monica_b1998@lemmy.world to Linux@programming.dev · 1 day agoChina-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decadethehackernews.comexternal-linkmessage-square13fedilinkarrow-up152arrow-down127
arrow-up125arrow-down1external-linkChina-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decadethehackernews.commonica_b1998@lemmy.world to Linux@programming.dev · 1 day agomessage-square13fedilink
minus-squareMaki@lemmy.blahaj.zonelinkfedilinkarrow-up12·1 day agoNothing. The group in question attacked a specific system. The title is misleading.
minus-squareOoops@feddit.orglinkfedilinkarrow-up15·edit-21 day agoDon’t let people steal your device to break into it and replace the login software with a compromised version…
minus-squareWhoIzDisIz@lemmy.todaylinkfedilinkarrow-up5arrow-down3·edit-23 hours agoGo to something immutable. Apparently this is not as strong a solution as I thought. Apologies.
minus-squarePabloSexcrowbar@piefed.sociallinkfedilinkEnglisharrow-up3·22 hours agoI don’t know that the current crop of immutable distros would be able to prevent something like this. rpm-ostree, at least, lets you install out-of-tree rpm packages to the base system, you just have to reboot for them to take effect.
minus-squaremoonpiedumplings@programming.devlinkfedilinkarrow-up5·1 day agoNot really. Immutability can be overriden by root, who can then edit files. And in addition to that, /etc/, system config files, including pam files mentioned here, are not immuable even in immutable distros.
what are we meant to do?
Nothing. The group in question attacked a specific system. The title is misleading.
Don’t let people steal your device to break into it and replace the login software with a compromised version…
Go to something immutable.Apparently this is not as strong a solution as I thought. Apologies.
I don’t know that the current crop of immutable distros would be able to prevent something like this. rpm-ostree, at least, lets you install out-of-tree rpm packages to the base system, you just have to reboot for them to take effect.
Not really. Immutability can be overriden by root, who can then edit files.
And in addition to that, /etc/, system config files, including pam files mentioned here, are not immuable even in immutable distros.
TIL, TY.