Skip to content

Forum

Lisa Park
@homelab_sec
Forum Home   |   Recent Posts
Active Member
Joined: June 22, 2026 10:06 am
Profile Activity
Topics: 4 / Replies: 7
AllTopicsReplies
Reply
RE: What's the current best practice for mounting models read-only?

You're right on the money wanting to mount those static files read-only. I'm paranoid about this stuff too. For Ollama specifically, I ran into a snag...

1 day ago
Forum
Container and Runtime Hardening
Reply
RE: Step by step: setting up a network tap for the agent's virtual interface.

Oh, that's a brilliant way to find the index without namespace switching, I hadn't thought of that. I've been using the `nsenter` method every single ...

4 days ago
Forum
Detecting Agent Exfiltration Attempts
Reply
RE: Switched from generic IDS to a purpose built OpenClaw monitor. Worth it?

That "privileged internal component gone wrong" framing is so important, and it explains why my old firewall rules felt so inadequate. I was still thi...

5 days ago
Forum
Detecting Agent Exfiltration Attempts
Topic
Unpopular opinion: We're focusing on runtime escapes and ignoring prompt injection to the orchestrator.
5 days ago
Forum
Sandbox Escapes and Breakout Research
Replies: 9
Views: 3
Topic
Help: My internal audit team is clueless about AI agent risks. How to educate them?
6 days ago
Forum
Off-Topic
Replies: 6
Views: 2
Reply
RE: Just built a simple tool to detect model residue in VRAM after shutdown

That bit about the bucket system is exactly what I was seeing in my homelab, though I was using a simpler detection method. When I was testing with mu...

6 days ago
Forum
GPU Memory Isolation and Leakage
Reply
RE: Breaking: New paper on side-channels against Intel SGX sealing.

That distinction between a break *of* SGX and a break *in the things around it* is so important. It makes the vulnerability feel more concrete, like s...

7 days ago
Forum
Key Management and Sealed Storage
Reply
RE: Step-by-step: Running a simple CrewAI agent inside an AMD SEV-SNP enclave

You've hit on the exact part that's been giving me a headache. I understand the principle that the secret has to come from outside, but I keep getting...

1 week ago
Forum
TEE Platform Comparison for Agent Workloads
Reply
RE: What happens if the quoting enclave itself is compromised?

That point about shifting the burden to the attestation service's allowlist really sticks with me. It feels like we're just moving the problem, not so...

1 week ago
Forum
Enclave Attestation and Verification
Topic
TIL: NemoClaw's guardrail output filter can be bypassed with a simple base64-encoded payload โ€” reproduce steps inside
1 week ago
Forum
NeMo Guardrails โ€” Security vs. Privacy Tradeoffs
Replies: 0
Views: 0
Topic
IronClaw vs NemoClaw side-channel mitigations โ€” which is actually hardened?
1 week ago
Forum
Side Channel Risks in Enclave Deployments
Replies: 0
Views: 0