/comment/6007101"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700607326 {#4222
            date: 2023-11-21 23:55:26.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1700607702 {#4412
          date: 2023-11-22 00:01:42.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4416 …}
        +nested: Doctrine\ORM\PersistentCollection {#4418 …}
        +votes: Doctrine\ORM\PersistentCollection {#4420 …}
        +reports: Doctrine\ORM\PersistentCollection {#4422 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
        -id: 148957
        -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488421"
        +editedAt: DateTimeImmutable @1701065626 {#4413
          date: 2023-11-27 07:13:46.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700607702 {#4414
          date: 2023-11-22 00:01:42.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 5
      +score: 0
      +lastActive: DateTime @1700608457 {#4466
        date: 2023-11-22 00:14:17.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4469 …}
      +nested: Doctrine\ORM\PersistentCollection {#4471 …}
      +votes: Doctrine\ORM\PersistentCollection {#4473 …}
      +reports: Doctrine\ORM\PersistentCollection {#4475 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
      -id: 149010
      -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007526"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700608457 {#4467
        date: 2023-11-22 00:14:17.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700608692 {#4569
      date: 2023-11-22 00:18:12.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4572 …}
    +nested: Doctrine\ORM\PersistentCollection {#4574 …}
    +votes: Doctrine\ORM\PersistentCollection {#4576 …}
    +reports: Doctrine\ORM\PersistentCollection {#4578 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
    -id: 149020
    -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488740"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700608692 {#4570
      date: 2023-11-22 00:18:12.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: """
    Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
    \n
    -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 6
  +score: 0
  +lastActive: DateTime @1700609022 {#4639
    date: 2023-11-22 00:23:42.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4642 …}
  +nested: Doctrine\ORM\PersistentCollection {#4644 …}
  +votes: Doctrine\ORM\PersistentCollection {#4646 …}
  +reports: Doctrine\ORM\PersistentCollection {#4648 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
  -id: 149042
  -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6007744"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609022 {#4640
    date: 2023-11-22 00:23:42.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4678
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4641
    +user: App\Entity\User {#4239 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4571
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4468
        +user: App\Entity\User {#4239 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4415
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4226
            +user: App\Entity\User {#4239 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: null
            +root: null
            +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
            +lang: "en"
            +isAdult: false
            +favouriteCount: 6
            +score: 0
            +lastActive: DateTime @1701120740 {#4221
              date: 2023-11-27 22:32:20.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4227 …}
            +nested: Doctrine\ORM\PersistentCollection {#4229 …}
            +votes: Doctrine\ORM\PersistentCollection {#4231 …}
            +reports: Doctrine\ORM\PersistentCollection {#4233 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
            -id: 148944
            -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.ml/comment/6007101"
            +editedAt: null
            +createdAt: DateTimeImmutable @1700607326 {#4222
              date: 2023-11-21 23:55:26.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4226}
          +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
          +lang: "en"
          +isAdult: false
          +favouriteCount: 0
          +score: 0
          +lastActive: DateTime @1700607702 {#4412
            date: 2023-11-22 00:01:42.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@bolapara@lemmy.ml"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4416 …}
          +nested: Doctrine\ORM\PersistentCollection {#4418 …}
          +votes: Doctrine\ORM\PersistentCollection {#4420 …}
          +reports: Doctrine\ORM\PersistentCollection {#4422 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
          -id: 148957
          -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488421"
          +editedAt: DateTimeImmutable @1701065626 {#4413
            date: 2023-11-27 07:13:46.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700607702 {#4414
            date: 2023-11-22 00:01:42.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 5
        +score: 0
        +lastActive: DateTime @1700608457 {#4466
          date: 2023-11-22 00:14:17.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4469 …}
        +nested: Doctrine\ORM\PersistentCollection {#4471 …}
        +votes: Doctrine\ORM\PersistentCollection {#4473 …}
        +reports: Doctrine\ORM\PersistentCollection {#4475 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
        -id: 149010
        -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.ml/comment/6007526"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700608457 {#4467
          date: 2023-11-22 00:14:17.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700608692 {#4569
        date: 2023-11-22 00:18:12.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4572 …}
      +nested: Doctrine\ORM\PersistentCollection {#4574 …}
      +votes: Doctrine\ORM\PersistentCollection {#4576 …}
      +reports: Doctrine\ORM\PersistentCollection {#4578 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
      -id: 149020
      -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488740"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700608692 {#4570
        date: 2023-11-22 00:18:12.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: """
      Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
      \n
      -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 6
    +score: 0
    +lastActive: DateTime @1700609022 {#4639
      date: 2023-11-22 00:23:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4642 …}
    +nested: Doctrine\ORM\PersistentCollection {#4644 …}
    +votes: Doctrine\ORM\PersistentCollection {#4646 …}
    +reports: Doctrine\ORM\PersistentCollection {#4648 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
    -id: 149042
    -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.ml/comment/6007744"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609022 {#4640
      date: 2023-11-22 00:23:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "`-rw-rw-r-- 1 $sudoer $sudoer $date $createdfilename`."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609194 {#4676
    date: 2023-11-22 00:26:34.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4679 …}
  +nested: Doctrine\ORM\PersistentCollection {#4681 …}
  +votes: Doctrine\ORM\PersistentCollection {#4683 …}
  +reports: Doctrine\ORM\PersistentCollection {#4685 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4687 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4689 …}
  -id: 149046
  -bodyTs: "'1':5 'createdfilenam':9 'date':8 'r':4 'rw':2,3 'rw-rw-r':1 'sudoer':6,7"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488879"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609194 {#4677
    date: 2023-11-22 00:26:34.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4678
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4641
    +user: App\Entity\User {#4239 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4571
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4468
        +user: App\Entity\User {#4239 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4415
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4226
            +user: App\Entity\User {#4239 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: null
            +root: null
            +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
            +lang: "en"
            +isAdult: false
            +favouriteCount: 6
            +score: 0
            +lastActive: DateTime @1701120740 {#4221
              date: 2023-11-27 22:32:20.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4227 …}
            +nested: Doctrine\ORM\PersistentCollection {#4229 …}
            +votes: Doctrine\ORM\PersistentCollection {#4231 …}
            +reports: Doctrine\ORM\PersistentCollection {#4233 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
            -id: 148944
            -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.ml/comment/6007101"
            +editedAt: null
            +createdAt: DateTimeImmutable @1700607326 {#4222
              date: 2023-11-21 23:55:26.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4226}
          +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
          +lang: "en"
          +isAdult: false
          +favouriteCount: 0
          +score: 0
          +lastActive: DateTime @1700607702 {#4412
            date: 2023-11-22 00:01:42.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@bolapara@lemmy.ml"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4416 …}
          +nested: Doctrine\ORM\PersistentCollection {#4418 …}
          +votes: Doctrine\ORM\PersistentCollection {#4420 …}
          +reports: Doctrine\ORM\PersistentCollection {#4422 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
          -id: 148957
          -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488421"
          +editedAt: DateTimeImmutable @1701065626 {#4413
            date: 2023-11-27 07:13:46.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700607702 {#4414
            date: 2023-11-22 00:01:42.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 5
        +score: 0
        +lastActive: DateTime @1700608457 {#4466
          date: 2023-11-22 00:14:17.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4469 …}
        +nested: Doctrine\ORM\PersistentCollection {#4471 …}
        +votes: Doctrine\ORM\PersistentCollection {#4473 …}
        +reports: Doctrine\ORM\PersistentCollection {#4475 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
        -id: 149010
        -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.ml/comment/6007526"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700608457 {#4467
          date: 2023-11-22 00:14:17.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700608692 {#4569
        date: 2023-11-22 00:18:12.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4572 …}
      +nested: Doctrine\ORM\PersistentCollection {#4574 …}
      +votes: Doctrine\ORM\PersistentCollection {#4576 …}
      +reports: Doctrine\ORM\PersistentCollection {#4578 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
      -id: 149020
      -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488740"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700608692 {#4570
        date: 2023-11-22 00:18:12.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: """
      Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
      \n
      -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 6
    +score: 0
    +lastActive: DateTime @1700609022 {#4639
      date: 2023-11-22 00:23:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4642 …}
    +nested: Doctrine\ORM\PersistentCollection {#4644 …}
    +votes: Doctrine\ORM\PersistentCollection {#4646 …}
    +reports: Doctrine\ORM\PersistentCollection {#4648 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
    -id: 149042
    -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.ml/comment/6007744"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609022 {#4640
      date: 2023-11-22 00:23:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "`-rw-rw-r-- 1 $sudoer $sudoer $date $createdfilename`."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609194 {#4676
    date: 2023-11-22 00:26:34.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4679 …}
  +nested: Doctrine\ORM\PersistentCollection {#4681 …}
  +votes: Doctrine\ORM\PersistentCollection {#4683 …}
  +reports: Doctrine\ORM\PersistentCollection {#4685 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4687 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4689 …}
  -id: 149046
  -bodyTs: "'1':5 'createdfilenam':9 'date':8 'r':4 'rw':2,3 'rw-rw-r':1 'sudoer':6,7"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488879"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609194 {#4677
    date: 2023-11-22 00:26:34.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4678
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4641
    +user: App\Entity\User {#4239 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4571
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4468
        +user: App\Entity\User {#4239 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4415
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4226
            +user: App\Entity\User {#4239 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: null
            +root: null
            +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
            +lang: "en"
            +isAdult: false
            +favouriteCount: 6
            +score: 0
            +lastActive: DateTime @1701120740 {#4221
              date: 2023-11-27 22:32:20.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4227 …}
            +nested: Doctrine\ORM\PersistentCollection {#4229 …}
            +votes: Doctrine\ORM\PersistentCollection {#4231 …}
            +reports: Doctrine\ORM\PersistentCollection {#4233 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
            -id: 148944
            -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.ml/comment/6007101"
            +editedAt: null
            +createdAt: DateTimeImmutable @1700607326 {#4222
              date: 2023-11-21 23:55:26.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4226}
          +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
          +lang: "en"
          +isAdult: false
          +favouriteCount: 0
          +score: 0
          +lastActive: DateTime @1700607702 {#4412
            date: 2023-11-22 00:01:42.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@bolapara@lemmy.ml"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4416 …}
          +nested: Doctrine\ORM\PersistentCollection {#4418 …}
          +votes: Doctrine\ORM\PersistentCollection {#4420 …}
          +reports: Doctrine\ORM\PersistentCollection {#4422 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
          -id: 148957
          -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488421"
          +editedAt: DateTimeImmutable @1701065626 {#4413
            date: 2023-11-27 07:13:46.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700607702 {#4414
            date: 2023-11-22 00:01:42.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 5
        +score: 0
        +lastActive: DateTime @1700608457 {#4466
          date: 2023-11-22 00:14:17.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4469 …}
        +nested: Doctrine\ORM\PersistentCollection {#4471 …}
        +votes: Doctrine\ORM\PersistentCollection {#4473 …}
        +reports: Doctrine\ORM\PersistentCollection {#4475 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
        -id: 149010
        -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.ml/comment/6007526"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700608457 {#4467
          date: 2023-11-22 00:14:17.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700608692 {#4569
        date: 2023-11-22 00:18:12.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4572 …}
      +nested: Doctrine\ORM\PersistentCollection {#4574 …}
      +votes: Doctrine\ORM\PersistentCollection {#4576 …}
      +reports: Doctrine\ORM\PersistentCollection {#4578 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
      -id: 149020
      -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488740"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700608692 {#4570
        date: 2023-11-22 00:18:12.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: """
      Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
      \n
      -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 6
    +score: 0
    +lastActive: DateTime @1700609022 {#4639
      date: 2023-11-22 00:23:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4642 …}
    +nested: Doctrine\ORM\PersistentCollection {#4644 …}
    +votes: Doctrine\ORM\PersistentCollection {#4646 …}
    +reports: Doctrine\ORM\PersistentCollection {#4648 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
    -id: 149042
    -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.ml/comment/6007744"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609022 {#4640
      date: 2023-11-22 00:23:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "`-rw-rw-r-- 1 $sudoer $sudoer $date $createdfilename`."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609194 {#4676
    date: 2023-11-22 00:26:34.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4679 …}
  +nested: Doctrine\ORM\PersistentCollection {#4681 …}
  +votes: Doctrine\ORM\PersistentCollection {#4683 …}
  +reports: Doctrine\ORM\PersistentCollection {#4685 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4687 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4689 …}
  -id: 149046
  -bodyTs: "'1':5 'createdfilenam':9 'date':8 'r':4 'rw':2,3 'rw-rw-r':1 'sudoer':6,7"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488879"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609194 {#4677
    date: 2023-11-22 00:26:34.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4731
  +user: Proxies\__CG__\App\Entity\User {#4626 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4678
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4641
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4571
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4468
          +user: App\Entity\User {#4239 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4415
            +user: Proxies\__CG__\App\Entity\User {#1978 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4226
              +user: App\Entity\User {#4239 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: null
              +root: null
              +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
              +lang: "en"
              +isAdult: false
              +favouriteCount: 6
              +score: 0
              +lastActive: DateTime @1701120740 {#4221
                date: 2023-11-27 22:32:20.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4227 …}
              +nested: Doctrine\ORM\PersistentCollection {#4229 …}
              +votes: Doctrine\ORM\PersistentCollection {#4231 …}
              +reports: Doctrine\ORM\PersistentCollection {#4233 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
              -id: 148944
              -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.ml/comment/6007101"
              +editedAt: null
              +createdAt: DateTimeImmutable @1700607326 {#4222
                date: 2023-11-21 23:55:26.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4226}
            +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
            +lang: "en"
            +isAdult: false
            +favouriteCount: 0
            +score: 0
            +lastActive: DateTime @1700607702 {#4412
              date: 2023-11-22 00:01:42.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@bolapara@lemmy.ml"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4416 …}
            +nested: Doctrine\ORM\PersistentCollection {#4418 …}
            +votes: Doctrine\ORM\PersistentCollection {#4420 …}
            +reports: Doctrine\ORM\PersistentCollection {#4422 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
            -id: 148957
            -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5488421"
            +editedAt: DateTimeImmutable @1701065626 {#4413
              date: 2023-11-27 07:13:46.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700607702 {#4414
              date: 2023-11-22 00:01:42.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4226}
          +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
          +lang: "en"
          +isAdult: false
          +favouriteCount: 5
          +score: 0
          +lastActive: DateTime @1700608457 {#4466
            date: 2023-11-22 00:14:17.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@bolapara@lemmy.ml"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4469 …}
          +nested: Doctrine\ORM\PersistentCollection {#4471 …}
          +votes: Doctrine\ORM\PersistentCollection {#4473 …}
          +reports: Doctrine\ORM\PersistentCollection {#4475 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
          -id: 149010
          -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.ml/comment/6007526"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700608457 {#4467
            date: 2023-11-22 00:14:17.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1700608692 {#4569
          date: 2023-11-22 00:18:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4572 …}
        +nested: Doctrine\ORM\PersistentCollection {#4574 …}
        +votes: Doctrine\ORM\PersistentCollection {#4576 …}
        +reports: Doctrine\ORM\PersistentCollection {#4578 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
        -id: 149020
        -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488740"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700608692 {#4570
          date: 2023-11-22 00:18:12.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: """
        Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
        \n
        -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1700609022 {#4639
        date: 2023-11-22 00:23:42.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4642 …}
      +nested: Doctrine\ORM\PersistentCollection {#4644 …}
      +votes: Doctrine\ORM\PersistentCollection {#4646 …}
      +reports: Doctrine\ORM\PersistentCollection {#4648 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
      -id: 149042
      -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007744"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700609022 {#4640
        date: 2023-11-22 00:23:42.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "`-rw-rw-r-- 1 $sudoer $sudoer $date $createdfilename`."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700609194 {#4676
      date: 2023-11-22 00:26:34.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4679 …}
    +nested: Doctrine\ORM\PersistentCollection {#4681 …}
    +votes: Doctrine\ORM\PersistentCollection {#4683 …}
    +reports: Doctrine\ORM\PersistentCollection {#4685 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4687 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4689 …}
    -id: 149046
    -bodyTs: "'1':5 'createdfilenam':9 'date':8 'r':4 'rw':2,3 'rw-rw-r':1 'sudoer':6,7"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488879"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609194 {#4677
      date: 2023-11-22 00:26:34.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "That is not an elevated permission, your user should be able to delete that file, do the same in another directory if it works it might be a permission, or more likely an attribute, problem on the directory itself or something on the path to it."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700637814 {#4729
    date: 2023-11-22 08:23:34.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4732 …}
  +nested: Doctrine\ORM\PersistentCollection {#4734 …}
  +votes: Doctrine\ORM\PersistentCollection {#4736 …}
  +reports: Doctrine\ORM\PersistentCollection {#4738 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4740 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4742 …}
  -id: 149879
  -bodyTs: "'abl':11 'anoth':20 'attribut':34 'delet':13 'directori':21,38 'elev':5 'file':15 'like':32 'might':26 'path':44 'permiss':6,29 'problem':35 'someth':41 'user':8 'work':24"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5495305"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700637814 {#4730
    date: 2023-11-22 08:23:34.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4731
  +user: Proxies\__CG__\App\Entity\User {#4626 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4678
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4641
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4571
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4468
          +user: App\Entity\User {#4239 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4415
            +user: Proxies\__CG__\App\Entity\User {#1978 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4226
              +user: App\Entity\User {#4239 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: null
              +root: null
              +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
              +lang: "en"
              +isAdult: false
              +favouriteCount: 6
              +score: 0
              +lastActive: DateTime @1701120740 {#4221
                date: 2023-11-27 22:32:20.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4227 …}
              +nested: Doctrine\ORM\PersistentCollection {#4229 …}
              +votes: Doctrine\ORM\PersistentCollection {#4231 …}
              +reports: Doctrine\ORM\PersistentCollection {#4233 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
              -id: 148944
              -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.ml/comment/6007101"
              +editedAt: null
              +createdAt: DateTimeImmutable @1700607326 {#4222
                date: 2023-11-21 23:55:26.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4226}
            +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
            +lang: "en"
            +isAdult: false
            +favouriteCount: 0
            +score: 0
            +lastActive: DateTime @1700607702 {#4412
              date: 2023-11-22 00:01:42.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@bolapara@lemmy.ml"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4416 …}
            +nested: Doctrine\ORM\PersistentCollection {#4418 …}
            +votes: Doctrine\ORM\PersistentCollection {#4420 …}
            +reports: Doctrine\ORM\PersistentCollection {#4422 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
            -id: 148957
            -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5488421"
            +editedAt: DateTimeImmutable @1701065626 {#4413
              date: 2023-11-27 07:13:46.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700607702 {#4414
              date: 2023-11-22 00:01:42.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4226}
          +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
          +lang: "en"
          +isAdult: false
          +favouriteCount: 5
          +score: 0
          +lastActive: DateTime @1700608457 {#4466
            date: 2023-11-22 00:14:17.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@bolapara@lemmy.ml"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4469 …}
          +nested: Doctrine\ORM\PersistentCollection {#4471 …}
          +votes: Doctrine\ORM\PersistentCollection {#4473 …}
          +reports: Doctrine\ORM\PersistentCollection {#4475 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
          -id: 149010
          -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.ml/comment/6007526"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700608457 {#4467
            date: 2023-11-22 00:14:17.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1700608692 {#4569
          date: 2023-11-22 00:18:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4572 …}
        +nested: Doctrine\ORM\PersistentCollection {#4574 …}
        +votes: Doctrine\ORM\PersistentCollection {#4576 …}
        +reports: Doctrine\ORM\PersistentCollection {#4578 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
        -id: 149020
        -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488740"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700608692 {#4570
          date: 2023-11-22 00:18:12.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: """
        Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
        \n
        -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1700609022 {#4639
        date: 2023-11-22 00:23:42.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4642 …}
      +nested: Doctrine\ORM\PersistentCollection {#4644 …}
      +votes: Doctrine\ORM\PersistentCollection {#4646 …}
      +reports: Doctrine\ORM\PersistentCollection {#4648 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
      -id: 149042
      -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007744"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700609022 {#4640
        date: 2023-11-22 00:23:42.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "`-rw-rw-r-- 1 $sudoer $sudoer $date $createdfilename`."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700609194 {#4676
      date: 2023-11-22 00:26:34.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4679 …}
    +nested: Doctrine\ORM\PersistentCollection {#4681 …}
    +votes: Doctrine\ORM\PersistentCollection {#4683 …}
    +reports: Doctrine\ORM\PersistentCollection {#4685 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4687 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4689 …}
    -id: 149046
    -bodyTs: "'1':5 'createdfilenam':9 'date':8 'r':4 'rw':2,3 'rw-rw-r':1 'sudoer':6,7"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488879"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609194 {#4677
      date: 2023-11-22 00:26:34.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "That is not an elevated permission, your user should be able to delete that file, do the same in another directory if it works it might be a permission, or more likely an attribute, problem on the directory itself or something on the path to it."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700637814 {#4729
    date: 2023-11-22 08:23:34.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4732 …}
  +nested: Doctrine\ORM\PersistentCollection {#4734 …}
  +votes: Doctrine\ORM\PersistentCollection {#4736 …}
  +reports: Doctrine\ORM\PersistentCollection {#4738 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4740 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4742 …}
  -id: 149879
  -bodyTs: "'abl':11 'anoth':20 'attribut':34 'delet':13 'directori':21,38 'elev':5 'file':15 'like':32 'might':26 'path':44 'permiss':6,29 'problem':35 'someth':41 'user':8 'work':24"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5495305"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700637814 {#4730
    date: 2023-11-22 08:23:34.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4731
  +user: Proxies\__CG__\App\Entity\User {#4626 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4678
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4641
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4571
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4468
          +user: App\Entity\User {#4239 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4415
            +user: Proxies\__CG__\App\Entity\User {#1978 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4226
              +user: App\Entity\User {#4239 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: null
              +root: null
              +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
              +lang: "en"
              +isAdult: false
              +favouriteCount: 6
              +score: 0
              +lastActive: DateTime @1701120740 {#4221
                date: 2023-11-27 22:32:20.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4227 …}
              +nested: Doctrine\ORM\PersistentCollection {#4229 …}
              +votes: Doctrine\ORM\PersistentCollection {#4231 …}
              +reports: Doctrine\ORM\PersistentCollection {#4233 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
              -id: 148944
              -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.ml/comment/6007101"
              +editedAt: null
              +createdAt: DateTimeImmutable @1700607326 {#4222
                date: 2023-11-21 23:55:26.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4226}
            +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
            +lang: "en"
            +isAdult: false
            +favouriteCount: 0
            +score: 0
            +lastActive: DateTime @1700607702 {#4412
              date: 2023-11-22 00:01:42.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@bolapara@lemmy.ml"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4416 …}
            +nested: Doctrine\ORM\PersistentCollection {#4418 …}
            +votes: Doctrine\ORM\PersistentCollection {#4420 …}
            +reports: Doctrine\ORM\PersistentCollection {#4422 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
            -id: 148957
            -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5488421"
            +editedAt: DateTimeImmutable @1701065626 {#4413
              date: 2023-11-27 07:13:46.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700607702 {#4414
              date: 2023-11-22 00:01:42.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4226}
          +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
          +lang: "en"
          +isAdult: false
          +favouriteCount: 5
          +score: 0
          +lastActive: DateTime @1700608457 {#4466
            date: 2023-11-22 00:14:17.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@bolapara@lemmy.ml"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4469 …}
          +nested: Doctrine\ORM\PersistentCollection {#4471 …}
          +votes: Doctrine\ORM\PersistentCollection {#4473 …}
          +reports: Doctrine\ORM\PersistentCollection {#4475 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
          -id: 149010
          -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.ml/comment/6007526"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700608457 {#4467
            date: 2023-11-22 00:14:17.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1700608692 {#4569
          date: 2023-11-22 00:18:12.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4572 …}
        +nested: Doctrine\ORM\PersistentCollection {#4574 …}
        +votes: Doctrine\ORM\PersistentCollection {#4576 …}
        +reports: Doctrine\ORM\PersistentCollection {#4578 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
        -id: 149020
        -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488740"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700608692 {#4570
          date: 2023-11-22 00:18:12.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: """
        Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
        \n
        -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1700609022 {#4639
        date: 2023-11-22 00:23:42.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4642 …}
      +nested: Doctrine\ORM\PersistentCollection {#4644 …}
      +votes: Doctrine\ORM\PersistentCollection {#4646 …}
      +reports: Doctrine\ORM\PersistentCollection {#4648 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
      -id: 149042
      -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007744"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700609022 {#4640
        date: 2023-11-22 00:23:42.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "`-rw-rw-r-- 1 $sudoer $sudoer $date $createdfilename`."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700609194 {#4676
      date: 2023-11-22 00:26:34.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4679 …}
    +nested: Doctrine\ORM\PersistentCollection {#4681 …}
    +votes: Doctrine\ORM\PersistentCollection {#4683 …}
    +reports: Doctrine\ORM\PersistentCollection {#4685 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4687 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4689 …}
    -id: 149046
    -bodyTs: "'1':5 'createdfilenam':9 'date':8 'r':4 'rw':2,3 'rw-rw-r':1 'sudoer':6,7"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488879"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609194 {#4677
      date: 2023-11-22 00:26:34.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "That is not an elevated permission, your user should be able to delete that file, do the same in another directory if it works it might be a permission, or more likely an attribute, problem on the directory itself or something on the path to it."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700637814 {#4729
    date: 2023-11-22 08:23:34.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4732 …}
  +nested: Doctrine\ORM\PersistentCollection {#4734 …}
  +votes: Doctrine\ORM\PersistentCollection {#4736 …}
  +reports: Doctrine\ORM\PersistentCollection {#4738 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4740 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4742 …}
  -id: 149879
  -bodyTs: "'abl':11 'anoth':20 'attribut':34 'delet':13 'directori':21,38 'elev':5 'file':15 'like':32 'might':26 'path':44 'permiss':6,29 'problem':35 'someth':41 'user':8 'work':24"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5495305"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700637814 {#4730
    date: 2023-11-22 08:23:34.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4769
  +user: Proxies\__CG__\App\Entity\User {#4517 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4731
    +user: Proxies\__CG__\App\Entity\User {#4626 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4678
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4641
        +user: App\Entity\User {#4239 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4571
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4468
            +user: App\Entity\User {#4239 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4415
              +user: Proxies\__CG__\App\Entity\User {#1978 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: App\Entity\EntryComment {#4226
                +user: App\Entity\User {#4239 …}
                +entry: App\Entity\Entry {#2412}
                +magazine: App\Entity\Magazine {#264}
                +image: null
                +parent: null
                +root: null
                +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
                +lang: "en"
                +isAdult: false
                +favouriteCount: 6
                +score: 0
                +lastActive: DateTime @1701120740 {#4221
                  date: 2023-11-27 22:32:20.0 +01:00
                }
                +ip: null
                +tags: null
                +mentions: [
                  "@GustavoM@lemmy.world"
                ]
                +children: Doctrine\ORM\PersistentCollection {#4227 …}
                +nested: Doctrine\ORM\PersistentCollection {#4229 …}
                +votes: Doctrine\ORM\PersistentCollection {#4231 …}
                +reports: Doctrine\ORM\PersistentCollection {#4233 …}
                +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
                +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
                -id: 148944
                -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
                +ranking: 0
                +commentCount: 0
                +upVotes: 0
                +downVotes: 0
                +visibility: "visible             "
                +apId: "https://lemmy.ml/comment/6007101"
                +editedAt: null
                +createdAt: DateTimeImmutable @1700607326 {#4222
                  date: 2023-11-21 23:55:26.0 +01:00
                }
              }
              +root: App\Entity\EntryComment {#4226}
              +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
              +lang: "en"
              +isAdult: false
              +favouriteCount: 0
              +score: 0
              +lastActive: DateTime @1700607702 {#4412
                date: 2023-11-22 00:01:42.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
                "@bolapara@lemmy.ml"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4416 …}
              +nested: Doctrine\ORM\PersistentCollection {#4418 …}
              +votes: Doctrine\ORM\PersistentCollection {#4420 …}
              +reports: Doctrine\ORM\PersistentCollection {#4422 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
              -id: 148957
              -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.world/comment/5488421"
              +editedAt: DateTimeImmutable @1701065626 {#4413
                date: 2023-11-27 07:13:46.0 +01:00
              }
              +createdAt: DateTimeImmutable @1700607702 {#4414
                date: 2023-11-22 00:01:42.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4226}
            +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
            +lang: "en"
            +isAdult: false
            +favouriteCount: 5
            +score: 0
            +lastActive: DateTime @1700608457 {#4466
              date: 2023-11-22 00:14:17.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@bolapara@lemmy.ml"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4469 …}
            +nested: Doctrine\ORM\PersistentCollection {#4471 …}
            +votes: Doctrine\ORM\PersistentCollection {#4473 …}
            +reports: Doctrine\ORM\PersistentCollection {#4475 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
            -id: 149010
            -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.ml/comment/6007526"
            +editedAt: null
            +createdAt: DateTimeImmutable @1700608457 {#4467
              date: 2023-11-22 00:14:17.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4226}
          +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
          +lang: "en"
          +isAdult: false
          +favouriteCount: 0
          +score: 0
          +lastActive: DateTime @1700608692 {#4569
            date: 2023-11-22 00:18:12.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@bolapara@lemmy.ml"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4572 …}
          +nested: Doctrine\ORM\PersistentCollection {#4574 …}
          +votes: Doctrine\ORM\PersistentCollection {#4576 …}
          +reports: Doctrine\ORM\PersistentCollection {#4578 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
          -id: 149020
          -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488740"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700608692 {#4570
            date: 2023-11-22 00:18:12.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: """
          Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
          \n
          -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 6
        +score: 0
        +lastActive: DateTime @1700609022 {#4639
          date: 2023-11-22 00:23:42.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4642 …}
        +nested: Doctrine\ORM\PersistentCollection {#4644 …}
        +votes: Doctrine\ORM\PersistentCollection {#4646 …}
        +reports: Doctrine\ORM\PersistentCollection {#4648 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
        -id: 149042
        -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.ml/comment/6007744"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700609022 {#4640
          date: 2023-11-22 00:23:42.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "`-rw-rw-r-- 1 $sudoer $sudoer $date $createdfilename`."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700609194 {#4676
        date: 2023-11-22 00:26:34.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4679 …}
      +nested: Doctrine\ORM\PersistentCollection {#4681 …}
      +votes: Doctrine\ORM\PersistentCollection {#4683 …}
      +reports: Doctrine\ORM\PersistentCollection {#4685 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4687 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4689 …}
      -id: 149046
      -bodyTs: "'1':5 'createdfilenam':9 'date':8 'r':4 'rw':2,3 'rw-rw-r':1 'sudoer':6,7"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488879"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700609194 {#4677
        date: 2023-11-22 00:26:34.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "That is not an elevated permission, your user should be able to delete that file, do the same in another directory if it works it might be a permission, or more likely an attribute, problem on the directory itself or something on the path to it."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 2
    +score: 0
    +lastActive: DateTime @1700637814 {#4729
      date: 2023-11-22 08:23:34.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4732 …}
    +nested: Doctrine\ORM\PersistentCollection {#4734 …}
    +votes: Doctrine\ORM\PersistentCollection {#4736 …}
    +reports: Doctrine\ORM\PersistentCollection {#4738 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4740 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4742 …}
    -id: 149879
    -bodyTs: "'abl':11 'anoth':20 'attribut':34 'delet':13 'directori':21,38 'elev':5 'file':15 'like':32 'might':26 'path':44 'permiss':6,29 'problem':35 'someth':41 'user':8 'work':24"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5495305"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700637814 {#4730
      date: 2023-11-22 08:23:34.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "You cannot say if user able do delete the file or not. It depends on the directory permissions (deleting a file is modifying a directory)."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700652093 {#4766
    date: 2023-11-22 12:21:33.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
    "@Nibodhika@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4770 …}
  +nested: Doctrine\ORM\PersistentCollection {#4772 …}
  +votes: Doctrine\ORM\PersistentCollection {#4774 …}
  +reports: Doctrine\ORM\PersistentCollection {#4776 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4778 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4780 …}
  -id: 150210
  -bodyTs: "'abl':6 'cannot':2 'delet':8,19 'depend':14 'directori':17,25 'file':10,21 'modifi':23 'permiss':18 'say':3 'user':5"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6019255"
  +editedAt: DateTimeImmutable @1701121970 {#4767
    date: 2023-11-27 22:52:50.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700652093 {#4768
    date: 2023-11-22 12:21:33.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4769
  +user: Proxies\__CG__\App\Entity\User {#4517 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4731
    +user: Proxies\__CG__\App\Entity\User {#4626 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4678
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4641
        +user: App\Entity\User {#4239 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4571
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4468
            +user: App\Entity\User {#4239 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4415
              +user: Proxies\__CG__\App\Entity\User {#1978 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: App\Entity\EntryComment {#4226
                +user: App\Entity\User {#4239 …}
                +entry: App\Entity\Entry {#2412}
                +magazine: App\Entity\Magazine {#264}
                +image: null
                +parent: null
                +root: null
                +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
                +lang: "en"
                +isAdult: false
                +favouriteCount: 6
                +score: 0
                +lastActive: DateTime @1701120740 {#4221
                  date: 2023-11-27 22:32:20.0 +01:00
                }
                +ip: null
                +tags: null
                +mentions: [
                  "@GustavoM@lemmy.world"
                ]
                +children: Doctrine\ORM\PersistentCollection {#4227 …}
                +nested: Doctrine\ORM\PersistentCollection {#4229 …}
                +votes: Doctrine\ORM\PersistentCollection {#4231 …}
                +reports: Doctrine\ORM\PersistentCollection {#4233 …}
                +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
                +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
                -id: 148944
                -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
                +ranking: 0
                +commentCount: 0
                +upVotes: 0
                +downVotes: 0
                +visibility: "visible             "
                +apId: "https://lemmy.ml/comment/6007101"
                +editedAt: null
                +createdAt: DateTimeImmutable @1700607326 {#4222
                  date: 2023-11-21 23:55:26.0 +01:00
                }
              }
              +root: App\Entity\EntryComment {#4226}
              +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
              +lang: "en"
              +isAdult: false
              +favouriteCount: 0
              +score: 0
              +lastActive: DateTime @1700607702 {#4412
                date: 2023-11-22 00:01:42.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
                "@bolapara@lemmy.ml"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4416 …}
              +nested: Doctrine\ORM\PersistentCollection {#4418 …}
              +votes: Doctrine\ORM\PersistentCollection {#4420 …}
              +reports: Doctrine\ORM\PersistentCollection {#4422 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
              -id: 148957
              -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.world/comment/5488421"
              +editedAt: DateTimeImmutable @1701065626 {#4413
                date: 2023-11-27 07:13:46.0 +01:00
              }
              +createdAt: DateTimeImmutable @1700607702 {#4414
                date: 2023-11-22 00:01:42.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4226}
            +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
            +lang: "en"
            +isAdult: false
            +favouriteCount: 5
            +score: 0
            +lastActive: DateTime @1700608457 {#4466
              date: 2023-11-22 00:14:17.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@bolapara@lemmy.ml"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4469 …}
            +nested: Doctrine\ORM\PersistentCollection {#4471 …}
            +votes: Doctrine\ORM\PersistentCollection {#4473 …}
            +reports: Doctrine\ORM\PersistentCollection {#4475 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
            -id: 149010
            -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.ml/comment/6007526"
            +editedAt: null
            +createdAt: DateTimeImmutable @1700608457 {#4467
              date: 2023-11-22 00:14:17.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4226}
          +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
          +lang: "en"
          +isAdult: false
          +favouriteCount: 0
          +score: 0
          +lastActive: DateTime @1700608692 {#4569
            date: 2023-11-22 00:18:12.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@bolapara@lemmy.ml"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4572 …}
          +nested: Doctrine\ORM\PersistentCollection {#4574 …}
          +votes: Doctrine\ORM\PersistentCollection {#4576 …}
          +reports: Doctrine\ORM\PersistentCollection {#4578 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
          -id: 149020
          -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488740"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700608692 {#4570
            date: 2023-11-22 00:18:12.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: """
          Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
          \n
          -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 6
        +score: 0
        +lastActive: DateTime @1700609022 {#4639
          date: 2023-11-22 00:23:42.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4642 …}
        +nested: Doctrine\ORM\PersistentCollection {#4644 …}
        +votes: Doctrine\ORM\PersistentCollection {#4646 …}
        +reports: Doctrine\ORM\PersistentCollection {#4648 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
        -id: 149042
        -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.ml/comment/6007744"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700609022 {#4640
          date: 2023-11-22 00:23:42.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "`-rw-rw-r-- 1 $sudoer $sudoer $date $createdfilename`."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700609194 {#4676
        date: 2023-11-22 00:26:34.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4679 …}
      +nested: Doctrine\ORM\PersistentCollection {#4681 …}
      +votes: Doctrine\ORM\PersistentCollection {#4683 …}
      +reports: Doctrine\ORM\PersistentCollection {#4685 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4687 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4689 …}
      -id: 149046
      -bodyTs: "'1':5 'createdfilenam':9 'date':8 'r':4 'rw':2,3 'rw-rw-r':1 'sudoer':6,7"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488879"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700609194 {#4677
        date: 2023-11-22 00:26:34.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "That is not an elevated permission, your user should be able to delete that file, do the same in another directory if it works it might be a permission, or more likely an attribute, problem on the directory itself or something on the path to it."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 2
    +score: 0
    +lastActive: DateTime @1700637814 {#4729
      date: 2023-11-22 08:23:34.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4732 …}
    +nested: Doctrine\ORM\PersistentCollection {#4734 …}
    +votes: Doctrine\ORM\PersistentCollection {#4736 …}
    +reports: Doctrine\ORM\PersistentCollection {#4738 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4740 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4742 …}
    -id: 149879
    -bodyTs: "'abl':11 'anoth':20 'attribut':34 'delet':13 'directori':21,38 'elev':5 'file':15 'like':32 'might':26 'path':44 'permiss':6,29 'problem':35 'someth':41 'user':8 'work':24"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5495305"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700637814 {#4730
      date: 2023-11-22 08:23:34.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "You cannot say if user able do delete the file or not. It depends on the directory permissions (deleting a file is modifying a directory)."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700652093 {#4766
    date: 2023-11-22 12:21:33.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
    "@Nibodhika@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4770 …}
  +nested: Doctrine\ORM\PersistentCollection {#4772 …}
  +votes: Doctrine\ORM\PersistentCollection {#4774 …}
  +reports: Doctrine\ORM\PersistentCollection {#4776 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4778 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4780 …}
  -id: 150210
  -bodyTs: "'abl':6 'cannot':2 'delet':8,19 'depend':14 'directori':17,25 'file':10,21 'modifi':23 'permiss':18 'say':3 'user':5"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6019255"
  +editedAt: DateTimeImmutable @1701121970 {#4767
    date: 2023-11-27 22:52:50.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700652093 {#4768
    date: 2023-11-22 12:21:33.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4769
  +user: Proxies\__CG__\App\Entity\User {#4517 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4731
    +user: Proxies\__CG__\App\Entity\User {#4626 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4678
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4641
        +user: App\Entity\User {#4239 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4571
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4468
            +user: App\Entity\User {#4239 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4415
              +user: Proxies\__CG__\App\Entity\User {#1978 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: App\Entity\EntryComment {#4226
                +user: App\Entity\User {#4239 …}
                +entry: App\Entity\Entry {#2412}
                +magazine: App\Entity\Magazine {#264}
                +image: null
                +parent: null
                +root: null
                +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
                +lang: "en"
                +isAdult: false
                +favouriteCount: 6
                +score: 0
                +lastActive: DateTime @1701120740 {#4221
                  date: 2023-11-27 22:32:20.0 +01:00
                }
                +ip: null
                +tags: null
                +mentions: [
                  "@GustavoM@lemmy.world"
                ]
                +children: Doctrine\ORM\PersistentCollection {#4227 …}
                +nested: Doctrine\ORM\PersistentCollection {#4229 …}
                +votes: Doctrine\ORM\PersistentCollection {#4231 …}
                +reports: Doctrine\ORM\PersistentCollection {#4233 …}
                +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
                +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
                -id: 148944
                -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
                +ranking: 0
                +commentCount: 0
                +upVotes: 0
                +downVotes: 0
                +visibility: "visible             "
                +apId: "https://lemmy.ml/comment/6007101"
                +editedAt: null
                +createdAt: DateTimeImmutable @1700607326 {#4222
                  date: 2023-11-21 23:55:26.0 +01:00
                }
              }
              +root: App\Entity\EntryComment {#4226}
              +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
              +lang: "en"
              +isAdult: false
              +favouriteCount: 0
              +score: 0
              +lastActive: DateTime @1700607702 {#4412
                date: 2023-11-22 00:01:42.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
                "@bolapara@lemmy.ml"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4416 …}
              +nested: Doctrine\ORM\PersistentCollection {#4418 …}
              +votes: Doctrine\ORM\PersistentCollection {#4420 …}
              +reports: Doctrine\ORM\PersistentCollection {#4422 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
              -id: 148957
              -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.world/comment/5488421"
              +editedAt: DateTimeImmutable @1701065626 {#4413
                date: 2023-11-27 07:13:46.0 +01:00
              }
              +createdAt: DateTimeImmutable @1700607702 {#4414
                date: 2023-11-22 00:01:42.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4226}
            +body: "OK I see. Can you create a new file with nano and then do an “ls -l” so we can see the permissions it’s given? Also provide the output of the command “umask” as the user you’re working with."
            +lang: "en"
            +isAdult: false
            +favouriteCount: 5
            +score: 0
            +lastActive: DateTime @1700608457 {#4466
              date: 2023-11-22 00:14:17.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@bolapara@lemmy.ml"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4469 …}
            +nested: Doctrine\ORM\PersistentCollection {#4471 …}
            +votes: Doctrine\ORM\PersistentCollection {#4473 …}
            +reports: Doctrine\ORM\PersistentCollection {#4475 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4477 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4479 …}
            -id: 149010
            -bodyTs: "'also':27 'command':33 'creat':6 'file':9 'given':26 'l':17 'ls':16 'nano':11 'new':8 'ok':1 'output':30 'permiss':23 'provid':28 're':39 'see':3,21 'umask':34 'user':37 'work':40"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.ml/comment/6007526"
            +editedAt: null
            +createdAt: DateTimeImmutable @1700608457 {#4467
              date: 2023-11-22 00:14:17.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4226}
          +body: "Just did it, and it shows my sudoer username with ownership of the created file. `umask` returns me 0002."
          +lang: "en"
          +isAdult: false
          +favouriteCount: 0
          +score: 0
          +lastActive: DateTime @1700608692 {#4569
            date: 2023-11-22 00:18:12.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@bolapara@lemmy.ml"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4572 …}
          +nested: Doctrine\ORM\PersistentCollection {#4574 …}
          +votes: Doctrine\ORM\PersistentCollection {#4576 …}
          +reports: Doctrine\ORM\PersistentCollection {#4578 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4580 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4582 …}
          -id: 149020
          -bodyTs: "'0002':19 'creat':14 'file':15 'ownership':11 'return':17 'show':6 'sudoer':8 'umask':16 'usernam':9"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488740"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700608692 {#4570
            date: 2023-11-22 00:18:12.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4226}
        +body: """
          Can you paste the line from ls -l? Sanitize the username/date/time if you need to. Example:\n
          \n
          -rw-r–r-- 1 bolapara users 0 Nov 21 17:19 asdf
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 6
        +score: 0
        +lastActive: DateTime @1700609022 {#4639
          date: 2023-11-22 00:23:42.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@bolapara@lemmy.ml"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4642 …}
        +nested: Doctrine\ORM\PersistentCollection {#4644 …}
        +votes: Doctrine\ORM\PersistentCollection {#4646 …}
        +reports: Doctrine\ORM\PersistentCollection {#4648 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4650 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4652 …}
        -id: 149042
        -bodyTs: "'0':24 '1':21 '17':27 '19':28 '21':26 'asdf':29 'bolapara':22 'exampl':16 'l':8 'line':5 'ls':7 'need':14 'nov':25 'past':3 'r':19,20 'rw':18 'rw-r':17 'sanit':9 'user':23 'username/date/time':11"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.ml/comment/6007744"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700609022 {#4640
          date: 2023-11-22 00:23:42.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4226}
      +body: "`-rw-rw-r-- 1 $sudoer $sudoer $date $createdfilename`."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700609194 {#4676
        date: 2023-11-22 00:26:34.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@bolapara@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4679 …}
      +nested: Doctrine\ORM\PersistentCollection {#4681 …}
      +votes: Doctrine\ORM\PersistentCollection {#4683 …}
      +reports: Doctrine\ORM\PersistentCollection {#4685 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4687 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4689 …}
      -id: 149046
      -bodyTs: "'1':5 'createdfilenam':9 'date':8 'r':4 'rw':2,3 'rw-rw-r':1 'sudoer':6,7"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488879"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700609194 {#4677
        date: 2023-11-22 00:26:34.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "That is not an elevated permission, your user should be able to delete that file, do the same in another directory if it works it might be a permission, or more likely an attribute, problem on the directory itself or something on the path to it."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 2
    +score: 0
    +lastActive: DateTime @1700637814 {#4729
      date: 2023-11-22 08:23:34.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4732 …}
    +nested: Doctrine\ORM\PersistentCollection {#4734 …}
    +votes: Doctrine\ORM\PersistentCollection {#4736 …}
    +reports: Doctrine\ORM\PersistentCollection {#4738 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4740 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4742 …}
    -id: 149879
    -bodyTs: "'abl':11 'anoth':20 'attribut':34 'delet':13 'directori':21,38 'elev':5 'file':15 'like':32 'might':26 'path':44 'permiss':6,29 'problem':35 'someth':41 'user':8 'work':24"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5495305"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700637814 {#4730
      date: 2023-11-22 08:23:34.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "You cannot say if user able do delete the file or not. It depends on the directory permissions (deleting a file is modifying a directory)."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700652093 {#4766
    date: 2023-11-22 12:21:33.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
    "@Nibodhika@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4770 …}
  +nested: Doctrine\ORM\PersistentCollection {#4772 …}
  +votes: Doctrine\ORM\PersistentCollection {#4774 …}
  +reports: Doctrine\ORM\PersistentCollection {#4776 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4778 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4780 …}
  -id: 150210
  -bodyTs: "'abl':6 'cannot':2 'delet':8,19 'depend':14 'directori':17,25 'file':10,21 'modifi':23 'permiss':18 'say':3 'user':5"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/6019255"
  +editedAt: DateTimeImmutable @1701121970 {#4767
    date: 2023-11-27 22:52:50.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700652093 {#4768
    date: 2023-11-22 12:21:33.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4483
  +user: Proxies\__CG__\App\Entity\User {#4484 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4415
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4226
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701120740 {#4221
        date: 2023-11-27 22:32:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4227 …}
      +nested: Doctrine\ORM\PersistentCollection {#4229 …}
      +votes: Doctrine\ORM\PersistentCollection {#4231 …}
      +reports: Doctrine\ORM\PersistentCollection {#4233 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
      -id: 148944
      -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007101"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700607326 {#4222
        date: 2023-11-21 23:55:26.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700607702 {#4412
      date: 2023-11-22 00:01:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4416 …}
    +nested: Doctrine\ORM\PersistentCollection {#4418 …}
    +votes: Doctrine\ORM\PersistentCollection {#4420 …}
    +reports: Doctrine\ORM\PersistentCollection {#4422 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
    -id: 148957
    -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488421"
    +editedAt: DateTimeImmutable @1701065626 {#4413
      date: 2023-11-27 07:13:46.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607702 {#4414
      date: 2023-11-22 00:01:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "What are the permissions on the directory? What is command are you running to edit the file? What command are you running to delete it? (Have you got selinux turned on? What filesystem is this directory on?)"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 4
  +score: 0
  +lastActive: DateTime @1700610277 {#4481
    date: 2023-11-22 00:44:37.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4485 …}
  +nested: Doctrine\ORM\PersistentCollection {#4487 …}
  +votes: Doctrine\ORM\PersistentCollection {#4489 …}
  +reports: Doctrine\ORM\PersistentCollection {#4491 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4493 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4495 …}
  -id: 149095
  -bodyTs: "'command':10,19 'delet':24 'directori':7,36 'edit':15 'file':17 'filesystem':33 'got':28 'permiss':4 'run':13,22 'selinux':29 'turn':30"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489238"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700610277 {#4482
    date: 2023-11-22 00:44:37.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4483
  +user: Proxies\__CG__\App\Entity\User {#4484 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4415
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4226
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701120740 {#4221
        date: 2023-11-27 22:32:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4227 …}
      +nested: Doctrine\ORM\PersistentCollection {#4229 …}
      +votes: Doctrine\ORM\PersistentCollection {#4231 …}
      +reports: Doctrine\ORM\PersistentCollection {#4233 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
      -id: 148944
      -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007101"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700607326 {#4222
        date: 2023-11-21 23:55:26.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700607702 {#4412
      date: 2023-11-22 00:01:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4416 …}
    +nested: Doctrine\ORM\PersistentCollection {#4418 …}
    +votes: Doctrine\ORM\PersistentCollection {#4420 …}
    +reports: Doctrine\ORM\PersistentCollection {#4422 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
    -id: 148957
    -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488421"
    +editedAt: DateTimeImmutable @1701065626 {#4413
      date: 2023-11-27 07:13:46.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607702 {#4414
      date: 2023-11-22 00:01:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "What are the permissions on the directory? What is command are you running to edit the file? What command are you running to delete it? (Have you got selinux turned on? What filesystem is this directory on?)"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 4
  +score: 0
  +lastActive: DateTime @1700610277 {#4481
    date: 2023-11-22 00:44:37.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4485 …}
  +nested: Doctrine\ORM\PersistentCollection {#4487 …}
  +votes: Doctrine\ORM\PersistentCollection {#4489 …}
  +reports: Doctrine\ORM\PersistentCollection {#4491 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4493 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4495 …}
  -id: 149095
  -bodyTs: "'command':10,19 'delet':24 'directori':7,36 'edit':15 'file':17 'filesystem':33 'got':28 'permiss':4 'run':13,22 'selinux':29 'turn':30"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489238"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700610277 {#4482
    date: 2023-11-22 00:44:37.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4483
  +user: Proxies\__CG__\App\Entity\User {#4484 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4415
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4226
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701120740 {#4221
        date: 2023-11-27 22:32:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4227 …}
      +nested: Doctrine\ORM\PersistentCollection {#4229 …}
      +votes: Doctrine\ORM\PersistentCollection {#4231 …}
      +reports: Doctrine\ORM\PersistentCollection {#4233 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
      -id: 148944
      -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007101"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700607326 {#4222
        date: 2023-11-21 23:55:26.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700607702 {#4412
      date: 2023-11-22 00:01:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4416 …}
    +nested: Doctrine\ORM\PersistentCollection {#4418 …}
    +votes: Doctrine\ORM\PersistentCollection {#4420 …}
    +reports: Doctrine\ORM\PersistentCollection {#4422 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
    -id: 148957
    -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488421"
    +editedAt: DateTimeImmutable @1701065626 {#4413
      date: 2023-11-27 07:13:46.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607702 {#4414
      date: 2023-11-22 00:01:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "What are the permissions on the directory? What is command are you running to edit the file? What command are you running to delete it? (Have you got selinux turned on? What filesystem is this directory on?)"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 4
  +score: 0
  +lastActive: DateTime @1700610277 {#4481
    date: 2023-11-22 00:44:37.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4485 …}
  +nested: Doctrine\ORM\PersistentCollection {#4487 …}
  +votes: Doctrine\ORM\PersistentCollection {#4489 …}
  +reports: Doctrine\ORM\PersistentCollection {#4491 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4493 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4495 …}
  -id: 149095
  -bodyTs: "'command':10,19 'delet':24 'directori':7,36 'edit':15 'file':17 'filesystem':33 'got':28 'permiss':4 'run':13,22 'selinux':29 'turn':30"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489238"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700610277 {#4482
    date: 2023-11-22 00:44:37.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4499
  +user: Proxies\__CG__\App\Entity\User {#4500 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4415
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4226
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701120740 {#4221
        date: 2023-11-27 22:32:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4227 …}
      +nested: Doctrine\ORM\PersistentCollection {#4229 …}
      +votes: Doctrine\ORM\PersistentCollection {#4231 …}
      +reports: Doctrine\ORM\PersistentCollection {#4233 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
      -id: 148944
      -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007101"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700607326 {#4222
        date: 2023-11-21 23:55:26.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700607702 {#4412
      date: 2023-11-22 00:01:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4416 …}
    +nested: Doctrine\ORM\PersistentCollection {#4418 …}
    +votes: Doctrine\ORM\PersistentCollection {#4420 …}
    +reports: Doctrine\ORM\PersistentCollection {#4422 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
    -id: 148957
    -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488421"
    +editedAt: DateTimeImmutable @1701065626 {#4413
      date: 2023-11-27 07:13:46.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607702 {#4414
      date: 2023-11-22 00:01:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "Do you have write permissions on the directory?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 3
  +score: 0
  +lastActive: DateTime @1700615635 {#4497
    date: 2023-11-22 02:13:55.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4501 …}
  +nested: Doctrine\ORM\PersistentCollection {#4503 …}
  +votes: Doctrine\ORM\PersistentCollection {#4505 …}
  +reports: Doctrine\ORM\PersistentCollection {#4507 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4509 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4511 …}
  -id: 149278
  -bodyTs: "'directori':8 'permiss':5 'write':4"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://ttrpg.network/comment/3455973"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700615635 {#4498
    date: 2023-11-22 02:13:55.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4499
  +user: Proxies\__CG__\App\Entity\User {#4500 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4415
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4226
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701120740 {#4221
        date: 2023-11-27 22:32:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4227 …}
      +nested: Doctrine\ORM\PersistentCollection {#4229 …}
      +votes: Doctrine\ORM\PersistentCollection {#4231 …}
      +reports: Doctrine\ORM\PersistentCollection {#4233 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
      -id: 148944
      -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007101"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700607326 {#4222
        date: 2023-11-21 23:55:26.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700607702 {#4412
      date: 2023-11-22 00:01:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4416 …}
    +nested: Doctrine\ORM\PersistentCollection {#4418 …}
    +votes: Doctrine\ORM\PersistentCollection {#4420 …}
    +reports: Doctrine\ORM\PersistentCollection {#4422 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
    -id: 148957
    -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488421"
    +editedAt: DateTimeImmutable @1701065626 {#4413
      date: 2023-11-27 07:13:46.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607702 {#4414
      date: 2023-11-22 00:01:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "Do you have write permissions on the directory?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 3
  +score: 0
  +lastActive: DateTime @1700615635 {#4497
    date: 2023-11-22 02:13:55.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4501 …}
  +nested: Doctrine\ORM\PersistentCollection {#4503 …}
  +votes: Doctrine\ORM\PersistentCollection {#4505 …}
  +reports: Doctrine\ORM\PersistentCollection {#4507 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4509 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4511 …}
  -id: 149278
  -bodyTs: "'directori':8 'permiss':5 'write':4"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://ttrpg.network/comment/3455973"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700615635 {#4498
    date: 2023-11-22 02:13:55.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4499
  +user: Proxies\__CG__\App\Entity\User {#4500 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4415
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4226
      +user: App\Entity\User {#4239 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: "Can you be more specific about what you mean by this: “gives (the file) elevated privileges”?"
      +lang: "en"
      +isAdult: false
      +favouriteCount: 6
      +score: 0
      +lastActive: DateTime @1701120740 {#4221
        date: 2023-11-27 22:32:20.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4227 …}
      +nested: Doctrine\ORM\PersistentCollection {#4229 …}
      +votes: Doctrine\ORM\PersistentCollection {#4231 …}
      +reports: Doctrine\ORM\PersistentCollection {#4233 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4235 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4237 …}
      -id: 148944
      -bodyTs: "'elev':15 'file':14 'give':12 'mean':9 'privileg':16 'specif':5"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/6007101"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700607326 {#4222
        date: 2023-11-21 23:55:26.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4226}
    +body: "i.e file is created (as non-root), trying to remove the file (once again, as non-root) gives me a “`rm: cannot remove ‘dir/file.name’: Permission denied`” error message."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700607702 {#4412
      date: 2023-11-22 00:01:42.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@bolapara@lemmy.ml"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4416 …}
    +nested: Doctrine\ORM\PersistentCollection {#4418 …}
    +votes: Doctrine\ORM\PersistentCollection {#4420 …}
    +reports: Doctrine\ORM\PersistentCollection {#4422 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4424 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4426 …}
    -id: 148957
    -bodyTs: "'cannot':24 'creat':4 'deni':28 'dir/file.name':26 'error':29 'file':2,13 'give':20 'i.e':1 'messag':30 'non':7,18 'non-root':6,17 'permiss':27 'remov':11,25 'rm':23 'root':8,19 'tri':9"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488421"
    +editedAt: DateTimeImmutable @1701065626 {#4413
      date: 2023-11-27 07:13:46.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607702 {#4414
      date: 2023-11-22 00:01:42.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4226}
  +body: "Do you have write permissions on the directory?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 3
  +score: 0
  +lastActive: DateTime @1700615635 {#4497
    date: 2023-11-22 02:13:55.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@bolapara@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4501 …}
  +nested: Doctrine\ORM\PersistentCollection {#4503 …}
  +votes: Doctrine\ORM\PersistentCollection {#4505 …}
  +reports: Doctrine\ORM\PersistentCollection {#4507 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4509 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4511 …}
  -id: 149278
  -bodyTs: "'directori':8 'permiss':5 'write':4"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://ttrpg.network/comment/3455973"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700615635 {#4498
    date: 2023-11-22 02:13:55.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4300
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: """
    Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
    \n
    Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
    \n
    Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
    \n
    Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
    \n
    But if that flag is set on nano, that’s pretty weird.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 14
  +score: 0
  +lastActive: DateTime @1701191441 {#4294
    date: 2023-11-28 18:10:41.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4301 …}
  +nested: Doctrine\ORM\PersistentCollection {#4303 …}
  +votes: Doctrine\ORM\PersistentCollection {#4305 …}
  +reports: Doctrine\ORM\PersistentCollection {#4307 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
  -id: 148880
  -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5487960"
  +editedAt: DateTimeImmutable @1701063149 {#4295
    date: 2023-11-27 06:32:29.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700606375 {#4296
    date: 2023-11-21 23:39:35.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4300
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: """
    Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
    \n
    Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
    \n
    Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
    \n
    Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
    \n
    But if that flag is set on nano, that’s pretty weird.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 14
  +score: 0
  +lastActive: DateTime @1701191441 {#4294
    date: 2023-11-28 18:10:41.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4301 …}
  +nested: Doctrine\ORM\PersistentCollection {#4303 …}
  +votes: Doctrine\ORM\PersistentCollection {#4305 …}
  +reports: Doctrine\ORM\PersistentCollection {#4307 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
  -id: 148880
  -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5487960"
  +editedAt: DateTimeImmutable @1701063149 {#4295
    date: 2023-11-27 06:32:29.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700606375 {#4296
    date: 2023-11-21 23:39:35.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4300
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: null
  +root: null
  +body: """
    Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
    \n
    Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
    \n
    Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
    \n
    Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
    \n
    But if that flag is set on nano, that’s pretty weird.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 14
  +score: 0
  +lastActive: DateTime @1701191441 {#4294
    date: 2023-11-28 18:10:41.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4301 …}
  +nested: Doctrine\ORM\PersistentCollection {#4303 …}
  +votes: Doctrine\ORM\PersistentCollection {#4305 …}
  +reports: Doctrine\ORM\PersistentCollection {#4307 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
  -id: 148880
  -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5487960"
  +editedAt: DateTimeImmutable @1701063149 {#4295
    date: 2023-11-27 06:32:29.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700606375 {#4296
    date: 2023-11-21 23:39:35.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4385
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4300
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: """
      Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
      \n
      Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
      \n
      Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
      \n
      Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
      \n
      But if that flag is set on nano, that’s pretty weird.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 14
    +score: 0
    +lastActive: DateTime @1701191441 {#4294
      date: 2023-11-28 18:10:41.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4301 …}
    +nested: Doctrine\ORM\PersistentCollection {#4303 …}
    +votes: Doctrine\ORM\PersistentCollection {#4305 …}
    +reports: Doctrine\ORM\PersistentCollection {#4307 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
    -id: 148880
    -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5487960"
    +editedAt: DateTimeImmutable @1701063149 {#4295
      date: 2023-11-27 06:32:29.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700606375 {#4296
      date: 2023-11-21 23:39:35.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    > Try an ls -l $(which nano) and look at the permissions section of the output.\n
    \n
    Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 3
  +score: 0
  +lastActive: DateTime @1700606835 {#4386
    date: 2023-11-21 23:47:15.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4381 …}
  +nested: Doctrine\ORM\PersistentCollection {#4376 …}
  +votes: Doctrine\ORM\PersistentCollection {#4380 …}
  +reports: Doctrine\ORM\PersistentCollection {#4390 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
  -id: 148915
  -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488133"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700606835 {#4389
    date: 2023-11-21 23:47:15.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4385
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4300
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: """
      Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
      \n
      Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
      \n
      Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
      \n
      Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
      \n
      But if that flag is set on nano, that’s pretty weird.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 14
    +score: 0
    +lastActive: DateTime @1701191441 {#4294
      date: 2023-11-28 18:10:41.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4301 …}
    +nested: Doctrine\ORM\PersistentCollection {#4303 …}
    +votes: Doctrine\ORM\PersistentCollection {#4305 …}
    +reports: Doctrine\ORM\PersistentCollection {#4307 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
    -id: 148880
    -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5487960"
    +editedAt: DateTimeImmutable @1701063149 {#4295
      date: 2023-11-27 06:32:29.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700606375 {#4296
      date: 2023-11-21 23:39:35.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    > Try an ls -l $(which nano) and look at the permissions section of the output.\n
    \n
    Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 3
  +score: 0
  +lastActive: DateTime @1700606835 {#4386
    date: 2023-11-21 23:47:15.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4381 …}
  +nested: Doctrine\ORM\PersistentCollection {#4376 …}
  +votes: Doctrine\ORM\PersistentCollection {#4380 …}
  +reports: Doctrine\ORM\PersistentCollection {#4390 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
  -id: 148915
  -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488133"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700606835 {#4389
    date: 2023-11-21 23:47:15.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4385
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4300
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: """
      Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
      \n
      Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
      \n
      Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
      \n
      Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
      \n
      But if that flag is set on nano, that’s pretty weird.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 14
    +score: 0
    +lastActive: DateTime @1701191441 {#4294
      date: 2023-11-28 18:10:41.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4301 …}
    +nested: Doctrine\ORM\PersistentCollection {#4303 …}
    +votes: Doctrine\ORM\PersistentCollection {#4305 …}
    +reports: Doctrine\ORM\PersistentCollection {#4307 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
    -id: 148880
    -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5487960"
    +editedAt: DateTimeImmutable @1701063149 {#4295
      date: 2023-11-27 06:32:29.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700606375 {#4296
      date: 2023-11-21 23:39:35.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    > Try an ls -l $(which nano) and look at the permissions section of the output.\n
    \n
    Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 3
  +score: 0
  +lastActive: DateTime @1700606835 {#4386
    date: 2023-11-21 23:47:15.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4381 …}
  +nested: Doctrine\ORM\PersistentCollection {#4376 …}
  +votes: Doctrine\ORM\PersistentCollection {#4380 …}
  +reports: Doctrine\ORM\PersistentCollection {#4390 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
  -id: 148915
  -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488133"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700606835 {#4389
    date: 2023-11-21 23:47:15.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4452
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4385
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4300
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: """
        Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
        \n
        Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
        \n
        Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
        \n
        Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
        \n
        But if that flag is set on nano, that’s pretty weird.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 14
      +score: 0
      +lastActive: DateTime @1701191441 {#4294
        date: 2023-11-28 18:10:41.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4301 …}
      +nested: Doctrine\ORM\PersistentCollection {#4303 …}
      +votes: Doctrine\ORM\PersistentCollection {#4305 …}
      +reports: Doctrine\ORM\PersistentCollection {#4307 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
      -id: 148880
      -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5487960"
      +editedAt: DateTimeImmutable @1701063149 {#4295
        date: 2023-11-27 06:32:29.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700606375 {#4296
        date: 2023-11-21 23:39:35.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      > Try an ls -l $(which nano) and look at the permissions section of the output.\n
      \n
      Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 3
    +score: 0
    +lastActive: DateTime @1700606835 {#4386
      date: 2023-11-21 23:47:15.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4381 …}
    +nested: Doctrine\ORM\PersistentCollection {#4376 …}
    +votes: Doctrine\ORM\PersistentCollection {#4380 …}
    +reports: Doctrine\ORM\PersistentCollection {#4390 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
    -id: 148915
    -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488133"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700606835 {#4389
      date: 2023-11-21 23:47:15.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    Yeah, tha’ts weird.\n
    \n
    Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
    \n
    Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
    \n
    Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 8
  +score: 0
  +lastActive: DateTime @1700607651 {#4448
    date: 2023-11-22 00:00:51.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4456 …}
  +nested: Doctrine\ORM\PersistentCollection {#4458 …}
  +votes: Doctrine\ORM\PersistentCollection {#4454 …}
  +reports: Doctrine\ORM\PersistentCollection {#4460 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
  -id: 148956
  -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488406"
  +editedAt: DateTimeImmutable @1701066462 {#4445
    date: 2023-11-27 07:27:42.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700607651 {#4449
    date: 2023-11-22 00:00:51.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4452
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4385
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4300
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: """
        Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
        \n
        Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
        \n
        Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
        \n
        Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
        \n
        But if that flag is set on nano, that’s pretty weird.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 14
      +score: 0
      +lastActive: DateTime @1701191441 {#4294
        date: 2023-11-28 18:10:41.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4301 …}
      +nested: Doctrine\ORM\PersistentCollection {#4303 …}
      +votes: Doctrine\ORM\PersistentCollection {#4305 …}
      +reports: Doctrine\ORM\PersistentCollection {#4307 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
      -id: 148880
      -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5487960"
      +editedAt: DateTimeImmutable @1701063149 {#4295
        date: 2023-11-27 06:32:29.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700606375 {#4296
        date: 2023-11-21 23:39:35.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      > Try an ls -l $(which nano) and look at the permissions section of the output.\n
      \n
      Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 3
    +score: 0
    +lastActive: DateTime @1700606835 {#4386
      date: 2023-11-21 23:47:15.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4381 …}
    +nested: Doctrine\ORM\PersistentCollection {#4376 …}
    +votes: Doctrine\ORM\PersistentCollection {#4380 …}
    +reports: Doctrine\ORM\PersistentCollection {#4390 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
    -id: 148915
    -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488133"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700606835 {#4389
      date: 2023-11-21 23:47:15.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    Yeah, tha’ts weird.\n
    \n
    Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
    \n
    Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
    \n
    Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 8
  +score: 0
  +lastActive: DateTime @1700607651 {#4448
    date: 2023-11-22 00:00:51.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4456 …}
  +nested: Doctrine\ORM\PersistentCollection {#4458 …}
  +votes: Doctrine\ORM\PersistentCollection {#4454 …}
  +reports: Doctrine\ORM\PersistentCollection {#4460 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
  -id: 148956
  -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488406"
  +editedAt: DateTimeImmutable @1701066462 {#4445
    date: 2023-11-27 07:27:42.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700607651 {#4449
    date: 2023-11-22 00:00:51.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4452
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4385
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4300
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: """
        Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
        \n
        Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
        \n
        Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
        \n
        Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
        \n
        But if that flag is set on nano, that’s pretty weird.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 14
      +score: 0
      +lastActive: DateTime @1701191441 {#4294
        date: 2023-11-28 18:10:41.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4301 …}
      +nested: Doctrine\ORM\PersistentCollection {#4303 …}
      +votes: Doctrine\ORM\PersistentCollection {#4305 …}
      +reports: Doctrine\ORM\PersistentCollection {#4307 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
      -id: 148880
      -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5487960"
      +editedAt: DateTimeImmutable @1701063149 {#4295
        date: 2023-11-27 06:32:29.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700606375 {#4296
        date: 2023-11-21 23:39:35.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      > Try an ls -l $(which nano) and look at the permissions section of the output.\n
      \n
      Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 3
    +score: 0
    +lastActive: DateTime @1700606835 {#4386
      date: 2023-11-21 23:47:15.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4381 …}
    +nested: Doctrine\ORM\PersistentCollection {#4376 …}
    +votes: Doctrine\ORM\PersistentCollection {#4380 …}
    +reports: Doctrine\ORM\PersistentCollection {#4390 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
    -id: 148915
    -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488133"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700606835 {#4389
      date: 2023-11-21 23:47:15.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    Yeah, tha’ts weird.\n
    \n
    Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
    \n
    Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
    \n
    Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 8
  +score: 0
  +lastActive: DateTime @1700607651 {#4448
    date: 2023-11-22 00:00:51.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4456 …}
  +nested: Doctrine\ORM\PersistentCollection {#4458 …}
  +votes: Doctrine\ORM\PersistentCollection {#4454 …}
  +reports: Doctrine\ORM\PersistentCollection {#4460 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
  -id: 148956
  -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488406"
  +editedAt: DateTimeImmutable @1701066462 {#4445
    date: 2023-11-27 07:27:42.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700607651 {#4449
    date: 2023-11-22 00:00:51.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4555
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4452
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4385
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4300
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: null
        +root: null
        +body: """
          Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
          \n
          Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
          \n
          Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
          \n
          Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
          \n
          But if that flag is set on nano, that’s pretty weird.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 14
        +score: 0
        +lastActive: DateTime @1701191441 {#4294
          date: 2023-11-28 18:10:41.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4301 …}
        +nested: Doctrine\ORM\PersistentCollection {#4303 …}
        +votes: Doctrine\ORM\PersistentCollection {#4305 …}
        +reports: Doctrine\ORM\PersistentCollection {#4307 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
        -id: 148880
        -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5487960"
        +editedAt: DateTimeImmutable @1701063149 {#4295
          date: 2023-11-27 06:32:29.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700606375 {#4296
          date: 2023-11-21 23:39:35.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        > Try an ls -l $(which nano) and look at the permissions section of the output.\n
        \n
        Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 3
      +score: 0
      +lastActive: DateTime @1700606835 {#4386
        date: 2023-11-21 23:47:15.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4381 …}
      +nested: Doctrine\ORM\PersistentCollection {#4376 …}
      +votes: Doctrine\ORM\PersistentCollection {#4380 …}
      +reports: Doctrine\ORM\PersistentCollection {#4390 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
      -id: 148915
      -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488133"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700606835 {#4389
        date: 2023-11-21 23:47:15.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Yeah, tha’ts weird.\n
      \n
      Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
      \n
      Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
      \n
      Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 8
    +score: 0
    +lastActive: DateTime @1700607651 {#4448
      date: 2023-11-22 00:00:51.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4456 …}
    +nested: Doctrine\ORM\PersistentCollection {#4458 …}
    +votes: Doctrine\ORM\PersistentCollection {#4454 …}
    +reports: Doctrine\ORM\PersistentCollection {#4460 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
    -id: 148956
    -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488406"
    +editedAt: DateTimeImmutable @1701066462 {#4445
      date: 2023-11-27 07:27:42.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607651 {#4449
      date: 2023-11-22 00:00:51.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
    \n
    And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700608399 {#4550
    date: 2023-11-22 00:13:19.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4560 …}
  +nested: Doctrine\ORM\PersistentCollection {#4556 …}
  +votes: Doctrine\ORM\PersistentCollection {#4558 …}
  +reports: Doctrine\ORM\PersistentCollection {#4563 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
  -id: 149008
  -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488648"
  +editedAt: DateTimeImmutable @1701066694 {#4547
    date: 2023-11-27 07:31:34.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700608399 {#4551
    date: 2023-11-22 00:13:19.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4555
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4452
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4385
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4300
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: null
        +root: null
        +body: """
          Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
          \n
          Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
          \n
          Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
          \n
          Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
          \n
          But if that flag is set on nano, that’s pretty weird.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 14
        +score: 0
        +lastActive: DateTime @1701191441 {#4294
          date: 2023-11-28 18:10:41.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4301 …}
        +nested: Doctrine\ORM\PersistentCollection {#4303 …}
        +votes: Doctrine\ORM\PersistentCollection {#4305 …}
        +reports: Doctrine\ORM\PersistentCollection {#4307 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
        -id: 148880
        -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5487960"
        +editedAt: DateTimeImmutable @1701063149 {#4295
          date: 2023-11-27 06:32:29.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700606375 {#4296
          date: 2023-11-21 23:39:35.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        > Try an ls -l $(which nano) and look at the permissions section of the output.\n
        \n
        Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 3
      +score: 0
      +lastActive: DateTime @1700606835 {#4386
        date: 2023-11-21 23:47:15.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4381 …}
      +nested: Doctrine\ORM\PersistentCollection {#4376 …}
      +votes: Doctrine\ORM\PersistentCollection {#4380 …}
      +reports: Doctrine\ORM\PersistentCollection {#4390 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
      -id: 148915
      -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488133"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700606835 {#4389
        date: 2023-11-21 23:47:15.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Yeah, tha’ts weird.\n
      \n
      Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
      \n
      Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
      \n
      Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 8
    +score: 0
    +lastActive: DateTime @1700607651 {#4448
      date: 2023-11-22 00:00:51.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4456 …}
    +nested: Doctrine\ORM\PersistentCollection {#4458 …}
    +votes: Doctrine\ORM\PersistentCollection {#4454 …}
