Incorporating Security into your Next HPC Procurement v1.1
What security questions should you be asking during your next HPC/Supercomputer procurement?
Category Blog Posts
Sudo Vulnerability (CVE-2019-14287) Worked Example
CVE-2019-14287 is a vulnerability affecting versions of sudo < 1.8.28 which can allow users with sudo privileges to circumvent restrictions and become root. This post is a worked example of exploiting this vulnerability.
Responding to Customer Security Requirements During Procurement
The reality is that, despite it being a requirement of most HPC customers, HPC vendors are not doing a lot when it comes to security when there is a lot of opportunity to leverage this to differentiate.
Do Traditional Cyber Security Rules Apply to HPC Environments?
Good security is about dissecting something in order to understand how it works and then looking for ways to manipulate in order to facilitate unintended functionality. As long as that principle exists security can apply within any environment.