monica_b1998@lemmy.world to Linux@programming.dev · 15 hours agoChina-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decadethehackernews.comexternal-linkmessage-square12fedilinkarrow-up145arrow-down121
arrow-up124arrow-down1external-linkChina-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decadethehackernews.commonica_b1998@lemmy.world to Linux@programming.dev · 15 hours agomessage-square12fedilink
minus-squareMaki@lemmy.blahaj.zonelinkfedilinkarrow-up9·11 hours agoNothing. The group in question attacked a specific system. The title is misleading.
minus-squareOoops@feddit.orglinkfedilinkarrow-up13·edit-214 hours agoDon’t let people steal your device to break into it and replace the login software with a compromised version…
minus-squareWhoIzDisIz@lemmy.todaylinkfedilinkarrow-up4arrow-down2·14 hours agoGo to something immutable.
minus-squarePabloSexcrowbar@piefed.sociallinkfedilinkEnglisharrow-up1·7 hours agoI don’t know that the current crop of immutable distros would be able to prevent something like this. rpm-ostree, at least, lets you install out-of-tree rpm packages to the base system, you just have to reboot for them to take effect.
minus-squaremoonpiedumplings@programming.devlinkfedilinkarrow-up3·12 hours agoNot really. Immutability can be overriden by root, who can then edit files. And in addition to that, /etc/, system config files, including pam files mentioned here, are not immuable even in immutable distros.
what are we meant to do?
Nothing. The group in question attacked a specific system. The title is misleading.
Don’t let people steal your device to break into it and replace the login software with a compromised version…
Go to something immutable.
I don’t know that the current crop of immutable distros would be able to prevent something like this. rpm-ostree, at least, lets you install out-of-tree rpm packages to the base system, you just have to reboot for them to take effect.
Not really. Immutability can be overriden by root, who can then edit files.
And in addition to that, /etc/, system config files, including pam files mentioned here, are not immuable even in immutable distros.
TIL, TY.