Skip to comments.
Vulnerability in popular bootloader puts locked-down Linux computers at risk
CSO Online ^
| 16 December 2015
| Lucian Constantin
Posted on 12/17/2015 11:05:35 AM PST by ShadowAce
click here to read article
1
posted on
12/17/2015 11:05:35 AM PST
by
ShadowAce
To: rdb3; Calvinist_Dark_Lord; JosephW; Only1choice____Freedom; amigatec; Ernest_at_the_Beach; ...
2
posted on
12/17/2015 11:06:05 AM PST
by
ShadowAce
(Linux - The Ultimate Windows Service Pack)
To: ShadowAce
Doesn't this exploit require physical access to the hardware?
3
posted on
12/17/2015 11:59:10 AM PST
by
so_real
( "The Congress of the United States recommends and approves the Holy Bible for use in all schools.")
To: so_real
Yeah, pretty much. However, GRUB comes before the kernel startup, so what's going on here is that GRUB can impose a password before it even chooses which kernel to boot (and which mode to boot into).
Having to input a GRUB password was considered a way around the "physical access means single user mode" exploit. This vulnerability puts the lie to that concept.
However, there is already a fix for this. We don't have to wait forever, or the next service pack, for a fix to be available.
4
posted on
12/17/2015 12:03:13 PM PST
by
ShadowAce
(Linux - The Ultimate Windows Service Pack)
To: ShadowAce
However, there is already a fix for this. We don't have to wait forever, or the next service pack, for a fix to be available.
I do like that, very much :-) Thanks for the info.
5
posted on
12/17/2015 12:07:31 PM PST
by
so_real
( "The Congress of the United States recommends and approves the Holy Bible for use in all schools.")
To: so_real
Doesn’t this exploit require physical access to the hardware?
Beware if your cat gets ‘radicalized’ and then wanders over to your keyboard, backspacing 28 times.
See.
Don’t be scared, but be vigilant.
6
posted on
12/17/2015 12:34:04 PM PST
by
Scrambler Bob
(Using 4th keyboard due to wearing out the "/" and "s" on the previous 3)
To: Scrambler Bob
Beware if your cat gets 'radicalized' and then wanders over to your keyboard, backspacing 28 times. Fortunately, my cats can only count to 3.
7
posted on
12/17/2015 12:45:32 PM PST
by
LimitedPowers
(Citizenship is not a Hate Crime!)
To: Scrambler Bob
I've had my eye on the little devil ... I see him practicing ctrl + alt + del. Of course with systemd he'll need to manage it eight times to trigger a reboot. I wonder if the systemd developers are owners of "radicalized" cats ...
8
posted on
12/17/2015 12:45:47 PM PST
by
so_real
( "The Congress of the United States recommends and approves the Holy Bible for use in all schools.")
To: so_real
There was a Dilbert episode where they had a monkey ‘coding’, and other employees complained he could use his tail.
Dilbert says: “You should see him do Ctl-Alt-Del”
9
posted on
12/17/2015 12:51:37 PM PST
by
Scrambler Bob
(Using 4th keyboard due to wearing out the "/" and "s" on the previous 3)
Disclaimer:
Opinions posted on Free Republic are those of the individual
posters and do not necessarily represent the opinion of Free Republic or its
management. All materials posted herein are protected by copyright law and the
exemption for fair use of copyrighted works.
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson
