I would assume it was about protecting their servers from internal sources escalating privileges vs. them providing publicly accessible Linux shells.
I would assume it was about protecting their servers from internal sources escalating privileges vs. them providing publicly accessible Linux shells.
I mean, that's a real project, but Linux LPEs kind of grow on trees, so you can't literally rely on threat intelligence for this problem; presumably you handle it by drastically scoping down and surveilling what people do on prod hosts.