Thread replies: 307
Thread images: 63
Thread images: 63
File: RedStarOS_hello1.jpg (100KB, 1024x768px) Image search:
[Google]
100KB, 1024x768px
Who else has test driven Red Star OS? Inspired by the talk give at 32C3 (and 31C3) I decided to have a go.
>>
good job, not only is everything (obviously) being logged from inside the OS, but that has malware built in that is able to escape the VM to the host OS.
you are a moron
>>
File: Red Star1a.jpg (48KB, 1024x768px) Image search:
[Google]
48KB, 1024x768px
Even though its primarily designed for use within DPRK, you can still set your own time zone
>>
File: Red Star OS1.png (327KB, 1024x768px) Image search:
[Google]
327KB, 1024x768px
Note. Dont try and install it on an 8BG drive. I though this was enough, but it kept shitting itself, telling me that the partition that I had just created could not be found. I eventually got it installed on a 15 GB partition.
Note the english language. You can hack and save the isolinux.config file in the .iso itself so that the installation language is english, which makes things a lot easier.
>>
File: Red Star3.jpg (25KB, 1024x768px) Image search:
[Google]
25KB, 1024x768px
>>52223999
No, I dont think it does.
What do you base that assumption on?
Once installed, log on.
>>
File: Red Star4.jpg (47KB, 1024x768px) Image search:
[Google]
47KB, 1024x768px
OK, we are back to Korean language again. But there is a fix for this. There is an .rpm that has been prepared which (like previously using isomaster) can be inserted into the iso. Once installed, you are a few key strokes away from root access and English language (for the OS at least - applications etc still seem to be in Korean)
Note the Mac look and feel
>>
>>52224144
The Browser, called "Naenara" is an old Firefox hack. The red flag which is actually animated is a security tool of some sort, AV I believe.
>>
File: 1419291566983.jpg (229KB, 1140x1310px) Image search:
[Google]
229KB, 1140x1310px
>>52223983
>>
File: Red Star5.jpg (138KB, 1024x768px) Image search:
[Google]
138KB, 1024x768px
There is a wide selection of wallpapers.
Here's an example: Howitzers aimed at the south, no doubt.
>>
>>52224178
I dont what you are saying with that image, but anyway...
>>
File: Red Star5.jpg (90KB, 1024x768px) Image search:
[Google]
90KB, 1024x768px
Hmmm... not only are we still in Korean language, but it appears that access to the internet itself cannot be obtained without going through some sort of internal (ie within DPRK) proxy.
Fascinating.
>>
>>52223999
In that case it's still not as bad as a modern Windows install.
It's funny how double standards exist in that sense.
>western company spies on you
>"for muh own good"
>eastern company spies on you slightly less than the western company
>"it's just like the gestapo all over again!"
>>
>>52224215
Probably lacks DNS.
You wouldn't need it in the DPRK.
>>
File: Red Star8.jpg (129KB, 1024x768px) Image search:
[Google]
129KB, 1024x768px
At times, the theft of Mac OS stuff is blatant.
Remember, this OS is built primarily on a Fedora release.
>>
>>52224215
there is iptables policy in place. get rid of it.
>>
>>52224144
>>52224233
>Note the Mac look and feel
To their credit, i think Red Star is probably the best imitation of the Mac interface in and distro I've seen.
>>52224184
>Howitzers
That's almost hilarious.
>>52224215
What's the default proxy settings in Fx?
>>
>>52224215
that 2005 Safari clone though
>>
>>52224215
>internet
>north korea
u wot
>>
>>52224222
Thats actually a really good point. There are plenty of serious reviews of this thing available and plenty that either take the piss or are pretty heavy on the condemnation. With the case of the latter group, yes, the hypocrisy is laughable.
>>52224230
Yes, you are on the right track. I will talk more about this later on.
>>
>>52224222
you really try too hard to fit in here.
>>
Stuff like this makes me wish the USSR still existed if only to see what their OS counterparts to ours would look like.
>>
File: Red Star8.jpg (113KB, 1024x768px) Image search:
[Google]
113KB, 1024x768px
>>52224236
I was getting to that :)
>>
>>52224243
Yes, it does look rather nice and the guns were a nice touch I thought :).
In the browser, it is just set to "use system settings", which as they guy above mentioned relates to so strict iptables rules, which we will deal with shortly.
