overview for AnnaFrankfurter

The glass is NOT half full in c/memes@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 2 points 5 months ago* (last edited 5 months ago) (1 children)

This is the original email by the person who discovered this backdoor. But if you want you can search for xz backdoor and you'll find a lot more articles which explain timelines and other things. https://www.openwall.com/lists/oss-security/2024/03/29/4

 == Observing Impact on openssh server ==

With the backdoored liblzma installed, logins via ssh become a lot slower.

time ssh nonexistant@...alhost

before:
nonexistant@...alhost: Permission denied (publickey).

before:
real	0m0.299s
user	0m0.202s
sys	0m0.006s

after:
nonexistant@...alhost: Permission denied (publickey).

real	0m0.807s
user	0m0.202s
sys	0m0.006s

That's a 500ms or 0.5s difference

Do you encrypt your drives and why or why not? in c/linux@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 5 points 5 months ago* (last edited 5 months ago) (1 children)

They don't need to guess the password. If you don't have full disk encryption I can just run another os in live mode and mount your drive and read everything. And even change the password to your fedora, by changing the hash in shadow file

The glass is NOT half full in c/memes@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 24 points 5 months ago (3 children)

Hey we need people like that, remember when an autistic person discovered few hundred millisecond delay in ssh which uncovered Jia Tan backdoor.

Weeks when decades happen in c/memes@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 6 points 5 months ago

Welp that escalated quickly

Phone a friend in c/memes@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 5 points 5 months ago

From my experience that is fairly normal

Which Linux tool or command is surprisingly simple, powerful, and yet underrated?" in c/linux@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 15 points 5 months ago (3 children)

xargs

We talk the same language in c/memes@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 2 points 6 months ago

Hexagons are bestagons

Tips for getting better at Linux. in c/linux@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 2 points 6 months ago (2 children)

Switch to rolling distro, it will break so many things with each update you'll learn stuff by fixing it. Also you can check https://overthewire.org/wargames/bandit/

How to go about updating BIOS on a Linux laptop when only .exe is provided? in c/linux@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 3 points 6 months ago

OK I was wrong it's not default EXE it is the only option https://wiki.osdev.org/UEFI

UEFI executables are regular PE32 / PE32+ (Windows x32 / x64) images, with a specific subsystem. Every UEFI application is basically a windows EXE (or DLL) without symbol tables.

How to go about updating BIOS on a Linux laptop when only .exe is provided? in c/linux@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 3 points 6 months ago (1 children)

It should https://www.dell.com/support/kbdoc/en-us/000131486/update-the-dell-bios-in-a-linux-or-ubuntu-environment

How to go about updating BIOS on a Linux laptop when only .exe is provided? in c/linux@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 11 points 6 months ago* (last edited 6 months ago) (5 children)

If I remember correctly you can just put the exe file in an empty flash drive and go to your bios select update bios you don't need to do anything else since UEFI by default runs exe. If you're on uefi your os should also have a exe file in /boot

The feast in c/memes@lemmy.ml

[–] AnnaFrankfurter@lemmy.ml 14 points 6 months ago (13 children)

You forgot to add Iran, Russia, and Saudi Arabia, and I think rest of world altogether.