Path: ...!weretis.net!feeder8.news.weretis.net!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!.POSTED!not-for-mail
From: Marco Moock <mm+usenet-es@dorfdsl.de>
Newsgroups: comp.os.linux.misc
Subject: Re: Malware find in the news: xz related.
Date: Mon, 1 Apr 2024 10:44:07 +0200
Organization: A noiseless patient Spider
Lines: 23
Message-ID: <uuds4o$2bid0$2@dont-email.me>
References: <uu7r9s$kh5b$2@dont-email.me>
	<uubp1i$1qg47$1@dont-email.me>
	<uuc1l6$lfl$1@tncsrv09.home.tnetconsulting.net>
	<uuc2rc$1sek4$4@dont-email.me>
	<uucdc3$47g$2@tncsrv09.home.tnetconsulting.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Injection-Date: Mon, 01 Apr 2024 08:44:08 +0200 (CEST)
Injection-Info: dont-email.me; posting-host="1be2536f1209ebb964c2388730df914b";
	logging-data="2476448"; mail-complaints-to="abuse@eternal-september.org";	posting-account="U2FsdGVkX18K+qLdBUug2eE7X2852/kM"
Cancel-Lock: sha1:hqUWKzkHudGwlN+4vfwxLxb2mPc=
Bytes: 2007

On 31.03.2024 um 14:25 Uhr Grant Taylor wrote:

> N.B. there is a big difference in saying that *BSD / Slackware /
> Gentoo (OpenRC) aren't effected by the topic at hand because they
> aren't using systemd and saying that they are obviously more secure
> because they aren't vulnerable to the topic at hand.

They are not affected because the author of the backdoor maybe intended
to only affect sshd linked to xz or simply forgot that there are
systems that won't be affected by the back door.
Linux distributions with systemd are now the vast majority, so maybe
the author didn't care about some Gentoo or slackware machines.

If he liked, he could affect them too because they most likely have
liblzma installed for other purposes. Although, sshd could be affected,
but various other packages could be if the author intended to do that.

-- 
kind regards
Marco

Send spam to 1711887955muell@cartoonies.org