Linux, the "hobby" OS, going to be our workhorse

Re: Linux, the "hobby" OS, going to be our workhorse

Postby The Dharma Bum » Sat Apr 19, 2014 1:59 pm

There's only one way to find out how secure you really are:

http://nmap.org/

Have fun testing!
Image
User avatar
The Dharma Bum
Vice President
 
Posts: 11594
Joined: Tue Aug 21, 2012 10:31 am
Gender: None specified
Has thanked: 3285 times
Been thanked: 617 times
Political Leaning: Anarcho Communist

Re: Linux, the "hobby" OS, going to be our workhorse

Postby uebermann » Sat Apr 19, 2014 3:17 pm

The Dharma Bum wrote:we are talking about surveillance


Ok so we went from backdoors in Linux to surveillance on the whole.


If you don't know what a compiler is or what it's function is why are you even venturing an opinion on the subject?


I compile code nearly every day at work, I'm fully well aware of what a compiler is. You need to be bit more specific or just flat out stop changing the subject on a whim and assume everyone knows what you are talking about. Its IMPOSSIBLE for such an intrusion on Linux because everyone would see it. Linux is open source dude. THE SOURCE IS OPEN. Everyone can see it. You cannot hide such things in open source. If there was a backdoor, it would be found nearly immediately.

What you need to know is that if the NSA asks to install a backdoor there are two options, comply or shut your company down.


Completely untrue and not even applicable in this situation. You cannot shut down an OS like you can a mail server dude. Not even in the realm of possibility. Estimated amount of web servers running Linux are like 40%. Not only that but they aren't all in the US. NSA has no jurisdiction outside of the US. So no, the NSA isn't going to shut down any brand of Linux nor could they even if they wanted to. They'd have to outlaw people from using it on personal computers and there's no way they could ever EVER monitor that.

The things you are talking about here aren't even in the realm of being possible for so many reasons that I'm honestly not even going to discuss it any more - you might as well be arguing that the sky is actually red and grass is really purple, but we are too blind to see it.
Image
User avatar
uebermann
Site Admin
 
Posts: 5516
Joined: Thu Aug 16, 2012 12:56 am
Location: Tyler, TX
Gender: Male
Has thanked: 164 times
Been thanked: 370 times
Political Leaning: Middle of the Road

Re: Linux, the "hobby" OS, going to be our workhorse

Postby Spider » Sat Apr 19, 2014 5:46 pm

Uber, you need to use:

Code: Select all
sudo <ENLIGHTENMENT>


Image
Ernest Shackleton: "Men wanted for hazardous journey, small wages, bitter cold, long months of complete darkness, constant danger, safe return doubtful, honor and recognition in case of success."

Onward to Mars
User avatar
Spider
VIP
VIP
 
Posts: 11690
Joined: Sat Aug 18, 2012 12:38 pm
Location: Out in the sticks.
Gender: Male
Has thanked: 867 times
Been thanked: 1024 times
Political Leaning: Anarcho Communist

Re: Linux, the "hobby" OS, going to be our workhorse

Postby The Dharma Bum » Sat Apr 19, 2014 10:03 pm

You cannot hide such things in open source.
Not true. The NSA developed SELinux, so it's guaranteed they left a way to get in the backdoor. Many backdoors are simply implementations of normal everyday coding so you can't tell the difference unless you know it's there and know what to do with it. Not to mention the existence of hardware backdoors, including backdoored CPUs. (Both Intel and AMD chipsets are backdoored as well.)
http://arstechnica.com/security/2013/12 ... opers-say/

You cannot shut down an OS like you can a mail server dude. Not even in the realm of possibility.

There's no difference. All they have to do is make Linux illegal to use in the US and no business will use them. Any private user could be accused of domestic terrorism and their computer seized, so no sane private user would use them either. But they don't do this because they have a better way, total informational awareness through compromised technology ie backdoors.

The things you are talking about here aren't even in the realm of being possible for so many reasons that I'm honestly not even going to discuss it any more - you might as well be arguing that the sky is actually red and grass is really purple, but we are too blind to see it.


That is hopelessly naive. If that were true any terrorist organization could use linux to evade detection of their communications. There's no way the NSA would let that happen.

There just isn't really any such animal as secure electronic communications. So don't think Linux is going to hide stuff from the authorities. It may cost you your freedom.
Image
User avatar
The Dharma Bum
Vice President
 
Posts: 11594
Joined: Tue Aug 21, 2012 10:31 am
Gender: None specified
Has thanked: 3285 times
Been thanked: 617 times
Political Leaning: Anarcho Communist

Re: Linux, the "hobby" OS, going to be our workhorse

Postby phosphide » Sun Apr 20, 2014 8:09 pm

SELinux is open source, and isn't supported on all Linux platforms. For the last f**k time, you are talking about communications (via network protocols). That has little to do with Linux the operating system.
We must not be enemies. Though passion may have strained, it must not break our bonds of affection. The mystic chords of memory will yet swell the chorus when again touched, as surely they will be, by the better angels of our nature.
- Abraham Lincoln
phosphide
Senator
 
Posts: 1359
Joined: Sat Aug 18, 2012 2:37 pm
Gender: None specified
Has thanked: 10 times
Been thanked: 60 times
Political Leaning: Libertarian

Re: Linux, the "hobby" OS, going to be our workhorse

Postby uebermann » Mon Apr 21, 2014 3:36 pm

I'd like to point out that the whole "Backdoors in AMD and Intel chips" is a load of crap too. It was all from an article from an interview with a guy that said he would be disappointed if the NSA didn't have backdoors on the chips. There's no proof it has been done. Regardless, there's not much else out there in terms of options for computer chips. So either hackers are vulnerable to the NSA (and they are doing absolutely nothing about it) or there's no backdoors.

On another note, our change to Linux took a major blow today. Found out the software company we use hasn't updated their comm libs (java) for Linux in quite some time and me updating it broke a bunch of shit. They don't officially support Linux and I need the comm libs to work so we can have the GPS work on our maps so unless they are willing to look at it for me, there's no way we can use it.

Not a happy camper.
Image
User avatar
uebermann
Site Admin
 
Posts: 5516
Joined: Thu Aug 16, 2012 12:56 am
Location: Tyler, TX
Gender: Male
Has thanked: 164 times
Been thanked: 370 times
Political Leaning: Middle of the Road

Re: Linux, the "hobby" OS, going to be our workhorse

Postby phosphide » Sat Apr 26, 2014 12:15 pm

You could try running their software in Wine/Crossover.
We must not be enemies. Though passion may have strained, it must not break our bonds of affection. The mystic chords of memory will yet swell the chorus when again touched, as surely they will be, by the better angels of our nature.
- Abraham Lincoln
phosphide
Senator
 
Posts: 1359
Joined: Sat Aug 18, 2012 2:37 pm
Gender: None specified
Has thanked: 10 times
Been thanked: 60 times
Political Leaning: Libertarian

Re: Linux, the "hobby" OS, going to be our workhorse

Postby uebermann » Tue May 13, 2014 12:31 am

phosphide wrote:You could try running their software in Wine/Crossover.


Nope. Its a java based platform and the problem would have existed regardless as it was an issue with the software not reading the serial port. Mostly the problem was a permissions issue - the user has to be part of the dialout group. Otherwise, they don't have access to the dump the GPS puts out.

Issue was resolved and we start testing in the field next week. Hopefully no problems with it! Still not 100% sure which platform we are going with: Mint, Lubuntu, or Xubuntu. All 3 have their ups and downs. Mostly been using Lubuntu at this point but its missing some key features our guys are used to.
Image
User avatar
uebermann
Site Admin
 
Posts: 5516
Joined: Thu Aug 16, 2012 12:56 am
Location: Tyler, TX
Gender: Male
Has thanked: 164 times
Been thanked: 370 times
Political Leaning: Middle of the Road

Re: Linux, the "hobby" OS, going to be our workhorse

Postby The Dharma Bum » Fri Jun 06, 2014 12:22 pm

You cannot hide such things in open source.


lol

A newly discovered vulnerability that allows spying on encrypted SSL/TLS communications has been identified and fixed in the widely used OpenSSL library.

The vulnerability, which is being tracked as CVE-2014-0224, can be exploited to decrypt and modify SSL (Secure Sockets Layer) and TLS (Transport Layer Security) traffic between clients and servers that use OpenSSL


http://www.pcworld.com/article/2360560/ ... pying.html
Image
User avatar
The Dharma Bum
Vice President
 
Posts: 11594
Joined: Tue Aug 21, 2012 10:31 am
Gender: None specified
Has thanked: 3285 times
Been thanked: 617 times
Political Leaning: Anarcho Communist

Re: Linux, the "hobby" OS, going to be our workhorse

Postby exploited » Fri Jun 06, 2014 2:32 pm

Maliciously adding code is a much different beast than simply writing bad code and creating a vulnerability. Let's not move those goalposts that far. I'm sure you can do better than this to prove your point.
User avatar
exploited
Vice President
 
Posts: 21134
Joined: Fri Sep 14, 2012 2:32 pm
Location: Ontario, Canada
Gender: Male
Has thanked: 2242 times
Been thanked: 1707 times

PreviousNext

Return to Science/Tech

Who is online

Users browsing this forum: No registered users and 1 guest