    +reports: Doctrine\ORM\PersistentCollection {#4460 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
    -id: 148956
    -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488406"
    +editedAt: DateTimeImmutable @1701066462 {#4445
      date: 2023-11-27 07:27:42.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607651 {#4449
      date: 2023-11-22 00:00:51.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
    \n
    And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700608399 {#4550
    date: 2023-11-22 00:13:19.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4560 …}
  +nested: Doctrine\ORM\PersistentCollection {#4556 …}
  +votes: Doctrine\ORM\PersistentCollection {#4558 …}
  +reports: Doctrine\ORM\PersistentCollection {#4563 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
  -id: 149008
  -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488648"
  +editedAt: DateTimeImmutable @1701066694 {#4547
    date: 2023-11-27 07:31:34.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700608399 {#4551
    date: 2023-11-22 00:13:19.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4555
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4452
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4385
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4300
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: null
        +root: null
        +body: """
          Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
          \n
          Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
          \n
          Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
          \n
          Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
          \n
          But if that flag is set on nano, that’s pretty weird.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 14
        +score: 0
        +lastActive: DateTime @1701191441 {#4294
          date: 2023-11-28 18:10:41.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4301 …}
        +nested: Doctrine\ORM\PersistentCollection {#4303 …}
        +votes: Doctrine\ORM\PersistentCollection {#4305 …}
        +reports: Doctrine\ORM\PersistentCollection {#4307 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
        -id: 148880
        -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5487960"
        +editedAt: DateTimeImmutable @1701063149 {#4295
          date: 2023-11-27 06:32:29.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700606375 {#4296
          date: 2023-11-21 23:39:35.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        > Try an ls -l $(which nano) and look at the permissions section of the output.\n
        \n
        Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 3
      +score: 0
      +lastActive: DateTime @1700606835 {#4386
        date: 2023-11-21 23:47:15.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4381 …}
      +nested: Doctrine\ORM\PersistentCollection {#4376 …}
      +votes: Doctrine\ORM\PersistentCollection {#4380 …}
      +reports: Doctrine\ORM\PersistentCollection {#4390 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
      -id: 148915
      -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488133"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700606835 {#4389
        date: 2023-11-21 23:47:15.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Yeah, tha’ts weird.\n
      \n
      Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
      \n
      Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
      \n
      Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 8
    +score: 0
    +lastActive: DateTime @1700607651 {#4448
      date: 2023-11-22 00:00:51.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4456 …}
    +nested: Doctrine\ORM\PersistentCollection {#4458 …}
    +votes: Doctrine\ORM\PersistentCollection {#4454 …}
    +reports: Doctrine\ORM\PersistentCollection {#4460 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
    -id: 148956
    -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488406"
    +editedAt: DateTimeImmutable @1701066462 {#4445
      date: 2023-11-27 07:27:42.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700607651 {#4449
      date: 2023-11-22 00:00:51.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
    \n
    And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700608399 {#4550
    date: 2023-11-22 00:13:19.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4560 …}
  +nested: Doctrine\ORM\PersistentCollection {#4556 …}
  +votes: Doctrine\ORM\PersistentCollection {#4558 …}
  +reports: Doctrine\ORM\PersistentCollection {#4563 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
  -id: 149008
  -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488648"
  +editedAt: DateTimeImmutable @1701066694 {#4547
    date: 2023-11-27 07:31:34.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700608399 {#4551
    date: 2023-11-22 00:13:19.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4607
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4555
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4452
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4385
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4300
          +user: App\Entity\User {#4313 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: null
          +root: null
          +body: """
            Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
            \n
            Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
            \n
            Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
            \n
            Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
            \n
            But if that flag is set on nano, that’s pretty weird.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 14
          +score: 0
          +lastActive: DateTime @1701191441 {#4294
            date: 2023-11-28 18:10:41.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4301 …}
          +nested: Doctrine\ORM\PersistentCollection {#4303 …}
          +votes: Doctrine\ORM\PersistentCollection {#4305 …}
          +reports: Doctrine\ORM\PersistentCollection {#4307 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
          -id: 148880
          -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5487960"
          +editedAt: DateTimeImmutable @1701063149 {#4295
            date: 2023-11-27 06:32:29.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700606375 {#4296
            date: 2023-11-21 23:39:35.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          > Try an ls -l $(which nano) and look at the permissions section of the output.\n
          \n
          Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 3
        +score: 0
        +lastActive: DateTime @1700606835 {#4386
          date: 2023-11-21 23:47:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4381 …}
        +nested: Doctrine\ORM\PersistentCollection {#4376 …}
        +votes: Doctrine\ORM\PersistentCollection {#4380 …}
        +reports: Doctrine\ORM\PersistentCollection {#4390 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
        -id: 148915
        -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488133"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700606835 {#4389
          date: 2023-11-21 23:47:15.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Yeah, tha’ts weird.\n
        \n
        Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
        \n
        Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
        \n
        Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 8
      +score: 0
      +lastActive: DateTime @1700607651 {#4448
        date: 2023-11-22 00:00:51.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4456 …}
      +nested: Doctrine\ORM\PersistentCollection {#4458 …}
      +votes: Doctrine\ORM\PersistentCollection {#4454 …}
      +reports: Doctrine\ORM\PersistentCollection {#4460 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
      -id: 148956
      -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488406"
      +editedAt: DateTimeImmutable @1701066462 {#4445
        date: 2023-11-27 07:27:42.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700607651 {#4449
        date: 2023-11-22 00:00:51.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
      \n
      And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700608399 {#4550
      date: 2023-11-22 00:13:19.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4560 …}
    +nested: Doctrine\ORM\PersistentCollection {#4556 …}
    +votes: Doctrine\ORM\PersistentCollection {#4558 …}
    +reports: Doctrine\ORM\PersistentCollection {#4563 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
    -id: 149008
    -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488648"
    +editedAt: DateTimeImmutable @1701066694 {#4547
      date: 2023-11-27 07:31:34.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700608399 {#4551
      date: 2023-11-22 00:13:19.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
    \n
    Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700608720 {#4611
    date: 2023-11-22 00:18:40.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4604 …}
  +nested: Doctrine\ORM\PersistentCollection {#4602 …}
  +votes: Doctrine\ORM\PersistentCollection {#4606 …}
  +reports: Doctrine\ORM\PersistentCollection {#4617 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
  -id: 149027
  -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488752"
  +editedAt: DateTimeImmutable @1701067065 {#4614
    date: 2023-11-27 07:37:45.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700608720 {#4610
    date: 2023-11-22 00:18:40.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4607
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4555
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4452
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4385
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4300
          +user: App\Entity\User {#4313 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: null
          +root: null
          +body: """
            Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
            \n
            Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
            \n
            Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
            \n
            Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
            \n
            But if that flag is set on nano, that’s pretty weird.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 14
          +score: 0
          +lastActive: DateTime @1701191441 {#4294
            date: 2023-11-28 18:10:41.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4301 …}
          +nested: Doctrine\ORM\PersistentCollection {#4303 …}
          +votes: Doctrine\ORM\PersistentCollection {#4305 …}
          +reports: Doctrine\ORM\PersistentCollection {#4307 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
          -id: 148880
          -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5487960"
          +editedAt: DateTimeImmutable @1701063149 {#4295
            date: 2023-11-27 06:32:29.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700606375 {#4296
            date: 2023-11-21 23:39:35.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          > Try an ls -l $(which nano) and look at the permissions section of the output.\n
          \n
          Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 3
        +score: 0
        +lastActive: DateTime @1700606835 {#4386
          date: 2023-11-21 23:47:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4381 …}
        +nested: Doctrine\ORM\PersistentCollection {#4376 …}
        +votes: Doctrine\ORM\PersistentCollection {#4380 …}
        +reports: Doctrine\ORM\PersistentCollection {#4390 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
        -id: 148915
        -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488133"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700606835 {#4389
          date: 2023-11-21 23:47:15.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Yeah, tha’ts weird.\n
        \n
        Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
        \n
        Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
        \n
        Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 8
      +score: 0
      +lastActive: DateTime @1700607651 {#4448
        date: 2023-11-22 00:00:51.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4456 …}
      +nested: Doctrine\ORM\PersistentCollection {#4458 …}
      +votes: Doctrine\ORM\PersistentCollection {#4454 …}
      +reports: Doctrine\ORM\PersistentCollection {#4460 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
      -id: 148956
      -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488406"
      +editedAt: DateTimeImmutable @1701066462 {#4445
        date: 2023-11-27 07:27:42.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700607651 {#4449
        date: 2023-11-22 00:00:51.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
      \n
      And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700608399 {#4550
      date: 2023-11-22 00:13:19.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4560 …}
    +nested: Doctrine\ORM\PersistentCollection {#4556 …}
    +votes: Doctrine\ORM\PersistentCollection {#4558 …}
    +reports: Doctrine\ORM\PersistentCollection {#4563 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
    -id: 149008
    -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488648"
    +editedAt: DateTimeImmutable @1701066694 {#4547
      date: 2023-11-27 07:31:34.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700608399 {#4551
      date: 2023-11-22 00:13:19.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
    \n
    Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700608720 {#4611
    date: 2023-11-22 00:18:40.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4604 …}
  +nested: Doctrine\ORM\PersistentCollection {#4602 …}
  +votes: Doctrine\ORM\PersistentCollection {#4606 …}
  +reports: Doctrine\ORM\PersistentCollection {#4617 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
  -id: 149027
  -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488752"
  +editedAt: DateTimeImmutable @1701067065 {#4614
    date: 2023-11-27 07:37:45.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700608720 {#4610
    date: 2023-11-22 00:18:40.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4607
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4555
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4452
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4385
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4300
          +user: App\Entity\User {#4313 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: null
          +root: null
          +body: """
            Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
            \n
            Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
            \n
            Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
            \n
            Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
            \n
            But if that flag is set on nano, that’s pretty weird.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 14
          +score: 0
          +lastActive: DateTime @1701191441 {#4294
            date: 2023-11-28 18:10:41.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4301 …}
          +nested: Doctrine\ORM\PersistentCollection {#4303 …}
          +votes: Doctrine\ORM\PersistentCollection {#4305 …}
          +reports: Doctrine\ORM\PersistentCollection {#4307 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
          -id: 148880
          -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5487960"
          +editedAt: DateTimeImmutable @1701063149 {#4295
            date: 2023-11-27 06:32:29.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700606375 {#4296
            date: 2023-11-21 23:39:35.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          > Try an ls -l $(which nano) and look at the permissions section of the output.\n
          \n
          Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 3
        +score: 0
        +lastActive: DateTime @1700606835 {#4386
          date: 2023-11-21 23:47:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4381 …}
        +nested: Doctrine\ORM\PersistentCollection {#4376 …}
        +votes: Doctrine\ORM\PersistentCollection {#4380 …}
        +reports: Doctrine\ORM\PersistentCollection {#4390 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
        -id: 148915
        -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488133"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700606835 {#4389
          date: 2023-11-21 23:47:15.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Yeah, tha’ts weird.\n
        \n
        Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
        \n
        Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
        \n
        Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 8
      +score: 0
      +lastActive: DateTime @1700607651 {#4448
        date: 2023-11-22 00:00:51.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4456 …}
      +nested: Doctrine\ORM\PersistentCollection {#4458 …}
      +votes: Doctrine\ORM\PersistentCollection {#4454 …}
      +reports: Doctrine\ORM\PersistentCollection {#4460 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
      -id: 148956
      -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488406"
      +editedAt: DateTimeImmutable @1701066462 {#4445
        date: 2023-11-27 07:27:42.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700607651 {#4449
        date: 2023-11-22 00:00:51.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
      \n
      And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700608399 {#4550
      date: 2023-11-22 00:13:19.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4560 …}
    +nested: Doctrine\ORM\PersistentCollection {#4556 …}
    +votes: Doctrine\ORM\PersistentCollection {#4558 …}
    +reports: Doctrine\ORM\PersistentCollection {#4563 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
    -id: 149008
    -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488648"
    +editedAt: DateTimeImmutable @1701066694 {#4547
      date: 2023-11-27 07:31:34.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700608399 {#4551
      date: 2023-11-22 00:13:19.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
    \n
    Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700608720 {#4611
    date: 2023-11-22 00:18:40.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4604 …}
  +nested: Doctrine\ORM\PersistentCollection {#4602 …}
  +votes: Doctrine\ORM\PersistentCollection {#4606 …}
  +reports: Doctrine\ORM\PersistentCollection {#4617 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
  -id: 149027
  -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488752"
  +editedAt: DateTimeImmutable @1701067065 {#4614
    date: 2023-11-27 07:37:45.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700608720 {#4610
    date: 2023-11-22 00:18:40.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4664
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4607
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4555
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4452
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4385
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4300
            +user: App\Entity\User {#4313 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: null
            +root: null
            +body: """
              Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
              \n
              Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
              \n
              Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
              \n
              Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
              \n
              But if that flag is set on nano, that’s pretty weird.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 14
            +score: 0
            +lastActive: DateTime @1701191441 {#4294
              date: 2023-11-28 18:10:41.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4301 …}
            +nested: Doctrine\ORM\PersistentCollection {#4303 …}
            +votes: Doctrine\ORM\PersistentCollection {#4305 …}
            +reports: Doctrine\ORM\PersistentCollection {#4307 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
            -id: 148880
            -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5487960"
            +editedAt: DateTimeImmutable @1701063149 {#4295
              date: 2023-11-27 06:32:29.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700606375 {#4296
              date: 2023-11-21 23:39:35.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            > Try an ls -l $(which nano) and look at the permissions section of the output.\n
            \n
            Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 3
          +score: 0
          +lastActive: DateTime @1700606835 {#4386
            date: 2023-11-21 23:47:15.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4381 …}
          +nested: Doctrine\ORM\PersistentCollection {#4376 …}
          +votes: Doctrine\ORM\PersistentCollection {#4380 …}
          +reports: Doctrine\ORM\PersistentCollection {#4390 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
          -id: 148915
          -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488133"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700606835 {#4389
            date: 2023-11-21 23:47:15.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          Yeah, tha’ts weird.\n
          \n
          Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
          \n
          Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
          \n
          Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 8
        +score: 0
        +lastActive: DateTime @1700607651 {#4448
          date: 2023-11-22 00:00:51.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4456 …}
        +nested: Doctrine\ORM\PersistentCollection {#4458 …}
        +votes: Doctrine\ORM\PersistentCollection {#4454 …}
        +reports: Doctrine\ORM\PersistentCollection {#4460 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
        -id: 148956
        -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488406"
        +editedAt: DateTimeImmutable @1701066462 {#4445
          date: 2023-11-27 07:27:42.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700607651 {#4449
          date: 2023-11-22 00:00:51.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
        \n
        And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700608399 {#4550
        date: 2023-11-22 00:13:19.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4560 …}
      +nested: Doctrine\ORM\PersistentCollection {#4556 …}
      +votes: Doctrine\ORM\PersistentCollection {#4558 …}
      +reports: Doctrine\ORM\PersistentCollection {#4563 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
      -id: 149008
      -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488648"
      +editedAt: DateTimeImmutable @1701066694 {#4547
        date: 2023-11-27 07:31:34.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700608399 {#4551
        date: 2023-11-22 00:13:19.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
      \n
      Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 2
    +score: 0
    +lastActive: DateTime @1700608720 {#4611
      date: 2023-11-22 00:18:40.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4604 …}
    +nested: Doctrine\ORM\PersistentCollection {#4602 …}
    +votes: Doctrine\ORM\PersistentCollection {#4606 …}
    +reports: Doctrine\ORM\PersistentCollection {#4617 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
    -id: 149027
    -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488752"
    +editedAt: DateTimeImmutable @1701067065 {#4614
      date: 2023-11-27 07:37:45.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700608720 {#4610
      date: 2023-11-22 00:18:40.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "No and yes. And it returns me only a single line with `$mysudoerusername 28596 0.0 0.1 5896 2016 pts/0 5+ 15:52 0:00 grep nano`."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609029 {#4665
    date: 2023-11-22 00:23:49.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4661 …}
  +nested: Doctrine\ORM\PersistentCollection {#4657 …}
  +votes: Doctrine\ORM\PersistentCollection {#4655 …}
  +reports: Doctrine\ORM\PersistentCollection {#4670 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4672 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4674 …}
  -id: 149043
  -bodyTs: "'0':23 '0.0':15 '0.1':16 '00':24 '15':21 '2016':18 '28596':14 '5':20 '52':22 '5896':17 'grep':25 'line':11 'mysudoerusernam':13 'nano':26 'pts/0':19 'return':6 'singl':10 'yes':3"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488840"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609029 {#4668
    date: 2023-11-22 00:23:49.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4664
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4607
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4555
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4452
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4385
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4300
            +user: App\Entity\User {#4313 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: null
            +root: null
            +body: """
              Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
              \n
              Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
              \n
              Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
              \n
              Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
              \n
              But if that flag is set on nano, that’s pretty weird.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 14
            +score: 0
            +lastActive: DateTime @1701191441 {#4294
              date: 2023-11-28 18:10:41.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4301 …}
            +nested: Doctrine\ORM\PersistentCollection {#4303 …}
            +votes: Doctrine\ORM\PersistentCollection {#4305 …}
            +reports: Doctrine\ORM\PersistentCollection {#4307 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
            -id: 148880
            -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5487960"
            +editedAt: DateTimeImmutable @1701063149 {#4295
              date: 2023-11-27 06:32:29.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700606375 {#4296
              date: 2023-11-21 23:39:35.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            > Try an ls -l $(which nano) and look at the permissions section of the output.\n
            \n
            Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 3
          +score: 0
          +lastActive: DateTime @1700606835 {#4386
            date: 2023-11-21 23:47:15.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4381 …}
          +nested: Doctrine\ORM\PersistentCollection {#4376 …}
          +votes: Doctrine\ORM\PersistentCollection {#4380 …}
          +reports: Doctrine\ORM\PersistentCollection {#4390 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
          -id: 148915
          -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488133"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700606835 {#4389
            date: 2023-11-21 23:47:15.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          Yeah, tha’ts weird.\n
          \n
          Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
          \n
          Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
          \n
          Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 8
        +score: 0
        +lastActive: DateTime @1700607651 {#4448
          date: 2023-11-22 00:00:51.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4456 …}
        +nested: Doctrine\ORM\PersistentCollection {#4458 …}
        +votes: Doctrine\ORM\PersistentCollection {#4454 …}
        +reports: Doctrine\ORM\PersistentCollection {#4460 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
        -id: 148956
        -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488406"
        +editedAt: DateTimeImmutable @1701066462 {#4445
          date: 2023-11-27 07:27:42.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700607651 {#4449
          date: 2023-11-22 00:00:51.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
        \n
        And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700608399 {#4550
        date: 2023-11-22 00:13:19.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4560 …}
      +nested: Doctrine\ORM\PersistentCollection {#4556 …}
      +votes: Doctrine\ORM\PersistentCollection {#4558 …}
      +reports: Doctrine\ORM\PersistentCollection {#4563 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
      -id: 149008
      -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488648"
      +editedAt: DateTimeImmutable @1701066694 {#4547
        date: 2023-11-27 07:31:34.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700608399 {#4551
        date: 2023-11-22 00:13:19.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
      \n
      Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 2
    +score: 0
    +lastActive: DateTime @1700608720 {#4611
      date: 2023-11-22 00:18:40.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4604 …}
    +nested: Doctrine\ORM\PersistentCollection {#4602 …}
    +votes: Doctrine\ORM\PersistentCollection {#4606 …}
    +reports: Doctrine\ORM\PersistentCollection {#4617 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
    -id: 149027
    -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488752"
    +editedAt: DateTimeImmutable @1701067065 {#4614
      date: 2023-11-27 07:37:45.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700608720 {#4610
      date: 2023-11-22 00:18:40.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "No and yes. And it returns me only a single line with `$mysudoerusername 28596 0.0 0.1 5896 2016 pts/0 5+ 15:52 0:00 grep nano`."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609029 {#4665
    date: 2023-11-22 00:23:49.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4661 …}
  +nested: Doctrine\ORM\PersistentCollection {#4657 …}
  +votes: Doctrine\ORM\PersistentCollection {#4655 …}
  +reports: Doctrine\ORM\PersistentCollection {#4670 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4672 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4674 …}
  -id: 149043
  -bodyTs: "'0':23 '0.0':15 '0.1':16 '00':24 '15':21 '2016':18 '28596':14 '5':20 '52':22 '5896':17 'grep':25 'line':11 'mysudoerusernam':13 'nano':26 'pts/0':19 'return':6 'singl':10 'yes':3"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488840"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609029 {#4668
    date: 2023-11-22 00:23:49.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4664
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4607
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4555
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4452
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4385
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4300
            +user: App\Entity\User {#4313 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: null
            +root: null
            +body: """
              Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
              \n
              Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
              \n
              Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
              \n
              Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
              \n
              But if that flag is set on nano, that’s pretty weird.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 14
            +score: 0
            +lastActive: DateTime @1701191441 {#4294
              date: 2023-11-28 18:10:41.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4301 …}
            +nested: Doctrine\ORM\PersistentCollection {#4303 …}
            +votes: Doctrine\ORM\PersistentCollection {#4305 …}
            +reports: Doctrine\ORM\PersistentCollection {#4307 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
            -id: 148880
            -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5487960"
            +editedAt: DateTimeImmutable @1701063149 {#4295
              date: 2023-11-27 06:32:29.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700606375 {#4296
              date: 2023-11-21 23:39:35.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            > Try an ls -l $(which nano) and look at the permissions section of the output.\n
            \n
            Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 3
          +score: 0
          +lastActive: DateTime @1700606835 {#4386
            date: 2023-11-21 23:47:15.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4381 …}
          +nested: Doctrine\ORM\PersistentCollection {#4376 …}
          +votes: Doctrine\ORM\PersistentCollection {#4380 …}
          +reports: Doctrine\ORM\PersistentCollection {#4390 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
          -id: 148915
          -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488133"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700606835 {#4389
            date: 2023-11-21 23:47:15.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          Yeah, tha’ts weird.\n
          \n
          Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
          \n
          Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
          \n
          Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 8
        +score: 0
        +lastActive: DateTime @1700607651 {#4448
          date: 2023-11-22 00:00:51.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4456 …}
        +nested: Doctrine\ORM\PersistentCollection {#4458 …}
        +votes: Doctrine\ORM\PersistentCollection {#4454 …}
        +reports: Doctrine\ORM\PersistentCollection {#4460 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
        -id: 148956
        -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488406"
        +editedAt: DateTimeImmutable @1701066462 {#4445
          date: 2023-11-27 07:27:42.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700607651 {#4449
          date: 2023-11-22 00:00:51.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
        \n
        And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700608399 {#4550
        date: 2023-11-22 00:13:19.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4560 …}
      +nested: Doctrine\ORM\PersistentCollection {#4556 …}
      +votes: Doctrine\ORM\PersistentCollection {#4558 …}
      +reports: Doctrine\ORM\PersistentCollection {#4563 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
      -id: 149008
      -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488648"
      +editedAt: DateTimeImmutable @1701066694 {#4547
        date: 2023-11-27 07:31:34.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700608399 {#4551
        date: 2023-11-22 00:13:19.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
      \n
      Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 2
    +score: 0
    +lastActive: DateTime @1700608720 {#4611
      date: 2023-11-22 00:18:40.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4604 …}
    +nested: Doctrine\ORM\PersistentCollection {#4602 …}
    +votes: Doctrine\ORM\PersistentCollection {#4606 …}
    +reports: Doctrine\ORM\PersistentCollection {#4617 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
    -id: 149027
    -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488752"
    +editedAt: DateTimeImmutable @1701067065 {#4614
      date: 2023-11-27 07:37:45.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700608720 {#4610
      date: 2023-11-22 00:18:40.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "No and yes. And it returns me only a single line with `$mysudoerusername 28596 0.0 0.1 5896 2016 pts/0 5+ 15:52 0:00 grep nano`."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609029 {#4665
    date: 2023-11-22 00:23:49.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4661 …}
  +nested: Doctrine\ORM\PersistentCollection {#4657 …}
  +votes: Doctrine\ORM\PersistentCollection {#4655 …}
  +reports: Doctrine\ORM\PersistentCollection {#4670 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4672 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4674 …}
  -id: 149043
  -bodyTs: "'0':23 '0.0':15 '0.1':16 '00':24 '15':21 '2016':18 '28596':14 '5':20 '52':22 '5896':17 'grep':25 'line':11 'mysudoerusernam':13 'nano':26 'pts/0':19 'return':6 'singl':10 'yes':3"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488840"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609029 {#4668
    date: 2023-11-22 00:23:49.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4717
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4664
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4607
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4555
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4452
          +user: App\Entity\User {#4313 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4385
            +user: Proxies\__CG__\App\Entity\User {#1978 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4300
              +user: App\Entity\User {#4313 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: null
              +root: null
              +body: """
                Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
                \n
                Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
                \n
                Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
                \n
                Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
                \n
                But if that flag is set on nano, that’s pretty weird.
                """
              +lang: "en"
              +isAdult: false
              +favouriteCount: 14
              +score: 0
              +lastActive: DateTime @1701191441 {#4294
                date: 2023-11-28 18:10:41.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4301 …}
              +nested: Doctrine\ORM\PersistentCollection {#4303 …}
              +votes: Doctrine\ORM\PersistentCollection {#4305 …}
              +reports: Doctrine\ORM\PersistentCollection {#4307 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
              -id: 148880
              -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.world/comment/5487960"
              +editedAt: DateTimeImmutable @1701063149 {#4295
                date: 2023-11-27 06:32:29.0 +01:00
              }
              +createdAt: DateTimeImmutable @1700606375 {#4296
                date: 2023-11-21 23:39:35.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4300}
            +body: """
              > Try an ls -l $(which nano) and look at the permissions section of the output.\n
              \n
              Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 3
            +score: 0
            +lastActive: DateTime @1700606835 {#4386
              date: 2023-11-21 23:47:15.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@TootSweet@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4381 …}
            +nested: Doctrine\ORM\PersistentCollection {#4376 …}
            +votes: Doctrine\ORM\PersistentCollection {#4380 …}
            +reports: Doctrine\ORM\PersistentCollection {#4390 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
            -id: 148915
            -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5488133"
            +editedAt: null
            +createdAt: DateTimeImmutable @1700606835 {#4389
              date: 2023-11-21 23:47:15.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            Yeah, tha’ts weird.\n
            \n
            Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
            \n
            Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
            \n
            Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 8
          +score: 0
          +lastActive: DateTime @1700607651 {#4448
            date: 2023-11-22 00:00:51.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4456 …}
          +nested: Doctrine\ORM\PersistentCollection {#4458 …}
          +votes: Doctrine\ORM\PersistentCollection {#4454 …}
          +reports: Doctrine\ORM\PersistentCollection {#4460 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
          -id: 148956
          -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488406"
          +editedAt: DateTimeImmutable @1701066462 {#4445
            date: 2023-11-27 07:27:42.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700607651 {#4449
            date: 2023-11-22 00:00:51.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
          \n
          And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1700608399 {#4550
          date: 2023-11-22 00:13:19.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4560 …}
        +nested: Doctrine\ORM\PersistentCollection {#4556 …}
        +votes: Doctrine\ORM\PersistentCollection {#4558 …}
        +reports: Doctrine\ORM\PersistentCollection {#4563 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
        -id: 149008
        -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488648"
        +editedAt: DateTimeImmutable @1701066694 {#4547
          date: 2023-11-27 07:31:34.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700608399 {#4551
          date: 2023-11-22 00:13:19.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
        \n
        Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 2
      +score: 0
      +lastActive: DateTime @1700608720 {#4611
        date: 2023-11-22 00:18:40.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4604 …}
      +nested: Doctrine\ORM\PersistentCollection {#4602 …}
      +votes: Doctrine\ORM\PersistentCollection {#4606 …}
      +reports: Doctrine\ORM\PersistentCollection {#4617 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
      -id: 149027
      -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488752"
      +editedAt: DateTimeImmutable @1701067065 {#4614
        date: 2023-11-27 07:37:45.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700608720 {#4610
        date: 2023-11-22 00:18:40.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: "No and yes. And it returns me only a single line with `$mysudoerusername 28596 0.0 0.1 5896 2016 pts/0 5+ 15:52 0:00 grep nano`."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700609029 {#4665
      date: 2023-11-22 00:23:49.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4661 …}
    +nested: Doctrine\ORM\PersistentCollection {#4657 …}
    +votes: Doctrine\ORM\PersistentCollection {#4655 …}
    +reports: Doctrine\ORM\PersistentCollection {#4670 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4672 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4674 …}
    -id: 149043
    -bodyTs: "'0':23 '0.0':15 '0.1':16 '00':24 '15':21 '2016':18 '28596':14 '5':20 '52':22 '5896':17 'grep':25 'line':11 'mysudoerusernam':13 'nano':26 'pts/0':19 'return':6 'singl':10 'yes':3"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488840"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609029 {#4668
      date: 2023-11-22 00:23:49.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    It returns that while you have nano running? If so, maybe try `ps aux` (without the grep part) and just look through until you find “nano” listed. Just to make sure whether it’s running as root or your non-root user.\n
    \n
    (And just to be clear, “my sudoer username” means the non-root user that you’re running nano as, right?)\n
    \n
    Just a gut feeling, but it feels to me so far like this probably isn’t a hack or security thing. But of course, once the (no pun intended) root issue is found, that’ll provide more info.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 3
  +score: 0
  +lastActive: DateTime @1700609278 {#4718
    date: 2023-11-22 00:27:58.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4714 …}
  +nested: Doctrine\ORM\PersistentCollection {#4710 …}
  +votes: Doctrine\ORM\PersistentCollection {#4708 …}
  +reports: Doctrine\ORM\PersistentCollection {#4723 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4725 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4727 …}
  -id: 149053
  -bodyTs: "'aux':14 'clear':48 'cours':88 'far':75 'feel':68,71 'find':25 'found':97 'grep':17 'gut':67 'hack':82 'info':102 'intend':93 'isn':79 'issu':95 'like':76 'list':27 'll':99 'look':21 'make':30 'mayb':11 'mean':52 'nano':7,26,62 'non':41,55 'non-root':40,54 'part':18 'probabl':78 'provid':100 'ps':13 'pun':92 're':60 'return':2 'right':64 'root':37,42,56,94 'run':8,35,61 'secur':84 'sudoer':50 'sure':31 'thing':85 'tri':12 'user':43,57 'usernam':51 'whether':32 'without':15"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488908"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609278 {#4721
    date: 2023-11-22 00:27:58.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4717
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4664
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4607
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4555
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4452
          +user: App\Entity\User {#4313 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4385
            +user: Proxies\__CG__\App\Entity\User {#1978 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4300
              +user: App\Entity\User {#4313 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: null
              +root: null
              +body: """
                Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
                \n
                Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
                \n
                Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
                \n
                Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
                \n
                But if that flag is set on nano, that’s pretty weird.
