monica_b1998@lemmy.world to Linux@programming.dev · 14 days agoChina-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decadethehackernews.comexternal-linkmessage-square14linkfedilinkarrow-up156arrow-down133
arrow-up123arrow-down1external-linkChina-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decadethehackernews.commonica_b1998@lemmy.world to Linux@programming.dev · 14 days agomessage-square14linkfedilink
minus-squareWhoIzDisIz@lemmy.todaylinkfedilinkarrow-up5arrow-down3·edit-213 days agoGo to something immutable. Apparently this is not as strong a solution as I thought. Apologies.
minus-squaremoonpiedumplings@programming.devlinkfedilinkarrow-up6·14 days agoNot really. Immutability can be overriden by root, who can then edit files. And in addition to that, /etc/, system config files, including pam files mentioned here, are not immuable even in immutable distros.
minus-squarePabloSexcrowbar@piefed.sociallinkfedilinkEnglisharrow-up4·14 days agoI don’t know that the current crop of immutable distros would be able to prevent something like this. rpm-ostree, at least, lets you install out-of-tree rpm packages to the base system, you just have to reboot for them to take effect.
Go to something immutable.Apparently this is not as strong a solution as I thought. Apologies.
Not really. Immutability can be overriden by root, who can then edit files.
And in addition to that, /etc/, system config files, including pam files mentioned here, are not immuable even in immutable distros.
TIL, TY.
I don’t know that the current crop of immutable distros would be able to prevent something like this. rpm-ostree, at least, lets you install out-of-tree rpm packages to the base system, you just have to reboot for them to take effect.