>>
>>52224233
The fat fuck uses a Mac, imagine how e forced the devs to make it like os x
>>
No net access from outside of DPRK. Even adding exceptions for certs does not help much. I think the cert authorities referenced in the browser and all NK and of course, the dont like too much, what comes from outside of their borders (or so it seems).
>>
>>52224222
>eastern company
You know what North Korea is right?
>>
>>52224265
To be fair, North Korea wasn't nearly as wacky before Kim Il-Sung died.
The Soviets and most of the eastern block weren't nearly as crazy at the time either.
It'd be more like the Cuban's attempts more than anything.
>>
>>52224304
Yeah you might be on to something, I saw that photo as well.
>>
File: 1266126008249.jpg (68KB, 305x196px) Image search:
[Google]
68KB, 305x196px
>>52224222
>North Korea spies on you less than Windows
>>
>>52224348
The file watermarking is far more severe than anything Windows does.
>>
>>52224335
>cuban nova linux
>based on gentoo
cuba confirmed for /g/ country
>>
>>52224348
>The OS literally watermarks every file you open so it can be traced back to you
>>
is there a screenfetch logo for it yet?
>>
File: RedStarOSKO_to_ENG.jpg (79KB, 1024x768px) Image search:
[Google]
79KB, 1024x768px
>>52224335
The Cubans have their own OS too, I believe.
Anyway, as the chap mentioned above, we need to get rid of iptables in order to get access to the outside world. We need root access however to do this.
As I mentioned earlier, I inserted a prepared .rpm (not mine, but I will post links later) into the iso and then used this to get root access.
Once I had root, I then ran the next commands and rebooted. This put the OS in English mode, but like I said, applications still seemed to be just in Korean.
>>
>>52224329
It's still compartmentalised.
And government interference would be higher than many would think at Microsoft.
>>
File: RedStarOS_ENG.jpg (47KB, 1024x768px) Image search:
[Google]
47KB, 1024x768px
>>52224357
>>52224373
Yep, I will talk about this later (and the problems I had in replicating it, which was disappointing).
>>52224378
I am not certain what this means.
>>
I wonder who the poor sap that created Red Star OS is. Hope he didn't die a slow death just for making an OS for the glorious leader.
>>
>>52224348
>>52224357
>>52224373
Many files contain unique strings (like the watermarks) in Windows. Not to mention the fact that Microsoft has the capability to copy literally any file from your Windows install.
Watermarking is bad, but complete remote access is worse.
>>
File: RedStarOSgotsudo.jpg (106KB, 1024x768px) Image search:
[Google]
106KB, 1024x768px
You can get sudo as well. Took me a few gos syntax wise. It was late by now, but it works
>>
>>52224215
Its meant to be used to access the North Korean intranet
>>
>>52224422
where do you come up with this stupid shit? i bet you think they are taking screenshots of every program you install too
>>
>>52224422
Your literally retarded
>>
>>52224101
https://www.insinuator.net/2015/07/redstar-os-watermarking/
>So we thought we will give it a shot and created a simple DOCX file that we copied on a USB drive and attached the drive to the RedStar OS. Guess what: The MD5sum of the file changed. We did not open the file with the included “Sogwang Office” or touch it in any way, it just changed simply making it available to the OS. Now a DOCX file is basically a ZIP with multiple files included. If you look at a DOCX in a hex editor you will see that there are larger areas that are filled with null bytes at the beginning of the file. By looking at the same area again in a file that has once been transfered to RedStar we see some garbage inserted into the file.
The next picture shows a hexdiff with the file before it was transfered to RedStar and after it was transfered.
>To sum that up: Creating and using media files and documents on RedStar OS can get you into trouble if you are living in North Korea. Do not assume that the files can be kept private and cannot be traced back to the creator!
https://richardg867.wordpress.com/2015/01/01/notes-on-red-star-os-3-0/
https://crispyappstudiosblog.wordpress.com/2015/01/05/changing-the-language-in-north-koreas-red-star-os-v2-5-to-3-0-and-server/
>>
I am the original hacker of this os. I developed the root exploit, and turned it into an rpm. i'm also the first person to release the wallpaper pack. ama
>>
File: RedStarOSengnanaera.jpg (109KB, 1024x768px) Image search:
[Google]
109KB, 1024x768px
>>52224436
After rebooting, now with root, sudo and Eng language, I now had net access. Note, I did not screen shot the command needed to get rid of iptables. Sorry about that.
Some pages do not display all that well.
>>
>>52224458
want a pie?
>>
Doesn't it use KDE? Does this mean that Kim Jong Un is a KDE man himself?
>>52224458
How'd you get the .iso?
>>
>>52224441
>>52224442
http://www.gnu.org/proprietary/malware-microsoft.en.html#surveillance
It wasn't as widespread as I made it sound, but it's still bloody scary.
I'm not trying to defend North Korea either, I'm just saying that we aren't much better. It's terrifying.
>>
>>52224441
>>52224442
are you literally retarded? look up windows backdoor and you will get 1,210,000 results
>>
>>52224489
it's widely available because people smuggle copies out. you can buy it for a small amount of money in pyongyang's only computer store, to my knowledge.
>>
>>52224493
>the gnu shilling website as an example
HAHAHAHAHAHAHAAHAHAHAHAHAH
>>
>>52224489
it means that the Korean Computer Center (KCC) took the path of least resistance to get the look that the supreme leader, and whoever was in charge of development of the OS wanted
>>
File: RedStarOSha1_docx.jpg (134KB, 1024x768px) Image search:
[Google]
134KB, 1024x768px
>>52224439
Yep, that is correct.
>>52224446
Thanks for that. As much as I tried, I could not get the hash on either a docx or a jpg to update. Many times, i moved the files around, inserted and removed a usb device etc but no way could I get the sha1 to update, which was very disappointing.
I wonder if the OS realises when it has been tampered with? I dont know, but if you look at the various demos done elsewhere, plent of folk were able to make this happen easily.
>>
File: RedStarOS_rmiptables.jpg (152KB, 1024x768px) Image search:
[Google]
152KB, 1024x768px
>>52224471
Other web pages seem to display OK
Note the Korean language. This is for the Naenara bowser, not the OS itself
>>
>>52224473
to get the root exploit i literally just ran a grep on the dev/usb daemon and found that it runs as root and takes an argument. i simply edited the file to point to the file i wanted it to execute as root, which was a shell script running chmod.
it was quite simple, and was overlooked by people who, i guess tried, but don't really have the skill or knowledge to harden an os
>>
>>52224510
>using some unknown blogs as an example of north korean spying
Just because you don't like GNU, doesn't make it not true.
>>
File: RedStarOSmem.jpg (115KB, 1024x768px) Image search:
[Google]
115KB, 1024x768px
The colours on the "Activity Monitor" are a bit much.
>>
>>52224541
Post the user agent
>>
>>52224528
are you using the built in terminal utility, or a trusted one like hexrays ?
>>
That was a great talk. Remember how some files are watermarked by the OS? Well I wrote a simple crawler for nork websites to see if the images they uploaded were watermarked but I haven't found any. I guess whoever has enough security clearance to access the public Internet also doesn't need (or isn't allowed) to use red star.
I wonder if it would be possible to find an exploit for the watermarking program and have it self-destruct on a malformed file.
>>
>>52224577
why have it self destruct when you could gain persistence?
>>
>>52224542
me
>>52224566
restoring my backup of my research vm. drop your questions here and i'll dump all the infos i can
>>
why does it look so much like osx
>>
>>52224570
Built in.
>>52224566
It will have to be later I dont have it running at the moment.
One thing I will say is that it seems to sit there very quiet when you are not doing anything. I just had WS running on the host and all of the chatter from the OS was just plain old NETBIOS stuff. The guys at 32C3 said they let it run for two days and it did not try to phone home at all. I guess if it senses that it is outside of the DPRK intranet it just shuts up.
>>
>>52224548
that one post had more actual evidence in it than some scare tactics from the freedom force
>>
File: RedStarOSauce.jpg (114KB, 1024x768px) Image search:
[Google]
114KB, 1024x768px
This image became the wallpaper for my root account
>>
>>52224620
Kek.
>>
>>52224612
Keep telling yourself that and the Gloriou- everyone will think you're cool.>>52224612
>>
File: Screen Shot 2016-01-04 at 4.31.44 PM.png (1MB, 1020x1280px) Image search:
[Google]
1MB, 1020x1280px
>>52224607
yeah, you have to examine it in a trusted environment on a secure machine, not a known (or thought to be) compromised environment such as redstar os.
but the evidence of tampering is there in clear hex.
in this figure, see the top file, the unmodified one, and the bottom file, the same file, after the os has watermarked it.
it's not very sophisticated though, and can easily be reverse engineered, or neutered.
>>
File: terminal_loc.jpg (80KB, 1024x768px) Image search:
[Google]
80KB, 1024x768px
OP here.
Just a C and P of some info:
https://richardg867.wordpress.com/2015/01/01/notes-on-red-star-os-3-0/
sed -i 's/ko_KP/en_US/g' /etc/sysconfig/i18n
sed -i 's/ko_KP/en_US/g' /usr/share/config/kdeglobals
rm /etc/sysconfig/iptables
rm /usr/share/autostart/intcheck_kde.desktop
easier: after using “rootsh” do-> visudo, enable %wheel entry.
Now edit /etc/passwd and replace /sbin/nologin with /bin/bash,
add yourself to wheel group (i.e. usermod -G wheel) and use sudo command.
:%s/pattern/replace/
https://github.com/takeshixx/redstar-tools
http://www.northkoreatech.org/2014/12/30/red-star-3-0-desktop-the-install/
http://www.openingupnorthkorea.com/downloads-2
https://media.ccc.de/v/32c3-7174-lifting_the_fog_on_red_star_os
>>
I assume the watermarking is only done to certain filetypes?
How does it discriminate between different filetypes? Just by name?
Couldn't you just save your files as like "ilikewearingdressesand.longsocks" to evade it?
>>
File: Red Star7.jpg (124KB, 1024x768px) Image search:
[Google]
124KB, 1024x768px
>>52224640
Nice. Thanks for that. Insidious, isnt it?
But I am bamboozled as to why it would not work for me. Essentially, I just did what the guys did at the 32C3 talk, but no way in hell could I get it to update. I cross-checked on my own (host) machine here - the sha1sums remained unchanged. Might have another go tonight.
>>
The degree to which they've cloned OS X is uncanny. Windows/Linux OS X clone attempts in the west fall way short, even the ones that take the trouble of developing custom software to get the desired effect (anybody remember the aqua-soft forums?)
>>
>>52224687
I dont think it touches plain text files, but it seems that image files and documents are definitely targeted.
>>
>>52224699
what can i say? the supreme leader has an eye for quality.
>>
>>52224690
>>52224687
try a .docx it is definitely affected.
>>
File: Red Star9.jpg (58KB, 1024x768px) Image search:
[Google]
58KB, 1024x768px
>>52224748
I did, but it was a .docx created under open office. Perhaps that made a difference, I dont know? But I was at it for 1-2 hours, just doing what the guys did at the presenattion a few days ago, but each time, sha1sum *file...* resulted in the same hash.
>>
OP here, I really should have screenshotted the browser trying to connect to the 10. something internal IP. It doesnt give up, it just sits there trying and trying to connect.
>>
File: RedStarOS_update.jpg (79KB, 1024x768px) Image search:
[Google]
79KB, 1024x768px
There is even some stuff that root cannot touch.
I guess updates are done when those controlling the internal network think they should be done, which of course, leaves the path wide open for malware deployment and snooping.
>>
>>52224783
yep. assume they are using the industry standard, MS office. not all docx's are created equally
>>
>>52224195
he's just expressing an inferiority complex, just let him be
>>
>>52224834
don't worry. the ip ranges are public information
ask the question: what would happen if you runan nmap scan on the range
>>
Does the OS do anything special in terms of security? Is there any evidence that the government can remote control the OS? What kernel is it running?
It can't be running anything close the latest kernel. It would be pretty interesting if someone unleashed a bug that makes use of well-known now-patched security holes and propagated itself through intranet-connected red star machines.
Would probably be pretty easy to snag some XP machines in the country too, I bet most of those aren't even running SP1
>>
File: 1451492251190.jpg (48KB, 540x562px) Image search:
[Google]
48KB, 540x562px
>>52224855
My question is how did they manage to set up the Kfinder and File/Edit/View/Go/Window/Help thing in the main desktop panel? No distro I've used has anything that close to Mac OS X.
>>
>>52224920
For a while there was a Gnome 2/MATE/XFCE bar plugin that'd grab application menus and stick them in a bar on the top of the screen. Last I tried, it was broken and unmaintained though.
I'd really love to find a replacement or fix for that plugin. I find that having a singular menubar docked to the top of the screen is more effective for me.
>>
>>52224871
But what about .jpg's?
>>52224882
Thanks
>>52224883
I have thought about that. But I dont think it would amount to much. After all, 10. whatever is used everywhere for internal networks. What we need to know is the point where the intranet marries up with the internet.
>>52224891
I believe it is a fairly recent kernel. I dont have the number written down here but one of the reviewers websites mentions it.