                """
              +lang: "en"
              +isAdult: false
              +favouriteCount: 14
              +score: 0
              +lastActive: DateTime @1701191441 {#4294
                date: 2023-11-28 18:10:41.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4301 …}
              +nested: Doctrine\ORM\PersistentCollection {#4303 …}
              +votes: Doctrine\ORM\PersistentCollection {#4305 …}
              +reports: Doctrine\ORM\PersistentCollection {#4307 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
              -id: 148880
              -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.world/comment/5487960"
              +editedAt: DateTimeImmutable @1701063149 {#4295
                date: 2023-11-27 06:32:29.0 +01:00
              }
              +createdAt: DateTimeImmutable @1700606375 {#4296
                date: 2023-11-21 23:39:35.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4300}
            +body: """
              > Try an ls -l $(which nano) and look at the permissions section of the output.\n
              \n
              Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 3
            +score: 0
            +lastActive: DateTime @1700606835 {#4386
              date: 2023-11-21 23:47:15.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@TootSweet@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4381 …}
            +nested: Doctrine\ORM\PersistentCollection {#4376 …}
            +votes: Doctrine\ORM\PersistentCollection {#4380 …}
            +reports: Doctrine\ORM\PersistentCollection {#4390 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
            -id: 148915
            -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5488133"
            +editedAt: null
            +createdAt: DateTimeImmutable @1700606835 {#4389
              date: 2023-11-21 23:47:15.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            Yeah, tha’ts weird.\n
            \n
            Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
            \n
            Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
            \n
            Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 8
          +score: 0
          +lastActive: DateTime @1700607651 {#4448
            date: 2023-11-22 00:00:51.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4456 …}
          +nested: Doctrine\ORM\PersistentCollection {#4458 …}
          +votes: Doctrine\ORM\PersistentCollection {#4454 …}
          +reports: Doctrine\ORM\PersistentCollection {#4460 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
          -id: 148956
          -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488406"
          +editedAt: DateTimeImmutable @1701066462 {#4445
            date: 2023-11-27 07:27:42.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700607651 {#4449
            date: 2023-11-22 00:00:51.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
          \n
          And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1700608399 {#4550
          date: 2023-11-22 00:13:19.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4560 …}
        +nested: Doctrine\ORM\PersistentCollection {#4556 …}
        +votes: Doctrine\ORM\PersistentCollection {#4558 …}
        +reports: Doctrine\ORM\PersistentCollection {#4563 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
        -id: 149008
        -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488648"
        +editedAt: DateTimeImmutable @1701066694 {#4547
          date: 2023-11-27 07:31:34.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700608399 {#4551
          date: 2023-11-22 00:13:19.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
        \n
        Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 2
      +score: 0
      +lastActive: DateTime @1700608720 {#4611
        date: 2023-11-22 00:18:40.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4604 …}
      +nested: Doctrine\ORM\PersistentCollection {#4602 …}
      +votes: Doctrine\ORM\PersistentCollection {#4606 …}
      +reports: Doctrine\ORM\PersistentCollection {#4617 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
      -id: 149027
      -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488752"
      +editedAt: DateTimeImmutable @1701067065 {#4614
        date: 2023-11-27 07:37:45.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700608720 {#4610
        date: 2023-11-22 00:18:40.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: "No and yes. And it returns me only a single line with `$mysudoerusername 28596 0.0 0.1 5896 2016 pts/0 5+ 15:52 0:00 grep nano`."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700609029 {#4665
      date: 2023-11-22 00:23:49.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4661 …}
    +nested: Doctrine\ORM\PersistentCollection {#4657 …}
    +votes: Doctrine\ORM\PersistentCollection {#4655 …}
    +reports: Doctrine\ORM\PersistentCollection {#4670 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4672 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4674 …}
    -id: 149043
    -bodyTs: "'0':23 '0.0':15 '0.1':16 '00':24 '15':21 '2016':18 '28596':14 '5':20 '52':22 '5896':17 'grep':25 'line':11 'mysudoerusernam':13 'nano':26 'pts/0':19 'return':6 'singl':10 'yes':3"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488840"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609029 {#4668
      date: 2023-11-22 00:23:49.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    It returns that while you have nano running? If so, maybe try `ps aux` (without the grep part) and just look through until you find “nano” listed. Just to make sure whether it’s running as root or your non-root user.\n
    \n
    (And just to be clear, “my sudoer username” means the non-root user that you’re running nano as, right?)\n
    \n
    Just a gut feeling, but it feels to me so far like this probably isn’t a hack or security thing. But of course, once the (no pun intended) root issue is found, that’ll provide more info.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 3
  +score: 0
  +lastActive: DateTime @1700609278 {#4718
    date: 2023-11-22 00:27:58.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4714 …}
  +nested: Doctrine\ORM\PersistentCollection {#4710 …}
  +votes: Doctrine\ORM\PersistentCollection {#4708 …}
  +reports: Doctrine\ORM\PersistentCollection {#4723 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4725 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4727 …}
  -id: 149053
  -bodyTs: "'aux':14 'clear':48 'cours':88 'far':75 'feel':68,71 'find':25 'found':97 'grep':17 'gut':67 'hack':82 'info':102 'intend':93 'isn':79 'issu':95 'like':76 'list':27 'll':99 'look':21 'make':30 'mayb':11 'mean':52 'nano':7,26,62 'non':41,55 'non-root':40,54 'part':18 'probabl':78 'provid':100 'ps':13 'pun':92 're':60 'return':2 'right':64 'root':37,42,56,94 'run':8,35,61 'secur':84 'sudoer':50 'sure':31 'thing':85 'tri':12 'user':43,57 'usernam':51 'whether':32 'without':15"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488908"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609278 {#4721
    date: 2023-11-22 00:27:58.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4717
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4664
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4607
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4555
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4452
          +user: App\Entity\User {#4313 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4385
            +user: Proxies\__CG__\App\Entity\User {#1978 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4300
              +user: App\Entity\User {#4313 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: null
              +root: null
              +body: """
                Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
                \n
                Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
                \n
                Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
                \n
                Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
                \n
                But if that flag is set on nano, that’s pretty weird.
                """
              +lang: "en"
              +isAdult: false
              +favouriteCount: 14
              +score: 0
              +lastActive: DateTime @1701191441 {#4294
                date: 2023-11-28 18:10:41.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4301 …}
              +nested: Doctrine\ORM\PersistentCollection {#4303 …}
              +votes: Doctrine\ORM\PersistentCollection {#4305 …}
              +reports: Doctrine\ORM\PersistentCollection {#4307 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
              -id: 148880
              -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.world/comment/5487960"
              +editedAt: DateTimeImmutable @1701063149 {#4295
                date: 2023-11-27 06:32:29.0 +01:00
              }
              +createdAt: DateTimeImmutable @1700606375 {#4296
                date: 2023-11-21 23:39:35.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4300}
            +body: """
              > Try an ls -l $(which nano) and look at the permissions section of the output.\n
              \n
              Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 3
            +score: 0
            +lastActive: DateTime @1700606835 {#4386
              date: 2023-11-21 23:47:15.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@TootSweet@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4381 …}
            +nested: Doctrine\ORM\PersistentCollection {#4376 …}
            +votes: Doctrine\ORM\PersistentCollection {#4380 …}
            +reports: Doctrine\ORM\PersistentCollection {#4390 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
            -id: 148915
            -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5488133"
            +editedAt: null
            +createdAt: DateTimeImmutable @1700606835 {#4389
              date: 2023-11-21 23:47:15.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            Yeah, tha’ts weird.\n
            \n
            Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
            \n
            Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
            \n
            Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 8
          +score: 0
          +lastActive: DateTime @1700607651 {#4448
            date: 2023-11-22 00:00:51.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4456 …}
          +nested: Doctrine\ORM\PersistentCollection {#4458 …}
          +votes: Doctrine\ORM\PersistentCollection {#4454 …}
          +reports: Doctrine\ORM\PersistentCollection {#4460 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
          -id: 148956
          -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488406"
          +editedAt: DateTimeImmutable @1701066462 {#4445
            date: 2023-11-27 07:27:42.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700607651 {#4449
            date: 2023-11-22 00:00:51.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
          \n
          And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 0
        +score: 0
        +lastActive: DateTime @1700608399 {#4550
          date: 2023-11-22 00:13:19.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4560 …}
        +nested: Doctrine\ORM\PersistentCollection {#4556 …}
        +votes: Doctrine\ORM\PersistentCollection {#4558 …}
        +reports: Doctrine\ORM\PersistentCollection {#4563 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
        -id: 149008
        -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488648"
        +editedAt: DateTimeImmutable @1701066694 {#4547
          date: 2023-11-27 07:31:34.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700608399 {#4551
          date: 2023-11-22 00:13:19.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
        \n
        Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 2
      +score: 0
      +lastActive: DateTime @1700608720 {#4611
        date: 2023-11-22 00:18:40.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4604 …}
      +nested: Doctrine\ORM\PersistentCollection {#4602 …}
      +votes: Doctrine\ORM\PersistentCollection {#4606 …}
      +reports: Doctrine\ORM\PersistentCollection {#4617 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
      -id: 149027
      -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488752"
      +editedAt: DateTimeImmutable @1701067065 {#4614
        date: 2023-11-27 07:37:45.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700608720 {#4610
        date: 2023-11-22 00:18:40.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: "No and yes. And it returns me only a single line with `$mysudoerusername 28596 0.0 0.1 5896 2016 pts/0 5+ 15:52 0:00 grep nano`."
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700609029 {#4665
      date: 2023-11-22 00:23:49.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4661 …}
    +nested: Doctrine\ORM\PersistentCollection {#4657 …}
    +votes: Doctrine\ORM\PersistentCollection {#4655 …}
    +reports: Doctrine\ORM\PersistentCollection {#4670 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4672 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4674 …}
    -id: 149043
    -bodyTs: "'0':23 '0.0':15 '0.1':16 '00':24 '15':21 '2016':18 '28596':14 '5':20 '52':22 '5896':17 'grep':25 'line':11 'mysudoerusernam':13 'nano':26 'pts/0':19 'return':6 'singl':10 'yes':3"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488840"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609029 {#4668
      date: 2023-11-22 00:23:49.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    It returns that while you have nano running? If so, maybe try `ps aux` (without the grep part) and just look through until you find “nano” listed. Just to make sure whether it’s running as root or your non-root user.\n
    \n
    (And just to be clear, “my sudoer username” means the non-root user that you’re running nano as, right?)\n
    \n
    Just a gut feeling, but it feels to me so far like this probably isn’t a hack or security thing. But of course, once the (no pun intended) root issue is found, that’ll provide more info.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 3
  +score: 0
  +lastActive: DateTime @1700609278 {#4718
    date: 2023-11-22 00:27:58.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4714 …}
  +nested: Doctrine\ORM\PersistentCollection {#4710 …}
  +votes: Doctrine\ORM\PersistentCollection {#4708 …}
  +reports: Doctrine\ORM\PersistentCollection {#4723 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4725 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4727 …}
  -id: 149053
  -bodyTs: "'aux':14 'clear':48 'cours':88 'far':75 'feel':68,71 'find':25 'found':97 'grep':17 'gut':67 'hack':82 'info':102 'intend':93 'isn':79 'issu':95 'like':76 'list':27 'll':99 'look':21 'make':30 'mayb':11 'mean':52 'nano':7,26,62 'non':41,55 'non-root':40,54 'part':18 'probabl':78 'provid':100 'ps':13 'pun':92 're':60 'return':2 'right':64 'root':37,42,56,94 'run':8,35,61 'secur':84 'sudoer':50 'sure':31 'thing':85 'tri':12 'user':43,57 'usernam':51 'whether':32 'without':15"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5488908"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609278 {#4721
    date: 2023-11-22 00:27:58.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4745
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4717
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4664
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4607
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4555
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4452
            +user: App\Entity\User {#4313 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4385
              +user: Proxies\__CG__\App\Entity\User {#1978 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: App\Entity\EntryComment {#4300
                +user: App\Entity\User {#4313 …}
                +entry: App\Entity\Entry {#2412}
                +magazine: App\Entity\Magazine {#264}
                +image: null
                +parent: null
                +root: null
                +body: """
                  Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
                  \n
                  Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
                  \n
                  Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
                  \n
                  Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
                  \n
                  But if that flag is set on nano, that’s pretty weird.
                  """
                +lang: "en"
                +isAdult: false
                +favouriteCount: 14
                +score: 0
                +lastActive: DateTime @1701191441 {#4294
                  date: 2023-11-28 18:10:41.0 +01:00
                }
                +ip: null
                +tags: null
                +mentions: [
                  "@GustavoM@lemmy.world"
                ]
                +children: Doctrine\ORM\PersistentCollection {#4301 …}
                +nested: Doctrine\ORM\PersistentCollection {#4303 …}
                +votes: Doctrine\ORM\PersistentCollection {#4305 …}
                +reports: Doctrine\ORM\PersistentCollection {#4307 …}
                +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
                +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
                -id: 148880
                -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
                +ranking: 0
                +commentCount: 0
                +upVotes: 0
                +downVotes: 0
                +visibility: "visible             "
                +apId: "https://lemmy.world/comment/5487960"
                +editedAt: DateTimeImmutable @1701063149 {#4295
                  date: 2023-11-27 06:32:29.0 +01:00
                }
                +createdAt: DateTimeImmutable @1700606375 {#4296
                  date: 2023-11-21 23:39:35.0 +01:00
                }
              }
              +root: App\Entity\EntryComment {#4300}
              +body: """
                > Try an ls -l $(which nano) and look at the permissions section of the output.\n
                \n
                Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
                """
              +lang: "en"
              +isAdult: false
              +favouriteCount: 3
              +score: 0
              +lastActive: DateTime @1700606835 {#4386
                date: 2023-11-21 23:47:15.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
                "@TootSweet@lemmy.world"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4381 …}
              +nested: Doctrine\ORM\PersistentCollection {#4376 …}
              +votes: Doctrine\ORM\PersistentCollection {#4380 …}
              +reports: Doctrine\ORM\PersistentCollection {#4390 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
              -id: 148915
              -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.world/comment/5488133"
              +editedAt: null
              +createdAt: DateTimeImmutable @1700606835 {#4389
                date: 2023-11-21 23:47:15.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4300}
            +body: """
              Yeah, tha’ts weird.\n
              \n
              Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
              \n
              Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
              \n
              Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 8
            +score: 0
            +lastActive: DateTime @1700607651 {#4448
              date: 2023-11-22 00:00:51.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@TootSweet@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4456 …}
            +nested: Doctrine\ORM\PersistentCollection {#4458 …}
            +votes: Doctrine\ORM\PersistentCollection {#4454 …}
            +reports: Doctrine\ORM\PersistentCollection {#4460 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
            -id: 148956
            -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5488406"
            +editedAt: DateTimeImmutable @1701066462 {#4445
              date: 2023-11-27 07:27:42.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700607651 {#4449
              date: 2023-11-22 00:00:51.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
            \n
            And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 0
          +score: 0
          +lastActive: DateTime @1700608399 {#4550
            date: 2023-11-22 00:13:19.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4560 …}
          +nested: Doctrine\ORM\PersistentCollection {#4556 …}
          +votes: Doctrine\ORM\PersistentCollection {#4558 …}
          +reports: Doctrine\ORM\PersistentCollection {#4563 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
          -id: 149008
          -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488648"
          +editedAt: DateTimeImmutable @1701066694 {#4547
            date: 2023-11-27 07:31:34.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700608399 {#4551
            date: 2023-11-22 00:13:19.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
          \n
          Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1700608720 {#4611
          date: 2023-11-22 00:18:40.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4604 …}
        +nested: Doctrine\ORM\PersistentCollection {#4602 …}
        +votes: Doctrine\ORM\PersistentCollection {#4606 …}
        +reports: Doctrine\ORM\PersistentCollection {#4617 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
        -id: 149027
        -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488752"
        +editedAt: DateTimeImmutable @1701067065 {#4614
          date: 2023-11-27 07:37:45.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700608720 {#4610
          date: 2023-11-22 00:18:40.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: "No and yes. And it returns me only a single line with `$mysudoerusername 28596 0.0 0.1 5896 2016 pts/0 5+ 15:52 0:00 grep nano`."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700609029 {#4665
        date: 2023-11-22 00:23:49.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4661 …}
      +nested: Doctrine\ORM\PersistentCollection {#4657 …}
      +votes: Doctrine\ORM\PersistentCollection {#4655 …}
      +reports: Doctrine\ORM\PersistentCollection {#4670 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4672 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4674 …}
      -id: 149043
      -bodyTs: "'0':23 '0.0':15 '0.1':16 '00':24 '15':21 '2016':18 '28596':14 '5':20 '52':22 '5896':17 'grep':25 'line':11 'mysudoerusernam':13 'nano':26 'pts/0':19 'return':6 'singl':10 'yes':3"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488840"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700609029 {#4668
        date: 2023-11-22 00:23:49.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      It returns that while you have nano running? If so, maybe try `ps aux` (without the grep part) and just look through until you find “nano” listed. Just to make sure whether it’s running as root or your non-root user.\n
      \n
      (And just to be clear, “my sudoer username” means the non-root user that you’re running nano as, right?)\n
      \n
      Just a gut feeling, but it feels to me so far like this probably isn’t a hack or security thing. But of course, once the (no pun intended) root issue is found, that’ll provide more info.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 3
    +score: 0
    +lastActive: DateTime @1700609278 {#4718
      date: 2023-11-22 00:27:58.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4714 …}
    +nested: Doctrine\ORM\PersistentCollection {#4710 …}
    +votes: Doctrine\ORM\PersistentCollection {#4708 …}
    +reports: Doctrine\ORM\PersistentCollection {#4723 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4725 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4727 …}
    -id: 149053
    -bodyTs: "'aux':14 'clear':48 'cours':88 'far':75 'feel':68,71 'find':25 'found':97 'grep':17 'gut':67 'hack':82 'info':102 'intend':93 'isn':79 'issu':95 'like':76 'list':27 'll':99 'look':21 'make':30 'mayb':11 'mean':52 'nano':7,26,62 'non':41,55 'non-root':40,54 'part':18 'probabl':78 'provid':100 'ps':13 'pun':92 're':60 'return':2 'right':64 'root':37,42,56,94 'run':8,35,61 'secur':84 'sudoer':50 'sure':31 'thing':85 'tri':12 'user':43,57 'usernam':51 'whether':32 'without':15"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488908"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609278 {#4721
      date: 2023-11-22 00:27:58.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    No. ps aux remains the same. And yes, “My sudoer username” is my non-root user with sudo privileges. Therefore, the “sudoer”.\n
    \n
    And I’m not really “pulling my hair out” because of this, honestly – just curious if this can be mentioned as a hack, a hack attempt, or whatevertheheck. Because this is the first time in my entire life that this happened with me, so yep.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609606 {#4750
    date: 2023-11-22 00:33:26.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4753 …}
  +nested: Doctrine\ORM\PersistentCollection {#4757 …}
  +votes: Doctrine\ORM\PersistentCollection {#4759 …}
  +reports: Doctrine\ORM\PersistentCollection {#4760 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4762 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4764 …}
  -id: 149065
  -bodyTs: "'attempt':49 'aux':3 'curious':38 'entir':60 'first':56 'hack':46,48 'hair':31 'happen':64 'honest':36 'life':61 'm':26 'mention':43 'non':15 'non-root':14 'privileg':20 'ps':2 'pull':29 'realli':28 'remain':4 'root':16 'sudo':19 'sudoer':10,23 'therefor':21 'time':57 'user':17 'usernam':11 'whatevertheheck':51 'yep':68 'yes':8"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489019"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609606 {#4747
    date: 2023-11-22 00:33:26.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4745
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4717
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4664
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4607
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4555
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4452
            +user: App\Entity\User {#4313 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4385
              +user: Proxies\__CG__\App\Entity\User {#1978 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: App\Entity\EntryComment {#4300
                +user: App\Entity\User {#4313 …}
                +entry: App\Entity\Entry {#2412}
                +magazine: App\Entity\Magazine {#264}
                +image: null
                +parent: null
                +root: null
                +body: """
                  Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
                  \n
                  Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
                  \n
                  Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
                  \n
                  Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
                  \n
                  But if that flag is set on nano, that’s pretty weird.
                  """
                +lang: "en"
                +isAdult: false
                +favouriteCount: 14
                +score: 0
                +lastActive: DateTime @1701191441 {#4294
                  date: 2023-11-28 18:10:41.0 +01:00
                }
                +ip: null
                +tags: null
                +mentions: [
                  "@GustavoM@lemmy.world"
                ]
                +children: Doctrine\ORM\PersistentCollection {#4301 …}
                +nested: Doctrine\ORM\PersistentCollection {#4303 …}
                +votes: Doctrine\ORM\PersistentCollection {#4305 …}
                +reports: Doctrine\ORM\PersistentCollection {#4307 …}
                +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
                +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
                -id: 148880
                -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
                +ranking: 0
                +commentCount: 0
                +upVotes: 0
                +downVotes: 0
                +visibility: "visible             "
                +apId: "https://lemmy.world/comment/5487960"
                +editedAt: DateTimeImmutable @1701063149 {#4295
                  date: 2023-11-27 06:32:29.0 +01:00
                }
                +createdAt: DateTimeImmutable @1700606375 {#4296
                  date: 2023-11-21 23:39:35.0 +01:00
                }
              }
              +root: App\Entity\EntryComment {#4300}
              +body: """
                > Try an ls -l $(which nano) and look at the permissions section of the output.\n
                \n
                Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
                """
              +lang: "en"
              +isAdult: false
              +favouriteCount: 3
              +score: 0
              +lastActive: DateTime @1700606835 {#4386
                date: 2023-11-21 23:47:15.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
                "@TootSweet@lemmy.world"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4381 …}
              +nested: Doctrine\ORM\PersistentCollection {#4376 …}
              +votes: Doctrine\ORM\PersistentCollection {#4380 …}
              +reports: Doctrine\ORM\PersistentCollection {#4390 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
              -id: 148915
              -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.world/comment/5488133"
              +editedAt: null
              +createdAt: DateTimeImmutable @1700606835 {#4389
                date: 2023-11-21 23:47:15.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4300}
            +body: """
              Yeah, tha’ts weird.\n
              \n
              Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
              \n
              Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
              \n
              Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 8
            +score: 0
            +lastActive: DateTime @1700607651 {#4448
              date: 2023-11-22 00:00:51.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@TootSweet@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4456 …}
            +nested: Doctrine\ORM\PersistentCollection {#4458 …}
            +votes: Doctrine\ORM\PersistentCollection {#4454 …}
            +reports: Doctrine\ORM\PersistentCollection {#4460 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
            -id: 148956
            -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5488406"
            +editedAt: DateTimeImmutable @1701066462 {#4445
              date: 2023-11-27 07:27:42.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700607651 {#4449
              date: 2023-11-22 00:00:51.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
            \n
            And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 0
          +score: 0
          +lastActive: DateTime @1700608399 {#4550
            date: 2023-11-22 00:13:19.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4560 …}
          +nested: Doctrine\ORM\PersistentCollection {#4556 …}
          +votes: Doctrine\ORM\PersistentCollection {#4558 …}
          +reports: Doctrine\ORM\PersistentCollection {#4563 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
          -id: 149008
          -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488648"
          +editedAt: DateTimeImmutable @1701066694 {#4547
            date: 2023-11-27 07:31:34.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700608399 {#4551
            date: 2023-11-22 00:13:19.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
          \n
          Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1700608720 {#4611
          date: 2023-11-22 00:18:40.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4604 …}
        +nested: Doctrine\ORM\PersistentCollection {#4602 …}
        +votes: Doctrine\ORM\PersistentCollection {#4606 …}
        +reports: Doctrine\ORM\PersistentCollection {#4617 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
        -id: 149027
        -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488752"
        +editedAt: DateTimeImmutable @1701067065 {#4614
          date: 2023-11-27 07:37:45.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700608720 {#4610
          date: 2023-11-22 00:18:40.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: "No and yes. And it returns me only a single line with `$mysudoerusername 28596 0.0 0.1 5896 2016 pts/0 5+ 15:52 0:00 grep nano`."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700609029 {#4665
        date: 2023-11-22 00:23:49.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4661 …}
      +nested: Doctrine\ORM\PersistentCollection {#4657 …}
      +votes: Doctrine\ORM\PersistentCollection {#4655 …}
      +reports: Doctrine\ORM\PersistentCollection {#4670 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4672 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4674 …}
      -id: 149043
      -bodyTs: "'0':23 '0.0':15 '0.1':16 '00':24 '15':21 '2016':18 '28596':14 '5':20 '52':22 '5896':17 'grep':25 'line':11 'mysudoerusernam':13 'nano':26 'pts/0':19 'return':6 'singl':10 'yes':3"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488840"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700609029 {#4668
        date: 2023-11-22 00:23:49.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      It returns that while you have nano running? If so, maybe try `ps aux` (without the grep part) and just look through until you find “nano” listed. Just to make sure whether it’s running as root or your non-root user.\n
      \n
      (And just to be clear, “my sudoer username” means the non-root user that you’re running nano as, right?)\n
      \n
      Just a gut feeling, but it feels to me so far like this probably isn’t a hack or security thing. But of course, once the (no pun intended) root issue is found, that’ll provide more info.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 3
    +score: 0
    +lastActive: DateTime @1700609278 {#4718
      date: 2023-11-22 00:27:58.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4714 …}
    +nested: Doctrine\ORM\PersistentCollection {#4710 …}
    +votes: Doctrine\ORM\PersistentCollection {#4708 …}
    +reports: Doctrine\ORM\PersistentCollection {#4723 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4725 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4727 …}
    -id: 149053
    -bodyTs: "'aux':14 'clear':48 'cours':88 'far':75 'feel':68,71 'find':25 'found':97 'grep':17 'gut':67 'hack':82 'info':102 'intend':93 'isn':79 'issu':95 'like':76 'list':27 'll':99 'look':21 'make':30 'mayb':11 'mean':52 'nano':7,26,62 'non':41,55 'non-root':40,54 'part':18 'probabl':78 'provid':100 'ps':13 'pun':92 're':60 'return':2 'right':64 'root':37,42,56,94 'run':8,35,61 'secur':84 'sudoer':50 'sure':31 'thing':85 'tri':12 'user':43,57 'usernam':51 'whether':32 'without':15"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488908"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609278 {#4721
      date: 2023-11-22 00:27:58.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    No. ps aux remains the same. And yes, “My sudoer username” is my non-root user with sudo privileges. Therefore, the “sudoer”.\n
    \n
    And I’m not really “pulling my hair out” because of this, honestly – just curious if this can be mentioned as a hack, a hack attempt, or whatevertheheck. Because this is the first time in my entire life that this happened with me, so yep.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609606 {#4750
    date: 2023-11-22 00:33:26.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4753 …}
  +nested: Doctrine\ORM\PersistentCollection {#4757 …}
  +votes: Doctrine\ORM\PersistentCollection {#4759 …}
  +reports: Doctrine\ORM\PersistentCollection {#4760 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4762 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4764 …}
  -id: 149065
  -bodyTs: "'attempt':49 'aux':3 'curious':38 'entir':60 'first':56 'hack':46,48 'hair':31 'happen':64 'honest':36 'life':61 'm':26 'mention':43 'non':15 'non-root':14 'privileg':20 'ps':2 'pull':29 'realli':28 'remain':4 'root':16 'sudo':19 'sudoer':10,23 'therefor':21 'time':57 'user':17 'usernam':11 'whatevertheheck':51 'yep':68 'yes':8"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489019"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609606 {#4747
    date: 2023-11-22 00:33:26.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4745
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4717
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4664
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4607
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4555
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4452
            +user: App\Entity\User {#4313 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: App\Entity\EntryComment {#4385
              +user: Proxies\__CG__\App\Entity\User {#1978 …}
              +entry: App\Entity\Entry {#2412}
              +magazine: App\Entity\Magazine {#264}
              +image: null
              +parent: App\Entity\EntryComment {#4300
                +user: App\Entity\User {#4313 …}
                +entry: App\Entity\Entry {#2412}
                +magazine: App\Entity\Magazine {#264}
                +image: null
                +parent: null
                +root: null
                +body: """
                  Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
                  \n
                  Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
                  \n
                  Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
                  \n
                  Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
                  \n
                  But if that flag is set on nano, that’s pretty weird.
                  """
                +lang: "en"
                +isAdult: false
                +favouriteCount: 14
                +score: 0
                +lastActive: DateTime @1701191441 {#4294
                  date: 2023-11-28 18:10:41.0 +01:00
                }
                +ip: null
                +tags: null
                +mentions: [
                  "@GustavoM@lemmy.world"
                ]
                +children: Doctrine\ORM\PersistentCollection {#4301 …}
                +nested: Doctrine\ORM\PersistentCollection {#4303 …}
                +votes: Doctrine\ORM\PersistentCollection {#4305 …}
                +reports: Doctrine\ORM\PersistentCollection {#4307 …}
                +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
                +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
                -id: 148880
                -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
                +ranking: 0
                +commentCount: 0
                +upVotes: 0
                +downVotes: 0
                +visibility: "visible             "
                +apId: "https://lemmy.world/comment/5487960"
                +editedAt: DateTimeImmutable @1701063149 {#4295
                  date: 2023-11-27 06:32:29.0 +01:00
                }
                +createdAt: DateTimeImmutable @1700606375 {#4296
                  date: 2023-11-21 23:39:35.0 +01:00
                }
              }
              +root: App\Entity\EntryComment {#4300}
              +body: """
                > Try an ls -l $(which nano) and look at the permissions section of the output.\n
                \n
                Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
                """
              +lang: "en"
              +isAdult: false
              +favouriteCount: 3
              +score: 0
              +lastActive: DateTime @1700606835 {#4386
                date: 2023-11-21 23:47:15.0 +01:00
              }
              +ip: null
              +tags: null
              +mentions: [
                "@GustavoM@lemmy.world"
                "@TootSweet@lemmy.world"
              ]
              +children: Doctrine\ORM\PersistentCollection {#4381 …}
              +nested: Doctrine\ORM\PersistentCollection {#4376 …}
              +votes: Doctrine\ORM\PersistentCollection {#4380 …}
              +reports: Doctrine\ORM\PersistentCollection {#4390 …}
              +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
              +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
              -id: 148915
              -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
              +ranking: 0
              +commentCount: 0
              +upVotes: 0
              +downVotes: 0
              +visibility: "visible             "
              +apId: "https://lemmy.world/comment/5488133"
              +editedAt: null
              +createdAt: DateTimeImmutable @1700606835 {#4389
                date: 2023-11-21 23:47:15.0 +01:00
              }
            }
            +root: App\Entity\EntryComment {#4300}
            +body: """
              Yeah, tha’ts weird.\n
              \n
              Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
              \n
              Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
              \n
              Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 8
            +score: 0
            +lastActive: DateTime @1700607651 {#4448
              date: 2023-11-22 00:00:51.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
              "@TootSweet@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4456 …}
            +nested: Doctrine\ORM\PersistentCollection {#4458 …}
            +votes: Doctrine\ORM\PersistentCollection {#4454 …}
            +reports: Doctrine\ORM\PersistentCollection {#4460 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
            -id: 148956
            -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5488406"
            +editedAt: DateTimeImmutable @1701066462 {#4445
              date: 2023-11-27 07:27:42.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700607651 {#4449
              date: 2023-11-22 00:00:51.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
            \n
            And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 0
          +score: 0
          +lastActive: DateTime @1700608399 {#4550
            date: 2023-11-22 00:13:19.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4560 …}
          +nested: Doctrine\ORM\PersistentCollection {#4556 …}
          +votes: Doctrine\ORM\PersistentCollection {#4558 …}
          +reports: Doctrine\ORM\PersistentCollection {#4563 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
          -id: 149008
          -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488648"
          +editedAt: DateTimeImmutable @1701066694 {#4547
            date: 2023-11-27 07:31:34.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700608399 {#4551
            date: 2023-11-22 00:13:19.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          You’re not running nano *in* a docker container, are you? You’re running nano on a host Linux system, yeah?\n
          \n
          Oh, and did you see the `ps aux | grep nano` one? (Sorry about that. I probably edited that into my post while you were working on a response.)
