this post was submitted on 30 Mar 2024
6 points (100.0% liked)

linuxmemes

20688 readers
1170 users here now

I use Arch btw

Sister communities:

Community rules

  1. Follow the site-wide rules and code of conduct
  2. Be civil
  3. Post Linux-related content
  4. No recent reposts

Please report posts and comments that break these rules!

founded 1 year ago
MODERATORS
poopsmith@lemmy.world
zephyr@lemmy.world
6
Backdoors (lemmy.ml)
submitted 5 months ago by lemmyreader@lemmy.ml to c/linuxmemes@lemmy.world
18 comments fedilink hide all child comments
 

https://wetdry.world/@cyrus/112186279067271067

you are viewing a single comment's thread
view the rest of the comments
[–] squaresinger@feddit.de 0 points 5 months ago (11 children)

The only real downside on the open source side is that the fix is also public, and thus the recipe how to exploit the backdoor.

If there's a massive CVE on a closed source system, you get a super high-level description of the issue and that's it.

If there's one on an open source system, you get ready-made "proof of concepts" on github that any script kiddy can exploit.

And since not every software can be updated instantly, you are left with millions of vulnerable servers/PCs and a lot of happy script kiddies.

See, for example, Log4Shell.

[–] DemSpud@lemmy.dbzer0.com 0 points 5 months ago (3 children)

bUt gUyS WhAt aBoUt sEcUrItY ThRoUgH ObScUrItY??

[–] squaresinger@feddit.de 0 points 5 months ago

hEy, yOu lEaRnEd A bUzZwOrD aNd rEcEnTlY dIsCoVeReD tHe sHiFt KeY!!!! cOnGrAtS!?!

load more comments (2 replies)
load more comments (9 replies)