>Would probably be pretty easy to snag some XP machines in the country too, I bet most of those aren't even running SP1
Nothing internal connects directly to the internet as we know it. I think it is all pretty much proxied. Any NK ips what you can see will be those that they want you to see, I guess. Your average joe at home running XP would be almost impossible to see (and scan) I would assume.
>>
>>52224958
I'm looking around. Can we rip apart the Best Korea OS to see how they're doing it?
>>
>>52224891
It does loads.
https://media.ccc.de/v/32c3-7174-lifting_the_fog_on_red_star_os
>>
>>52224704
>>52224748
What I mean is, docx is watermarked, but if you give it the wrong file extension is it still watermarked?
docx saved as file.docx = watermarked
docx saved as file.kukx = watermarked or not?
>>
>>52225027
Dunno. Didnt try that, but I will do though
>>
>>52224441
That's may not be so far fetched if you're an insider:
http://www.tenforums.com/general-discussion/18344-microsoft-taking-stealth-screenshots-feedback-purposes-4.html
But only microsoft knows how windows actually works anyway.
>>
>>52224993
Oh shit, someone actually fixed it.
http://www.webupd8.org/2015/02/use-global-menu-in-xubuntu-or-linux.html
>>
Do the North Koreans actually use this still? I thought they were transitioning to CentOS
>>
>>52225092
Some people internally use it, but most of the population with a computer are still using XP.
There is also a server version of Red Star Os and it has been confirmed that at least one externally facing server (ie one that we can see) is using it.
>>
>>52223999
this.
>>
>>52225155
Prove it.
>>
>>52224920
https://launchpad.net/libdbusmenu
http://www.webupd8.org/2015/02/use-global-menu-in-xubuntu-or-linux.html
>>
>>52224380
haha kim has your password now :^)
>>
>>52225187
We're mates.
>>
>>52224184
That wallpaper is obviously 'shopped, as do most of the other available wallpapers.
>>
>>52225229
All wallpapers are in one way or another
>>
>>52225182
>>52225089
I don't think these will create the "finder" thing.
Also, will it even work like Mac's panel? The way their finder works?
>>
OP here, I was going to try and post a selection of the wallpapers from within naenara browser itself, but posting to the board here seems nigh on impossible. I could not see any of the captcha stuff. The catalog does not display.
There may be a fix for this, but I dont know it yet
>>
Can we please just nuke them along with Syria already?
>>
>>52224699
Its fucking amazing really. It's. Like they have an evil Steve Jobs and apple clone over there. My only disappointment is that this OS is not binary compatible with OSX.
>>
>>52223999
I want them to see what freedom looks like.
>>
>>52225294
The Finder is just the desktop and file manager under OS X. It's the equivalent to Explorer or Nautilus.
The plugin moves application menus to a global menu panel on the top of the screen, mimicking OS X's global menubar.
Is that not what you're talking about?
>>
>>52225306
I'll trade getting few more North Koreas for getting rid of all the mudslime shitholes altogether.
>>
>>52223983
Why this guy has already done everything it's an apple meme linux distro
https://www.youtube.com/watch?v=j_9QOgg0GRE
>>
>>52224920
>My question is how did they manage to set up the Kfinder and File/Edit/View/Go/Window/Help thing in the main desktop panel? No distro I've used has anything that close to Mac OS X.
because they dont care about copyright
>>
>>52225312
>My only disappointment is that this OS is not binary compatible with OSX.
They could've if they wanted to. Just take the FOSS version of Darwin and re-implement Foundation, Quartz, Cocoa, etc on top of it.
>>
>>52225329
Fucking this, mudslimes are fucking savage animals.
>>
>>52225331
His vids are crap. He sniggers like a kid through them. I gave part way through the first.
>>
>>52225334
I like them already. Why do Americans hate them again?
>>
>>52225334
>because they dont care about copyright
Pretty much this. I would love to get a hand on one of their versions of Windows XP. Its been in use for a very long time. The surveillance capabilities in it would be staggering.
>>
>>52225402
Make this happen, OP
>>
File: 1451706775619.jpg (105KB, 1080x1677px) Image search:
[Google]
105KB, 1080x1677px
>>52225384
*gave up
>>
>>52225407
I wouldnt know what to do. I cant imagine that no-one has tried to get a copy up until now. But I will give it some thought for sure.
>>
>>52225334
So?
