Language Selection

English French German Italian Portuguese Spanish

Do you need to worry about the new /dev/mem rootkit problem?

Filed under
Security

A new paper was presented in late March about using /dev/mem to inject and hide a rootkit (PDF), and the method has been getting some press, leading to a little concern. The first thing that you should understand is that this class of attack has been used before. We know how to protect against it.

If you read the paper, you'll find out two things:

1. We need a way to write to /dev/mem as a regular user, and
2. There's a kernel config which protects against this mechanism.

rest here




More in Tux Machines

Cloud Foundry Aims to Close Cloud Skills Gap

The Cloud Foundry Foundation on Wednesday announced the launch of a worldwide cloud-native developer certification initiative. The foundation created the cloud developer certification program to fill the widening gap of trained programmers for cloud apps and services. The Linux Foundation -- which has trained and certified more developers on open source software than any organization in the world -- will provide the instruction. More than a dozen leading technology, education and systems integration organizations around the world will participate in the cloud certification program. Companies involved in the initial training and certification rollout include Engineer Better, IBM, Pivotal, Resilient Scale, SAP, Stark and Wayne, and Swisscom. Read more

AMD Ryzen DDR4 Memory Scaling Tests On Linux

This week MSI finally released an updated BIOS for the X370 XPOWER GAMING TITANIUM that we've been using for a majority of our Ryzen Linux benchmarks. With that motherboard improving memory compatibility and allowing us to finally run the board at higher DDR4 memory clock frequencies, I've run some fresh AMD Ryzen 7 1800X Ubuntu Linux benchmarks at various memory frequencies. Read more

Linux Graphics

Games and Emulation