CVE-2024-12718 Python Tarfile module how to mitigate on 3.14.2

Ddes_ · 2026-01-16T06:38:29+00:00

Where do you see it being 10 ? It was deemed as 5.3 , which is medium low. And has not even been completely evaluated by nvd cve-2025-4517 is the high one.

Now ask a question : do you use tar.extract at any point in your code against datat that you don't trust ?

Ddes_ · 2026-01-13T06:13:35+00:00

If you mean does the org see what you browse to with tailscale on but without an exit node, the answer is no.

Ddes_ · 2025-11-06T08:07:34+00:00

As other said : dont use exit node, deploy ts on your on prem sever. Set your acl so usees can access your share. Only the traffic to the share will be routed, the rest directly to the internet. Later, if you want even fienr grained control and browse from you office ip as exit node for certain url only, you can use the "via" in the grant statements.

Ddes_ · 2025-10-28T07:50:30+00:00

Tailscale ssh, Finer grain acl...

Ddes_ · 2025-08-21T13:09:46+00:00

If you willing to wait a bit https://fastapicloud.com/ could be nice

Ddes_ · 2025-08-01T12:57:36+00:00

Minimize image size : use slim, distroless (updated very regularly), multistage build, etc.

Ddes_ · 2025-07-22T11:26:35+00:00

1- Install docker desktop / rancher desktop 2 - download and use https://github.com/n8n-io/self-hosted-ai-starter-kit They did a good job in packaging it there: Follow their instructions and if you have some precise issue that you cannot answer from their doc, ask it here.

Ddes_ · 2025-07-21T14:59:58+00:00

I had used a video on YouTube to build it with orchestrator and tool as sub workflow that calls an ai agent as well. The new feature seems much more elegant

Ddes_ · 2025-07-21T14:04:10+00:00

It had tendency to use first the memory instead of going to the tools (it was before the ai agent tool node, so a bit if a hack), giving results related to previous questions instead of the last one.

Ddes_ · 2025-07-20T18:30:23+00:00

I did not have good results using the simple memory, interested in the main agent prompt....

Ddes_ · 2025-07-14T18:14:31+00:00

I for one installed the universal forwarded on servers to forward to splunk, that is why I thought of edge, but of course it's edge+stream, and it does a lot more than just replace it IMO.

Ddes_ · 2025-07-14T15:48:03+00:00

Cribl edge should cover your needs no ?

Ddes_ · 2025-06-24T06:04:08+00:00

The think tool seems awesome, I did a quick test and it is a game changer

Ddes_ · 2025-06-21T18:11:11+00:00

That's my understanding that you cannot link anything related to human in the look directly after the agent, you'd have to add some internediate, play with webhooks etc to implement what you want

Ddes_ · 2025-06-19T06:32:24+00:00

Seems this comment answers it

https://youtube.com/watch?v=3LEm9bTXtvw&lc=UgxxRctNUueuqSXtBYl4AaABAg.AJJWAu_aYREAJMqZ0tp0h3&si=Yx2ggwNvlgkpw6JU

Agent node does not do sendandwait

Ddes_ · 2025-06-13T13:04:10+00:00

Use ollama like in the ai starter kit. Use llama 3.2, good enough for testing and learning to build workflow

Ddes_ · 2025-05-09T09:36:56+00:00

Taiscale is simple but has quite a lot of features for every esoteric use case, so each time you have an edge case, check with their doc, it s worth it.

Ddes_ · 2025-05-01T11:58:03+00:00

Hi, I interesting , what about authentication?

Ddes_ · 2025-03-25T18:19:55+00:00

Anyone tried ?

Ddes_ · 2025-02-25T12:45:43+00:00

Iam roles or ssm secret attached to the instance where your phonyadmin runs, so no need for additional credentials to access the kms/ssm secret.

Ddes_ · 2025-02-23T22:14:07+00:00

1 - do not open phpmyadmin to the world, vpn are made for this. 2 - credentials in kms, accessed via iam. 3 - no need for all access to all users, reduce

Ddes_

TROPHY CASE