[Home]  [Headlines]  [Latest Articles]  [Latest Comments]  [Post]  [Sign-in]  [Mail]  [Setup]  [Help] 

Status: Not Logged In; Sign In

Barron Trump

Big Pharma-Sponsored Vaccinologist Finally Admits mRNA Shots Are Killing Millions

US fiscal year 2025 opens with a staggering $257 billion October deficit$3 trillion annual pace.

His brain has been damaged by American processed food.

Iran willing to resolve doubts about its atomic programme with IAEA

FBI Official Who Oversaw J6 Pipe Bomb Probe Lied About Receiving 'Corrupted' Evidence “We have complete data. Not complete, because there’s some data that was corrupted by one of the providers—not purposely by them, right,” former FBI official Steven D’Antuono told the House Judiciary Committee in a

Musk’s DOGE Takes To X To Crowdsource Talent: ‘80+ Hours Per Week,’

Female Bodybuilders vs. 16 Year Old Farmers

Whoopi Goldberg announces she is joining women in their sex abstinence

Musk secretly met with Iran's UN envoy NYT

D.O.G.E. To have a leaderboard of most wasteful government spending

In Most U.S. Cities, Social Security Payments Last Married Couples Just 19 Days Or Less

Another major healthcare provider files for Chapter 11 bankruptcy

The Ukrainians have put Tulsi Gabbard on their Myrotvorets kill list

Sen. Johnson unveils photo of Biden-appointed crossdressers after reporters rage over Gaetz nomination

sted on: Nov 15 07:56 'WE WOULD LOSE' War with Iran: Col. Lawrence Wilkerson

Israeli minister says Palestinians should have no voting or land rights

The Case For Radical Changes In US National Defense: Col. Douglas Macgregor

Biden's Regulations Legacy Costs Taxpayers $1.8 Trillion, 800 Times Larger than Trumps

Israeli Soldiers are BUSTED!

Al Sharpton and MSNBC Caught in Major Journalism Ethics Fail in Accepting Kamala's Campaign Money

ABC News in panic mode to balance The View after anti-Trump panel misses voter sentiment

The Latest Biden Tax Bomb

Republicans Pass New Anti-Woke Law: Ohio Senate Bans Transgender from Womens School Bathrooms

Gaetz, who would oversee US prisons as attorney general, thinks El Salvador’s hardline lockups are a model

Francesca Albanese shuts down reporter question on whether Israel has right to exist

Democratic Governors Create Coalition To Push Back Against Trump Policies

BRICS Write-off $20 billion Debt of Africa and Shocked IMF

MASS EXODUS Of Soldiers Rock IDF After BLOODIEST DAY EVER in Lebanon

This Is Why They Wont Be Able To Block Matt Gaetz, Tulsi Gabbard, Pete Hegseth And RFK Jr.


Science/Tech
See other Science/Tech Articles

Title: Linux vulnerability leaves top sites wide open to attackers
Source: [None]
URL Source: https://www.rt.com/usa/355558-linux-vulnerability-websites-attacks/
Published: Aug 12, 2016
Author: © Beck Diefenbach / Reuters
Post Date: 2016-08-12 02:50:46 by Tatarewicz
Keywords: None
Views: 1370
Comments: 1

RT... A flaw in the Linux operating system lets hackers inject malware into downloads and expose the identities of people using anonymizing software such as Tor – even for those who aren’t using Linux directly.

In a Wednesday presentation at the USENIX Security Symposium in Austin, Texas, researchers with the University of California, Riverside showed that the flaw lies in the Transmission Control Protocol (TCP) used by Linux since late 2012.

READ MORE: US officials covered up China hack of FDIC computers – House report

The networking blunder is present in the Linux kernel, the core of its operating system, and can be exploited by malicious actors to determine whether two systems are communicating with each other, and even inject malicious data into or break their connection.

At the symposium, the researchers demonstrated the exploit by injecting code into a live USA Today page that asks visitors to enter their emails and passwords, which was possible because pages on USA Today aren’t encrypted.

Perhaps most importantly, the intercepting of data doesn’t require a man-in-the-middle attack, where a connection will covertly intercept, collect and pass forward information between two parties. Instead, attackers can just send packets of data to the two targets with spoofed credentials.

“Through extensive experimentation, we demonstrate that the attack is extremely effective and reliable. Given any two arbitrary hosts, it takes only 10 seconds to successfully infer whether they are communicating,” the team wrote in a white paper. “If there is a connection, subsequently, it takes also only tens of seconds to infer the TCP sequence numbers used on the connection. To demonstrate the impact, we perform case studies on a wide range of applications.”

Linux flaw puts millions of PCs, Android smart devices at riskt.co/AiOHutMjfYpic.twitter.com/8Zv92p9OYD — RT America (@RT_America) January 20, 2016

Because Linux runs in the backend on a majority of servers as well as on Android devices, an enormous number of users might be left vulnerable. Even those using the much-vaunted anonymizing software Tor could have their privacy compromised 90 percent of the time in an average time of about 50 seconds.

"In general, we believe that a [denial-of-service or] DoS attack against Tor connections can have a devastating impact on both the availability of the service as a whole and the privacy guarantees that it can provide," the researchers said.

The team notes that because only version 3.6 or later of the Linux kernel has the flaw, systems running older software are not affected. They distributed a patch to fix the vulnerability, but they note a large number of individuals and networks will still be left exposed to miscreants, since the exploit only requires one unpatched party for the attack to work.

Post Comment   Private Reply   Ignore Thread  


TopPage UpFull ThreadPage DownBottom/Latest

#1. To: Tatarewicz (#0)

I won't say this makes me feel great about never having switched to Linux, but it makes me feel kinda great about it....... How vicious people are.

This is just a case of human error, right -- they're not saying anybody's sabotaging the program?

_____________________________________________________________

“We build but to tear down. Most of our work and resource is squandered. Our onward march is marked by devastation. Everywhere there is an appalling loss of time, effort and life. A cheerless view, but true.” - Tesla per FP

NeoconsNailed  posted on  2016-08-12   6:25:56 ET  Reply   Trace   Private Reply  


TopPage UpFull ThreadPage DownBottom/Latest


[Home]  [Headlines]  [Latest Articles]  [Latest Comments]  [Post]  [Sign-in]  [Mail]  [Setup]  [Help]