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 2
        +score: 0
        +lastActive: DateTime @1700608720 {#4611
          date: 2023-11-22 00:18:40.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4604 …}
        +nested: Doctrine\ORM\PersistentCollection {#4602 …}
        +votes: Doctrine\ORM\PersistentCollection {#4606 …}
        +reports: Doctrine\ORM\PersistentCollection {#4617 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4619 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4621 …}
        -id: 149027
        -bodyTs: "'aux':29 'contain':9 'docker':8 'edit':38 'grep':30 'host':18 'linux':19 'nano':5,15,31 'oh':22 'one':32 'post':42 'probabl':37 'ps':28 're':2,13 'respons':49 'run':4,14 'see':26 'sorri':33 'system':20 'work':46 'yeah':21"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488752"
        +editedAt: DateTimeImmutable @1701067065 {#4614
          date: 2023-11-27 07:37:45.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700608720 {#4610
          date: 2023-11-22 00:18:40.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: "No and yes. And it returns me only a single line with `$mysudoerusername 28596 0.0 0.1 5896 2016 pts/0 5+ 15:52 0:00 grep nano`."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700609029 {#4665
        date: 2023-11-22 00:23:49.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4661 …}
      +nested: Doctrine\ORM\PersistentCollection {#4657 …}
      +votes: Doctrine\ORM\PersistentCollection {#4655 …}
      +reports: Doctrine\ORM\PersistentCollection {#4670 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4672 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4674 …}
      -id: 149043
      -bodyTs: "'0':23 '0.0':15 '0.1':16 '00':24 '15':21 '2016':18 '28596':14 '5':20 '52':22 '5896':17 'grep':25 'line':11 'mysudoerusernam':13 'nano':26 'pts/0':19 'return':6 'singl':10 'yes':3"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488840"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700609029 {#4668
        date: 2023-11-22 00:23:49.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      It returns that while you have nano running? If so, maybe try `ps aux` (without the grep part) and just look through until you find “nano” listed. Just to make sure whether it’s running as root or your non-root user.\n
      \n
      (And just to be clear, “my sudoer username” means the non-root user that you’re running nano as, right?)\n
      \n
      Just a gut feeling, but it feels to me so far like this probably isn’t a hack or security thing. But of course, once the (no pun intended) root issue is found, that’ll provide more info.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 3
    +score: 0
    +lastActive: DateTime @1700609278 {#4718
      date: 2023-11-22 00:27:58.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4714 …}
    +nested: Doctrine\ORM\PersistentCollection {#4710 …}
    +votes: Doctrine\ORM\PersistentCollection {#4708 …}
    +reports: Doctrine\ORM\PersistentCollection {#4723 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4725 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4727 …}
    -id: 149053
    -bodyTs: "'aux':14 'clear':48 'cours':88 'far':75 'feel':68,71 'find':25 'found':97 'grep':17 'gut':67 'hack':82 'info':102 'intend':93 'isn':79 'issu':95 'like':76 'list':27 'll':99 'look':21 'make':30 'mayb':11 'mean':52 'nano':7,26,62 'non':41,55 'non-root':40,54 'part':18 'probabl':78 'provid':100 'ps':13 'pun':92 're':60 'return':2 'right':64 'root':37,42,56,94 'run':8,35,61 'secur':84 'sudoer':50 'sure':31 'thing':85 'tri':12 'user':43,57 'usernam':51 'whether':32 'without':15"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488908"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609278 {#4721
      date: 2023-11-22 00:27:58.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    No. ps aux remains the same. And yes, “My sudoer username” is my non-root user with sudo privileges. Therefore, the “sudoer”.\n
    \n
    And I’m not really “pulling my hair out” because of this, honestly – just curious if this can be mentioned as a hack, a hack attempt, or whatevertheheck. Because this is the first time in my entire life that this happened with me, so yep.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609606 {#4750
    date: 2023-11-22 00:33:26.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4753 …}
  +nested: Doctrine\ORM\PersistentCollection {#4757 …}
  +votes: Doctrine\ORM\PersistentCollection {#4759 …}
  +reports: Doctrine\ORM\PersistentCollection {#4760 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4762 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4764 …}
  -id: 149065
  -bodyTs: "'attempt':49 'aux':3 'curious':38 'entir':60 'first':56 'hack':46,48 'hair':31 'happen':64 'honest':36 'life':61 'm':26 'mention':43 'non':15 'non-root':14 'privileg':20 'ps':2 'pull':29 'realli':28 'remain':4 'root':16 'sudo':19 'sudoer':10,23 'therefor':21 'time':57 'user':17 'usernam':11 'whatevertheheck':51 'yep':68 'yes':8"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489019"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609606 {#4747
    date: 2023-11-22 00:33:26.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4625
  +user: Proxies\__CG__\App\Entity\User {#4626 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4555
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4452
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4385
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4300
          +user: App\Entity\User {#4313 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: null
          +root: null
          +body: """
            Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
            \n
            Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
            \n
            Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
            \n
            Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
            \n
            But if that flag is set on nano, that’s pretty weird.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 14
          +score: 0
          +lastActive: DateTime @1701191441 {#4294
            date: 2023-11-28 18:10:41.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4301 …}
          +nested: Doctrine\ORM\PersistentCollection {#4303 …}
          +votes: Doctrine\ORM\PersistentCollection {#4305 …}
          +reports: Doctrine\ORM\PersistentCollection {#4307 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
          -id: 148880
          -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5487960"
          +editedAt: DateTimeImmutable @1701063149 {#4295
            date: 2023-11-27 06:32:29.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700606375 {#4296
            date: 2023-11-21 23:39:35.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          > Try an ls -l $(which nano) and look at the permissions section of the output.\n
          \n
          Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 3
        +score: 0
        +lastActive: DateTime @1700606835 {#4386
          date: 2023-11-21 23:47:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4381 …}
        +nested: Doctrine\ORM\PersistentCollection {#4376 …}
        +votes: Doctrine\ORM\PersistentCollection {#4380 …}
        +reports: Doctrine\ORM\PersistentCollection {#4390 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
        -id: 148915
        -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488133"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700606835 {#4389
          date: 2023-11-21 23:47:15.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Yeah, tha’ts weird.\n
        \n
        Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
        \n
        Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
        \n
        Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 8
      +score: 0
      +lastActive: DateTime @1700607651 {#4448
        date: 2023-11-22 00:00:51.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4456 …}
      +nested: Doctrine\ORM\PersistentCollection {#4458 …}
      +votes: Doctrine\ORM\PersistentCollection {#4454 …}
      +reports: Doctrine\ORM\PersistentCollection {#4460 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
      -id: 148956
      -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488406"
      +editedAt: DateTimeImmutable @1701066462 {#4445
        date: 2023-11-27 07:27:42.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700607651 {#4449
        date: 2023-11-22 00:00:51.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
      \n
      And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700608399 {#4550
      date: 2023-11-22 00:13:19.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4560 …}
    +nested: Doctrine\ORM\PersistentCollection {#4556 …}
    +votes: Doctrine\ORM\PersistentCollection {#4558 …}
    +reports: Doctrine\ORM\PersistentCollection {#4563 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
    -id: 149008
    -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488648"
    +editedAt: DateTimeImmutable @1701066694 {#4547
      date: 2023-11-27 07:31:34.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700608399 {#4551
      date: 2023-11-22 00:13:19.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "Wait, why did you mentioned docker?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1700609837 {#4623
    date: 2023-11-22 00:37:17.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4627 …}
  +nested: Doctrine\ORM\PersistentCollection {#4629 …}
  +votes: Doctrine\ORM\PersistentCollection {#4631 …}
  +reports: Doctrine\ORM\PersistentCollection {#4633 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4635 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4637 …}
  -id: 149072
  -bodyTs: "'docker':6 'mention':5 'wait':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489092"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609837 {#4624
    date: 2023-11-22 00:37:17.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4625
  +user: Proxies\__CG__\App\Entity\User {#4626 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4555
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4452
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4385
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4300
          +user: App\Entity\User {#4313 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: null
          +root: null
          +body: """
            Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
            \n
            Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
            \n
            Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
            \n
            Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
            \n
            But if that flag is set on nano, that’s pretty weird.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 14
          +score: 0
          +lastActive: DateTime @1701191441 {#4294
            date: 2023-11-28 18:10:41.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4301 …}
          +nested: Doctrine\ORM\PersistentCollection {#4303 …}
          +votes: Doctrine\ORM\PersistentCollection {#4305 …}
          +reports: Doctrine\ORM\PersistentCollection {#4307 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
          -id: 148880
          -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5487960"
          +editedAt: DateTimeImmutable @1701063149 {#4295
            date: 2023-11-27 06:32:29.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700606375 {#4296
            date: 2023-11-21 23:39:35.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          > Try an ls -l $(which nano) and look at the permissions section of the output.\n
          \n
          Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 3
        +score: 0
        +lastActive: DateTime @1700606835 {#4386
          date: 2023-11-21 23:47:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4381 …}
        +nested: Doctrine\ORM\PersistentCollection {#4376 …}
        +votes: Doctrine\ORM\PersistentCollection {#4380 …}
        +reports: Doctrine\ORM\PersistentCollection {#4390 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
        -id: 148915
        -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488133"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700606835 {#4389
          date: 2023-11-21 23:47:15.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Yeah, tha’ts weird.\n
        \n
        Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
        \n
        Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
        \n
        Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 8
      +score: 0
      +lastActive: DateTime @1700607651 {#4448
        date: 2023-11-22 00:00:51.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4456 …}
      +nested: Doctrine\ORM\PersistentCollection {#4458 …}
      +votes: Doctrine\ORM\PersistentCollection {#4454 …}
      +reports: Doctrine\ORM\PersistentCollection {#4460 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
      -id: 148956
      -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488406"
      +editedAt: DateTimeImmutable @1701066462 {#4445
        date: 2023-11-27 07:27:42.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700607651 {#4449
        date: 2023-11-22 00:00:51.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
      \n
      And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700608399 {#4550
      date: 2023-11-22 00:13:19.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4560 …}
    +nested: Doctrine\ORM\PersistentCollection {#4556 …}
    +votes: Doctrine\ORM\PersistentCollection {#4558 …}
    +reports: Doctrine\ORM\PersistentCollection {#4563 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
    -id: 149008
    -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488648"
    +editedAt: DateTimeImmutable @1701066694 {#4547
      date: 2023-11-27 07:31:34.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700608399 {#4551
      date: 2023-11-22 00:13:19.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "Wait, why did you mentioned docker?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1700609837 {#4623
    date: 2023-11-22 00:37:17.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4627 …}
  +nested: Doctrine\ORM\PersistentCollection {#4629 …}
  +votes: Doctrine\ORM\PersistentCollection {#4631 …}
  +reports: Doctrine\ORM\PersistentCollection {#4633 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4635 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4637 …}
  -id: 149072
  -bodyTs: "'docker':6 'mention':5 'wait':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489092"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609837 {#4624
    date: 2023-11-22 00:37:17.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4625
  +user: Proxies\__CG__\App\Entity\User {#4626 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4555
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4452
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4385
        +user: Proxies\__CG__\App\Entity\User {#1978 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4300
          +user: App\Entity\User {#4313 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: null
          +root: null
          +body: """
            Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
            \n
            Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
            \n
            Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
            \n
            Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
            \n
            But if that flag is set on nano, that’s pretty weird.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 14
          +score: 0
          +lastActive: DateTime @1701191441 {#4294
            date: 2023-11-28 18:10:41.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4301 …}
          +nested: Doctrine\ORM\PersistentCollection {#4303 …}
          +votes: Doctrine\ORM\PersistentCollection {#4305 …}
          +reports: Doctrine\ORM\PersistentCollection {#4307 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
          -id: 148880
          -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5487960"
          +editedAt: DateTimeImmutable @1701063149 {#4295
            date: 2023-11-27 06:32:29.0 +01:00
          }
          +createdAt: DateTimeImmutable @1700606375 {#4296
            date: 2023-11-21 23:39:35.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          > Try an ls -l $(which nano) and look at the permissions section of the output.\n
          \n
          Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 3
        +score: 0
        +lastActive: DateTime @1700606835 {#4386
          date: 2023-11-21 23:47:15.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4381 …}
        +nested: Doctrine\ORM\PersistentCollection {#4376 …}
        +votes: Doctrine\ORM\PersistentCollection {#4380 …}
        +reports: Doctrine\ORM\PersistentCollection {#4390 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
        -id: 148915
        -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488133"
        +editedAt: null
        +createdAt: DateTimeImmutable @1700606835 {#4389
          date: 2023-11-21 23:47:15.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Yeah, tha’ts weird.\n
        \n
        Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
        \n
        Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
        \n
        Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 8
      +score: 0
      +lastActive: DateTime @1700607651 {#4448
        date: 2023-11-22 00:00:51.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4456 …}
      +nested: Doctrine\ORM\PersistentCollection {#4458 …}
      +votes: Doctrine\ORM\PersistentCollection {#4454 …}
      +reports: Doctrine\ORM\PersistentCollection {#4460 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
      -id: 148956
      -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488406"
      +editedAt: DateTimeImmutable @1701066462 {#4445
        date: 2023-11-27 07:27:42.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700607651 {#4449
        date: 2023-11-22 00:00:51.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
      \n
      And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700608399 {#4550
      date: 2023-11-22 00:13:19.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4560 …}
    +nested: Doctrine\ORM\PersistentCollection {#4556 …}
    +votes: Doctrine\ORM\PersistentCollection {#4558 …}
    +reports: Doctrine\ORM\PersistentCollection {#4563 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
    -id: 149008
    -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5488648"
    +editedAt: DateTimeImmutable @1701066694 {#4547
      date: 2023-11-27 07:31:34.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700608399 {#4551
      date: 2023-11-22 00:13:19.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "Wait, why did you mentioned docker?"
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1700609837 {#4623
    date: 2023-11-22 00:37:17.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4627 …}
  +nested: Doctrine\ORM\PersistentCollection {#4629 …}
  +votes: Doctrine\ORM\PersistentCollection {#4631 …}
  +reports: Doctrine\ORM\PersistentCollection {#4633 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4635 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4637 …}
  -id: 149072
  -bodyTs: "'docker':6 'mention':5 'wait':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489092"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700609837 {#4624
    date: 2023-11-22 00:37:17.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4694
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4625
    +user: Proxies\__CG__\App\Entity\User {#4626 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4555
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4452
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4385
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4300
            +user: App\Entity\User {#4313 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: null
            +root: null
            +body: """
              Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
              \n
              Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
              \n
              Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
              \n
              Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
              \n
              But if that flag is set on nano, that’s pretty weird.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 14
            +score: 0
            +lastActive: DateTime @1701191441 {#4294
              date: 2023-11-28 18:10:41.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4301 …}
            +nested: Doctrine\ORM\PersistentCollection {#4303 …}
            +votes: Doctrine\ORM\PersistentCollection {#4305 …}
            +reports: Doctrine\ORM\PersistentCollection {#4307 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
            -id: 148880
            -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5487960"
            +editedAt: DateTimeImmutable @1701063149 {#4295
              date: 2023-11-27 06:32:29.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700606375 {#4296
              date: 2023-11-21 23:39:35.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            > Try an ls -l $(which nano) and look at the permissions section of the output.\n
            \n
            Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 3
          +score: 0
          +lastActive: DateTime @1700606835 {#4386
            date: 2023-11-21 23:47:15.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4381 …}
          +nested: Doctrine\ORM\PersistentCollection {#4376 …}
          +votes: Doctrine\ORM\PersistentCollection {#4380 …}
          +reports: Doctrine\ORM\PersistentCollection {#4390 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
          -id: 148915
          -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488133"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700606835 {#4389
            date: 2023-11-21 23:47:15.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          Yeah, tha’ts weird.\n
          \n
          Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
          \n
          Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
          \n
          Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 8
        +score: 0
        +lastActive: DateTime @1700607651 {#4448
          date: 2023-11-22 00:00:51.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4456 …}
        +nested: Doctrine\ORM\PersistentCollection {#4458 …}
        +votes: Doctrine\ORM\PersistentCollection {#4454 …}
        +reports: Doctrine\ORM\PersistentCollection {#4460 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
        -id: 148956
        -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488406"
        +editedAt: DateTimeImmutable @1701066462 {#4445
          date: 2023-11-27 07:27:42.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700607651 {#4449
          date: 2023-11-22 00:00:51.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
        \n
        And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700608399 {#4550
        date: 2023-11-22 00:13:19.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4560 …}
      +nested: Doctrine\ORM\PersistentCollection {#4556 …}
      +votes: Doctrine\ORM\PersistentCollection {#4558 …}
      +reports: Doctrine\ORM\PersistentCollection {#4563 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
      -id: 149008
      -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488648"
      +editedAt: DateTimeImmutable @1701066694 {#4547
        date: 2023-11-27 07:31:34.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700608399 {#4551
        date: 2023-11-22 00:13:19.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: "Wait, why did you mentioned docker?"
    +lang: "en"
    +isAdult: false
    +favouriteCount: 1
    +score: 0
    +lastActive: DateTime @1700609837 {#4623
      date: 2023-11-22 00:37:17.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4627 …}
    +nested: Doctrine\ORM\PersistentCollection {#4629 …}
    +votes: Doctrine\ORM\PersistentCollection {#4631 …}
    +reports: Doctrine\ORM\PersistentCollection {#4633 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4635 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4637 …}
    -id: 149072
    -bodyTs: "'docker':6 'mention':5 'wait':1"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5489092"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609837 {#4624
      date: 2023-11-22 00:37:17.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "Just adding more (relevant) info, since its my “security hole” as of now. As mentioned in the OP."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609939 {#4691
    date: 2023-11-22 00:38:59.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
    "@Nibodhika@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4695 …}
  +nested: Doctrine\ORM\PersistentCollection {#4697 …}
  +votes: Doctrine\ORM\PersistentCollection {#4699 …}
  +reports: Doctrine\ORM\PersistentCollection {#4701 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4703 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4705 …}
  -id: 149079
  -bodyTs: "'ad':2 'hole':10 'info':5 'mention':15 'op':18 'relev':4 'secur':9 'sinc':6"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489123"
  +editedAt: DateTimeImmutable @1701069461 {#4692
    date: 2023-11-27 08:17:41.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700609939 {#4693
    date: 2023-11-22 00:38:59.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4694
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4625
    +user: Proxies\__CG__\App\Entity\User {#4626 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4555
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4452
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4385
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4300
            +user: App\Entity\User {#4313 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: null
            +root: null
            +body: """
              Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
              \n
              Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
              \n
              Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
              \n
              Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
              \n
              But if that flag is set on nano, that’s pretty weird.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 14
            +score: 0
            +lastActive: DateTime @1701191441 {#4294
              date: 2023-11-28 18:10:41.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4301 …}
            +nested: Doctrine\ORM\PersistentCollection {#4303 …}
            +votes: Doctrine\ORM\PersistentCollection {#4305 …}
            +reports: Doctrine\ORM\PersistentCollection {#4307 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
            -id: 148880
            -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5487960"
            +editedAt: DateTimeImmutable @1701063149 {#4295
              date: 2023-11-27 06:32:29.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700606375 {#4296
              date: 2023-11-21 23:39:35.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            > Try an ls -l $(which nano) and look at the permissions section of the output.\n
            \n
            Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 3
          +score: 0
          +lastActive: DateTime @1700606835 {#4386
            date: 2023-11-21 23:47:15.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4381 …}
          +nested: Doctrine\ORM\PersistentCollection {#4376 …}
          +votes: Doctrine\ORM\PersistentCollection {#4380 …}
          +reports: Doctrine\ORM\PersistentCollection {#4390 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
          -id: 148915
          -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488133"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700606835 {#4389
            date: 2023-11-21 23:47:15.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          Yeah, tha’ts weird.\n
          \n
          Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
          \n
          Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
          \n
          Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 8
        +score: 0
        +lastActive: DateTime @1700607651 {#4448
          date: 2023-11-22 00:00:51.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4456 …}
        +nested: Doctrine\ORM\PersistentCollection {#4458 …}
        +votes: Doctrine\ORM\PersistentCollection {#4454 …}
        +reports: Doctrine\ORM\PersistentCollection {#4460 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
        -id: 148956
        -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488406"
        +editedAt: DateTimeImmutable @1701066462 {#4445
          date: 2023-11-27 07:27:42.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700607651 {#4449
          date: 2023-11-22 00:00:51.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
        \n
        And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700608399 {#4550
        date: 2023-11-22 00:13:19.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4560 …}
      +nested: Doctrine\ORM\PersistentCollection {#4556 …}
      +votes: Doctrine\ORM\PersistentCollection {#4558 …}
      +reports: Doctrine\ORM\PersistentCollection {#4563 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
      -id: 149008
      -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488648"
      +editedAt: DateTimeImmutable @1701066694 {#4547
        date: 2023-11-27 07:31:34.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700608399 {#4551
        date: 2023-11-22 00:13:19.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: "Wait, why did you mentioned docker?"
    +lang: "en"
    +isAdult: false
    +favouriteCount: 1
    +score: 0
    +lastActive: DateTime @1700609837 {#4623
      date: 2023-11-22 00:37:17.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4627 …}
    +nested: Doctrine\ORM\PersistentCollection {#4629 …}
    +votes: Doctrine\ORM\PersistentCollection {#4631 …}
    +reports: Doctrine\ORM\PersistentCollection {#4633 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4635 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4637 …}
    -id: 149072
    -bodyTs: "'docker':6 'mention':5 'wait':1"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5489092"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609837 {#4624
      date: 2023-11-22 00:37:17.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "Just adding more (relevant) info, since its my “security hole” as of now. As mentioned in the OP."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609939 {#4691
    date: 2023-11-22 00:38:59.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
    "@Nibodhika@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4695 …}
  +nested: Doctrine\ORM\PersistentCollection {#4697 …}
  +votes: Doctrine\ORM\PersistentCollection {#4699 …}
  +reports: Doctrine\ORM\PersistentCollection {#4701 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4703 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4705 …}
  -id: 149079
  -bodyTs: "'ad':2 'hole':10 'info':5 'mention':15 'op':18 'relev':4 'secur':9 'sinc':6"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489123"
  +editedAt: DateTimeImmutable @1701069461 {#4692
    date: 2023-11-27 08:17:41.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700609939 {#4693
    date: 2023-11-22 00:38:59.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4694
  +user: Proxies\__CG__\App\Entity\User {#1978 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4625
    +user: Proxies\__CG__\App\Entity\User {#4626 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4555
      +user: Proxies\__CG__\App\Entity\User {#1978 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4452
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: App\Entity\EntryComment {#4385
          +user: Proxies\__CG__\App\Entity\User {#1978 …}
          +entry: App\Entity\Entry {#2412}
          +magazine: App\Entity\Magazine {#264}
          +image: null
          +parent: App\Entity\EntryComment {#4300
            +user: App\Entity\User {#4313 …}
            +entry: App\Entity\Entry {#2412}
            +magazine: App\Entity\Magazine {#264}
            +image: null
            +parent: null
            +root: null
            +body: """
              Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
              \n
              Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
              \n
              Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
              \n
              Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
              \n
              But if that flag is set on nano, that’s pretty weird.
              """
            +lang: "en"
            +isAdult: false
            +favouriteCount: 14
            +score: 0
            +lastActive: DateTime @1701191441 {#4294
              date: 2023-11-28 18:10:41.0 +01:00
            }
            +ip: null
            +tags: null
            +mentions: [
              "@GustavoM@lemmy.world"
            ]
            +children: Doctrine\ORM\PersistentCollection {#4301 …}
            +nested: Doctrine\ORM\PersistentCollection {#4303 …}
            +votes: Doctrine\ORM\PersistentCollection {#4305 …}
            +reports: Doctrine\ORM\PersistentCollection {#4307 …}
            +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
            +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
            -id: 148880
            -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
            +ranking: 0
            +commentCount: 0
            +upVotes: 0
            +downVotes: 0
            +visibility: "visible             "
            +apId: "https://lemmy.world/comment/5487960"
            +editedAt: DateTimeImmutable @1701063149 {#4295
              date: 2023-11-27 06:32:29.0 +01:00
            }
            +createdAt: DateTimeImmutable @1700606375 {#4296
              date: 2023-11-21 23:39:35.0 +01:00
            }
          }
          +root: App\Entity\EntryComment {#4300}
          +body: """
            > Try an ls -l $(which nano) and look at the permissions section of the output.\n
            \n
            Just did it – output is `-rwxr-xr-x 1 root root 274816 Feb 19 2022 /usr/bin/nano`. Now I’m really confused. Still, I appreciate your input.
            """
          +lang: "en"
          +isAdult: false
          +favouriteCount: 3
          +score: 0
          +lastActive: DateTime @1700606835 {#4386
            date: 2023-11-21 23:47:15.0 +01:00
          }
          +ip: null
          +tags: null
          +mentions: [
            "@GustavoM@lemmy.world"
            "@TootSweet@lemmy.world"
          ]
          +children: Doctrine\ORM\PersistentCollection {#4381 …}
          +nested: Doctrine\ORM\PersistentCollection {#4376 …}
          +votes: Doctrine\ORM\PersistentCollection {#4380 …}
          +reports: Doctrine\ORM\PersistentCollection {#4390 …}
          +favourites: Doctrine\ORM\PersistentCollection {#4392 …}
          +notifications: Doctrine\ORM\PersistentCollection {#4394 …}
          -id: 148915
          -bodyTs: "'/usr/bin/nano':32 '1':25 '19':30 '2022':31 '274816':28 'appreci':40 'confus':37 'feb':29 'input':42 'l':4 'look':8 'ls':3 'm':35 'nano':6 'output':15,19 'permiss':11 'realli':36 'root':26,27 'rwxr':22 'rwxr-xr-x':21 'section':12 'still':38 'tri':1 'x':24 'xr':23"
          +ranking: 0
          +commentCount: 0
          +upVotes: 0
          +downVotes: 0
          +visibility: "visible             "
          +apId: "https://lemmy.world/comment/5488133"
          +editedAt: null
          +createdAt: DateTimeImmutable @1700606835 {#4389
            date: 2023-11-21 23:47:15.0 +01:00
          }
        }
        +root: App\Entity\EntryComment {#4300}
        +body: """
          Yeah, tha’ts weird.\n
          \n
          Maybe try `alias nano` and `LC_ALL=C type nano`. Those test whether you have an alias or function named “nano” in bash that might be being run instead of `/usr/bin/nano`.\n
          \n
          Oh, also, `whoami` and `id`. Maybe there’s something weird with how you’re logged in and despite not having the username “root” you’re still uid 1 or something strange like that?\n
          \n
          Oh! Also maybe while you’ve got nano running, do a `ps aux | grep nano` and see which user is reported to own that process.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 8
        +score: 0
        +lastActive: DateTime @1700607651 {#4448
          date: 2023-11-22 00:00:51.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
          "@TootSweet@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4456 …}
        +nested: Doctrine\ORM\PersistentCollection {#4458 …}
        +votes: Doctrine\ORM\PersistentCollection {#4454 …}
        +reports: Doctrine\ORM\PersistentCollection {#4460 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4462 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4464 …}
        -id: 148956
        -bodyTs: "'/usr/bin/nano':35 '1':63 'alia':7,21 'also':37,70 'aux':81 'bash':27 'c':12 'despit':53 'function':23 'got':75 'grep':82 'id':40 'instead':33 'lc':10 'like':67 'log':50 'mayb':5,41,71 'might':29 'name':24 'nano':8,14,25,76,83 'oh':36,69 'process':93 'ps':80 're':49,60 'report':89 'root':58 'run':32,77 'see':85 'someth':44,65 'still':61 'strang':66 'test':16 'tha':2 'tri':6 'ts':3 'type':13 'uid':62 'user':87 'usernam':57 've':74 'weird':4,45 'whether':17 'whoami':38 'yeah':1"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5488406"
        +editedAt: DateTimeImmutable @1701066462 {#4445
          date: 2023-11-27 07:27:42.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700607651 {#4449
          date: 2023-11-22 00:00:51.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Alright, first one returned me “`bash: alias: nano: not found`”. Second one, “`nano is hashed (/usr/bin/nano`)”. Third one, my sudoer username. And the fourth one shows my sudoer username at the top of the list, with both uid and gid at 1000.\n
        \n
        And I honestly can’t really think of much to add, other than the username in the docker image being completely nonexistant (It’s just a bunch of numbers, and it doesn’t even have a name). I don’t know, maybe someone managed to breach the container and gave this “nonexistant user” root privileges but haven’t managed to do much or something like that. I’m not that much of a tech savvy, but I guess it doesn’t hurt to try to guess something. Maybe there is something inside the container? Idk, I’m gonna (try to) check it out (It’s a “distroless” image – it doesn’t even have a shell in it.).
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700608399 {#4550
        date: 2023-11-22 00:13:19.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4560 …}
      +nested: Doctrine\ORM\PersistentCollection {#4556 …}
      +votes: Doctrine\ORM\PersistentCollection {#4558 …}
      +reports: Doctrine\ORM\PersistentCollection {#4563 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4565 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4567 …}
      -id: 149008
      -bodyTs: "'/usr/bin/nano':16 '1000':42 'add':53 'alia':7 'alright':1 'bash':6 'breach':88 'bunch':69 'check':143 'complet':63 'contain':90,136 'distroless':149 'docker':60 'doesn':74,122,152 'even':76,154 'first':2 'found':10 'fourth':24 'gave':92 'gid':40 'gonna':140 'guess':120,128 'hash':15 'haven':99 'honest':45 'hurt':124 'idk':137 'imag':61,150 'insid':134 'know':83 'like':107 'list':35 'm':110,139 'manag':86,101 'mayb':84,130 'much':51,104,113 'name':79 'nano':8,13 'nonexist':64,94 'number':71 'one':3,12,18,25 'privileg':97 'realli':48 'return':4 'root':96 'savvi':117 'second':11 'shell':157 'show':26 'someon':85 'someth':106,129,133 'sudoer':20,28 'tech':116 'think':49 'third':17 'top':32 'tri':126,141 'uid':38 'user':95 'usernam':21,29,57"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5488648"
      +editedAt: DateTimeImmutable @1701066694 {#4547
        date: 2023-11-27 07:31:34.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700608399 {#4551
        date: 2023-11-22 00:13:19.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: "Wait, why did you mentioned docker?"
    +lang: "en"
    +isAdult: false
    +favouriteCount: 1
    +score: 0
    +lastActive: DateTime @1700609837 {#4623
      date: 2023-11-22 00:37:17.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4627 …}
    +nested: Doctrine\ORM\PersistentCollection {#4629 …}
    +votes: Doctrine\ORM\PersistentCollection {#4631 …}
    +reports: Doctrine\ORM\PersistentCollection {#4633 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4635 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4637 …}
    -id: 149072
    -bodyTs: "'docker':6 'mention':5 'wait':1"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5489092"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700609837 {#4624
      date: 2023-11-22 00:37:17.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "Just adding more (relevant) info, since its my “security hole” as of now. As mentioned in the OP."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700609939 {#4691
    date: 2023-11-22 00:38:59.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
    "@Nibodhika@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4695 …}
  +nested: Doctrine\ORM\PersistentCollection {#4697 …}
  +votes: Doctrine\ORM\PersistentCollection {#4699 …}
  +reports: Doctrine\ORM\PersistentCollection {#4701 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4703 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4705 …}
  -id: 149079
  -bodyTs: "'ad':2 'hole':10 'info':5 'mention':15 'op':18 'relev':4 'secur':9 'sinc':6"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5489123"
  +editedAt: DateTimeImmutable @1701069461 {#4692
    date: 2023-11-27 08:17:41.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700609939 {#4693
    date: 2023-11-22 00:38:59.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4398
  +user: Proxies\__CG__\App\Entity\User {#4399 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4300
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: """
      Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
      \n
      Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
      \n
      Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
      \n
      Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
      \n
      But if that flag is set on nano, that’s pretty weird.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 14
    +score: 0
    +lastActive: DateTime @1701191441 {#4294
      date: 2023-11-28 18:10:41.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4301 …}
    +nested: Doctrine\ORM\PersistentCollection {#4303 …}
    +votes: Doctrine\ORM\PersistentCollection {#4305 …}
    +reports: Doctrine\ORM\PersistentCollection {#4307 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
    -id: 148880
    -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5487960"
    +editedAt: DateTimeImmutable @1701063149 {#4295
      date: 2023-11-27 06:32:29.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700606375 {#4296
      date: 2023-11-21 23:39:35.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    Could I set that for Docker? I often forget to run docker-compose as sudo and it can’t be used without sudo, so it’s a bit silly to always have to prepend sudo there. This magical “s” you describe could solve that.\n
    \n
    And, of course, because I want to learn: why is this a really bad idea?
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700655443 {#4396
    date: 2023-11-22 13:17:23.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4400 …}
  +nested: Doctrine\ORM\PersistentCollection {#4402 …}
  +votes: Doctrine\ORM\PersistentCollection {#4404 …}
  +reports: Doctrine\ORM\PersistentCollection {#4406 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4408 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4410 …}
  -id: 150302
  -bodyTs: "'alway':32 'bad':59 'bit':29 'compos':14 'could':1,43 'cours':48 'describ':42 'docker':6,13 'docker-compos':12 'forget':9 'idea':60 'learn':53 'magic':39 'often':8 'prepend':35 'realli':58 'run':11 'set':3 'silli':30 'solv':44 'sudo':16,24,36 'use':22 'want':51 'without':23"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5498963"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700655443 {#4397
    date: 2023-11-22 13:17:23.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4398
  +user: Proxies\__CG__\App\Entity\User {#4399 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4300
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: """
      Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
      \n
      Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
      \n
      Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
      \n
      Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
      \n
      But if that flag is set on nano, that’s pretty weird.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 14
    +score: 0
    +lastActive: DateTime @1701191441 {#4294
      date: 2023-11-28 18:10:41.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4301 …}
    +nested: Doctrine\ORM\PersistentCollection {#4303 …}
    +votes: Doctrine\ORM\PersistentCollection {#4305 …}
    +reports: Doctrine\ORM\PersistentCollection {#4307 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
    -id: 148880
    -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5487960"
    +editedAt: DateTimeImmutable @1701063149 {#4295
      date: 2023-11-27 06:32:29.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700606375 {#4296
      date: 2023-11-21 23:39:35.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    Could I set that for Docker? I often forget to run docker-compose as sudo and it can’t be used without sudo, so it’s a bit silly to always have to prepend sudo there. This magical “s” you describe could solve that.\n
    \n
    And, of course, because I want to learn: why is this a really bad idea?
