Federal agency warns critical Linux vulnerability being actively exploited - eviltoast

Cybersecurity and Infrastructure Security Agency urges affected users to update ASAP.

  • simplymath@lemmy.world
    link
    fedilink
    English
    arrow-up
    20
    ·
    5 months ago

    I appreciate that you curate the RSS feed. I get very little time for social media these days and I’m glad there’s someone here populating feeds with content.

    I’m not a huge fan of cynicism and non-contributory comments when this space is meant to be better than the toxic sites we all fled. There’s a plethora of options for tailoring your feed to exclude unwanted content, none of which require attacking other users acting in good faith.

    Thanks to your profile, I found several new communities I will happily follow now. Keep up the good work!

    • Maeve@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      5 months ago

      I wondered how the heck humans made so. many. posts! Thanks for this post, I may unblock someone else. But maybe not bc I didn’t need every stupid comment made by orange people (although it may be a good Idea, residing where I do, to be informed about certain developments pertaining to them).

    • KomfortablesKissen@discuss.tchncs.de
      link
      fedilink
      English
      arrow-up
      6
      ·
      5 months ago

      Normally I would say that nobody deserves to be hacked. But now my perception of the situation has changed.

      If viewed like a bank and my data is the money in it, then what’s happening mostly is that my money gets stolen. After getting found out the bank says “We’re sorry ;)”; the bank might even get insurance money, while I get multiple attempts at accessing my accounts at other services.

      Now I would like to see this gross negligence punished. Preferably by a 4x2 to the head. Or cat-o-ninetails.

      • sugar_in_your_tea@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        3
        ·
        5 months ago

        Exactly. If you run a service, the bare minimum due diligence is to install available updates in a timely manner. Imo, it’s criminal negligence if a service gets hacked due to an unpatched system.

        Most likely, this isn’t being done because the IT dept isn’t given enough time to actually maintain systems, so whoever makes that decision should face criminal charges. And orgs like the NSA should be auditing this kind of thing and issuing fines, not spying on US citizens.

  • EmperorHenry@infosec.pub
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    13
    ·
    5 months ago

    oh but guys! Linux is so much more secure than windows!

    Linux can’t get hacked or get malware! That’s absurd!

    That was all sarcasm

    • Telorand@reddthat.com
      link
      fedilink
      English
      arrow-up
      19
      arrow-down
      2
      ·
      5 months ago

      Anyone who still thinks that is either new to Linux or profoundly naive.

      Also:

      It was patched in January, but as the CISA advisory indicates, some production systems have yet to install it.

      So it’s really primarily a production issue at this point.

      • EmperorHenry@infosec.pub
        link
        fedilink
        English
        arrow-up
        2
        ·
        5 months ago

        Anyone who still thinks that is either new to Linux or profoundly naive.

        People still shit downvotes on me whenever I talk about how linux isn’t perfect.

        Microsoft, for all its faults is at least honest enough to admit outright that their software needs protection. They’re still not honest about what kind of protection it needs. But at least they’re not going to yoink anything off your system they don’t want you to use like Apple does

        • Paragone@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          1
          ·
          5 months ago

          Back in the last century, iirc, or the very early 2000’s, I logged-out of my desktop ( linux ) one time & discovered there was a new user on my machine…

          the new username was “you are dead”.

          1st time I knew I’d been cracked.

          Not a nice feeling.

          Educational, however, & motivating…

          did me good.

          I’m glad the person was more interested in communicating my trusting foolishness to me, than in doing real harm…

          _ /\ _

        • BrikoX@lemmy.zipOP
          link
          fedilink
          English
          arrow-up
          51
          arrow-down
          4
          ·
          5 months ago
          1. Welcome to Lemmy. Link-aggregation is the point of the software…
          2. I also made 1.6K comments. If you want to accuse me of being an active user, I can agree with that, but nothing I post is automated or scripted.

          I share what I find interesting from my RSS feed. If you have an issue with what I post, you can take advantage of another Lemmy feature, called blocking. Go back to my profile and click Block.

          • August27th@lemmy.ca
            link
            fedilink
            English
            arrow-up
            43
            arrow-down
            4
            ·
            5 months ago

            I share what I find interesting from my RSS feed.

            Thank you for doing that. Human-curated links shared here is exactly what we need.

            To the complainer: People upvoting and downvoting posts will be the arbiter, not someone whining like a 14yo.

            • Telorand@reddthat.com
              link
              fedilink
              English
              arrow-up
              1
              arrow-down
              1
              ·
              5 months ago

              Not even. I don’t see downvotes, and it’s the quality of the post or comment that arbitrates things.

            • NoIWontPickAName@kbin.earth
              link
              fedilink
              arrow-up
              22
              arrow-down
              1
              ·
              5 months ago

              You seem to be in the minority here.

              At this point you can look back on yourself and ask why so many people disagree with you, or you can double down, your choice.

            • borari@lemmy.dbzer0.com
              link
              fedilink
              English
              arrow-up
              20
              arrow-down
              1
              ·
              5 months ago

              You’ve only been on here longer by a single month bro. I’ve been on here longer than you ffs. This is not a flex, you need to just stop my dude.

                • m-p{3}@lemmy.ca
                  link
                  fedilink
                  English
                  arrow-up
                  13
                  arrow-down
                  1
                  ·
                  5 months ago

                  If you don’t like someone, you can curate your own feed by blocking them, and you’ve been only on the fediverse for a year. My OG account is 5 years old, and what OP is doing is exactly what we need to keep the platform alive.

                • borari@sh.itjust.works
                  link
                  fedilink
                  English
                  arrow-up
                  10
                  arrow-down
                  1
                  ·
                  edit-2
                  5 months ago

                  My dude, I am positive. My cake day: June 8 2023. Your cake day: June 12, 2023. Do you not realize that people can have multiple accounts? Dick measuring and attempts at gate keeping based on time on a platform is super cringe.

                  I created the community you’re posting in right now. You should probably get off the internet and chill bro. You woke up and made the choice to behave this way, and it’s pretty fucking embarrassing tbh.

        • thisbenzingring@lemmy.sdf.org
          link
          fedilink
          English
          arrow-up
          16
          arrow-down
          1
          ·
          5 months ago

          I notice half of lemmy matches up with my rss reader on most days. 1. The op used what ars posted, which is the proper way to do it IMO

          You could block them but instead you choose to attach. Why?

          1. If you don’t want to see it, block them. STFU with your bot accusations. It’s weak sauce. So what, they like to participate in the fedeverse by posting topics. I appreciate the content even though I see most of it first someplace else.

          I can’t chat it up there with lemmy people unless I find it here.