540
submitted 1 year ago by awiteb@lemmy.4rs.nl to c/privacy@lemmy.ml
all 50 comments
sorted by: hot top controversial new old
[-] Tixanou@lemm.ee 123 points 1 year ago

Ohh so it's the NSA that my failed sudos are reported to!

[-] Scrollone@feddit.it 16 points 1 year ago

Recent versions of sudo changed that message and now I'm sad 😢

[-] amongstthetrees@lemmy.ml 10 points 1 year ago

Damn, I'm going to miss those messages one day on my Debian stable server.

[-] fernlike3923@sh.itjust.works 15 points 1 year ago

Switch to doas so feds don't get any more reports!

[-] sntx@lemm.ee 18 points 1 year ago

nah, we have run0 at home

[-] Icalasari@fedia.io 120 points 1 year ago

I somehow misread that as NBA, and was very confused what basketball had to do with OS backdoors

NSA makes

WAY more sense

[-] Steamymoomilk@sh.itjust.works 52 points 1 year ago

Michel jordan want to look at your browser history :D

[-] cmbabul@lemmy.world 13 points 1 year ago

Nope this has Kareem written all over it

load more comments (1 replies)
[-] IllNess@infosec.pub 11 points 1 year ago

A OS backdoor is very simular to a backdoor cut, which allows a player to sneak behind defenders when they are focused on the ball or player with a ball.

NBA coaches have taken inspiration from many different places to perfect their plays. Computer security is just another step.

[-] chottomatte@lemdro.id 10 points 1 year ago

I read it NASA at first

[-] lockhart@lemmy.ml 4 points 1 year ago* (last edited 1 year ago)

they wanted to cut to the basket behind the defense

[-] Hugin@lemmy.world 100 points 1 year ago

Years ago there was a commit to the Linux kernal that strangly had no author. This got some attention of several of the developers.

Looking into the code that had to deal with network transmission. there was a section that if you tried to get network access in a unusual way had a check that was written something like this.

If (usr_permission = ROOT) ... Instead of If (usr_permission == ROOT) ...

The first giving the user root if invoked and the second checking to see if the user was root.

It's widely thought this was the NSA or some other intelligence agency trying to backdoor lin Linux.

[-] possiblylinux127@lemmy.zip 21 points 1 year ago

Or it could of been any person or country. It was a nothing burger and is still a nothing burger

[-] Hugin@lemmy.world 26 points 1 year ago* (last edited 1 year ago)

It was clearly an attack. By who is unknown.

Notably this was in 2003 before git (2005) so linux source was in a central bitkeeper repo. So a commit with no associated data about who did it should not have been possible.

Here is a more detailed article. https://lwn.net/Articles/57135/

[-] desertdruid 8 points 1 year ago

speaking in burger terms as any good american

[-] possiblylinux127@lemmy.zip 2 points 1 year ago

Proud to be an American, at least I know I'm free.

[-] desertdruid 3 points 1 year ago

Free to buy all the hamburgers!

[-] prettybunnys@sh.itjust.works 17 points 1 year ago

The other side of that coin is the NSA developing SELinux

[-] brianorca@lemmy.world 24 points 1 year ago

This is because NSA has two roles: eavesdropping on foreign adversaries, and protecting our internal systems from adversaries. Under the first role, they might introduce an exploit known only to themselves. Under the second, they help protect US systems from exploits known to others.

[-] BobGnarley@lemm.ee 13 points 1 year ago

And because of this it makes whatever they fuck with have unnecessary security issues.

Also though they are using it to straight up spy on you whether foreign or not. They got in "trouble" for it once and pinky swore not to do it again.

Fuck the NSA

[-] BeardedGingerWonder@feddit.uk 5 points 1 year ago

Now they get the Brits and Aussies to do it and give them the reports.

[-] Boomkop3@reddthat.com 7 points 1 year ago

fork the kernel and yeet it?

[-] Hugin@lemmy.world 23 points 1 year ago

It was caught and never made it in the kernel.

[-] Boomkop3@reddthat.com 4 points 1 year ago
[-] BmeBenji@lemm.ee 95 points 1 year ago

This incident will be reported

[-] cypherpunks@lemmy.ml 60 points 1 year ago

he wouldn’t be able to inject backdoors even if he wanted to, since the source code is open

Jia Tan has entered the chat

[-] thedeadwalking4242@lemmy.world 6 points 1 year ago

The project contains binary blobs anyway so theoretically it wouldn't be super hard

[-] GolfNovemberUniform@lemmy.ml 57 points 1 year ago

But nobody's going to give them any sentence for that unfortunately.

[-] awiteb@lemmy.4rs.nl 48 points 1 year ago

I wouldn't be surprised if I knew that the backdoors that appear in Windows were designed by someone. I didn't know they were this brazen.

[-] sunzu2@thebrainbin.org 25 points 1 year ago
[-] Kyrgizion@lemmy.world 20 points 1 year ago

Yeah, when the actual mobo and cpu can be taken over remotely, what does the OS even matter?

load more comments (3 replies)
[-] FreudianCafe@lemmy.ml 17 points 1 year ago

I didn't know they were this brazen.

Oh boy i remember when i was this innocent

[-] awiteb@lemmy.4rs.nl 2 points 1 year ago

I'm not innocent, but this is unbelievable, that they would ask the main developer to plant a virus in it!! This is really rude

[-] sunzu2@thebrainbin.org 9 points 1 year ago

He is lucky he is no a US national... that convo could have gone down differently. People telling US spooks no, don't live long.

[-] chicken@lemmy.dbzer0.com 2 points 1 year ago* (last edited 1 year ago)

tbf the article only assumes he told them no because of how implausible it seems the task would be, the actual details of what if anything was discussed and what happened are unknown.

[-] sub_ubi@lemmy.ml 7 points 1 year ago

of all the things the nsa has done this is probably the nicest

[-] einkorn@feddit.org 16 points 1 year ago

For what? Destabilizing the whole technological ecosystem of the planet is not a crime. ¯\(ツ)

[-] scorp@lemmy.ml 47 points 1 year ago

good thing he's not an American citizen

[-] DacoTaco@lemmy.world 21 points 1 year ago

Except he is. He lives in portland now afaik

[-] scorp@lemmy.ml 10 points 1 year ago
[-] ragica@lemmy.ml 46 points 1 year ago

As long as the backdoor is licenced GPL what's the problem?

[-] mox@lemmy.sdf.org 36 points 1 year ago* (last edited 1 year ago)

Here's where Linus did/said the thing. (He is the second person from the right.)

https://www.youtube.com/watch?v=7gRsgkdfYJ8

[-] delirious_owl@discuss.online 5 points 1 year ago

Lol good year for the NSA

this post was submitted on 15 Aug 2024
540 points (100.0% liked)

Privacy

42229 readers
838 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS