557
submitted 4 months ago by awiteb@lemmy.4rs.nl to c/privacy@lemmy.ml
you are viewing a single comment's thread
view the rest of the comments
[-] Hugin@lemmy.world 105 points 4 months ago

Years ago there was a commit to the Linux kernal that strangly had no author. This got some attention of several of the developers.

Looking into the code that had to deal with network transmission. there was a section that if you tried to get network access in a unusual way had a check that was written something like this.

If (usr_permission = ROOT) ... Instead of If (usr_permission == ROOT) ...

The first giving the user root if invoked and the second checking to see if the user was root.

It's widely thought this was the NSA or some other intelligence agency trying to backdoor lin Linux.

[-] prettybunnys@sh.itjust.works 18 points 4 months ago

The other side of that coin is the NSA developing SELinux

[-] brianorca@lemmy.world 23 points 4 months ago

This is because NSA has two roles: eavesdropping on foreign adversaries, and protecting our internal systems from adversaries. Under the first role, they might introduce an exploit known only to themselves. Under the second, they help protect US systems from exploits known to others.

[-] BobGnarley@lemm.ee 13 points 4 months ago

And because of this it makes whatever they fuck with have unnecessary security issues.

Also though they are using it to straight up spy on you whether foreign or not. They got in "trouble" for it once and pinky swore not to do it again.

Fuck the NSA

[-] BeardedGingerWonder@feddit.uk 5 points 4 months ago

Now they get the Brits and Aussies to do it and give them the reports.

[-] possiblylinux127@lemmy.zip 9 points 4 months ago

Or it could of been any person or country. It was a nothing burger and is still a nothing burger

[-] Hugin@lemmy.world 26 points 4 months ago* (last edited 4 months ago)

It was clearly an attack. By who is unknown.

Notably this was in 2003 before git (2005) so linux source was in a central bitkeeper repo. So a commit with no associated data about who did it should not have been possible.

Here is a more detailed article. https://lwn.net/Articles/57135/

[-] desertdruid@lemmy.blahaj.zone 8 points 4 months ago

speaking in burger terms as any good american

[-] possiblylinux127@lemmy.zip 2 points 4 months ago

Proud to be an American, at least I know I'm free.

[-] desertdruid@lemmy.blahaj.zone 2 points 4 months ago

Free to buy all the hamburgers!

[-] Boomkop3@reddthat.com 6 points 4 months ago
[-] Hugin@lemmy.world 23 points 4 months ago

It was caught and never made it in the kernel.

[-] Boomkop3@reddthat.com 4 points 4 months ago
this post was submitted on 15 Aug 2024
557 points (99.3% liked)

Privacy

32177 readers
519 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS