Linux Kernel Back-Door Hack Attempt Discovered
Grok Headline matches for Linux Kernel Back-Door Hack Attempt Discovered
Slashdot Linux Kernel Back-Door Hack
Attempt Discovered
Slashdot Linux Kernel Back-Door Hack
Attempt Discovered
11/07/2003 05:27 AMSlashdot
slashdot.org/articles/03/11/06/058249.shtml?tid=106&tid=185
track this
site | 5 links
Linux: Kernel "Back Door" Attempt
Linux: Kernel "Back Door" Attempt
11/14/2003 04:44 AMattempt to backdoor linux kernel at source level foiled by open-source
gurus .. if ((options == (__WCLONE __WALL)) && (current->uid = 0))
retval = -EINVAL; .. very interesting article .. (new window) ..
KernelTrap .. reports
kerneltrap.org/node/view/1584
track this
site | 4 links
Linux Kernel "Back Door" Attempted
Linux Kernel "Back Door" Attempted
11/06/2003 02:48 PMKernelTrap has a very interesting article about a recent attempt to
sneak a "back door" into the Linux 2.6 kernel. Evidently someone
managed to break into the CVS server that mirrors the kernel source
tree and add a small patch allowing one to locally obtain "root"
super-user access. Fortunately, during an export from the master
BitKeeper version of the kernel source tree into the CVS mirror, the
change was detected and quickly removed.
New Linux Kernel Crash-Exploit
discovered
New Linux Kernel Crash-Exploit
discovered
06/14/2004 08:22 AMLinux kernel development process thwarts
subversion attempt
Linux kernel development process thwarts
subversion attempt
11/06/2003 12:18 PMIn a stunning verification of Eric S. Raymond's open source adage,
"Many eyes make all bugs shallow," an attempt to place malicious
"backdoor" code in the Linux kernel 2.6 development tree was detected
and rejected almost immediately. The code, if it had become part of
the final kernel release, would have allowed a remote user to take
control of machines running that Linux kernel version. Unauthorized
code snippets, often called Easter Eggs, are common in closed-source
programs but are relatively rare in the open source world. It's easy
for developers to hide either humorous or malicious code in programs
whose inner workings are hidden, but as this Linux kernel incident
shows, the open source development process carries a degree of
built-in immunity to this kind of problem.
Coop Linux: scary kernel hack
Coop Linux: scary kernel hack
01/26/2004 10:15 AMWes "Kernel Hacker" Felter describes Cooperative Linux as, "a scary
hack that loads the Linux kernel into the NT kernel as a driver so
that they can both run in ring 0 at the same time, allowing Linux apps
to run full speed on Windows without porting."
Link
(
via Hack the
Planet)
The 2.7 Kernel: Back To The Future For
Linux
The 2.7 Kernel: Back To The Future For
Linux
01/27/2004 09:51 PMRCA / Thomson Modem Hack Discovered
RCA / Thomson Modem Hack Discovered
12/27/2004 12:43 PMNew Kernel Crash-Exploit discovered
New Kernel Crash-Exploit discovered
06/14/2004 02:37 PMHack . . . hack back . . . repeat
Hack . . . hack back . . . repeat
08/13/2004 10:39 AMThe Back Door
The Back Door
08/20/2004 10:44 AMThere are only two ways into the technology market, the front door and
the back door. Some examples that came in through the front door: ERP,
mainframes, and Lotus Notes. Back-door arrivals: personal computers,
Unix, and Dynamic Languages (Perl, Python, and so on). You can build a
business both ways. And, now that I’ve been here at Sun for almost
six months, I wonder: Which door should we be knocking on?...
Secure Back Door 0.3
Secure Back Door 0.3
12/25/2004 07:18 PMA minimal and secure method for administrating a computer.
Secure Back Door
Secure Back Door
12/25/2004 04:54 PMSBD 0.3 is out!
Secure Back Door 0.4
Secure Back Door 0.4
12/29/2004 04:12 PMA minimal and secure method for administrating a computer.
Back-door your Roomba
Back-door your Roomba
05/07/2004 03:35 AMPT sez, "This week's "how to" article from Engadget shows how to put
the Roomba Robot Vacuum in hardware check mode. This is a useful mode
for Roomba hackers (and anyone else) to test the functions of the unit
as well as see how the unit works, test the 'virtual walls,' clean
specific parts and have some fun."
Pressing the L button for the 5th time (you'll hear 5 beeps) will put
the Roomba in "bulldozer" mode, in other words it'll just roll forward
no matter what, the sensors and bumpers and picking it up will not
stop it. Be careful, don't let the Roomba damage you or itself.
Link
(
Thanks, PT!)
NetGear's Back Door
NetGear's Back Door
06/04/2004 09:11 AMA BugTraq report claims that certain WG602 units from NetGear have an
unavoidable backdoor password for administration: A few days ago, we
linked to news that Linksys's WRT54G had certain firmware releases
that left remote administration turned on. Now a report says that it's
likely that a username and password that's available on the remote and
local network interfaces by default (and which apparently can't be
turned off) bedevils the NetGear WG602 in at least one firmware
release. [link via The Security Mentor]...
Back door found in Dynalink DSL router
Back door found in Dynalink DSL router
09/14/2004 04:16 PMHackers build back door into iTunes
Hackers build back door into iTunes
03/19/2005 02:55 AMNew software by "DVD Jon" allows online music purchases without copy
protection.
By a Back Door to the U.S.: A Migrant's
Grim Sea Voyage
By a Back Door to the U.S.: A Migrant's
Grim Sea Voyage
06/12/2004 01:56 PMA reporter's journey as a client of smugglers provides a rare look
inside one small part of the vast pipeline that carries untold numbers
of migrants to the United States each year.
MyDoom Attacks Microsoft.com Through
Back Door
MyDoom Attacks Microsoft.com Through
Back Door
07/27/2004 04:06 PMA second attack uses the back door installed by MyDoom.O to launch a
DDoS attack against the company's main Web site, and researchers find
a function of the variant that keeps track of every system the worm
infects.
IE flaws open back door to adware
IE flaws open back door to adware
06/10/2004 03:05 AMZDNet UK Jun 10 2004 7:52AM GMT
Macromedia's hidden back-door in Flash
Macromedia's hidden back-door in Flash
04/10/2005 02:06 PMI poised this question yesterday and got a response from
Macromedia.....
MARC:
"Oh BTW - what's the story with this hidden backdoor in the flash
player - that only Macromedia gets to use?"
ANSWER:
What "backdoor"?
How can others see what you're seeing?
John Dowdell
Macromedia Support
Dear John,
It is a well known fact among insiders that Macromedia has built an
undocumented back-door into Flash. This back-door allows for 'instant'
upgrade to the Flash player and other things - that aren't as clear.
One thing we know FOR SURE is that Macromedia has
improved audio features - improved quality of audio - that they're not
letting out to others.
This along with Macromedia's really warm, positive approach to
their FlashCom developers - who are now directly competing with Breeze
- makes for a typical Macromedia kind of relationshiup - Breezey at
best.
I believe the bakcdoor is called 'lightening' or something like
that.
Perhaps they haven't even told YOU about it - John - what can I
say. It;s there alright. That wouldn't surprise me a bit.
Windows Back Door? Who's guarding the
guards? That would be us
Windows Back Door? Who's guarding the
guards? That would be us
02/13/2004 09:16 AMThe essay "Open Source Is Fertile Ground for Foul Play" suggests three
areas where security might be a concern for governments when
considering open source software. However, all three arguments are
flawed "straw men" when subjected to rational analysis. Indeed, some
of the author's own arguments demonstrate the strengths of open source
when weighed against any closed source alternative. First, the author
suggests that security breaches could be inserted into open source
software by an insider, perhaps hidden in code submitted as a fix or
an extension. While there is a remote possibility of this occurring
(this is conceded as "not terribly likely," even by the author), there
is a far greater possibility of this occurring when patching closed
source software.
'DVD Jon' reopens iTunes back door
'DVD Jon' reopens iTunes back door
03/22/2005 06:53 PMApple Computer's music store is once again exposed to copy
protection-free sales.
Mainstream Web sites spreading back-door
infections
Mainstream Web sites spreading back-door
infections
06/25/2004 05:21 AMZDNet UK Jun 25 2004 8:56AM GMT
Firms Attempt to Defragment Linux
Firms Attempt to Defragment Linux
05/30/2002 12:41 PMLayer-7 Packet Classifier for Linux
0.4.0 (Linux Kernel 2.6 Netfilter patch)
Layer-7 Packet Classifier for Linux
0.4.0 (Linux Kernel 2.6 Netfilter patch)
12/06/2003 03:55 AMAn application-layer packet classifier for Linux.
Layer-7 Packet Classifier for Linux
0.1.0 (Linux Kernel 2.6 Netfilter patch)
Layer-7 Packet Classifier for Linux
0.1.0 (Linux Kernel 2.6 Netfilter patch)
11/10/2003 11:33 PMA layer-7 packet classifier for packet shaping.
Layer-7 Packet Classifier for Linux
0.0.2 (Linux Kernel 2.6 Netfilter patch)
Layer-7 Packet Classifier for Linux
0.0.2 (Linux Kernel 2.6 Netfilter patch)
10/31/2003 02:44 AMA layer-7 packet classifier for packet shaping.