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700655443 {#4396
    date: 2023-11-22 13:17:23.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4400 …}
  +nested: Doctrine\ORM\PersistentCollection {#4402 …}
  +votes: Doctrine\ORM\PersistentCollection {#4404 …}
  +reports: Doctrine\ORM\PersistentCollection {#4406 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4408 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4410 …}
  -id: 150302
  -bodyTs: "'alway':32 'bad':59 'bit':29 'compos':14 'could':1,43 'cours':48 'describ':42 'docker':6,13 'docker-compos':12 'forget':9 'idea':60 'learn':53 'magic':39 'often':8 'prepend':35 'realli':58 'run':11 'set':3 'silli':30 'solv':44 'sudo':16,24,36 'use':22 'want':51 'without':23"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5498963"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700655443 {#4397
    date: 2023-11-22 13:17:23.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4398
  +user: Proxies\__CG__\App\Entity\User {#4399 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4300
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: null
    +root: null
    +body: """
      Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
      \n
      Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
      \n
      Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
      \n
      Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
      \n
      But if that flag is set on nano, that’s pretty weird.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 14
    +score: 0
    +lastActive: DateTime @1701191441 {#4294
      date: 2023-11-28 18:10:41.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4301 …}
    +nested: Doctrine\ORM\PersistentCollection {#4303 …}
    +votes: Doctrine\ORM\PersistentCollection {#4305 …}
    +reports: Doctrine\ORM\PersistentCollection {#4307 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
    -id: 148880
    -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5487960"
    +editedAt: DateTimeImmutable @1701063149 {#4295
      date: 2023-11-27 06:32:29.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700606375 {#4296
      date: 2023-11-21 23:39:35.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    Could I set that for Docker? I often forget to run docker-compose as sudo and it can’t be used without sudo, so it’s a bit silly to always have to prepend sudo there. This magical “s” you describe could solve that.\n
    \n
    And, of course, because I want to learn: why is this a really bad idea?
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1700655443 {#4396
    date: 2023-11-22 13:17:23.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4400 …}
  +nested: Doctrine\ORM\PersistentCollection {#4402 …}
  +votes: Doctrine\ORM\PersistentCollection {#4404 …}
  +reports: Doctrine\ORM\PersistentCollection {#4406 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4408 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4410 …}
  -id: 150302
  -bodyTs: "'alway':32 'bad':59 'bit':29 'compos':14 'could':1,43 'cours':48 'describ':42 'docker':6,13 'docker-compos':12 'forget':9 'idea':60 'learn':53 'magic':39 'often':8 'prepend':35 'realli':58 'run':11 'set':3 'silli':30 'solv':44 'sudo':16,24,36 'use':22 'want':51 'without':23"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5498963"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700655443 {#4397
    date: 2023-11-22 13:17:23.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4533
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4398
    +user: Proxies\__CG__\App\Entity\User {#4399 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4300
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: """
        Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
        \n
        Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
        \n
        Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
        \n
        Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
        \n
        But if that flag is set on nano, that’s pretty weird.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 14
      +score: 0
      +lastActive: DateTime @1701191441 {#4294
        date: 2023-11-28 18:10:41.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4301 …}
      +nested: Doctrine\ORM\PersistentCollection {#4303 …}
      +votes: Doctrine\ORM\PersistentCollection {#4305 …}
      +reports: Doctrine\ORM\PersistentCollection {#4307 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
      -id: 148880
      -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5487960"
      +editedAt: DateTimeImmutable @1701063149 {#4295
        date: 2023-11-27 06:32:29.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700606375 {#4296
        date: 2023-11-21 23:39:35.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Could I set that for Docker? I often forget to run docker-compose as sudo and it can’t be used without sudo, so it’s a bit silly to always have to prepend sudo there. This magical “s” you describe could solve that.\n
      \n
      And, of course, because I want to learn: why is this a really bad idea?
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700655443 {#4396
      date: 2023-11-22 13:17:23.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4400 …}
    +nested: Doctrine\ORM\PersistentCollection {#4402 …}
    +votes: Doctrine\ORM\PersistentCollection {#4404 …}
    +reports: Doctrine\ORM\PersistentCollection {#4406 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4408 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4410 …}
    -id: 150302
    -bodyTs: "'alway':32 'bad':59 'bit':29 'compos':14 'could':1,43 'cours':48 'describ':42 'docker':6,13 'docker-compos':12 'forget':9 'idea':60 'learn':53 'magic':39 'often':8 'prepend':35 'realli':58 'run':11 'set':3 'silli':30 'solv':44 'sudo':16,24,36 'use':22 'want':51 'without':23"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5498963"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700655443 {#4397
      date: 2023-11-22 13:17:23.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    If you can’t run `docker-compose` without `sudo`, there’s something wrong with your setup. The specifics would be specific to your distro, but most likely there’s a user group you could add your user to with `sudo gpasswd -a user group` to make the `docker run` and `docker-compose` commands work without `sudo`. (Might have to log out and back in as well to make it take effect if you’ve ran that command during the current session.) To find the name of the group, you’ll probably have to do some research about your distro in particular. On Arch (insert hate here ;) ), I think the `docker` group does that, and it’s not unlikely that the equivalent group for your distro has the same name.\n
    \n
    The “magical s” (called the “SUID bit”) shouldn’t be required to be able to run `docker run` and/or `docker-compose` without sudo. Theoretically if you *did* want to do that, you could do it with `sudo chmod u+s /usr/bin/docker`. But again it’s probably better to just add yourself to the proper group (or otherwise take the correct steps for your distro.)\n
    \n
    But also, running docker-compose (or the `docker run` command more directly) without sudo won’t necessarily make things *inside the docker container* run as your user. Making it do so is a little complex, actually, but I’ll go through it here.\n
    \n
    So, most Docker images that you’d get from Docker Hub or whatever usually run by default as root. If you do something like `docker run -v /path/to/some/directory/on/your/host:/dir -it python ‘touch /dir/foo’`, even if you’ve got your groups set up to be able to run `docker run` without sudo, it’ll create a file on your host named “foo” *owned by root*. Why? Because inside the container, the `touch /dir/foo` command ran as root.\n
    \n
    Honestly, I’d be thrilled if Docker had ways to tell it to be smarter about that kind of thing. Something that could make Docker create the file on the host owned by your user rather than root even if inside the container, the command that creates the file runs under the user *in the Docker container* that is root/uid 1.\n
    \n
    But that’s not how it works. If root inside the container creates the file, the host sees it as owned by root, which makes things a little more of a pain. C’est la vie.\n
    \n
    Now, this is a bit of an aside, but it helped me understand so I’ll go ahead and include it. It seems impossible that a command run by your user (assuming you’ve got your groups set up correctly) shouldn’t be able to create a file owned by root, right? If without sudo you try to `chown root:root some_file.txt`, it’ll tell you permission denied. And it’s not the `chown` command that’s denying you permission. It’s the Linux kernel telling the `chown` command that that’s not allowed. So how can it be that the `docker run` command can create files owned by root when `docker run` wasn’t run by root, but rather by a more restricted user?\n
    \n
    Docker has a daemon (called `dockerd`) that by default runs all the time as root, waiting for the `docker` command to direct it to do something. The `docker run` command doesn’t actually *run* the container. It talks to the daemon which is running as root and tells the daemon to start a container. Since it’s the daemon actually running the container and the daemon is running as root, commands inside the container are able to create files owned by root even if the `docker run` command is run by your own user.\n
    \n
    If you’re wondering, yes this is a security concern. Consider a command like `docker run -it -v /etc:/dir/etc alpine vi /dir/etc/sensitive/file`. That command, theoretically, could for instance allow a non-root user to change the host’s root password.\n
    \n
    How do you get around that? Well, there are ways to go about running the Docker daemon as a non-root user that I haven’t really looked into.\n
    \n
    Another concern is if, for instance, you’ve got a web service running as root inside a Docker container with a bind volume to the host and the web app has, for instance, a shell injection vulnerability wherein a user could cause a command to run as root *inside* the docker container which could affect sensitive files *outside.* To mitigate that issue, you could either not bind mount to the host filesystem at all or run the web service in the Docker container as a different user.\n
    \n
    And there are several ways to go about running a process in Docker as a non-root user.\n
    \n
    First, some Docker images will already be configured to ensure that what is run inside the container runs as non-root. (When making a Docker image, you specify that by having a `USER` directive in the Dockerfile.) Usually if things are done that way, the user will also be present in the relevent files in `/etc` in the image. But as I mentioned earlier, that’s usually not the case for images on Docker Hub.\n
    \n
    Next, if you’re using `docker-compose`, there’s a “user” option for setting the user.\n
    \n
    Another way to do this is with the `-u` argument on the `docker run` command. Something like `docker run -u 1000 -it alpine /bin/sh` will give you a shell process owned by the user with id 1000.\n
    \n
    Another way is to create the user and su to that user as part of the command passed to `docker run`. I’ve been known sometimes to do things like:\n
    \n
    ```\n
    \n
    <span style="color:#323232;">docker run \n
    </span><span style="color:#323232;">\t-it \n
    </span><span style="color:#323232;">\talpine \n
    </span><span style="color:#323232;">\tsh -c 'adduser tootsweet ; su tootsweet -c /bin/sh'\n
    </span>\n
    ```\n
    \n
    The only other thing I can think to mention. Sometimes you want not just to run something in a Docker container not as root but in fact to run it as a user id that matches the user id of a particular user on the host. For instance so that files written to a bind volume end up being owned by the desired user so we can work with the files on the host. I honestly haven’t found the best way to deal with that. Mostly I’ve been dealing with that situation with the last method above. The `useradd` command allows you to add a user with a specific user id. But that’s problematic if the needed uid is already taken by a user in the container. So, so far I’ve kindof just been lucky on that score.\n
    \n
    Hopefully that all helps!\n
    \n
    Edit: P.S. apparently the way lemmy.world is set up, you can’t mention certain standard *nix file paths such as `/ e t c / p a s s w d` in posts. The post just isn’t accepted. The “reply” button grays out and the loading graphic spins forever with no error message and the post doesn’t get saved. I’m sure this is a misguided attempt at a security measure, but it definitely affects our ability to communicate about standard Linux kind of stuff.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1700689388 {#4530
    date: 2023-11-22 22:43:08.0 +01:00
  }
  +ip: null
  +tags: [
    "323232"
  ]
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
    "@PlutoniumAcid@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4534 …}
  +nested: Doctrine\ORM\PersistentCollection {#4536 …}
  +votes: Doctrine\ORM\PersistentCollection {#4538 …}
  +reports: Doctrine\ORM\PersistentCollection {#4540 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4542 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4544 …}
  -id: 152123
  -bodyTs: "'/bin/sh':927,982 '/dir':269 '/dir/etc':652 '/dir/etc/sensitive/file':655 '/dir/foo':273,312 '/etc':651,867 '/path/to/some/directory/on/your/host':268 '/usr/bin/docker':173 '1':377 '1000':924,940 'abil':1205 'abl':145,285,457,614 'accept':1165 'actual':233,571,598 'add':36,182,1088 'addus':977 'affect':759,1203 'ahead':431 'allow':507,662,1085 'alpin':653,926,974 'alreadi':816,1105 'also':198,859 'and/or':150 'anoth':705,904,941 'app':734 'appar':1131 'arch':105 'argument':913 'around':679 'asid':421 'assum':445 'attempt':1195 'back':65 'best':1063 'better':179 'bind':726,771,1037 'bit':138,418 'button':1168 'c':410,976,981,1151 'call':135,543 'case':881 'caus':746 'certain':1142 'chang':669 'chmod':170 'chown':472,487,501 'command':55,79,207,313,361,440,488,502,517,558,568,609,626,645,657,748,918,957,1084 'communic':1207 'complex':232 'compos':8,54,153,202,894 'concern':642,706 'configur':818 'consid':643 'contain':220,309,359,373,389,574,592,601,612,723,756,787,827,1003,1112 'correct':192,453 'could':35,165,339,659,745,758,768 'creat':294,342,363,390,459,519,616,945 'current':82 'd':247,319,1157 'daemon':542,579,588,597,604,691 'deal':1066,1073 'default':257,547 'definit':1202 'deni':481,491 'desir':1045 'differ':790 'direct':209,560,845 'distro':25,101,127,196 'docker':7,49,53,112,148,152,201,205,219,243,250,265,288,323,341,372,515,525,539,557,566,624,647,690,722,755,786,804,813,836,885,893,916,921,960,971,1002 'docker-compos':6,52,151,200,892 'dockerd':544 'dockerfil':848 'doesn':569,1184 'done':853 'e':1149 'earlier':875 'edit':1129 'effect':73 'either':769 'end':1039 'ensur':820 'equival':123 'error':1179 'est':411 'even':274,355,621 'fact':1009 'far':1115 'file':296,344,365,392,461,520,617,761,865,1033,1053,1145 'filesystem':776 'find':85 'first':811 'foo':301 'forev':1176 'found':1061 'get':248,678,1186 'give':929 'go':237,430,686,798 'got':278,448,713 'gpasswd':42 'graphic':1174 'gray':1169 'group':33,45,90,113,124,187,280,450 'hate':107 'haven':700,1059 'help':424,1128 'honest':317,1058 'hope':1125 'host':299,347,394,671,730,775,1028,1056 'hub':251,886 'id':939,1016,1021,1095 'imag':244,814,837,870,883 'imposs':437 'includ':433 'inject':740 'insert':106 'insid':217,307,357,387,610,720,753,825 'instanc':661,710,737,1030 'isn':1163 'issu':766 'kernel':498 'kind':334,1211 'kindof':1118 'known':965 'la':412 'last':1079 'lemmy.world':1134 'like':28,264,646,920,970 'linux':497,1210 'littl':231,405 'll':92,236,293,429,477 'load':1173 'log':62 'look':703 'lucki':1121 'm':1189 'magic':133 'make':47,70,215,225,340,402,834 'match':1018 'measur':1199 'mention':874,991,1141 'messag':1180 'method':1080 'might':59 'misguid':1194 'mitig':764 'most':1069 'mount':772 'name':87,131,300 'necessarili':214 'need':1102 'next':887 'nix':1144 'non':665,695,808,831 'non-root':664,694,807,830 'option':899 'otherwis':189 'outsid':762 'own':302,348,398,462,521,618,934,1042 'p':1152 'p.s':1130 'pain':409 'part':954 'particular':103,1024 'pass':958 'password':674 'path':1146 'permiss':480,493 'post':1159,1161,1183 'present':861 'probabl':93,178 'problemat':1099 'process':802,933 'proper':186 'python':271 'ran':77,314 'rather':352,533 're':635,890 'realli':702 'relev':864 'repli':1167 'requir':142 'research':98 'restrict':537 'right':465 'root':259,304,316,354,386,400,464,473,474,523,531,553,584,608,620,666,673,696,719,752,809,832,1006 'root/uid':376 'run':5,50,147,149,199,206,221,255,266,287,289,366,441,516,526,529,548,567,572,582,599,606,625,628,648,688,717,750,780,800,824,828,917,922,961,972,998,1011 'save':1187 'score':1124 'secur':641,1198 'see':395 'seem':436 'sensit':760 'servic':716,783 'session':83 'set':281,451,901,1136 'setup':17 'sever':795 'sh':975 'shell':739,932 'shouldn':139,454 'sinc':593 'situat':1076 'smarter':331 'some_file.txt':475 'someth':13,263,337,564,919,999 'sometim':966,992 'specif':19,22,1093 'specifi':839 'spin':1175 'standard':1143,1209 'start':590 'step':193 'stuff':1213 'su':949,979 'sudo':10,41,58,155,169,211,291,468 'suid':137 'sure':1190 'take':72,190 'taken':1106 'talk':576 'tell':327,478,499,586 'theoret':156,658 'thing':216,336,403,851,969,986 'think':110,989 'thrill':321 'time':551 'tootsweet':978,980 'touch':272,311 'tri':470 'u':171,912,923 'uid':1103 'understand':426 'unlik':120 'use':891 'user':32,38,44,224,351,369,444,538,632,667,697,744,791,810,844,857,898,903,937,947,952,1015,1020,1025,1046,1090,1094,1109 'useradd':1083 'usual':254,849,878 'v':267,650 've':76,277,447,712,963,1071,1117 'vi':654 'vie':413 'volum':727,1038 'vulner':741 'w':1156 'wait':554 'want':160,994 'wasn':527 'way':325,684,796,855,905,942,1064,1133 'web':715,733,782 'well':68,681 'whatev':253 'wherein':742 'without':9,57,154,210,290,467 'won':212 'wonder':636 'work':56,384,1050 'would':20 'written':1034 'wrong':14 'yes':637"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5510619"
  +editedAt: DateTimeImmutable @1701177039 {#4531
    date: 2023-11-28 14:10:39.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700689388 {#4532
    date: 2023-11-22 22:43:08.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4533
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4398
    +user: Proxies\__CG__\App\Entity\User {#4399 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4300
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: """
        Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
        \n
        Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
        \n
        Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
        \n
        Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
        \n
        But if that flag is set on nano, that’s pretty weird.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 14
      +score: 0
      +lastActive: DateTime @1701191441 {#4294
        date: 2023-11-28 18:10:41.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4301 …}
      +nested: Doctrine\ORM\PersistentCollection {#4303 …}
      +votes: Doctrine\ORM\PersistentCollection {#4305 …}
      +reports: Doctrine\ORM\PersistentCollection {#4307 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
      -id: 148880
      -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5487960"
      +editedAt: DateTimeImmutable @1701063149 {#4295
        date: 2023-11-27 06:32:29.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700606375 {#4296
        date: 2023-11-21 23:39:35.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Could I set that for Docker? I often forget to run docker-compose as sudo and it can’t be used without sudo, so it’s a bit silly to always have to prepend sudo there. This magical “s” you describe could solve that.\n
      \n
      And, of course, because I want to learn: why is this a really bad idea?
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700655443 {#4396
      date: 2023-11-22 13:17:23.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4400 …}
    +nested: Doctrine\ORM\PersistentCollection {#4402 …}
    +votes: Doctrine\ORM\PersistentCollection {#4404 …}
    +reports: Doctrine\ORM\PersistentCollection {#4406 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4408 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4410 …}
    -id: 150302
    -bodyTs: "'alway':32 'bad':59 'bit':29 'compos':14 'could':1,43 'cours':48 'describ':42 'docker':6,13 'docker-compos':12 'forget':9 'idea':60 'learn':53 'magic':39 'often':8 'prepend':35 'realli':58 'run':11 'set':3 'silli':30 'solv':44 'sudo':16,24,36 'use':22 'want':51 'without':23"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5498963"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700655443 {#4397
      date: 2023-11-22 13:17:23.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    If you can’t run `docker-compose` without `sudo`, there’s something wrong with your setup. The specifics would be specific to your distro, but most likely there’s a user group you could add your user to with `sudo gpasswd -a user group` to make the `docker run` and `docker-compose` commands work without `sudo`. (Might have to log out and back in as well to make it take effect if you’ve ran that command during the current session.) To find the name of the group, you’ll probably have to do some research about your distro in particular. On Arch (insert hate here ;) ), I think the `docker` group does that, and it’s not unlikely that the equivalent group for your distro has the same name.\n
    \n
    The “magical s” (called the “SUID bit”) shouldn’t be required to be able to run `docker run` and/or `docker-compose` without sudo. Theoretically if you *did* want to do that, you could do it with `sudo chmod u+s /usr/bin/docker`. But again it’s probably better to just add yourself to the proper group (or otherwise take the correct steps for your distro.)\n
    \n
    But also, running docker-compose (or the `docker run` command more directly) without sudo won’t necessarily make things *inside the docker container* run as your user. Making it do so is a little complex, actually, but I’ll go through it here.\n
    \n
    So, most Docker images that you’d get from Docker Hub or whatever usually run by default as root. If you do something like `docker run -v /path/to/some/directory/on/your/host:/dir -it python ‘touch /dir/foo’`, even if you’ve got your groups set up to be able to run `docker run` without sudo, it’ll create a file on your host named “foo” *owned by root*. Why? Because inside the container, the `touch /dir/foo` command ran as root.\n
    \n
    Honestly, I’d be thrilled if Docker had ways to tell it to be smarter about that kind of thing. Something that could make Docker create the file on the host owned by your user rather than root even if inside the container, the command that creates the file runs under the user *in the Docker container* that is root/uid 1.\n
    \n
    But that’s not how it works. If root inside the container creates the file, the host sees it as owned by root, which makes things a little more of a pain. C’est la vie.\n
    \n
    Now, this is a bit of an aside, but it helped me understand so I’ll go ahead and include it. It seems impossible that a command run by your user (assuming you’ve got your groups set up correctly) shouldn’t be able to create a file owned by root, right? If without sudo you try to `chown root:root some_file.txt`, it’ll tell you permission denied. And it’s not the `chown` command that’s denying you permission. It’s the Linux kernel telling the `chown` command that that’s not allowed. So how can it be that the `docker run` command can create files owned by root when `docker run` wasn’t run by root, but rather by a more restricted user?\n
    \n
    Docker has a daemon (called `dockerd`) that by default runs all the time as root, waiting for the `docker` command to direct it to do something. The `docker run` command doesn’t actually *run* the container. It talks to the daemon which is running as root and tells the daemon to start a container. Since it’s the daemon actually running the container and the daemon is running as root, commands inside the container are able to create files owned by root even if the `docker run` command is run by your own user.\n
    \n
    If you’re wondering, yes this is a security concern. Consider a command like `docker run -it -v /etc:/dir/etc alpine vi /dir/etc/sensitive/file`. That command, theoretically, could for instance allow a non-root user to change the host’s root password.\n
    \n
    How do you get around that? Well, there are ways to go about running the Docker daemon as a non-root user that I haven’t really looked into.\n
    \n
    Another concern is if, for instance, you’ve got a web service running as root inside a Docker container with a bind volume to the host and the web app has, for instance, a shell injection vulnerability wherein a user could cause a command to run as root *inside* the docker container which could affect sensitive files *outside.* To mitigate that issue, you could either not bind mount to the host filesystem at all or run the web service in the Docker container as a different user.\n
    \n
    And there are several ways to go about running a process in Docker as a non-root user.\n
    \n
    First, some Docker images will already be configured to ensure that what is run inside the container runs as non-root. (When making a Docker image, you specify that by having a `USER` directive in the Dockerfile.) Usually if things are done that way, the user will also be present in the relevent files in `/etc` in the image. But as I mentioned earlier, that’s usually not the case for images on Docker Hub.\n
    \n
    Next, if you’re using `docker-compose`, there’s a “user” option for setting the user.\n
    \n
    Another way to do this is with the `-u` argument on the `docker run` command. Something like `docker run -u 1000 -it alpine /bin/sh` will give you a shell process owned by the user with id 1000.\n
    \n
    Another way is to create the user and su to that user as part of the command passed to `docker run`. I’ve been known sometimes to do things like:\n
    \n
    ```\n
    \n
    <span style="color:#323232;">docker run \n
    </span><span style="color:#323232;">\t-it \n
    </span><span style="color:#323232;">\talpine \n
    </span><span style="color:#323232;">\tsh -c 'adduser tootsweet ; su tootsweet -c /bin/sh'\n
    </span>\n
    ```\n
    \n
    The only other thing I can think to mention. Sometimes you want not just to run something in a Docker container not as root but in fact to run it as a user id that matches the user id of a particular user on the host. For instance so that files written to a bind volume end up being owned by the desired user so we can work with the files on the host. I honestly haven’t found the best way to deal with that. Mostly I’ve been dealing with that situation with the last method above. The `useradd` command allows you to add a user with a specific user id. But that’s problematic if the needed uid is already taken by a user in the container. So, so far I’ve kindof just been lucky on that score.\n
    \n
    Hopefully that all helps!\n
    \n
    Edit: P.S. apparently the way lemmy.world is set up, you can’t mention certain standard *nix file paths such as `/ e t c / p a s s w d` in posts. The post just isn’t accepted. The “reply” button grays out and the loading graphic spins forever with no error message and the post doesn’t get saved. I’m sure this is a misguided attempt at a security measure, but it definitely affects our ability to communicate about standard Linux kind of stuff.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1700689388 {#4530
    date: 2023-11-22 22:43:08.0 +01:00
  }
  +ip: null
  +tags: [
    "323232"
  ]
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
    "@PlutoniumAcid@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4534 …}
  +nested: Doctrine\ORM\PersistentCollection {#4536 …}
  +votes: Doctrine\ORM\PersistentCollection {#4538 …}
  +reports: Doctrine\ORM\PersistentCollection {#4540 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4542 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4544 …}
  -id: 152123
  -bodyTs: "'/bin/sh':927,982 '/dir':269 '/dir/etc':652 '/dir/etc/sensitive/file':655 '/dir/foo':273,312 '/etc':651,867 '/path/to/some/directory/on/your/host':268 '/usr/bin/docker':173 '1':377 '1000':924,940 'abil':1205 'abl':145,285,457,614 'accept':1165 'actual':233,571,598 'add':36,182,1088 'addus':977 'affect':759,1203 'ahead':431 'allow':507,662,1085 'alpin':653,926,974 'alreadi':816,1105 'also':198,859 'and/or':150 'anoth':705,904,941 'app':734 'appar':1131 'arch':105 'argument':913 'around':679 'asid':421 'assum':445 'attempt':1195 'back':65 'best':1063 'better':179 'bind':726,771,1037 'bit':138,418 'button':1168 'c':410,976,981,1151 'call':135,543 'case':881 'caus':746 'certain':1142 'chang':669 'chmod':170 'chown':472,487,501 'command':55,79,207,313,361,440,488,502,517,558,568,609,626,645,657,748,918,957,1084 'communic':1207 'complex':232 'compos':8,54,153,202,894 'concern':642,706 'configur':818 'consid':643 'contain':220,309,359,373,389,574,592,601,612,723,756,787,827,1003,1112 'correct':192,453 'could':35,165,339,659,745,758,768 'creat':294,342,363,390,459,519,616,945 'current':82 'd':247,319,1157 'daemon':542,579,588,597,604,691 'deal':1066,1073 'default':257,547 'definit':1202 'deni':481,491 'desir':1045 'differ':790 'direct':209,560,845 'distro':25,101,127,196 'docker':7,49,53,112,148,152,201,205,219,243,250,265,288,323,341,372,515,525,539,557,566,624,647,690,722,755,786,804,813,836,885,893,916,921,960,971,1002 'docker-compos':6,52,151,200,892 'dockerd':544 'dockerfil':848 'doesn':569,1184 'done':853 'e':1149 'earlier':875 'edit':1129 'effect':73 'either':769 'end':1039 'ensur':820 'equival':123 'error':1179 'est':411 'even':274,355,621 'fact':1009 'far':1115 'file':296,344,365,392,461,520,617,761,865,1033,1053,1145 'filesystem':776 'find':85 'first':811 'foo':301 'forev':1176 'found':1061 'get':248,678,1186 'give':929 'go':237,430,686,798 'got':278,448,713 'gpasswd':42 'graphic':1174 'gray':1169 'group':33,45,90,113,124,187,280,450 'hate':107 'haven':700,1059 'help':424,1128 'honest':317,1058 'hope':1125 'host':299,347,394,671,730,775,1028,1056 'hub':251,886 'id':939,1016,1021,1095 'imag':244,814,837,870,883 'imposs':437 'includ':433 'inject':740 'insert':106 'insid':217,307,357,387,610,720,753,825 'instanc':661,710,737,1030 'isn':1163 'issu':766 'kernel':498 'kind':334,1211 'kindof':1118 'known':965 'la':412 'last':1079 'lemmy.world':1134 'like':28,264,646,920,970 'linux':497,1210 'littl':231,405 'll':92,236,293,429,477 'load':1173 'log':62 'look':703 'lucki':1121 'm':1189 'magic':133 'make':47,70,215,225,340,402,834 'match':1018 'measur':1199 'mention':874,991,1141 'messag':1180 'method':1080 'might':59 'misguid':1194 'mitig':764 'most':1069 'mount':772 'name':87,131,300 'necessarili':214 'need':1102 'next':887 'nix':1144 'non':665,695,808,831 'non-root':664,694,807,830 'option':899 'otherwis':189 'outsid':762 'own':302,348,398,462,521,618,934,1042 'p':1152 'p.s':1130 'pain':409 'part':954 'particular':103,1024 'pass':958 'password':674 'path':1146 'permiss':480,493 'post':1159,1161,1183 'present':861 'probabl':93,178 'problemat':1099 'process':802,933 'proper':186 'python':271 'ran':77,314 'rather':352,533 're':635,890 'realli':702 'relev':864 'repli':1167 'requir':142 'research':98 'restrict':537 'right':465 'root':259,304,316,354,386,400,464,473,474,523,531,553,584,608,620,666,673,696,719,752,809,832,1006 'root/uid':376 'run':5,50,147,149,199,206,221,255,266,287,289,366,441,516,526,529,548,567,572,582,599,606,625,628,648,688,717,750,780,800,824,828,917,922,961,972,998,1011 'save':1187 'score':1124 'secur':641,1198 'see':395 'seem':436 'sensit':760 'servic':716,783 'session':83 'set':281,451,901,1136 'setup':17 'sever':795 'sh':975 'shell':739,932 'shouldn':139,454 'sinc':593 'situat':1076 'smarter':331 'some_file.txt':475 'someth':13,263,337,564,919,999 'sometim':966,992 'specif':19,22,1093 'specifi':839 'spin':1175 'standard':1143,1209 'start':590 'step':193 'stuff':1213 'su':949,979 'sudo':10,41,58,155,169,211,291,468 'suid':137 'sure':1190 'take':72,190 'taken':1106 'talk':576 'tell':327,478,499,586 'theoret':156,658 'thing':216,336,403,851,969,986 'think':110,989 'thrill':321 'time':551 'tootsweet':978,980 'touch':272,311 'tri':470 'u':171,912,923 'uid':1103 'understand':426 'unlik':120 'use':891 'user':32,38,44,224,351,369,444,538,632,667,697,744,791,810,844,857,898,903,937,947,952,1015,1020,1025,1046,1090,1094,1109 'useradd':1083 'usual':254,849,878 'v':267,650 've':76,277,447,712,963,1071,1117 'vi':654 'vie':413 'volum':727,1038 'vulner':741 'w':1156 'wait':554 'want':160,994 'wasn':527 'way':325,684,796,855,905,942,1064,1133 'web':715,733,782 'well':68,681 'whatev':253 'wherein':742 'without':9,57,154,210,290,467 'won':212 'wonder':636 'work':56,384,1050 'would':20 'written':1034 'wrong':14 'yes':637"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5510619"
  +editedAt: DateTimeImmutable @1701177039 {#4531
    date: 2023-11-28 14:10:39.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700689388 {#4532
    date: 2023-11-22 22:43:08.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4533
  +user: App\Entity\User {#4313 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4398
    +user: Proxies\__CG__\App\Entity\User {#4399 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4300
      +user: App\Entity\User {#4313 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: null
      +root: null
      +body: """
        Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
        \n
        Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
        \n
        Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
        \n
        Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
        \n
        But if that flag is set on nano, that’s pretty weird.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 14
      +score: 0
      +lastActive: DateTime @1701191441 {#4294
        date: 2023-11-28 18:10:41.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4301 …}
      +nested: Doctrine\ORM\PersistentCollection {#4303 …}
      +votes: Doctrine\ORM\PersistentCollection {#4305 …}
      +reports: Doctrine\ORM\PersistentCollection {#4307 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
      -id: 148880
      -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5487960"
      +editedAt: DateTimeImmutable @1701063149 {#4295
        date: 2023-11-27 06:32:29.0 +01:00
      }
      +createdAt: DateTimeImmutable @1700606375 {#4296
        date: 2023-11-21 23:39:35.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      Could I set that for Docker? I often forget to run docker-compose as sudo and it can’t be used without sudo, so it’s a bit silly to always have to prepend sudo there. This magical “s” you describe could solve that.\n
      \n
      And, of course, because I want to learn: why is this a really bad idea?
