Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Thread Tools Display Modes
  #1   (View Single Post)  
Old 27th February 2016
J65nko J65nko is offline
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,508
Default Most software already has a “golden key” backdoor: the system update

From http://arstechnica.com/security/2016...d-auto-update/

Software updates are just another term for cryptographic single-points-of-failure.

... here is a sad joke that happens to describe the reality we presently live in:
Q: What does almost every piece of software with an update mechanism, including every popular operating system, have in common?

A: Secure golden keys, cryptographic single-points-of-failure which can be used to enable total system compromise via targeted malicious software updates.
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Mac OSX Software Update behind pf TronDD OpenBSD Security 4 26th November 2014 03:04 PM
Ran make update and the system decided to install Gnome? sparky NetBSD Package System (pkgsrc) 6 22nd April 2013 02:53 PM
LLVM compiler infrastructure receives ACM Software System Award J65nko News 0 12th April 2013 12:48 AM
Security Backdoor found in Piwik analytics software J65nko News 0 27th November 2012 01:01 PM
Clonezilla Live clone system update J65nko News 0 28th September 2011 05:53 PM

All times are GMT. The time now is 03:06 PM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick