Linux

9372 readers

112 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 2 years ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev

Antivirus vendors fail to spot persistent, nasty, stealthy Linux backdoor (www.theregister.com)

submitted 1 month ago by cm0002@programming.dev to c/linux@programming.dev

4 comments fedilink hide all child comments

top 4 comments

sorted by: hot top controversial new old

[–] A_norny_mousse@feddit.org 22 points 1 month ago (1 children)

A SSH PAM module and a dedicated ssh session that cleans up after itself.

That is scary.

However, it still requires root access to install itself, and mitigation against that should be practically reflexive for anybody running a Linux machine open to the world. I wonder why these articles always fail to mention that. I guess it doesn't make good sensationalism.

[–] Nugscree@lemmy.world 5 points 1 month ago

With more people adapting Linux you're bound to have more non tech savvy people that will allow anything to happen on their system. Prompt for password appears and they just put it in without any regards for what will happen next.

[–] SheeEttin@lemmy.zip 20 points 1 month ago

Not surprised. It looks like it's really just a malicious configuration more than anything.

Fortunately, I'm pretty sure you already have to be root to modify PAM.

[–] SlartyBartFast@sh.itjust.works 1 points 1 month ago

I love a good nasty backdoor from time to time