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 0
    +score: 0
    +lastActive: DateTime @1700655443 {#4396
      date: 2023-11-22 13:17:23.0 +01:00
    }
    +ip: null
    +tags: null
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4400 …}
    +nested: Doctrine\ORM\PersistentCollection {#4402 …}
    +votes: Doctrine\ORM\PersistentCollection {#4404 …}
    +reports: Doctrine\ORM\PersistentCollection {#4406 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4408 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4410 …}
    -id: 150302
    -bodyTs: "'alway':32 'bad':59 'bit':29 'compos':14 'could':1,43 'cours':48 'describ':42 'docker':6,13 'docker-compos':12 'forget':9 'idea':60 'learn':53 'magic':39 'often':8 'prepend':35 'realli':58 'run':11 'set':3 'silli':30 'solv':44 'sudo':16,24,36 'use':22 'want':51 'without':23"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5498963"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700655443 {#4397
      date: 2023-11-22 13:17:23.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: """
    If you can’t run `docker-compose` without `sudo`, there’s something wrong with your setup. The specifics would be specific to your distro, but most likely there’s a user group you could add your user to with `sudo gpasswd -a user group` to make the `docker run` and `docker-compose` commands work without `sudo`. (Might have to log out and back in as well to make it take effect if you’ve ran that command during the current session.) To find the name of the group, you’ll probably have to do some research about your distro in particular. On Arch (insert hate here ;) ), I think the `docker` group does that, and it’s not unlikely that the equivalent group for your distro has the same name.\n
    \n
    The “magical s” (called the “SUID bit”) shouldn’t be required to be able to run `docker run` and/or `docker-compose` without sudo. Theoretically if you *did* want to do that, you could do it with `sudo chmod u+s /usr/bin/docker`. But again it’s probably better to just add yourself to the proper group (or otherwise take the correct steps for your distro.)\n
    \n
    But also, running docker-compose (or the `docker run` command more directly) without sudo won’t necessarily make things *inside the docker container* run as your user. Making it do so is a little complex, actually, but I’ll go through it here.\n
    \n
    So, most Docker images that you’d get from Docker Hub or whatever usually run by default as root. If you do something like `docker run -v /path/to/some/directory/on/your/host:/dir -it python ‘touch /dir/foo’`, even if you’ve got your groups set up to be able to run `docker run` without sudo, it’ll create a file on your host named “foo” *owned by root*. Why? Because inside the container, the `touch /dir/foo` command ran as root.\n
    \n
    Honestly, I’d be thrilled if Docker had ways to tell it to be smarter about that kind of thing. Something that could make Docker create the file on the host owned by your user rather than root even if inside the container, the command that creates the file runs under the user *in the Docker container* that is root/uid 1.\n
    \n
    But that’s not how it works. If root inside the container creates the file, the host sees it as owned by root, which makes things a little more of a pain. C’est la vie.\n
    \n
    Now, this is a bit of an aside, but it helped me understand so I’ll go ahead and include it. It seems impossible that a command run by your user (assuming you’ve got your groups set up correctly) shouldn’t be able to create a file owned by root, right? If without sudo you try to `chown root:root some_file.txt`, it’ll tell you permission denied. And it’s not the `chown` command that’s denying you permission. It’s the Linux kernel telling the `chown` command that that’s not allowed. So how can it be that the `docker run` command can create files owned by root when `docker run` wasn’t run by root, but rather by a more restricted user?\n
    \n
    Docker has a daemon (called `dockerd`) that by default runs all the time as root, waiting for the `docker` command to direct it to do something. The `docker run` command doesn’t actually *run* the container. It talks to the daemon which is running as root and tells the daemon to start a container. Since it’s the daemon actually running the container and the daemon is running as root, commands inside the container are able to create files owned by root even if the `docker run` command is run by your own user.\n
    \n
    If you’re wondering, yes this is a security concern. Consider a command like `docker run -it -v /etc:/dir/etc alpine vi /dir/etc/sensitive/file`. That command, theoretically, could for instance allow a non-root user to change the host’s root password.\n
    \n
    How do you get around that? Well, there are ways to go about running the Docker daemon as a non-root user that I haven’t really looked into.\n
    \n
    Another concern is if, for instance, you’ve got a web service running as root inside a Docker container with a bind volume to the host and the web app has, for instance, a shell injection vulnerability wherein a user could cause a command to run as root *inside* the docker container which could affect sensitive files *outside.* To mitigate that issue, you could either not bind mount to the host filesystem at all or run the web service in the Docker container as a different user.\n
    \n
    And there are several ways to go about running a process in Docker as a non-root user.\n
    \n
    First, some Docker images will already be configured to ensure that what is run inside the container runs as non-root. (When making a Docker image, you specify that by having a `USER` directive in the Dockerfile.) Usually if things are done that way, the user will also be present in the relevent files in `/etc` in the image. But as I mentioned earlier, that’s usually not the case for images on Docker Hub.\n
    \n
    Next, if you’re using `docker-compose`, there’s a “user” option for setting the user.\n
    \n
    Another way to do this is with the `-u` argument on the `docker run` command. Something like `docker run -u 1000 -it alpine /bin/sh` will give you a shell process owned by the user with id 1000.\n
    \n
    Another way is to create the user and su to that user as part of the command passed to `docker run`. I’ve been known sometimes to do things like:\n
    \n
    ```\n
    \n
    <span style="color:#323232;">docker run \n
    </span><span style="color:#323232;">\t-it \n
    </span><span style="color:#323232;">\talpine \n
    </span><span style="color:#323232;">\tsh -c 'adduser tootsweet ; su tootsweet -c /bin/sh'\n
    </span>\n
    ```\n
    \n
    The only other thing I can think to mention. Sometimes you want not just to run something in a Docker container not as root but in fact to run it as a user id that matches the user id of a particular user on the host. For instance so that files written to a bind volume end up being owned by the desired user so we can work with the files on the host. I honestly haven’t found the best way to deal with that. Mostly I’ve been dealing with that situation with the last method above. The `useradd` command allows you to add a user with a specific user id. But that’s problematic if the needed uid is already taken by a user in the container. So, so far I’ve kindof just been lucky on that score.\n
    \n
    Hopefully that all helps!\n
    \n
    Edit: P.S. apparently the way lemmy.world is set up, you can’t mention certain standard *nix file paths such as `/ e t c / p a s s w d` in posts. The post just isn’t accepted. The “reply” button grays out and the loading graphic spins forever with no error message and the post doesn’t get saved. I’m sure this is a misguided attempt at a security measure, but it definitely affects our ability to communicate about standard Linux kind of stuff.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 1
  +score: 0
  +lastActive: DateTime @1700689388 {#4530
    date: 2023-11-22 22:43:08.0 +01:00
  }
  +ip: null
  +tags: [
    "323232"
  ]
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
    "@PlutoniumAcid@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4534 …}
  +nested: Doctrine\ORM\PersistentCollection {#4536 …}
  +votes: Doctrine\ORM\PersistentCollection {#4538 …}
  +reports: Doctrine\ORM\PersistentCollection {#4540 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4542 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4544 …}
  -id: 152123
  -bodyTs: "'/bin/sh':927,982 '/dir':269 '/dir/etc':652 '/dir/etc/sensitive/file':655 '/dir/foo':273,312 '/etc':651,867 '/path/to/some/directory/on/your/host':268 '/usr/bin/docker':173 '1':377 '1000':924,940 'abil':1205 'abl':145,285,457,614 'accept':1165 'actual':233,571,598 'add':36,182,1088 'addus':977 'affect':759,1203 'ahead':431 'allow':507,662,1085 'alpin':653,926,974 'alreadi':816,1105 'also':198,859 'and/or':150 'anoth':705,904,941 'app':734 'appar':1131 'arch':105 'argument':913 'around':679 'asid':421 'assum':445 'attempt':1195 'back':65 'best':1063 'better':179 'bind':726,771,1037 'bit':138,418 'button':1168 'c':410,976,981,1151 'call':135,543 'case':881 'caus':746 'certain':1142 'chang':669 'chmod':170 'chown':472,487,501 'command':55,79,207,313,361,440,488,502,517,558,568,609,626,645,657,748,918,957,1084 'communic':1207 'complex':232 'compos':8,54,153,202,894 'concern':642,706 'configur':818 'consid':643 'contain':220,309,359,373,389,574,592,601,612,723,756,787,827,1003,1112 'correct':192,453 'could':35,165,339,659,745,758,768 'creat':294,342,363,390,459,519,616,945 'current':82 'd':247,319,1157 'daemon':542,579,588,597,604,691 'deal':1066,1073 'default':257,547 'definit':1202 'deni':481,491 'desir':1045 'differ':790 'direct':209,560,845 'distro':25,101,127,196 'docker':7,49,53,112,148,152,201,205,219,243,250,265,288,323,341,372,515,525,539,557,566,624,647,690,722,755,786,804,813,836,885,893,916,921,960,971,1002 'docker-compos':6,52,151,200,892 'dockerd':544 'dockerfil':848 'doesn':569,1184 'done':853 'e':1149 'earlier':875 'edit':1129 'effect':73 'either':769 'end':1039 'ensur':820 'equival':123 'error':1179 'est':411 'even':274,355,621 'fact':1009 'far':1115 'file':296,344,365,392,461,520,617,761,865,1033,1053,1145 'filesystem':776 'find':85 'first':811 'foo':301 'forev':1176 'found':1061 'get':248,678,1186 'give':929 'go':237,430,686,798 'got':278,448,713 'gpasswd':42 'graphic':1174 'gray':1169 'group':33,45,90,113,124,187,280,450 'hate':107 'haven':700,1059 'help':424,1128 'honest':317,1058 'hope':1125 'host':299,347,394,671,730,775,1028,1056 'hub':251,886 'id':939,1016,1021,1095 'imag':244,814,837,870,883 'imposs':437 'includ':433 'inject':740 'insert':106 'insid':217,307,357,387,610,720,753,825 'instanc':661,710,737,1030 'isn':1163 'issu':766 'kernel':498 'kind':334,1211 'kindof':1118 'known':965 'la':412 'last':1079 'lemmy.world':1134 'like':28,264,646,920,970 'linux':497,1210 'littl':231,405 'll':92,236,293,429,477 'load':1173 'log':62 'look':703 'lucki':1121 'm':1189 'magic':133 'make':47,70,215,225,340,402,834 'match':1018 'measur':1199 'mention':874,991,1141 'messag':1180 'method':1080 'might':59 'misguid':1194 'mitig':764 'most':1069 'mount':772 'name':87,131,300 'necessarili':214 'need':1102 'next':887 'nix':1144 'non':665,695,808,831 'non-root':664,694,807,830 'option':899 'otherwis':189 'outsid':762 'own':302,348,398,462,521,618,934,1042 'p':1152 'p.s':1130 'pain':409 'part':954 'particular':103,1024 'pass':958 'password':674 'path':1146 'permiss':480,493 'post':1159,1161,1183 'present':861 'probabl':93,178 'problemat':1099 'process':802,933 'proper':186 'python':271 'ran':77,314 'rather':352,533 're':635,890 'realli':702 'relev':864 'repli':1167 'requir':142 'research':98 'restrict':537 'right':465 'root':259,304,316,354,386,400,464,473,474,523,531,553,584,608,620,666,673,696,719,752,809,832,1006 'root/uid':376 'run':5,50,147,149,199,206,221,255,266,287,289,366,441,516,526,529,548,567,572,582,599,606,625,628,648,688,717,750,780,800,824,828,917,922,961,972,998,1011 'save':1187 'score':1124 'secur':641,1198 'see':395 'seem':436 'sensit':760 'servic':716,783 'session':83 'set':281,451,901,1136 'setup':17 'sever':795 'sh':975 'shell':739,932 'shouldn':139,454 'sinc':593 'situat':1076 'smarter':331 'some_file.txt':475 'someth':13,263,337,564,919,999 'sometim':966,992 'specif':19,22,1093 'specifi':839 'spin':1175 'standard':1143,1209 'start':590 'step':193 'stuff':1213 'su':949,979 'sudo':10,41,58,155,169,211,291,468 'suid':137 'sure':1190 'take':72,190 'taken':1106 'talk':576 'tell':327,478,499,586 'theoret':156,658 'thing':216,336,403,851,969,986 'think':110,989 'thrill':321 'time':551 'tootsweet':978,980 'touch':272,311 'tri':470 'u':171,912,923 'uid':1103 'understand':426 'unlik':120 'use':891 'user':32,38,44,224,351,369,444,538,632,667,697,744,791,810,844,857,898,903,937,947,952,1015,1020,1025,1046,1090,1094,1109 'useradd':1083 'usual':254,849,878 'v':267,650 've':76,277,447,712,963,1071,1117 'vi':654 'vie':413 'volum':727,1038 'vulner':741 'w':1156 'wait':554 'want':160,994 'wasn':527 'way':325,684,796,855,905,942,1064,1133 'web':715,733,782 'well':68,681 'whatev':253 'wherein':742 'without':9,57,154,210,290,467 'won':212 'wonder':636 'work':56,384,1050 'would':20 'written':1034 'wrong':14 'yes':637"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.world/comment/5510619"
  +editedAt: DateTimeImmutable @1701177039 {#4531
    date: 2023-11-28 14:10:39.0 +01:00
  }
  +createdAt: DateTimeImmutable @1700689388 {#4532
    date: 2023-11-22 22:43:08.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
null
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4586
  +user: Proxies\__CG__\App\Entity\User {#4587 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4533
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4398
      +user: Proxies\__CG__\App\Entity\User {#4399 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4300
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: null
        +root: null
        +body: """
          Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
          \n
          Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
          \n
          Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
          \n
          Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
          \n
          But if that flag is set on nano, that’s pretty weird.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 14
        +score: 0
        +lastActive: DateTime @1701191441 {#4294
          date: 2023-11-28 18:10:41.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4301 …}
        +nested: Doctrine\ORM\PersistentCollection {#4303 …}
        +votes: Doctrine\ORM\PersistentCollection {#4305 …}
        +reports: Doctrine\ORM\PersistentCollection {#4307 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
        -id: 148880
        -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5487960"
        +editedAt: DateTimeImmutable @1701063149 {#4295
          date: 2023-11-27 06:32:29.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700606375 {#4296
          date: 2023-11-21 23:39:35.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Could I set that for Docker? I often forget to run docker-compose as sudo and it can’t be used without sudo, so it’s a bit silly to always have to prepend sudo there. This magical “s” you describe could solve that.\n
        \n
        And, of course, because I want to learn: why is this a really bad idea?
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700655443 {#4396
        date: 2023-11-22 13:17:23.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4400 …}
      +nested: Doctrine\ORM\PersistentCollection {#4402 …}
      +votes: Doctrine\ORM\PersistentCollection {#4404 …}
      +reports: Doctrine\ORM\PersistentCollection {#4406 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4408 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4410 …}
      -id: 150302
      -bodyTs: "'alway':32 'bad':59 'bit':29 'compos':14 'could':1,43 'cours':48 'describ':42 'docker':6,13 'docker-compos':12 'forget':9 'idea':60 'learn':53 'magic':39 'often':8 'prepend':35 'realli':58 'run':11 'set':3 'silli':30 'solv':44 'sudo':16,24,36 'use':22 'want':51 'without':23"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5498963"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700655443 {#4397
        date: 2023-11-22 13:17:23.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      If you can’t run `docker-compose` without `sudo`, there’s something wrong with your setup. The specifics would be specific to your distro, but most likely there’s a user group you could add your user to with `sudo gpasswd -a user group` to make the `docker run` and `docker-compose` commands work without `sudo`. (Might have to log out and back in as well to make it take effect if you’ve ran that command during the current session.) To find the name of the group, you’ll probably have to do some research about your distro in particular. On Arch (insert hate here ;) ), I think the `docker` group does that, and it’s not unlikely that the equivalent group for your distro has the same name.\n
      \n
      The “magical s” (called the “SUID bit”) shouldn’t be required to be able to run `docker run` and/or `docker-compose` without sudo. Theoretically if you *did* want to do that, you could do it with `sudo chmod u+s /usr/bin/docker`. But again it’s probably better to just add yourself to the proper group (or otherwise take the correct steps for your distro.)\n
      \n
      But also, running docker-compose (or the `docker run` command more directly) without sudo won’t necessarily make things *inside the docker container* run as your user. Making it do so is a little complex, actually, but I’ll go through it here.\n
      \n
      So, most Docker images that you’d get from Docker Hub or whatever usually run by default as root. If you do something like `docker run -v /path/to/some/directory/on/your/host:/dir -it python ‘touch /dir/foo’`, even if you’ve got your groups set up to be able to run `docker run` without sudo, it’ll create a file on your host named “foo” *owned by root*. Why? Because inside the container, the `touch /dir/foo` command ran as root.\n
      \n
      Honestly, I’d be thrilled if Docker had ways to tell it to be smarter about that kind of thing. Something that could make Docker create the file on the host owned by your user rather than root even if inside the container, the command that creates the file runs under the user *in the Docker container* that is root/uid 1.\n
      \n
      But that’s not how it works. If root inside the container creates the file, the host sees it as owned by root, which makes things a little more of a pain. C’est la vie.\n
      \n
      Now, this is a bit of an aside, but it helped me understand so I’ll go ahead and include it. It seems impossible that a command run by your user (assuming you’ve got your groups set up correctly) shouldn’t be able to create a file owned by root, right? If without sudo you try to `chown root:root some_file.txt`, it’ll tell you permission denied. And it’s not the `chown` command that’s denying you permission. It’s the Linux kernel telling the `chown` command that that’s not allowed. So how can it be that the `docker run` command can create files owned by root when `docker run` wasn’t run by root, but rather by a more restricted user?\n
      \n
      Docker has a daemon (called `dockerd`) that by default runs all the time as root, waiting for the `docker` command to direct it to do something. The `docker run` command doesn’t actually *run* the container. It talks to the daemon which is running as root and tells the daemon to start a container. Since it’s the daemon actually running the container and the daemon is running as root, commands inside the container are able to create files owned by root even if the `docker run` command is run by your own user.\n
      \n
      If you’re wondering, yes this is a security concern. Consider a command like `docker run -it -v /etc:/dir/etc alpine vi /dir/etc/sensitive/file`. That command, theoretically, could for instance allow a non-root user to change the host’s root password.\n
      \n
      How do you get around that? Well, there are ways to go about running the Docker daemon as a non-root user that I haven’t really looked into.\n
      \n
      Another concern is if, for instance, you’ve got a web service running as root inside a Docker container with a bind volume to the host and the web app has, for instance, a shell injection vulnerability wherein a user could cause a command to run as root *inside* the docker container which could affect sensitive files *outside.* To mitigate that issue, you could either not bind mount to the host filesystem at all or run the web service in the Docker container as a different user.\n
      \n
      And there are several ways to go about running a process in Docker as a non-root user.\n
      \n
      First, some Docker images will already be configured to ensure that what is run inside the container runs as non-root. (When making a Docker image, you specify that by having a `USER` directive in the Dockerfile.) Usually if things are done that way, the user will also be present in the relevent files in `/etc` in the image. But as I mentioned earlier, that’s usually not the case for images on Docker Hub.\n
      \n
      Next, if you’re using `docker-compose`, there’s a “user” option for setting the user.\n
      \n
      Another way to do this is with the `-u` argument on the `docker run` command. Something like `docker run -u 1000 -it alpine /bin/sh` will give you a shell process owned by the user with id 1000.\n
      \n
      Another way is to create the user and su to that user as part of the command passed to `docker run`. I’ve been known sometimes to do things like:\n
      \n
      ```\n
      \n
      <span style="color:#323232;">docker run \n
      </span><span style="color:#323232;">\t-it \n
      </span><span style="color:#323232;">\talpine \n
      </span><span style="color:#323232;">\tsh -c 'adduser tootsweet ; su tootsweet -c /bin/sh'\n
      </span>\n
      ```\n
      \n
      The only other thing I can think to mention. Sometimes you want not just to run something in a Docker container not as root but in fact to run it as a user id that matches the user id of a particular user on the host. For instance so that files written to a bind volume end up being owned by the desired user so we can work with the files on the host. I honestly haven’t found the best way to deal with that. Mostly I’ve been dealing with that situation with the last method above. The `useradd` command allows you to add a user with a specific user id. But that’s problematic if the needed uid is already taken by a user in the container. So, so far I’ve kindof just been lucky on that score.\n
      \n
      Hopefully that all helps!\n
      \n
      Edit: P.S. apparently the way lemmy.world is set up, you can’t mention certain standard *nix file paths such as `/ e t c / p a s s w d` in posts. The post just isn’t accepted. The “reply” button grays out and the loading graphic spins forever with no error message and the post doesn’t get saved. I’m sure this is a misguided attempt at a security measure, but it definitely affects our ability to communicate about standard Linux kind of stuff.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 1
    +score: 0
    +lastActive: DateTime @1700689388 {#4530
      date: 2023-11-22 22:43:08.0 +01:00
    }
    +ip: null
    +tags: [
      "323232"
    ]
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
      "@PlutoniumAcid@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4534 …}
    +nested: Doctrine\ORM\PersistentCollection {#4536 …}
    +votes: Doctrine\ORM\PersistentCollection {#4538 …}
    +reports: Doctrine\ORM\PersistentCollection {#4540 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4542 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4544 …}
    -id: 152123
    -bodyTs: "'/bin/sh':927,982 '/dir':269 '/dir/etc':652 '/dir/etc/sensitive/file':655 '/dir/foo':273,312 '/etc':651,867 '/path/to/some/directory/on/your/host':268 '/usr/bin/docker':173 '1':377 '1000':924,940 'abil':1205 'abl':145,285,457,614 'accept':1165 'actual':233,571,598 'add':36,182,1088 'addus':977 'affect':759,1203 'ahead':431 'allow':507,662,1085 'alpin':653,926,974 'alreadi':816,1105 'also':198,859 'and/or':150 'anoth':705,904,941 'app':734 'appar':1131 'arch':105 'argument':913 'around':679 'asid':421 'assum':445 'attempt':1195 'back':65 'best':1063 'better':179 'bind':726,771,1037 'bit':138,418 'button':1168 'c':410,976,981,1151 'call':135,543 'case':881 'caus':746 'certain':1142 'chang':669 'chmod':170 'chown':472,487,501 'command':55,79,207,313,361,440,488,502,517,558,568,609,626,645,657,748,918,957,1084 'communic':1207 'complex':232 'compos':8,54,153,202,894 'concern':642,706 'configur':818 'consid':643 'contain':220,309,359,373,389,574,592,601,612,723,756,787,827,1003,1112 'correct':192,453 'could':35,165,339,659,745,758,768 'creat':294,342,363,390,459,519,616,945 'current':82 'd':247,319,1157 'daemon':542,579,588,597,604,691 'deal':1066,1073 'default':257,547 'definit':1202 'deni':481,491 'desir':1045 'differ':790 'direct':209,560,845 'distro':25,101,127,196 'docker':7,49,53,112,148,152,201,205,219,243,250,265,288,323,341,372,515,525,539,557,566,624,647,690,722,755,786,804,813,836,885,893,916,921,960,971,1002 'docker-compos':6,52,151,200,892 'dockerd':544 'dockerfil':848 'doesn':569,1184 'done':853 'e':1149 'earlier':875 'edit':1129 'effect':73 'either':769 'end':1039 'ensur':820 'equival':123 'error':1179 'est':411 'even':274,355,621 'fact':1009 'far':1115 'file':296,344,365,392,461,520,617,761,865,1033,1053,1145 'filesystem':776 'find':85 'first':811 'foo':301 'forev':1176 'found':1061 'get':248,678,1186 'give':929 'go':237,430,686,798 'got':278,448,713 'gpasswd':42 'graphic':1174 'gray':1169 'group':33,45,90,113,124,187,280,450 'hate':107 'haven':700,1059 'help':424,1128 'honest':317,1058 'hope':1125 'host':299,347,394,671,730,775,1028,1056 'hub':251,886 'id':939,1016,1021,1095 'imag':244,814,837,870,883 'imposs':437 'includ':433 'inject':740 'insert':106 'insid':217,307,357,387,610,720,753,825 'instanc':661,710,737,1030 'isn':1163 'issu':766 'kernel':498 'kind':334,1211 'kindof':1118 'known':965 'la':412 'last':1079 'lemmy.world':1134 'like':28,264,646,920,970 'linux':497,1210 'littl':231,405 'll':92,236,293,429,477 'load':1173 'log':62 'look':703 'lucki':1121 'm':1189 'magic':133 'make':47,70,215,225,340,402,834 'match':1018 'measur':1199 'mention':874,991,1141 'messag':1180 'method':1080 'might':59 'misguid':1194 'mitig':764 'most':1069 'mount':772 'name':87,131,300 'necessarili':214 'need':1102 'next':887 'nix':1144 'non':665,695,808,831 'non-root':664,694,807,830 'option':899 'otherwis':189 'outsid':762 'own':302,348,398,462,521,618,934,1042 'p':1152 'p.s':1130 'pain':409 'part':954 'particular':103,1024 'pass':958 'password':674 'path':1146 'permiss':480,493 'post':1159,1161,1183 'present':861 'probabl':93,178 'problemat':1099 'process':802,933 'proper':186 'python':271 'ran':77,314 'rather':352,533 're':635,890 'realli':702 'relev':864 'repli':1167 'requir':142 'research':98 'restrict':537 'right':465 'root':259,304,316,354,386,400,464,473,474,523,531,553,584,608,620,666,673,696,719,752,809,832,1006 'root/uid':376 'run':5,50,147,149,199,206,221,255,266,287,289,366,441,516,526,529,548,567,572,582,599,606,625,628,648,688,717,750,780,800,824,828,917,922,961,972,998,1011 'save':1187 'score':1124 'secur':641,1198 'see':395 'seem':436 'sensit':760 'servic':716,783 'session':83 'set':281,451,901,1136 'setup':17 'sever':795 'sh':975 'shell':739,932 'shouldn':139,454 'sinc':593 'situat':1076 'smarter':331 'some_file.txt':475 'someth':13,263,337,564,919,999 'sometim':966,992 'specif':19,22,1093 'specifi':839 'spin':1175 'standard':1143,1209 'start':590 'step':193 'stuff':1213 'su':949,979 'sudo':10,41,58,155,169,211,291,468 'suid':137 'sure':1190 'take':72,190 'taken':1106 'talk':576 'tell':327,478,499,586 'theoret':156,658 'thing':216,336,403,851,969,986 'think':110,989 'thrill':321 'time':551 'tootsweet':978,980 'touch':272,311 'tri':470 'u':171,912,923 'uid':1103 'understand':426 'unlik':120 'use':891 'user':32,38,44,224,351,369,444,538,632,667,697,744,791,810,844,857,898,903,937,947,952,1015,1020,1025,1046,1090,1094,1109 'useradd':1083 'usual':254,849,878 'v':267,650 've':76,277,447,712,963,1071,1117 'vi':654 'vie':413 'volum':727,1038 'vulner':741 'w':1156 'wait':554 'want':160,994 'wasn':527 'way':325,684,796,855,905,942,1064,1133 'web':715,733,782 'well':68,681 'whatev':253 'wherein':742 'without':9,57,154,210,290,467 'won':212 'wonder':636 'work':56,384,1050 'would':20 'written':1034 'wrong':14 'yes':637"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5510619"
    +editedAt: DateTimeImmutable @1701177039 {#4531
      date: 2023-11-28 14:10:39.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700689388 {#4532
      date: 2023-11-22 22:43:08.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "very detailed answer. thanks for taking time to write it."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700701501 {#4584
    date: 2023-11-23 02:05:01.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
    "@PlutoniumAcid@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4588 …}
  +nested: Doctrine\ORM\PersistentCollection {#4590 …}
  +votes: Doctrine\ORM\PersistentCollection {#4592 …}
  +reports: Doctrine\ORM\PersistentCollection {#4594 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4596 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4598 …}
  -id: 152801
  -bodyTs: "'answer':3 'detail':2 'take':6 'thank':4 'time':7 'write':9"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5097718"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700701501 {#4585
    date: 2023-11-23 02:05:01.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4586
  +user: Proxies\__CG__\App\Entity\User {#4587 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4533
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4398
      +user: Proxies\__CG__\App\Entity\User {#4399 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4300
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: null
        +root: null
        +body: """
          Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
          \n
          Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
          \n
          Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
          \n
          Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
          \n
          But if that flag is set on nano, that’s pretty weird.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 14
        +score: 0
        +lastActive: DateTime @1701191441 {#4294
          date: 2023-11-28 18:10:41.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4301 …}
        +nested: Doctrine\ORM\PersistentCollection {#4303 …}
        +votes: Doctrine\ORM\PersistentCollection {#4305 …}
        +reports: Doctrine\ORM\PersistentCollection {#4307 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
        -id: 148880
        -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5487960"
        +editedAt: DateTimeImmutable @1701063149 {#4295
          date: 2023-11-27 06:32:29.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700606375 {#4296
          date: 2023-11-21 23:39:35.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Could I set that for Docker? I often forget to run docker-compose as sudo and it can’t be used without sudo, so it’s a bit silly to always have to prepend sudo there. This magical “s” you describe could solve that.\n
        \n
        And, of course, because I want to learn: why is this a really bad idea?