What's stopping people from making a clone of Mac OS X that's 99% accurate, based off BSD or Linux?
Because the copyright boogeyman might get them?
>>
File: 1450819081881.png (376KB, 540x531px) Image search:
[Google]
376KB, 540x531px
>>52225462
>What's stopping people from making a clone of Mac OS X that's 99% accurate, based off BSD or Linux?
Nothing, as we have seen in this thread :)
>>
>>52225410
Thank you Mr skelitor
>>
>>52225473
I've always wondered why there isn't a wine for osx binaries..
>>
>>52224446
>linux
>secure
>>
>>52225513
There's not much closed source MacOS exclusive software worth using, a lot of it is POSIX compliant and OSS. Regardless the daisy project exists. An unrelated project that may be of interest is BSDNeXT which is a FreeBSD fork with a lot of mach stuff rolled in as well as OS X software like launchd, it's new and experimental.
>>
>>52225473
im too autistic to see that your picture is probably meant to be used ironically but god damn. Rustled my jimmies
>capitalism = bad phones xDDDD
nigger without capitalism there would not be phones or really any technology in general.
>>
>>52225473
Berntard pls go
>>
File: 1439356342722.png (161KB, 1024x597px) Image search:
[Google]
161KB, 1024x597px
>>52225473
>>
>>52225567
No the last one is a socialist capitalist mix
>>
>>52223983
hope you already started reading all the source code mate. seriously.
>>
File: 1422469728424.jpg (2MB, 3990x2245px) Image search:
[Google]
2MB, 3990x2245px
>>52225577
Socialist and Nationalist*
>>
File: 1450679858332.jpg (106KB, 922x854px) Image search:
[Google]
106KB, 922x854px
>>52225557
>>52225562
>>52225567
You guys :)
>>
>>52225545
>daisy project
What's this? Google is being entirely unhelpful and only giving results related to a disk usage app and arts+crafts websites
>>
>>52225619
>>52225545
Woops that was my mistake, it's "darling", Daisy is an AI.
https://www.darlinghq.org/
>>
>>52225599
One day we will be rid of Capitalism.
>>
>>52225646
Isn't the end goal of capitalism to render itself useless?
>>
>>52225589
as far as i can tell nobody has the source for the components that they wrote. a lot of it is violating the GPL.
It aint like best Korea gives a shit though
>>
>>52225646
2/10
>>
File: RedStarOSitshung2.jpg (146KB, 1024x768px) Image search:
[Google]
146KB, 1024x768px
>>52225654
Not so much an end-goal, more an inevitable consequence.
But anyway, we are talking about a great OS here
>>
>>52225687
I'm sorry, I didn't mean to derail, it's late and I wasn't thinking. Please continue.
>>
File: RedStarOSposrt80.jpg (139KB, 1024x768px) Image search:
[Google]
139KB, 1024x768px
>>52225699
Its OK, thanks for being polite.
I have worked out how to get the board to display correctly in the browser and how to avoid the pesky messages about the invalid certs: Connect via port 80 ;)
I still cannot post though. Pop ups are allowed, Javascript can do what the hell it wants, but I still cannot see the captcha.
This pic is from Virtual Box (ctrl E)
>>
File: RedStarOSwallpapers.jpg (122KB, 1024x768px) Image search:
[Google]
122KB, 1024x768px
Here's some wallpapers :)
>>
File: RedStarOSpvt.jpg (96KB, 1024x768px) Image search:
[Google]
96KB, 1024x768px
I wonder how "private" this is?
>>
>>52225811
Considering all the Security certs on redstar are signed by the korean govt, not very.
Unless you want to keep your secrets korean only, then its pretty secure.
That raises a real question about security cert authorities. Would you trust your government over a bunch of multinationals?
>>
Sorry, I don't know a ton about OSes, but this really isn't a reskinned (Snow) Leopard? It's built from the ground up? Or built but stole a lot of assets, like the browser? Because it looks way too similar
>>
File: RedStarOSsearchisinternaltoo.jpg (125KB, 1024x768px) Image search:
[Google]
125KB, 1024x768px
>>52225865
Agreed, I guess.
I have just been looking at the search engines. Two are installed. Both head off to the same internal IP when used.
>>
>>52225877
Its a modified KDE desktop. The initial redstar was made from fedora. A lot of its code is KDE, its browser is essentially firefox.