McObject’s eXtremeDB - First In-Memory
Database for BlueCat Linux 5.0 and Linux
2.6 Kernel
McObject’s eXtremeDB - First In-Memory
Database for BlueCat Linux 5.0 and Linux
2.6 Kernel
06/22/2004 02:43 AMWith McObject’s release of its eXtremeDB 2.3 in-memory embedded
database for LynuxWorks’ BlueCat Linux 5.0 operating system,
developers of embedded Linux applications for the first time have an
in-memory database system (IMDS) available for LynuxWorks’ powerful
embedded platform, and for the Linux 2.6 kernel on which BlueCat Linux
5.0 is based. [PRWEB Jun 22, 2004]
WLAN vendors gain back-door WAPI support
WLAN vendors gain back-door WAPI support
04/21/2004 04:57 AMIn through Taiwan
Hahn Opens the Door to Scaled-Back LAX
Plan (Los Angeles Times)
Hahn Opens the Door to Scaled-Back LAX
Plan (Los Angeles Times)
06/11/2004 05:03 AMLos Angeles Times - With crucial votes on his LAX modernization plan
set for Monday, Mayor James K. Hahn is working toward a compromise
that could postpone and possibly even eliminate the controversial
centerpiece of his $9 billion overhaul.
Kernel Mode Linux 2.4.31_001 (For Linux
2.4 branch)
Kernel Mode Linux 2.4.31_001 (For Linux
2.4 branch)
06/05/2005 11:23 PM
Kernel Mode Linux is a technology which enables
the execution of user programs in a kernel mode.
In Kernel Mode Linux, user programs can access
kernel address space directly. Unlike kernel
modules, user programs are executed as ordinary
processes (except for their privilege level), so
scheduling and paging are performed as usual.
Although it seems dangerous, the safety of the
kernel can be ensured through such methods as
static type checking, software fault isolation,
and so forth.
License: GNU General Public License (GPL)
Changes:
This version was merged with the 2.4.31 Linux
kernel.
Kernel Mode Linux 2.4.30_001 (For Linux
2.4 branch)
Kernel Mode Linux 2.4.30_001 (For Linux
2.4 branch)
04/05/2005 11:56 AM
Kernel Mode Linux is a technology which enables
the execution of user programs in a kernel mode.
In Kernel Mode Linux, user programs can access
kernel address space directly. Unlike kernel
modules, user programs are executed as ordinary
processes (except for their privilege level), so
scheduling and paging are performed as usual.
Although it seems dangerous, the safety of the
kernel can be ensured through such methods as
static type checking, software fault isolation,
and so forth.
Changes:
This version was merged with the 2.4.30 Linux
kernel.
Openwall Linux kernel patch 2.4.30-ow1
(Linux 2.4 branch)
Openwall Linux kernel patch 2.4.30-ow1
(Linux 2.4 branch)
04/08/2005 10:32 AM
The Openwall Linux kernel patch is a collection of security
"hardening" features for the Linux kernel. In addition to the new
features, some versions of the patch contain various security fixes.
The "hardening" features of the patch, while not a complete method of
protection, provide an extra layer of security against the easier ways
to exploit certain classes of vulnerabilities and/or reduce the impact
of those vulnerabilities. The patch can also add a little bit more
privacy to the system by restricting access to parts of /proc so that
users may not see what others are doing.
Changes:
This release was updated to Linux 2.4.30.
Kernel Pool Is Back For 2.6
Kernel Pool Is Back For 2.6
12/19/2003 07:33 PMRe:now if I wanted to give my kid a cool gift ... (Score:1). A Google
search for the phrase "Finnish Love Machine" finds one match. ...
Kernel Mode Linux 2.4.23_001 (For Linux
2.4)
Kernel Mode Linux 2.4.23_001 (For Linux
2.4)
12/02/2003 01:59 AMA factility for executing user processes in kernel mode safely.
MOSIX Kernel Patch 1.12.0 for Linux
2.4.27 (Linux 2.4)
MOSIX Kernel Patch 1.12.0 for Linux
2.4.27 (Linux 2.4)
08/09/2004 04:12 AMA cluster management system for Linux.
Kernel Mode Linux 2.6.7_002 (For Linux
2.6)
Kernel Mode Linux 2.6.7_002 (For Linux
2.6)
07/24/2004 09:36 AMA factility for executing user processes in kernel mode safely.
Grok Description matches for Linux Kernel Back-Door Hack Attempt Discovered
GrokA matches for Linux Kernel Back-Door Hack Attempt Discovered
Linux Kernel Back-Door Hack Attempt Discovered
