The Linux Thread - The Autist's OS of Choice

  • Want to keep track of this thread?
    Accounts can bookmark posts, watch threads for updates, and jump back to where you stopped reading.
    Create account
Froggy Fresh Sextape said:
Yeah, to be honest a lot of Linux security is just the fact that nobody bothers to target it. There's very little oversight for package maintainers, for example, since nobody wants to maintain packages in the first place much less check every single thing that's uploaded.

for a simplistic proof of concept:

Add PATH=$HOME/.local/bin:$PATH to the end of your .bashrc

Code: 
#!/bin/bash
/usr/bin/sudo echo 'lol'

Name this sudo, make it executable, put it in ~/.local/bin

Close and reopen your terminal, run sudo apt update or sudo dnf update or sudo pacman -Syu or whatever you usually do to update your system. Now imagine this pointed to a malicious binary instead.

There are other tricks you can do with stuff like LD_PRELOAD
Click to expand...
Yeah. This is part of the "other stuff" I was talking about when I mentioned security people criticize about Linux, when I mentioned that the xorg security thing is a problem.

It's a an easy place to attack, that doesn't require some crazy exploit or some sophisticated attack, it's just a wide open vulnerability. So your whole machine doesn't need to be compromised for an attacker to take advantage of the xorg issue.

How likely is it? Idk depends on the user, and what they do. But it's better that it get's dealt with, rather than people brushing it off, like it doesn't matter. Or at least acknowledge it's there to watch out for it.

Just like the attacks that take advantage of the shell and libraries. For me, I've taken to trying to sandbox things where I can. To at least stop a super simple exploit like that if I somehow manage to run into it.

But the best security is the user in a lot of cases.

controversial666 said:
How to use Ubuntu? I'm retarded in anything to do with IT
Click to expand...
RIP Nigger. Lol
 
Last edited by a moderator:
Frederica Bernkastel said:
What even the fuck happened
Click to expand...
Someone explained what happened in the profile comments on his account. Sperging, and then said some pedo shit or something.

Froggy Fresh Sextape said:
Immutable OS with sandboxing for all user applications is the way to go, but it's going to be approximately forever until we get there
Click to expand...
Maybe. The only thing is I like having the freedom that comes with a normal unix type file system, and just sandboxing things myself.

I forget the name of it. Bedrock Linux maybe? Sort of sounds like that. It's a different idea with a different purpose. But I think everything is basically sandboxed from everything else from what I remember.
 
analrapist said:
You really want to lower the barrier to entry to your OS for the cases where you hit trouble, IME. My new approach is: "There must be at least one easily-accessible Linux install."

Here's how the problem looks: If your drive isn't immediately accessible to Linux, how most distroes are designed today is to use an initrd to enter Linux.
Click to expand...
This just isn't a problem though. The only time I've had such an issue in a decade of using LUKS+LVM was when a boot partition ran out of space (because I hadn't tidied old kernels). At which point I just booted from a USB, used cryptsetup to decrypt things and mounted everything up, and chroot'd into the install to get things tidied up. Nothing was more complicated than it needed to be.
 
Is it possible to compile gentoo packages for my 32 bit slow PC on a 64bit fast one? I found some guide for making a binhost / using distcc, but they all assume the computers use the same architecture. Has anyone here tried it with success?
 
Betonhaus said:
is it possible to use a debian or fedora based OS as a binhost for Gentoo?
Click to expand...
If you compile, and package them correctly it technically shouldn't matter. I feel like just using gentoo might make it a little easier to set up, because everything will just be there to make binpkgs. But once it is set up, I guess either will be the same.
 
IMG_20250912_072639_050.webp
 
Betonhaus said:
View attachment 7905171
Click to expand...

C: 
  XEvent e;
  do
  {
    XNextEvent(display, &e);     
    if(e.type == ClientMessage && e.xclient.data.l[0] == wmDeleteMessage)
    {
      XDestroyWindow(display,e.xclient.window);
      break;   
    }
    //...
  }while (XPending(display) > 0)
  XCloseDisplay(display);
  return 0;

C: 
  XEvent e;
  do
  {
    nothingEverHappens(display, &e);     
    if(e.type == ClientMessage && e.xclient.data.l[0] == wmDeleteMessage)
    {
      thisIsMagaCountry(display,e.xclient.window);
      break;   
    }
    //...
  }while (trump2028(display) > 0)
  totalNiggerDeath(display);
  return 0;
 
You must log in or register to reply here.
Back
Top Bottom