this post was submitted on 19 Sep 2023
242 points (94.2% liked)
Technology
59322 readers
5106 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
On the upside they are helping secure Linux because now the the appropriate action can be taken to prevent this in future.
I'm sure a security patch has already been released. The Linux community normally addresses these things very quickly.
I'm all for looking on the bright side but this is a bit much lol
Linux users online tend to get very high and mighty every time another OS has a sucurity bug. But it's a good thing for Linux hehe
That's because illuminating security vulnerabilities is VERY GENERALLY a good thing for an open source community driven software that can be more agile than closed and private code bases that are GENERALLY entrenched in a corporate structure slowed by all of the inertia inherent in those systems.
Don't like all Linux patches have to be emailed directly to chappy for him to personally check?
wtf does this mean?
No, that's just for development discussion and code versioning. Nothing the end-user needs to touch or see.
End users update their system with commands/through interfaces or they receive automatic updates, depending on their system.
We're talking about patching the kernel though.
There's no actual vuln here is there? It's just a persistent backdoor that hides with some elf and kernel tricks.
You can literally say this about any and all security breaches, so long as the victims resolve, and fix the breach.
Sure. I'm not excusing it, just saying now they we know about it, at least it can get patched. Nothing worse than having a security hole going unpatched for years.