Rocksolid Light

Welcome to Rocksolid Light

mail  files  register  nodelist  faq  login

Sattinger's Law: It works better if you plug it in.


rocksolid / Hacking / Re: Rant on opsec problems of Linux

SubjectAuthor
* Rant on opsec problems of LinuxAnonymous
`- Re: Rant on opsec problems of LinuxAnonymous

1
Subject: Rant on opsec problems of Linux
From: Anonymous
Newsgroups: rocksolid.shared.hacking
Organization: Rocksolid Light
Date: Sat, 5 Jun 2021 11:03 UTC
Date: Sat, 5 Jun 2021 11:03:56 +0000
Subject: Rant on opsec problems of Linux
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on novabbs.org
From: Anonymous@news.novabbs.org (Anonymous)
Newsgroups: rocksolid.shared.hacking
X-Rslight-Site: $2y$10$Fe/hzLsg4SKuoDPyIvkgMuKkgGGqSNCtTf5fCmT7NPupGMZ0wgVIi
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
User-Agent: Rocksolid Light (news.novabbs.com/getrslight)
Organization: Rocksolid Light
Message-ID: <090d19c3024a80fc57feefecec9bad5d@news.novabbs.org>
View all headers
https://madaidans-insecurities.github.io/linux.html

Someone giving a quick overview about all the opsec problems in Linux, which turn out to be more than I thought. Kind of biased, but real interesting. Also links to some cool talks:

https://events19.linuxfoundation.org/wp-content/uploads/2017/11/Syzbot-and-the-Tale-of-Thousand-Kernel-Bugs-Dmitry-Vyukov-Google.pdf

https://jon.oberheide.org/files/syscan12-exploitinglinux.pdf

After having read most of it, I'm still a Linux user, but a more sober one.

Qubes rules !
--
Posted on Rocksolid Light



Subject: Re: Rant on opsec problems of Linux
From: Anonymous
Newsgroups: rocksolid.shared.hacking
Organization: RetroBBS
Date: Sat, 5 Jun 2021 11:29 UTC
References: 1
Path: i2pn2.org!.POSTED.rocksolidbbs.com!not-for-mail
From: Anonymous@rocksolidbbs.com (Anonymous)
Newsgroups: rocksolid.shared.hacking
Subject: Re: Rant on opsec problems of Linux
Date: Sat, 5 Jun 2021 11:29:43 +0000
Organization: RetroBBS
Message-ID: <751112ae3729ccf1da8d5dc6a6f52564@rocksolidbbs.com>
References: <090d19c3024a80fc57feefecec9bad5d@news.novabbs.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Info: i2pn2.org; posting-account="retrobbs1"; posting-host="rocksolidbbs.com:192.241.178.238";
logging-data="14348"; mail-complaints-to="usenet@i2pn2.org"
User-Agent: Rocksolid Light (news.novabbs.com/getrslight)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on rocksolidbbs.com
X-Rslight-Site: $2y$10$/4uOx3HcmU5HwMj0qkt61OVOVpbkHVqlq54GfNsclTHK6EtM1XS42
View all headers
Anonymous wrote:

https://madaidans-insecurities.github.io/linux.html

Someone giving a quick overview about all the opsec problems in Linux, which turn out to be more than I thought. Kind of biased, but real interesting.

"Usually, the standard user is part of the sudo group which makes a sudo password security theater."

I think Ubuntu does this, maybe some others. I never thought sudo was a better choice than just su to root when necessary.

Interesting all the details provided. Thanks for the link.

Qubes rules !

Still haven't tried Qubes. I need to look into it.
--
Posted on RetroBBS


1
rocksolid light 0.7.2
clearneti2ptor