☆ Yσɠƚԋσʂ ☆@lemmy.ml to Linux@lemmy.mlEnglish · 2 个月前New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentialsthehackernews.comexternal-linkmessage-square16linkfedilinkarrow-up176arrow-down13cross-posted to: linux@programming.dev
arrow-up173arrow-down1external-linkNew Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentialsthehackernews.com☆ Yσɠƚԋσʂ ☆@lemmy.ml to Linux@lemmy.mlEnglish · 2 个月前message-square16linkfedilinkcross-posted to: linux@programming.dev
minus-squareblobjim [he/him]@hexbear.netlinkfedilinkEnglisharrow-up12·2 个月前How is this a backdoor if it requires being able to install custom PAM modules???
minus-squareQuibblekrust@thelemmy.clublinkfedilinkEnglisharrow-up12·2 个月前First, you break into the house, then you install an invisible backdoor, and then you can come and go freely. It’s a “post-exploit” tool. It’s the persistent backdoor you install after you break in. It survives reboots, unlike most exploits.
minus-squareblobjim [he/him]@hexbear.netlinkfedilinkEnglisharrow-up1·2 个月前ah I guess that’s exactly what a backdoor is. I read the headline and thought security vulnerability or privilege escalation.
How is this a backdoor if it requires being able to install custom PAM modules???
First, you break into the house, then you install an invisible backdoor, and then you can come and go freely.
It’s a “post-exploit” tool. It’s the persistent backdoor you install after you break in. It survives reboots, unlike most exploits.
ah I guess that’s exactly what a backdoor is. I read the headline and thought security vulnerability or privilege escalation.