>>
>>52225877
it's linux, under effects of communism
>>
>>52225897
>>52225901
Huh, neat, just read up on it too. This is a really interesting thread. Thanks, OP
>>
File: RedStarOSupdate search eng.jpg (66KB, 1024x768px) Image search:
[Google]
66KB, 1024x768px
>>52225877
Its Fedora in a leopard skin, I guess :)
If you want to update your search engines, again, you connect to what seems to be this master IP.
>>
>>52225901
>Implying Linux it self isn't communist
>>
>>52225811
is porn even a thing in North Korea?
>>
File: RedStarOSsecurity.jpg (184KB, 1024x768px) Image search:
[Google]
184KB, 1024x768px
>>52225903
Its been fun playing with this over the last couple of days. The guys who gave the presentation at 32C3 got me interested.
You get some nifty tools, like the Bokem file encryptor, which apparently is derived from AES.
If anyone wants to look at this further then do it, If you know your code, reverse engineering etc, then contact the German chaps via their github. At the presentation they asked for more help in looking at this OS
>>
>>52225921
Not as far as I know. I think its pretty much totally banned. I can only imagine that the highest party officials would get porno clearance through their proxy server.
>>
>>52223999
Enlighten me, I'm curious as to how malware can escape a VM. I didn't even know that was possible.
>>
File: vtjhgbiyukjbiykj.jpg (12KB, 225x225px) Image search:
[Google]
12KB, 225x225px
>>52225921
They jerk it to pictures of kim
>>
File: RedStarOSonlyroot.jpg (116KB, 1024x768px) Image search:
[Google]
116KB, 1024x768px
Ordinary users cannot change any security settings. If you have root access though, then you can (I tried my normal user account - it failed, but the root account worked - remember, the ordinary user at DPRK will not have root access).
>>
>>52224184
Is that old russian shit supposed to hit anything or is it all just for one big clusterfuck planned?
>>
>>52225968
Google VENOM
>>
File: RedStarOSonly root2.jpg (103KB, 1024x768px) Image search:
[Google]
103KB, 1024x768px
>>52226003
This is interesting. Another locked down set of security settings. I kinda thought I might have seen some log files here as my system's integrity surely has been compromised. But perhaps it does not work like this. Perhaps it only generates logs if the PC is on the internal network, knowing that it can upload then when it has to.
>>
>>52226020
I would say they are garden ornaments, like gnomes.
>>
>>52226003
How did you found out the root password though?
Given the fact that normal DPRK users won't have acces to it?
>>
>>52226033
>my system's integrity surely has been compromised
in what way?
>>
>>52226022
That's scary. Think OP's computer is compromised now? I wonder if NK wrote malware into it that could infect his device firmware and totally fuck his hardware, short of hardflashing the chips himself. I heard that was possible, but I don't know if NK cares about doing that.
>>
File: space commies.jpg (75KB, 600x600px) Image search:
[Google]
75KB, 600x600px
>>52225473
>>
>>52226081
probably not desu
>>
>>52226044
Root comes with no password. The account is well hidden though. read up towards the op of the thread. I inserted a pre-prepared .rpm made by another person into the .iso, and then after running it and doing some other stuff I got access to the root acct and was able to set a password.
>>52226047
By the fact that I now have root, I have deleted IP tables and I have seen tits on 4chan.org.
>>52226081
I dont think so. There isnt a bit of the original Fedora that these guys haven't re-modeled or tweaked. But who knows? The author of the .rpm that gives root access seems legit, but who is to say that he might wanna fuck around some?
>>
>>52226126
Did you watch the talk? they said what the system security does, and by the sounds of it you haven't hit that.
>>
>>52226096
OP here. I am going to go and holiday there one day. I have heard its quite a pretty country, especially during the spring.
>>
>>52223983
can you show the output ofuname -aor something equivalent?
>>
>>52226148
Pretty much every country is quite a pretty country, especially during the spring, you faggot.
>>
>>52226148
The best way to think of it is as one big themepark version of Communism.
Don't say anything stupid and you'll be safe.
>>
>>52226140
Yeah, I saw it. What specifically are you referring to?
>>
File: RedStarOSuname.jpg (142KB, 1024x768px) Image search:
[Google]
142KB, 1024x768px
>>52226161
That will be enough of that out of you, thank you very much.
>>52226149
Yep
>>
>>52226148
Isn't travel there restricted?
>>
File: DPRK-Traffic-Girls-3.jpg (43KB, 550x300px) Image search:
[Google]
43KB, 550x300px
>>52226163
Apparently they have pretty girls directing traffic everywhere.
