Back in the last century, iirc, or the very early 2000’s, I logged-out of my desktop ( linux ) one time & discovered there was a new user on my machine…

the new username was “you are dead”.

1st time I knew I’d been cracked.

Not a nice feeling.

Educational, however, & motivating…

did me good.

I’m glad the person was more interested in communicating my trusting foolishness to me, than in doing real harm…

_ /\ _

From what I’ve read, thus-far, prohibiting autotools would be a good 1st-step.

Then auditing all the damn ocean-of-vulnerability-in-a-single-crufty-swamp dependencies, & getting committed about clarity & accountability in packages, would probably be required.

I read an article, a couple years ago, about web-frameworks…

The guy doing the writing said he found they were often malware, or corrupt, or trojans, or utter-bullshit…

Haskell’s got a kind of mantram: don’t bring in a whole framework, just compose what you need, yourself, together.

Its a granularity-difference.

Requiring a framework, which itself requires other frameworks, as that guy was pointing-out ( he wasn’t interested in Haskell ), is a liability nightmare.

But the culture of just having an infinite bring-in of frameworks & libraries, so one can write a little, easy code, is a culture that is biting the world’s security in the ass.

It cannot be, that people just include everything from everywhere, & somehow have secure/trustworthy systems.

To have a secure, trustworthy system, one needs to know that one has disincluded corruption/malicious-code.

That requires limiting what’s included, that includes auditing, that includes accountability, that includes having understandable, sufficiently-clear stuff that one is including.

Consistently, at all levels, relentlessly.

It’s a chain: you cannot have a weak-link without compromising the whole chain.

You cannot compromise ANY subsystem in a distro, & have a trustworthy distro.

There are 2 contradictory paradigms: the “magic bullet paradigm”, which doesn’t care how much rot, compromise, anything, so long as they include the “magic bullet” which takes-out the competitor…

… vs the “no weak-points, whatsoever, paradigm”, which doesn’t rely on magic, it relies on defense-in-depth, and carefulness, and everybody working coherently, etc, in order to disallow corruption/malicious-actors any leverage/grasp on us.

They are cultures, not just ideas.

Some people cannot tolerate a “no weak-points” culture, they “NEED” to compromise things ( I don’t care about the bugs, get more features in!!" ), and they must be put out into the other organizations/operations, because they CANNOT tolerate careful-paradigm.

It truly is a culture, or “religion”, and there’s no faking it.

Look to OpenBSD, & see what it takes to be like them…

Many years ago, it was discovered that Wine could run Windows viruses/worms/malware just fine, thank you very much…

“Sandboxing”, it isn’t.

It runs with all the privileges of the user running the app, iirc.

If you have the ability to take a look at either SANS website, and see their articles, or have your system show you all the automatic attacks hitting your machine, then maybe you will understand…

Botnets are coded to hammer-away at all possible internet-addresses, trying to break-in & highjack more machines, to include in the established criminal-machine that the botnet is…

SANS said, a decade or 2 ago, that it took, on average, something like 6 or 4 minutes for a new MS-Windows machine to be owned by some attack from the internet.

I’ve had linux machines cracked/owned, and wiped 'em to get 'em clean.

Having no immune-system is BAD.

Linux botnets, apple operating-system botnets, they exist.

I don’t think there is any operating-system that is connected to the internet that doesn’t have attacks coded to crack it.

I just looked at SANS.org, and they have totally changed, so they are now … more a moneymaking-machine wanting B2B biz?

Here, though, are some cheat-sheets they made:

https://www.sans.org/posters/?msc=main-nav

They used to tell us the top-20 most effective protections for particular threats, identifying how prevalent the threats were, etc…

No idea who does that nowadays…

Read “American Nations” by, iirc Woodard.

The US couldn’t possibly have avoided Civil War Part2.

Now it is going to be having what it has been enforcing/setting-up for decades.

The confederates only pretended to surrender, and now they are using a brilliant remapping of Leninism from left to right, using TV instead of schools for the brainwashing, to produce the proletariat/populist dictatorship that their cabal can highjack the country with, courtesy of Murdoch’s Right-Leninism, and it was all forseeable.

2024 the Biden institution loses, due to the economic-collapse & the rabid backlash of wounded-narcissism,

2025 “democracy” ( actually bribed/“lobbied” “representative” republic, perpetually gaslighting about being democracy ) is decapitated, and the ocean-of-butchery begins begins pouring blood/lives out…

It’ll be about 7 years before total-collapse, from then.

Trump’s already made it clear he backs Russia, not NATO, so Ukraine is hamburger, then.

Pretence/denial/entitlement is the fakest “immune system” there is, and it is going to “protect” nobody.

All preventable, IF everything had been done strategically, for decades, but when you allow moneyarchy to manufacture whole-population broken-parenting, and generations of trashed-lives, and you allow moneyarchy to wage successful war against living wages for workers…

…you don’t have a country, you have a prison that is pretending to be a country, destroying God’s gift to lives for sake of psychopathic machiavellian ego-crimes.

I expect to see Biden’s head on a pike, outside, where the Jan 6 insurrection people were, in early 2025, as a trophy of the new dictatorship.

Human nature has not changed one bit, in the last few millenia…

The sickening denial of everybody, in the situation… “I’m not responsible: I couldn’t have seen it coming!” ??? Bullshit/lies.

It’s been visible for decades, just when & how, were undecided.

And the pseudo-journalism of the left, which “shut down” ( their term ) the diversity of issues & voices, in order to make a nice, conforming only-Biden-institution left…

they’ll never tolerate any responsibility for their part, either.

Humanity is about to get what it invested-decades-in-getting, and it all could have been prevented, if honest & real strategic investment-in-real-worth had been consistently normal, but catering to money’s narcissism was the devotion preferred, so…

: \