Hack Crashes Linux Distros with a mere 48 Characters of Code
Hack Crashes Linux Distros with a mere 48 Characters of Code
https://threatpost.com/hack-crashes-lin ... de/121052/
"Hack Crashes Linux Distros with 48 Characters of Code"
by Tom Spring
October 3, 2016 , 5:06 pm
With just a mere 48 characters of code, Linux admin and SSLMate founder Andrew Ayer has figured out how to crash major Linux distributions by locally exploiting a flaw in systemd.
Ayer said the following command, when run as any user, will crash systemd: NOTIFY_SOCKET=/run/systemd/notify systemd-notify “
"Hack Crashes Linux Distros with 48 Characters of Code"
by Tom Spring
October 3, 2016 , 5:06 pm
With just a mere 48 characters of code, Linux admin and SSLMate founder Andrew Ayer has figured out how to crash major Linux distributions by locally exploiting a flaw in systemd.
Ayer said the following command, when run as any user, will crash systemd: NOTIFY_SOCKET=/run/systemd/notify systemd-notify “
-
- Posts: 1543
- Joined: Mon 22 Feb 2016, 19:43
No different to a fork bomb. That command can be filtered out if you can't trust the main user ... dumb idea/concept purely for the purpose of (a poor attempt at) swaying a anti-systemd argument.
SysV crash in 14 characters (fork bomb) DON'T RUN IT!!
i.e. define a function that calls itself twice every time and invoke that function.
SysV crash in 14 characters (fork bomb) DON'T RUN IT!!
Code: Select all
:(){ :|: & };:
-
- Posts: 1885
- Joined: Tue 05 Jun 2012, 12:17
- Location: Wisconsin USA
-
- Posts: 1543
- Joined: Mon 22 Feb 2016, 19:43
haha yes it's tongs. Don't you know the Thong Song?Scooby wrote:Lost in translation, huh?
Alright so what would be the correct way to say it in English?
A pair of tongs? A pair of pliers?
I guess that would explain rufwoof's post. Is there a DevuanDog? (not that I see a good reason to use it over a Devuan Puppy)drunkjedi wrote:DebianDog has option to boot with systemd I believe.
You can test it there....
-
- Posts: 1885
- Joined: Tue 05 Jun 2012, 12:17
- Location: Wisconsin USA
I switched over from SysV DebianDog to SysD and the boot time more than halved. 28 seconds down to 12 seconds (using LZ4 compressed main sfs on a HDD frugal). That's despite SysD being a lot larger (strives to cater for all setups ... which IME it did/does well). With a common kernel and initrd it detects/boots well using common code (so more eyes fixing any issues there may be instead of everyone going off and doing their own thing).
There's still a initrd content that you can edit (do your own thing) but the 'proper way' is to leave that common (as-is) and write modules to drop in/execute when you want.
I also found that suspend worked much better, so now PC in suspend mode takes just 2 or 3 seconds to 'start up'.
My dislikes are the modules aren't intuitive. You have to define before and/or after values that unless you are familiar with what other things are doing can be awkward to determine. Things like before shutdown, halt, suspend are easy enough but others much less so. A cost of modularity.
I'm not bothered by the politics of the two, just picked what works best for me. I have tried Devuan (beta) but its in its infancy still ... a long way to go yet (Mammoth task to get up to the same level of support/development/documentation to compare to Debian).
There's still a initrd content that you can edit (do your own thing) but the 'proper way' is to leave that common (as-is) and write modules to drop in/execute when you want.
I also found that suspend worked much better, so now PC in suspend mode takes just 2 or 3 seconds to 'start up'.
My dislikes are the modules aren't intuitive. You have to define before and/or after values that unless you are familiar with what other things are doing can be awkward to determine. Things like before shutdown, halt, suspend are easy enough but others much less so. A cost of modularity.
I'm not bothered by the politics of the two, just picked what works best for me. I have tried Devuan (beta) but its in its infancy still ... a long way to go yet (Mammoth task to get up to the same level of support/development/documentation to compare to Debian).
@belham2:
I linked to the actual blog post of the person who found the bug in my post here: http://www.murga-linux.com/puppy/viewto ... 544#926544. It is worthwhile to read his full write-up to know the extent of the problem.
@rufwoof:
For those who run "traditional" systems with root/non-root privilege separation, the difference between your idea, and the systemd bug is as like a spider and a spider-crab.
Here: Non-root users are not supposed to be able to crash the system, ever, period. Your fork bomb idea only works when you're root, because, on a traditional system, a non-root user can't write create a new initscript (either sysv ones or systemd ones). So your idea won't work as non-root.
The aforementioned systemd bug, however, can be triggered by a regular, non-root user. A non-root user can crash the whole system - I think that's a serious bug.
I linked to the actual blog post of the person who found the bug in my post here: http://www.murga-linux.com/puppy/viewto ... 544#926544. It is worthwhile to read his full write-up to know the extent of the problem.
@rufwoof:
You're running as root so you are probably oblivious of the difference. When running as a root there are a lot of things you wreak havoc if you want to, fork bomb being the least of the problem.No different to a fork bomb. That command can be filtered out if you can't trust the main user ... dumb idea/concept purely for the purpose of (a poor attempt at) swaying a anti-systemd argument.
For those who run "traditional" systems with root/non-root privilege separation, the difference between your idea, and the systemd bug is as like a spider and a spider-crab.
Here: Non-root users are not supposed to be able to crash the system, ever, period. Your fork bomb idea only works when you're root, because, on a traditional system, a non-root user can't write create a new initscript (either sysv ones or systemd ones). So your idea won't work as non-root.
The aforementioned systemd bug, however, can be triggered by a regular, non-root user. A non-root user can crash the whole system - I think that's a serious bug.
Fatdog64 forum links: [url=http://murga-linux.com/puppy/viewtopic.php?t=117546]Latest version[/url] | [url=https://cutt.ly/ke8sn5H]Contributed packages[/url] | [url=https://cutt.ly/se8scrb]ISO builder[/url]
That particular fork-bomb is a 'user' bomb. I've run in under systemd 'user' also to equal effect.jamesbond wrote:@belham2:
I linked to the actual blog post of the person who found the bug in my post here: http://www.murga-linux.com/puppy/viewto ... 544#926544. It is worthwhile to read his full write-up to know the extent of the problem.
@rufwoof:You're running as root so you are probably oblivious of the difference. When running as a root there are a lot of things you wreak havoc if you want to, fork bomb being the least of the problem.No different to a fork bomb. That command can be filtered out if you can't trust the main user ... dumb idea/concept purely for the purpose of (a poor attempt at) swaying a anti-systemd argument.
For those who run "traditional" systems with root/non-root privilege separation, the difference between your idea, and the systemd bug is as like a spider and a spider-crab.
Here: Non-root users are not supposed to be able to crash the system, ever, period. Your fork bomb idea only works when you're root, because, on a traditional system, a non-root user can't write create a new initscript (either sysv ones or systemd ones). So your idea won't work as non-root.
The aforementioned systemd bug, however, can be triggered by a regular, non-root user. A non-root user can crash the whole system - I think that's a serious bug.
Debian have put out a fix to disable that systemd 'bug' ... simple disable it choice.
so to gain 14 seconds yo u have to bring on this behemoth and crushrufwoof wrote:I switched over from SysV DebianDog to SysD and the boot time more than halved. 28 seconds down to 12 seconds (using LZ4 compressed main sfs on a HDD frugal).
all independence and modularity of the Linux eco-system.
So you can spend your valuable time on something more important
like facebook and pokemon go???