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700655443 {#4396
        date: 2023-11-22 13:17:23.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4400 …}
      +nested: Doctrine\ORM\PersistentCollection {#4402 …}
      +votes: Doctrine\ORM\PersistentCollection {#4404 …}
      +reports: Doctrine\ORM\PersistentCollection {#4406 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4408 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4410 …}
      -id: 150302
      -bodyTs: "'alway':32 'bad':59 'bit':29 'compos':14 'could':1,43 'cours':48 'describ':42 'docker':6,13 'docker-compos':12 'forget':9 'idea':60 'learn':53 'magic':39 'often':8 'prepend':35 'realli':58 'run':11 'set':3 'silli':30 'solv':44 'sudo':16,24,36 'use':22 'want':51 'without':23"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5498963"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700655443 {#4397
        date: 2023-11-22 13:17:23.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      If you can’t run `docker-compose` without `sudo`, there’s something wrong with your setup. The specifics would be specific to your distro, but most likely there’s a user group you could add your user to with `sudo gpasswd -a user group` to make the `docker run` and `docker-compose` commands work without `sudo`. (Might have to log out and back in as well to make it take effect if you’ve ran that command during the current session.) To find the name of the group, you’ll probably have to do some research about your distro in particular. On Arch (insert hate here ;) ), I think the `docker` group does that, and it’s not unlikely that the equivalent group for your distro has the same name.\n
      \n
      The “magical s” (called the “SUID bit”) shouldn’t be required to be able to run `docker run` and/or `docker-compose` without sudo. Theoretically if you *did* want to do that, you could do it with `sudo chmod u+s /usr/bin/docker`. But again it’s probably better to just add yourself to the proper group (or otherwise take the correct steps for your distro.)\n
      \n
      But also, running docker-compose (or the `docker run` command more directly) without sudo won’t necessarily make things *inside the docker container* run as your user. Making it do so is a little complex, actually, but I’ll go through it here.\n
      \n
      So, most Docker images that you’d get from Docker Hub or whatever usually run by default as root. If you do something like `docker run -v /path/to/some/directory/on/your/host:/dir -it python ‘touch /dir/foo’`, even if you’ve got your groups set up to be able to run `docker run` without sudo, it’ll create a file on your host named “foo” *owned by root*. Why? Because inside the container, the `touch /dir/foo` command ran as root.\n
      \n
      Honestly, I’d be thrilled if Docker had ways to tell it to be smarter about that kind of thing. Something that could make Docker create the file on the host owned by your user rather than root even if inside the container, the command that creates the file runs under the user *in the Docker container* that is root/uid 1.\n
      \n
      But that’s not how it works. If root inside the container creates the file, the host sees it as owned by root, which makes things a little more of a pain. C’est la vie.\n
      \n
      Now, this is a bit of an aside, but it helped me understand so I’ll go ahead and include it. It seems impossible that a command run by your user (assuming you’ve got your groups set up correctly) shouldn’t be able to create a file owned by root, right? If without sudo you try to `chown root:root some_file.txt`, it’ll tell you permission denied. And it’s not the `chown` command that’s denying you permission. It’s the Linux kernel telling the `chown` command that that’s not allowed. So how can it be that the `docker run` command can create files owned by root when `docker run` wasn’t run by root, but rather by a more restricted user?\n
      \n
      Docker has a daemon (called `dockerd`) that by default runs all the time as root, waiting for the `docker` command to direct it to do something. The `docker run` command doesn’t actually *run* the container. It talks to the daemon which is running as root and tells the daemon to start a container. Since it’s the daemon actually running the container and the daemon is running as root, commands inside the container are able to create files owned by root even if the `docker run` command is run by your own user.\n
      \n
      If you’re wondering, yes this is a security concern. Consider a command like `docker run -it -v /etc:/dir/etc alpine vi /dir/etc/sensitive/file`. That command, theoretically, could for instance allow a non-root user to change the host’s root password.\n
      \n
      How do you get around that? Well, there are ways to go about running the Docker daemon as a non-root user that I haven’t really looked into.\n
      \n
      Another concern is if, for instance, you’ve got a web service running as root inside a Docker container with a bind volume to the host and the web app has, for instance, a shell injection vulnerability wherein a user could cause a command to run as root *inside* the docker container which could affect sensitive files *outside.* To mitigate that issue, you could either not bind mount to the host filesystem at all or run the web service in the Docker container as a different user.\n
      \n
      And there are several ways to go about running a process in Docker as a non-root user.\n
      \n
      First, some Docker images will already be configured to ensure that what is run inside the container runs as non-root. (When making a Docker image, you specify that by having a `USER` directive in the Dockerfile.) Usually if things are done that way, the user will also be present in the relevent files in `/etc` in the image. But as I mentioned earlier, that’s usually not the case for images on Docker Hub.\n
      \n
      Next, if you’re using `docker-compose`, there’s a “user” option for setting the user.\n
      \n
      Another way to do this is with the `-u` argument on the `docker run` command. Something like `docker run -u 1000 -it alpine /bin/sh` will give you a shell process owned by the user with id 1000.\n
      \n
      Another way is to create the user and su to that user as part of the command passed to `docker run`. I’ve been known sometimes to do things like:\n
      \n
      ```\n
      \n
      <span style="color:#323232;">docker run \n
      </span><span style="color:#323232;">\t-it \n
      </span><span style="color:#323232;">\talpine \n
      </span><span style="color:#323232;">\tsh -c 'adduser tootsweet ; su tootsweet -c /bin/sh'\n
      </span>\n
      ```\n
      \n
      The only other thing I can think to mention. Sometimes you want not just to run something in a Docker container not as root but in fact to run it as a user id that matches the user id of a particular user on the host. For instance so that files written to a bind volume end up being owned by the desired user so we can work with the files on the host. I honestly haven’t found the best way to deal with that. Mostly I’ve been dealing with that situation with the last method above. The `useradd` command allows you to add a user with a specific user id. But that’s problematic if the needed uid is already taken by a user in the container. So, so far I’ve kindof just been lucky on that score.\n
      \n
      Hopefully that all helps!\n
      \n
      Edit: P.S. apparently the way lemmy.world is set up, you can’t mention certain standard *nix file paths such as `/ e t c / p a s s w d` in posts. The post just isn’t accepted. The “reply” button grays out and the loading graphic spins forever with no error message and the post doesn’t get saved. I’m sure this is a misguided attempt at a security measure, but it definitely affects our ability to communicate about standard Linux kind of stuff.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 1
    +score: 0
    +lastActive: DateTime @1700689388 {#4530
      date: 2023-11-22 22:43:08.0 +01:00
    }
    +ip: null
    +tags: [
      "323232"
    ]
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
      "@PlutoniumAcid@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4534 …}
    +nested: Doctrine\ORM\PersistentCollection {#4536 …}
    +votes: Doctrine\ORM\PersistentCollection {#4538 …}
    +reports: Doctrine\ORM\PersistentCollection {#4540 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4542 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4544 …}
    -id: 152123
    -bodyTs: "'/bin/sh':927,982 '/dir':269 '/dir/etc':652 '/dir/etc/sensitive/file':655 '/dir/foo':273,312 '/etc':651,867 '/path/to/some/directory/on/your/host':268 '/usr/bin/docker':173 '1':377 '1000':924,940 'abil':1205 'abl':145,285,457,614 'accept':1165 'actual':233,571,598 'add':36,182,1088 'addus':977 'affect':759,1203 'ahead':431 'allow':507,662,1085 'alpin':653,926,974 'alreadi':816,1105 'also':198,859 'and/or':150 'anoth':705,904,941 'app':734 'appar':1131 'arch':105 'argument':913 'around':679 'asid':421 'assum':445 'attempt':1195 'back':65 'best':1063 'better':179 'bind':726,771,1037 'bit':138,418 'button':1168 'c':410,976,981,1151 'call':135,543 'case':881 'caus':746 'certain':1142 'chang':669 'chmod':170 'chown':472,487,501 'command':55,79,207,313,361,440,488,502,517,558,568,609,626,645,657,748,918,957,1084 'communic':1207 'complex':232 'compos':8,54,153,202,894 'concern':642,706 'configur':818 'consid':643 'contain':220,309,359,373,389,574,592,601,612,723,756,787,827,1003,1112 'correct':192,453 'could':35,165,339,659,745,758,768 'creat':294,342,363,390,459,519,616,945 'current':82 'd':247,319,1157 'daemon':542,579,588,597,604,691 'deal':1066,1073 'default':257,547 'definit':1202 'deni':481,491 'desir':1045 'differ':790 'direct':209,560,845 'distro':25,101,127,196 'docker':7,49,53,112,148,152,201,205,219,243,250,265,288,323,341,372,515,525,539,557,566,624,647,690,722,755,786,804,813,836,885,893,916,921,960,971,1002 'docker-compos':6,52,151,200,892 'dockerd':544 'dockerfil':848 'doesn':569,1184 'done':853 'e':1149 'earlier':875 'edit':1129 'effect':73 'either':769 'end':1039 'ensur':820 'equival':123 'error':1179 'est':411 'even':274,355,621 'fact':1009 'far':1115 'file':296,344,365,392,461,520,617,761,865,1033,1053,1145 'filesystem':776 'find':85 'first':811 'foo':301 'forev':1176 'found':1061 'get':248,678,1186 'give':929 'go':237,430,686,798 'got':278,448,713 'gpasswd':42 'graphic':1174 'gray':1169 'group':33,45,90,113,124,187,280,450 'hate':107 'haven':700,1059 'help':424,1128 'honest':317,1058 'hope':1125 'host':299,347,394,671,730,775,1028,1056 'hub':251,886 'id':939,1016,1021,1095 'imag':244,814,837,870,883 'imposs':437 'includ':433 'inject':740 'insert':106 'insid':217,307,357,387,610,720,753,825 'instanc':661,710,737,1030 'isn':1163 'issu':766 'kernel':498 'kind':334,1211 'kindof':1118 'known':965 'la':412 'last':1079 'lemmy.world':1134 'like':28,264,646,920,970 'linux':497,1210 'littl':231,405 'll':92,236,293,429,477 'load':1173 'log':62 'look':703 'lucki':1121 'm':1189 'magic':133 'make':47,70,215,225,340,402,834 'match':1018 'measur':1199 'mention':874,991,1141 'messag':1180 'method':1080 'might':59 'misguid':1194 'mitig':764 'most':1069 'mount':772 'name':87,131,300 'necessarili':214 'need':1102 'next':887 'nix':1144 'non':665,695,808,831 'non-root':664,694,807,830 'option':899 'otherwis':189 'outsid':762 'own':302,348,398,462,521,618,934,1042 'p':1152 'p.s':1130 'pain':409 'part':954 'particular':103,1024 'pass':958 'password':674 'path':1146 'permiss':480,493 'post':1159,1161,1183 'present':861 'probabl':93,178 'problemat':1099 'process':802,933 'proper':186 'python':271 'ran':77,314 'rather':352,533 're':635,890 'realli':702 'relev':864 'repli':1167 'requir':142 'research':98 'restrict':537 'right':465 'root':259,304,316,354,386,400,464,473,474,523,531,553,584,608,620,666,673,696,719,752,809,832,1006 'root/uid':376 'run':5,50,147,149,199,206,221,255,266,287,289,366,441,516,526,529,548,567,572,582,599,606,625,628,648,688,717,750,780,800,824,828,917,922,961,972,998,1011 'save':1187 'score':1124 'secur':641,1198 'see':395 'seem':436 'sensit':760 'servic':716,783 'session':83 'set':281,451,901,1136 'setup':17 'sever':795 'sh':975 'shell':739,932 'shouldn':139,454 'sinc':593 'situat':1076 'smarter':331 'some_file.txt':475 'someth':13,263,337,564,919,999 'sometim':966,992 'specif':19,22,1093 'specifi':839 'spin':1175 'standard':1143,1209 'start':590 'step':193 'stuff':1213 'su':949,979 'sudo':10,41,58,155,169,211,291,468 'suid':137 'sure':1190 'take':72,190 'taken':1106 'talk':576 'tell':327,478,499,586 'theoret':156,658 'thing':216,336,403,851,969,986 'think':110,989 'thrill':321 'time':551 'tootsweet':978,980 'touch':272,311 'tri':470 'u':171,912,923 'uid':1103 'understand':426 'unlik':120 'use':891 'user':32,38,44,224,351,369,444,538,632,667,697,744,791,810,844,857,898,903,937,947,952,1015,1020,1025,1046,1090,1094,1109 'useradd':1083 'usual':254,849,878 'v':267,650 've':76,277,447,712,963,1071,1117 'vi':654 'vie':413 'volum':727,1038 'vulner':741 'w':1156 'wait':554 'want':160,994 'wasn':527 'way':325,684,796,855,905,942,1064,1133 'web':715,733,782 'well':68,681 'whatev':253 'wherein':742 'without':9,57,154,210,290,467 'won':212 'wonder':636 'work':56,384,1050 'would':20 'written':1034 'wrong':14 'yes':637"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5510619"
    +editedAt: DateTimeImmutable @1701177039 {#4531
      date: 2023-11-28 14:10:39.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700689388 {#4532
      date: 2023-11-22 22:43:08.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "very detailed answer. thanks for taking time to write it."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700701501 {#4584
    date: 2023-11-23 02:05:01.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
    "@PlutoniumAcid@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4588 …}
  +nested: Doctrine\ORM\PersistentCollection {#4590 …}
  +votes: Doctrine\ORM\PersistentCollection {#4592 …}
  +reports: Doctrine\ORM\PersistentCollection {#4594 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4596 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4598 …}
  -id: 152801
  -bodyTs: "'answer':3 'detail':2 'take':6 'thank':4 'time':7 'write':9"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5097718"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700701501 {#4585
    date: 2023-11-23 02:05:01.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\EntryComment {#4586
  +user: Proxies\__CG__\App\Entity\User {#4587 …}
  +entry: App\Entity\Entry {#2412
    +user: Proxies\__CG__\App\Entity\User {#1978 …}
    +magazine: App\Entity\Magazine {#264
      +icon: Proxies\__CG__\App\Entity\Image {#245 …}
      +name: "linux@lemmy.ml"
      +title: "linux"
      +description: """
        From Wikipedia, the free encyclopedia\n
        \n
        Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
        \n
        Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
        \n
        ### Rules\n
        \n
        - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
        - No misinformation\n
        - No NSFW content\n
        - No hate speech, bigotry, etc\n
        \n
        ### Related Communities\n
        \n
        - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
        - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
        - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
        - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
        \n
        Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
        """
      +rules: null
      +subscriptionsCount: 1
      +entryCount: 1406
      +entryCommentCount: 28632
      +postCount: 6
      +postCommentCount: 214
      +isAdult: false
      +customCss: null
      +lastActive: DateTime @1729583542 {#274
        date: 2024-10-22 09:52:22.0 +02:00
      }
      +markedForDeletionAt: null
      +tags: null
      +moderators: Doctrine\ORM\PersistentCollection {#236 …}
      +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
      +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
      +entries: Doctrine\ORM\PersistentCollection {#179 …}
      +posts: Doctrine\ORM\PersistentCollection {#137 …}
      +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
      +bans: Doctrine\ORM\PersistentCollection {#116 …}
      +reports: Doctrine\ORM\PersistentCollection {#102 …}
      +badges: Doctrine\ORM\PersistentCollection {#80 …}
      +logs: Doctrine\ORM\PersistentCollection {#70 …}
      +awards: Doctrine\ORM\PersistentCollection {#1360 …}
      +categories: Doctrine\ORM\PersistentCollection {#1792 …}
      -id: 73
      +apId: "linux@lemmy.ml"
      +apProfileId: "https://lemmy.ml/c/linux"
      +apPublicUrl: "https://lemmy.ml/c/linux"
      +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
      +apInboxUrl: "https://lemmy.ml/inbox"
      +apDomain: "lemmy.ml"
      +apPreferredUsername: "linux"
      +apDiscoverable: true
      +apManuallyApprovesFollowers: null
      +privateKey: null
      +publicKey: null
      +apFetchedAt: DateTime @1729583596 {#268
        date: 2024-10-22 09:53:16.0 +02:00
      }
      +apDeletedAt: null
      +apTimeoutAt: null
      +visibility: "visible             "
      +createdAt: DateTimeImmutable @1698929468 {#270
        date: 2023-11-02 13:51:08.0 +01:00
      }
    }
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1889 …}
    +slug: "Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific"
    +title: "Non-root user that (suddenly) has elevated privileges in a specific command (only). [Have I been hacked?]"
    +url: null
    +body: """
      Title. Long,short story: creating or editing files with `nano` as my non-root user gives (the file) elevated privileges, like I have ran it w/ `sudo` or as root. And the (only) “security hole” that I can think of is a nextdns docker container running as root. That aside, its very “overkill” security-wise (cap_drop=ALL, non-root image, security_opt=no_new_privileges, etc.).\n
      \n
      It’s like someone tried to hack me but gave up halfway. Am I right or wrong to assume this? Just curious.\n
      \n
      Thanks in advance.
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 28
    +favouriteCount: 41
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1700701501 {#2418
      date: 2023-11-23 02:05:01.0 +01:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1688 …}
    +votes: Doctrine\ORM\PersistentCollection {#1966 …}
    +reports: Doctrine\ORM\PersistentCollection {#1965 …}
    +favourites: Doctrine\ORM\PersistentCollection {#1368 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2426 …}
    +badges: Doctrine\ORM\PersistentCollection {#2439 …}
    +children: []
    -id: 15233
    -titleTs: "'command':13 'elev':8 'hack':18 'non':2 'non-root':1 'privileg':9 'root':3 'specif':12 'sudden':6 'user':4"
    -bodyTs: "'advanc':95 'asid':51 'assum':89 'cap':58 'contain':46 'creat':5 'curious':92 'docker':45 'drop':59 'edit':7 'elev':20 'etc':70 'file':8,19 'gave':80 'give':17 'hack':77 'halfway':82 'hole':36 'imag':64 'like':22,73 'long':2 'nano':10 'new':68 'nextdn':44 'non':14,62 'non-root':13,61 'opt':66 'overkil':54 'privileg':21,69 'ran':25 'right':85 'root':15,31,49,63 'run':47 'secur':35,56,65 'security-wis':55 'short':3 'someon':74 'stori':4 'sudo':28 'thank':93 'think':40 'titl':1 'tri':75 'user':16 'w':27 'wise':57 'wrong':87"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1700690925
    +visibility: "visible             "
    +apId: "https://lemmy.world/post/8579713"
    +editedAt: null
    +createdAt: DateTimeImmutable @1700604525 {#1858
      date: 2023-11-21 23:08:45.0 +01:00
    }
  }
  +magazine: App\Entity\Magazine {#264}
  +image: null
  +parent: App\Entity\EntryComment {#4533
    +user: App\Entity\User {#4313 …}
    +entry: App\Entity\Entry {#2412}
    +magazine: App\Entity\Magazine {#264}
    +image: null
    +parent: App\Entity\EntryComment {#4398
      +user: Proxies\__CG__\App\Entity\User {#4399 …}
      +entry: App\Entity\Entry {#2412}
      +magazine: App\Entity\Magazine {#264}
      +image: null
      +parent: App\Entity\EntryComment {#4300
        +user: App\Entity\User {#4313 …}
        +entry: App\Entity\Entry {#2412}
        +magazine: App\Entity\Magazine {#264}
        +image: null
        +parent: null
        +root: null
        +body: """
          Try an `ls -l $(which nano)` and look at the permissions section of the output.\n
          \n
          Most files only have hyphens, r’s, w’s, and x’s. (Like `-rwxr-xr-x` or some such.)\n
          \n
          Particularly if there’s an “s” in the output (it’ll be in place of an “x”), that could explain what’s going on.\n
          \n
          Basically, that “s” means “when a user runs me, run me as root even if the user running me isn’t root.” It’s useful on programs like “su” and “sudo” which let you run a command that (after authentication) do things as root.\n
          \n
          But if that flag is set on nano, that’s pretty weird.
          """
        +lang: "en"
        +isAdult: false
        +favouriteCount: 14
        +score: 0
        +lastActive: DateTime @1701191441 {#4294
          date: 2023-11-28 18:10:41.0 +01:00
        }
        +ip: null
        +tags: null
        +mentions: [
          "@GustavoM@lemmy.world"
        ]
        +children: Doctrine\ORM\PersistentCollection {#4301 …}
        +nested: Doctrine\ORM\PersistentCollection {#4303 …}
        +votes: Doctrine\ORM\PersistentCollection {#4305 …}
        +reports: Doctrine\ORM\PersistentCollection {#4307 …}
        +favourites: Doctrine\ORM\PersistentCollection {#4309 …}
        +notifications: Doctrine\ORM\PersistentCollection {#4311 …}
        -id: 148880
        -bodyTs: "'authent':99 'basic':60 'command':96 'could':54 'even':73 'explain':55 'file':17 'flag':107 'go':58 'hyphen':20 'isn':79 'l':4 'let':92 'like':28,87 'll':46 'look':8 'ls':3 'mean':63 'nano':6,111 'output':15,44 'particular':36 'permiss':11 'place':49 'pretti':114 'program':86 'r':21 'root':72,81,103 'run':67,69,77,94 'rwxr':30 'rwxr-xr-x':29 'section':12 'set':109 'su':88 'sudo':90 'thing':101 'tri':1 'use':84 'user':66,76 'w':23 'weird':115 'x':26,32,52 'xr':31"
        +ranking: 0
        +commentCount: 0
        +upVotes: 0
        +downVotes: 0
        +visibility: "visible             "
        +apId: "https://lemmy.world/comment/5487960"
        +editedAt: DateTimeImmutable @1701063149 {#4295
          date: 2023-11-27 06:32:29.0 +01:00
        }
        +createdAt: DateTimeImmutable @1700606375 {#4296
          date: 2023-11-21 23:39:35.0 +01:00
        }
      }
      +root: App\Entity\EntryComment {#4300}
      +body: """
        Could I set that for Docker? I often forget to run docker-compose as sudo and it can’t be used without sudo, so it’s a bit silly to always have to prepend sudo there. This magical “s” you describe could solve that.\n
        \n
        And, of course, because I want to learn: why is this a really bad idea?
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1700655443 {#4396
        date: 2023-11-22 13:17:23.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@GustavoM@lemmy.world"
        "@TootSweet@lemmy.world"
      ]
      +children: Doctrine\ORM\PersistentCollection {#4400 …}
      +nested: Doctrine\ORM\PersistentCollection {#4402 …}
      +votes: Doctrine\ORM\PersistentCollection {#4404 …}
      +reports: Doctrine\ORM\PersistentCollection {#4406 …}
      +favourites: Doctrine\ORM\PersistentCollection {#4408 …}
      +notifications: Doctrine\ORM\PersistentCollection {#4410 …}
      -id: 150302
      -bodyTs: "'alway':32 'bad':59 'bit':29 'compos':14 'could':1,43 'cours':48 'describ':42 'docker':6,13 'docker-compos':12 'forget':9 'idea':60 'learn':53 'magic':39 'often':8 'prepend':35 'realli':58 'run':11 'set':3 'silli':30 'solv':44 'sudo':16,24,36 'use':22 'want':51 'without':23"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.world/comment/5498963"
      +editedAt: null
      +createdAt: DateTimeImmutable @1700655443 {#4397
        date: 2023-11-22 13:17:23.0 +01:00
      }
    }
    +root: App\Entity\EntryComment {#4300}
    +body: """
      If you can’t run `docker-compose` without `sudo`, there’s something wrong with your setup. The specifics would be specific to your distro, but most likely there’s a user group you could add your user to with `sudo gpasswd -a user group` to make the `docker run` and `docker-compose` commands work without `sudo`. (Might have to log out and back in as well to make it take effect if you’ve ran that command during the current session.) To find the name of the group, you’ll probably have to do some research about your distro in particular. On Arch (insert hate here ;) ), I think the `docker` group does that, and it’s not unlikely that the equivalent group for your distro has the same name.\n
      \n
      The “magical s” (called the “SUID bit”) shouldn’t be required to be able to run `docker run` and/or `docker-compose` without sudo. Theoretically if you *did* want to do that, you could do it with `sudo chmod u+s /usr/bin/docker`. But again it’s probably better to just add yourself to the proper group (or otherwise take the correct steps for your distro.)\n
      \n
      But also, running docker-compose (or the `docker run` command more directly) without sudo won’t necessarily make things *inside the docker container* run as your user. Making it do so is a little complex, actually, but I’ll go through it here.\n
      \n
      So, most Docker images that you’d get from Docker Hub or whatever usually run by default as root. If you do something like `docker run -v /path/to/some/directory/on/your/host:/dir -it python ‘touch /dir/foo’`, even if you’ve got your groups set up to be able to run `docker run` without sudo, it’ll create a file on your host named “foo” *owned by root*. Why? Because inside the container, the `touch /dir/foo` command ran as root.\n
      \n
      Honestly, I’d be thrilled if Docker had ways to tell it to be smarter about that kind of thing. Something that could make Docker create the file on the host owned by your user rather than root even if inside the container, the command that creates the file runs under the user *in the Docker container* that is root/uid 1.\n
      \n
      But that’s not how it works. If root inside the container creates the file, the host sees it as owned by root, which makes things a little more of a pain. C’est la vie.\n
      \n
      Now, this is a bit of an aside, but it helped me understand so I’ll go ahead and include it. It seems impossible that a command run by your user (assuming you’ve got your groups set up correctly) shouldn’t be able to create a file owned by root, right? If without sudo you try to `chown root:root some_file.txt`, it’ll tell you permission denied. And it’s not the `chown` command that’s denying you permission. It’s the Linux kernel telling the `chown` command that that’s not allowed. So how can it be that the `docker run` command can create files owned by root when `docker run` wasn’t run by root, but rather by a more restricted user?\n
      \n
      Docker has a daemon (called `dockerd`) that by default runs all the time as root, waiting for the `docker` command to direct it to do something. The `docker run` command doesn’t actually *run* the container. It talks to the daemon which is running as root and tells the daemon to start a container. Since it’s the daemon actually running the container and the daemon is running as root, commands inside the container are able to create files owned by root even if the `docker run` command is run by your own user.\n
      \n
      If you’re wondering, yes this is a security concern. Consider a command like `docker run -it -v /etc:/dir/etc alpine vi /dir/etc/sensitive/file`. That command, theoretically, could for instance allow a non-root user to change the host’s root password.\n
      \n
      How do you get around that? Well, there are ways to go about running the Docker daemon as a non-root user that I haven’t really looked into.\n
      \n
      Another concern is if, for instance, you’ve got a web service running as root inside a Docker container with a bind volume to the host and the web app has, for instance, a shell injection vulnerability wherein a user could cause a command to run as root *inside* the docker container which could affect sensitive files *outside.* To mitigate that issue, you could either not bind mount to the host filesystem at all or run the web service in the Docker container as a different user.\n
      \n
      And there are several ways to go about running a process in Docker as a non-root user.\n
      \n
      First, some Docker images will already be configured to ensure that what is run inside the container runs as non-root. (When making a Docker image, you specify that by having a `USER` directive in the Dockerfile.) Usually if things are done that way, the user will also be present in the relevent files in `/etc` in the image. But as I mentioned earlier, that’s usually not the case for images on Docker Hub.\n
      \n
      Next, if you’re using `docker-compose`, there’s a “user” option for setting the user.\n
      \n
      Another way to do this is with the `-u` argument on the `docker run` command. Something like `docker run -u 1000 -it alpine /bin/sh` will give you a shell process owned by the user with id 1000.\n
      \n
      Another way is to create the user and su to that user as part of the command passed to `docker run`. I’ve been known sometimes to do things like:\n
      \n
      ```\n
      \n
      <span style="color:#323232;">docker run \n
      </span><span style="color:#323232;">\t-it \n
      </span><span style="color:#323232;">\talpine \n
      </span><span style="color:#323232;">\tsh -c 'adduser tootsweet ; su tootsweet -c /bin/sh'\n
      </span>\n
      ```\n
      \n
      The only other thing I can think to mention. Sometimes you want not just to run something in a Docker container not as root but in fact to run it as a user id that matches the user id of a particular user on the host. For instance so that files written to a bind volume end up being owned by the desired user so we can work with the files on the host. I honestly haven’t found the best way to deal with that. Mostly I’ve been dealing with that situation with the last method above. The `useradd` command allows you to add a user with a specific user id. But that’s problematic if the needed uid is already taken by a user in the container. So, so far I’ve kindof just been lucky on that score.\n
      \n
      Hopefully that all helps!\n
      \n
      Edit: P.S. apparently the way lemmy.world is set up, you can’t mention certain standard *nix file paths such as `/ e t c / p a s s w d` in posts. The post just isn’t accepted. The “reply” button grays out and the loading graphic spins forever with no error message and the post doesn’t get saved. I’m sure this is a misguided attempt at a security measure, but it definitely affects our ability to communicate about standard Linux kind of stuff.
      """
    +lang: "en"
    +isAdult: false
    +favouriteCount: 1
    +score: 0
    +lastActive: DateTime @1700689388 {#4530
      date: 2023-11-22 22:43:08.0 +01:00
    }
    +ip: null
    +tags: [
      "323232"
    ]
    +mentions: [
      "@GustavoM@lemmy.world"
      "@TootSweet@lemmy.world"
      "@PlutoniumAcid@lemmy.world"
    ]
    +children: Doctrine\ORM\PersistentCollection {#4534 …}
    +nested: Doctrine\ORM\PersistentCollection {#4536 …}
    +votes: Doctrine\ORM\PersistentCollection {#4538 …}
    +reports: Doctrine\ORM\PersistentCollection {#4540 …}
    +favourites: Doctrine\ORM\PersistentCollection {#4542 …}
    +notifications: Doctrine\ORM\PersistentCollection {#4544 …}
    -id: 152123
    -bodyTs: "'/bin/sh':927,982 '/dir':269 '/dir/etc':652 '/dir/etc/sensitive/file':655 '/dir/foo':273,312 '/etc':651,867 '/path/to/some/directory/on/your/host':268 '/usr/bin/docker':173 '1':377 '1000':924,940 'abil':1205 'abl':145,285,457,614 'accept':1165 'actual':233,571,598 'add':36,182,1088 'addus':977 'affect':759,1203 'ahead':431 'allow':507,662,1085 'alpin':653,926,974 'alreadi':816,1105 'also':198,859 'and/or':150 'anoth':705,904,941 'app':734 'appar':1131 'arch':105 'argument':913 'around':679 'asid':421 'assum':445 'attempt':1195 'back':65 'best':1063 'better':179 'bind':726,771,1037 'bit':138,418 'button':1168 'c':410,976,981,1151 'call':135,543 'case':881 'caus':746 'certain':1142 'chang':669 'chmod':170 'chown':472,487,501 'command':55,79,207,313,361,440,488,502,517,558,568,609,626,645,657,748,918,957,1084 'communic':1207 'complex':232 'compos':8,54,153,202,894 'concern':642,706 'configur':818 'consid':643 'contain':220,309,359,373,389,574,592,601,612,723,756,787,827,1003,1112 'correct':192,453 'could':35,165,339,659,745,758,768 'creat':294,342,363,390,459,519,616,945 'current':82 'd':247,319,1157 'daemon':542,579,588,597,604,691 'deal':1066,1073 'default':257,547 'definit':1202 'deni':481,491 'desir':1045 'differ':790 'direct':209,560,845 'distro':25,101,127,196 'docker':7,49,53,112,148,152,201,205,219,243,250,265,288,323,341,372,515,525,539,557,566,624,647,690,722,755,786,804,813,836,885,893,916,921,960,971,1002 'docker-compos':6,52,151,200,892 'dockerd':544 'dockerfil':848 'doesn':569,1184 'done':853 'e':1149 'earlier':875 'edit':1129 'effect':73 'either':769 'end':1039 'ensur':820 'equival':123 'error':1179 'est':411 'even':274,355,621 'fact':1009 'far':1115 'file':296,344,365,392,461,520,617,761,865,1033,1053,1145 'filesystem':776 'find':85 'first':811 'foo':301 'forev':1176 'found':1061 'get':248,678,1186 'give':929 'go':237,430,686,798 'got':278,448,713 'gpasswd':42 'graphic':1174 'gray':1169 'group':33,45,90,113,124,187,280,450 'hate':107 'haven':700,1059 'help':424,1128 'honest':317,1058 'hope':1125 'host':299,347,394,671,730,775,1028,1056 'hub':251,886 'id':939,1016,1021,1095 'imag':244,814,837,870,883 'imposs':437 'includ':433 'inject':740 'insert':106 'insid':217,307,357,387,610,720,753,825 'instanc':661,710,737,1030 'isn':1163 'issu':766 'kernel':498 'kind':334,1211 'kindof':1118 'known':965 'la':412 'last':1079 'lemmy.world':1134 'like':28,264,646,920,970 'linux':497,1210 'littl':231,405 'll':92,236,293,429,477 'load':1173 'log':62 'look':703 'lucki':1121 'm':1189 'magic':133 'make':47,70,215,225,340,402,834 'match':1018 'measur':1199 'mention':874,991,1141 'messag':1180 'method':1080 'might':59 'misguid':1194 'mitig':764 'most':1069 'mount':772 'name':87,131,300 'necessarili':214 'need':1102 'next':887 'nix':1144 'non':665,695,808,831 'non-root':664,694,807,830 'option':899 'otherwis':189 'outsid':762 'own':302,348,398,462,521,618,934,1042 'p':1152 'p.s':1130 'pain':409 'part':954 'particular':103,1024 'pass':958 'password':674 'path':1146 'permiss':480,493 'post':1159,1161,1183 'present':861 'probabl':93,178 'problemat':1099 'process':802,933 'proper':186 'python':271 'ran':77,314 'rather':352,533 're':635,890 'realli':702 'relev':864 'repli':1167 'requir':142 'research':98 'restrict':537 'right':465 'root':259,304,316,354,386,400,464,473,474,523,531,553,584,608,620,666,673,696,719,752,809,832,1006 'root/uid':376 'run':5,50,147,149,199,206,221,255,266,287,289,366,441,516,526,529,548,567,572,582,599,606,625,628,648,688,717,750,780,800,824,828,917,922,961,972,998,1011 'save':1187 'score':1124 'secur':641,1198 'see':395 'seem':436 'sensit':760 'servic':716,783 'session':83 'set':281,451,901,1136 'setup':17 'sever':795 'sh':975 'shell':739,932 'shouldn':139,454 'sinc':593 'situat':1076 'smarter':331 'some_file.txt':475 'someth':13,263,337,564,919,999 'sometim':966,992 'specif':19,22,1093 'specifi':839 'spin':1175 'standard':1143,1209 'start':590 'step':193 'stuff':1213 'su':949,979 'sudo':10,41,58,155,169,211,291,468 'suid':137 'sure':1190 'take':72,190 'taken':1106 'talk':576 'tell':327,478,499,586 'theoret':156,658 'thing':216,336,403,851,969,986 'think':110,989 'thrill':321 'time':551 'tootsweet':978,980 'touch':272,311 'tri':470 'u':171,912,923 'uid':1103 'understand':426 'unlik':120 'use':891 'user':32,38,44,224,351,369,444,538,632,667,697,744,791,810,844,857,898,903,937,947,952,1015,1020,1025,1046,1090,1094,1109 'useradd':1083 'usual':254,849,878 'v':267,650 've':76,277,447,712,963,1071,1117 'vi':654 'vie':413 'volum':727,1038 'vulner':741 'w':1156 'wait':554 'want':160,994 'wasn':527 'way':325,684,796,855,905,942,1064,1133 'web':715,733,782 'well':68,681 'whatev':253 'wherein':742 'without':9,57,154,210,290,467 'won':212 'wonder':636 'work':56,384,1050 'would':20 'written':1034 'wrong':14 'yes':637"
    +ranking: 0
    +commentCount: 0
    +upVotes: 0
    +downVotes: 0
    +visibility: "visible             "
    +apId: "https://lemmy.world/comment/5510619"
    +editedAt: DateTimeImmutable @1701177039 {#4531
      date: 2023-11-28 14:10:39.0 +01:00
    }
    +createdAt: DateTimeImmutable @1700689388 {#4532
      date: 2023-11-22 22:43:08.0 +01:00
    }
  }
  +root: App\Entity\EntryComment {#4300}
  +body: "very detailed answer. thanks for taking time to write it."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 2
  +score: 0
  +lastActive: DateTime @1700701501 {#4584
    date: 2023-11-23 02:05:01.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@GustavoM@lemmy.world"
    "@TootSweet@lemmy.world"
    "@PlutoniumAcid@lemmy.world"
  ]
  +children: Doctrine\ORM\PersistentCollection {#4588 …}
  +nested: Doctrine\ORM\PersistentCollection {#4590 …}
  +votes: Doctrine\ORM\PersistentCollection {#4592 …}
  +reports: Doctrine\ORM\PersistentCollection {#4594 …}
  +favourites: Doctrine\ORM\PersistentCollection {#4596 …}
  +notifications: Doctrine\ORM\PersistentCollection {#4598 …}
  -id: 152801
  -bodyTs: "'answer':3 'detail':2 'take':6 'thank':4 'time':7 'write':9"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://discuss.tchncs.de/comment/5097718"
  +editedAt: null
  +createdAt: DateTimeImmutable @1700701501 {#4585
    date: 2023-11-23 02:05:01.0 +01:00
  }
}
"App\Security\Voter\UserVoter"
App\Entity\Magazine {#264
  +icon: Proxies\__CG__\App\Entity\Image {#245 …}
  +name: "linux@lemmy.ml"
  +title: "linux"
  +description: """
    From Wikipedia, the free encyclopedia\n
    \n
    Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).\n
    \n
    Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word “Linux” in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.\n
    \n
    ### Rules\n
    \n
    - Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.\n
    - No misinformation\n
    - No NSFW content\n
    - No hate speech, bigotry, etc\n
    \n
    ### Related Communities\n
    \n
    - [!opensource@lemmy.ml](https://lemmy.ml/c/opensource)\n
    - [!libre_culture@lemmy.ml](https://lemmy.ml/c/libre_culture)\n
    - [!technology@lemmy.ml](https://lemmy.ml/c/technology)\n
    - [!libre_hardware@lemmy.ml](https://lemmy.ml/c/libre_hardware)\n
    \n
    Community icon by [Alpár-Etele Méder](https://www.iconfinder.com/pocike), licensed under [CC BY 3.0](https://creativecommons.org/licenses/by/3.0/)
    """
  +rules: null
  +subscriptionsCount: 1
  +entryCount: 1406
  +entryCommentCount: 28632
  +postCount: 6
  +postCommentCount: 214
  +isAdult: false
  +customCss: null
  +lastActive: DateTime @1729583542 {#274
    date: 2024-10-22 09:52:22.0 +02:00
  }
  +markedForDeletionAt: null
  +tags: null
  +moderators: Doctrine\ORM\PersistentCollection {#236 …}
  +ownershipRequests: Doctrine\ORM\PersistentCollection {#232 …}
  +moderatorRequests: Doctrine\ORM\PersistentCollection {#221 …}
  +entries: Doctrine\ORM\PersistentCollection {#179 …}
  +posts: Doctrine\ORM\PersistentCollection {#137 …}
  +subscriptions: Doctrine\ORM\PersistentCollection {#199 …}
  +bans: Doctrine\ORM\PersistentCollection {#116 …}
  +reports: Doctrine\ORM\PersistentCollection {#102 …}
  +badges: Doctrine\ORM\PersistentCollection {#80 …}
  +logs: Doctrine\ORM\PersistentCollection {#70 …}
  +awards: Doctrine\ORM\PersistentCollection {#1360 …}
  +categories: Doctrine\ORM\PersistentCollection {#1792 …}
  -id: 73
  +apId: "linux@lemmy.ml"
  +apProfileId: "https://lemmy.ml/c/linux"
  +apPublicUrl: "https://lemmy.ml/c/linux"
  +apFollowersUrl: "https://lemmy.ml/c/linux/followers"
  +apInboxUrl: "https://lemmy.ml/inbox"
  +apDomain: "lemmy.ml"
  +apPreferredUsername: "linux"
  +apDiscoverable: true
  +apManuallyApprovesFollowers: null
  +privateKey: null
  +publicKey: null
  +apFetchedAt: DateTime @1729583596 {#268
    date: 2024-10-22 09:53:16.0 +02:00
  }
  +apDeletedAt: null
  +apTimeoutAt: null
  +visibility: "visible             "
  +createdAt: DateTimeImmutable @1698929468 {#270
    date: 2023-11-02 13:51:08.0 +01:00
  }
}
"App\Security\Voter\UserVoter"

Symfony Profiler

GET https://kbin.spritesserver.nl/index.php/m/linux@lemmy.ml/t/15233/Non-root-user-that-suddenly-has-elevated-privileges-in-a-specific

Configuration Settings

Theme

Page Width

Security

Token

Firewall

Configuration

Listeners

Authenticators

Access Decision

Access decision log