Hack Linux by hitting backspace 28 times!

Discuss Computer/Internet Topics/Cellphone Tech
Forum rules
User avatar
DenBen
VIP
VIP
Posts: 13193
Joined: Wed Sep 26, 2007 6:57 pm
Gender: Male
Age: 44

Hack Linux by hitting backspace 28 times!

Post #1 by DenBen » Fri Dec 18, 2015 8:44 pm

OOPS.... :p


[quote][b]24-25-26-27-28? That's the kind of thing an idiot would have on his luggage![/b]



Security researchers have discovered a ludicrously simple way to hack into a number of Linux distributions: Just tap the backspace key 28 times in a row. A team from the Cybersecurity Group at Polytechnic University of Valencia (UPV) in Spain found that doing so for builds utilizing the ubiquitous Grub2 bootloader -- that's to say just about all of them -- immediately bypasses the lock screen, initiates the "Grub rescue shell" and grants the user access to the system for whatever nefarious reason.



The team found that the backspace trick triggers a memory error, which in turn launches the rescue shell. The bug isn't a huge threat -- I mean, a hacker would need physical access to your machine in order to exploit it -- especially now that Ubuntu, Red Hat, and Debian all have released patches.[/quote]


Funny, how things can get so easily overlooked.

User avatar
Head Honcho
Admin
Admin
Posts: 44119
Joined: Sat Sep 12, 2015 2:29 pm
Gender: Male
Age: 55

Hack Linux by hitting backspace 28 times!

Post #2 by Head Honcho » Sat Dec 19, 2015 4:59 am

Good thing only 6 or 7 people use it.

User avatar
DenBen
VIP
VIP
Posts: 13193
Joined: Wed Sep 26, 2007 6:57 pm
Gender: Male
Age: 44

Hack Linux by hitting backspace 28 times!

Post #3 by DenBen » Sat Dec 19, 2015 3:24 pm

4:59AM ??!!



Getting excited for Christmas or something?

User avatar
Captain Steubings
Advanced Member
Advanced Member
Posts: 8468
Joined: Wed Nov 07, 2007 11:34 pm
Gender: None specified

Hack Linux by hitting backspace 28 times!

Post #4 by Captain Steubings » Sat Dec 19, 2015 7:28 pm

So do they pay someone just to sit around and hit a key 30 times to see what it does?

User avatar
DenBen
VIP
VIP
Posts: 13193
Joined: Wed Sep 26, 2007 6:57 pm
Gender: Male
Age: 44

Hack Linux by hitting backspace 28 times!

Post #5 by DenBen » Sat Dec 19, 2015 9:33 pm

Wow....easy money. Too much work for John though. [poke

User avatar
Red Squirrel
Senior Member
Senior Member
Posts: 1315
Joined: Tue Jun 10, 2008 6:45 pm
Gender: None specified
Age: 32

Hack Linux by hitting backspace 28 times!

Post #6 by Red Squirrel » Wed Jan 06, 2016 11:35 pm

I think this is only at the grub prompt though, which means you need physical access, in which case, the machine is already compromised if someone unauthorized is sitting in front of it. It is a really odd oversight though.


Social Media

     

Return to “Computers and cellphones”