[Bradford] For all System-D Love-to-Haters
David Spencer
baildon.research at googlemail.com
Sun May 2 15:09:04 UTC 2021
Um so it appears this is some non-systemd totally unrelated crap that isn't
even an exploit. It's no more the fault of systemd than those scam calls
from 'Microsoft support' are Microsoft's fault.
But No! you might think. Those calls are, in a sense, actually Microsoft's
fault for creating a context in which end users are simultaneously
bamboozled by complexity and infantilised.
And so it's the same with systemd. It hasn't got a process named
'systemd-daemon'. Superficially, it's not systemd's fault when some
unrelated malware steals systemd's name. Yet can anyone name all the
possible legitimate components and processes run by each successive version
of systemd? There are so many, and they're continuing to multiply. And
*that's* the 'in' for the malware.
Cheers
-D.
On Fri, 30 Apr 2021, 15:08 Moanin via Bradford, <bradford at mailman.lug.org.uk>
wrote:
> Hi John,
>
> Thanks for the feedback. Nothing here, either, as far as I can tell. Not
> so much worried about it as thinking how much David S among others just
> luuurv SystemD, they might like to point an index finger in its
> direction saying "I told you!!!" on Tues 11th ;)
>
> Mike
>
> On 30/04/2021 15:00, John Robert Hudson wrote:
> > Hi Mike
> >
> > I just checked for the offending files and I don’t have either of them
> on my
> > system. So it looks as if it is fairly easy to detect if you know what
> you are
> > looking for.
> >
> > As those files have been known about for some years, I presume most
> packagers
> > would be looking out for them/eliminating them from distributions -
> suggesting
> > that infections are happening in other ways.
> >
> > John
> >
> > On Friday, 30 April 2021 13:10:01 BST Moanin via Bradford wrote:
> >> With the next virtual BradLUG less than a fortnight away, I thought this
> >> The Register article may offer something to chew on?
> >>
> >> Mike
> >>
> >> But then I forgot the link. Here it is:
> >>
> >>
> https://www.theregister.com/2021/04/29/stealthy_linux_backdoor_malware_spott
> >> ed/
> >>
> >> --
> >> Bradford mailing list
> >> Bradford at mailman.lug.org.uk
> >> https://mailman.lug.org.uk/mailman/listinfo/bradford
> >
> >
> >
> >
>
> --
> Bradford mailing list
> Bradford at mailman.lug.org.uk
> https://mailman.lug.org.uk/mailman/listinfo/bradford
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.lug.org.uk/pipermail/bradford/attachments/20210502/e8cde0f2/attachment.html>
More information about the Bradford
mailing list