this post was submitted on 11 Dec 2023
189 points (97.0% liked)

Technology

59123 readers
2973 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Stealthy Linux rootkit found in the wild after going undetected for 2 years::Krasue infects telecom firms in Thailand using techniques for staying under the radar.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 25 points 11 months ago (1 children)

SELinux, grsecurity, containers, keep your system updated and don't run random untrustworthy code.

[–] [email protected] 15 points 11 months ago (2 children)

random untrustworthy code.

Honestly, is there much code in the world which doesn't meet this description? How do you propose we decide what is trustworthy? Every time I update my packages I'm getting possibly millions of new lines of code that I can't possibly personally vet

[–] [email protected] 9 points 11 months ago (1 children)

Keyword "Random". The code for the packages that shipped for your os and for your user installed utilities are generally 'trusted' code since you sought out the install. It's not bulletproof, but it's a good start vs running any package that happens to land in your downloads folder.

[–] [email protected] -1 points 11 months ago* (last edited 11 months ago)

Well, it's not always so cut and dried. For example, do I need to research the maker of an app that looks useful? I don't think most people on lemmy are the types to literally not care at all where software comes from, so I'm just trying to understand better how we can properly draw that line

[–] [email protected] 3 points 11 months ago

Those packages are vetted by multiple maintainers from different places, they'd all have to be in on it.