>>
>>52226205
You must always be a accompanied by a guide who only shows you the good things.
Vice did a video about traveling to Best Korea.
>>
>>52226210
Pretty much every country has pretty girls directing traffic everywhere, you faggot.
>>
>>52226210
too bad the third one from the left has been executed for being out of uniform
>>
>>52226205
Dunno. But you can run a marathon :0
http://www.mirror.co.uk/lifestyle/travel/people-can-now-holiday-kim-6702747
>>
>>52226205
I heard american citizens can have a hard time getting permission to enter, but otherwise its relatively easy.
https://en.wikipedia.org/wiki/Tourism_in_North_Korea
>about 1,500 Western tourists visit North Korea each year, along with thousands of Asians
>>
>>52226222
Heh. Mine doesnt
>>
>>52223983
It just gives me an error before the log in screen and freezes up completely.
Using QEMU.
>>
>>52226248
Google venom vm vulnerability
>>
>>52226242
If you search the CCC video presentations (or you tube too I would imagine) the guy who gave the first talk on NK net infrastructure (at 31C3) just wrote a letter to their govt asking if he could come teach for a while. Apparently he got pretty much an instant 'yes'.
>>
>>52226248
So, you have just done a basic install, the machine has re-booted and thats it? It just hangs?
Weird.
>>52226262
Venom should not affect him yet. He does not have root access on the machine.
>>
>>52226264
>"tarr white westerrnerr want to come and teach computerrr? Ret him in! What arr you waiting forrr?"
>>
File: RedStarOSmultisys.jpg (181KB, 1024x768px) Image search:
[Google]
181KB, 1024x768px
Dual boot anyone?
>>
>>52226286
Apparently thats what happened.
His talk is great too. Watch that before you watch the most recent one.
>>
File: RedStarOSguest.jpg (135KB, 1024x768px) Image search:
[Google]
135KB, 1024x768px
Remember that ordinary users will not have root.
Want to turn off the guest account? Forget it unless you have root access
>>
Interesting thread OP, thanks.
>>
>>52226322
Are there any South Korean distros?
>>
File: RedStarOSnetwork.jpg (105KB, 1024x768px) Image search:
[Google]
105KB, 1024x768px
>>52226369
No problem, its been an interesting couple of days.
Like other settings, network settings cannot be touched by ordinary users, just root. I thought I might have seen something interesting here, but I guess all the cool stuff is hard-coded (apart from iptables which were deleted) deep in the bowels of the OS.
>>
>>52226371
Not that I am aware of. The Cubans have done it, and I believe the Russians (a while ago) too.
I wonder what the Iranians use?
>>
File: RedStarOSdisktools.jpg (95KB, 1024x768px) Image search:
[Google]
95KB, 1024x768px
Disk Tools include erasers for both CD's and HDD's.
For an OS that apparently is geared towards surveillance and censorship, it has more personal security features than one would expect
>>
>>52226371
You realize that South Korea is a first world country and most probably there are tons of redundant distros made by bored neets, as you'd expect?
>>
>>52226425
I've not used it myself, but it seems more paranoid of attackers than obsessed with censorship. Look at all the "system integrity" checks they put in.
>>
>>52226447
Yep, that sounds like a fair assessment
>>
File: RedStarOSbokemmessage.jpg (185KB, 1024x768px) Image search:
[Google]
185KB, 1024x768px
I get this when I attempt to open the Bokem Security tool. I a guessing it is saying that you must be logged on as root. There is no option to put in root credentials when starting the application. I might try it logged on to the OS as root
>>
File: RedStarOSas root.jpg (103KB, 1024x768px) Image search:
[Google]
103KB, 1024x768px
Logged on as root. Note the wee flag in the top bar and the absence of the other red icon.
>>
File: RedStarOSbokem as root.jpg (87KB, 1024x768px) Image search:
[Google]
87KB, 1024x768px
OK, root can access the Bokem security tool. I believe this thing is the users personal file encryptor. Odd though, that your average user would not have root access and thus they could not use it.
>>
File: RedStarOSencrdocx.jpg (94KB, 1024x768px) Image search:
[Google]
94KB, 1024x768px
>>52226511
I couldnt do anything with the bokem tool. I thought I might have been able to drag a file to it or something, but i could not. However, right clicking on a file allowed me to encrypt it and then decrypt it
>>
File: RedStarOSenc file.jpg (103KB, 1024x768px) Image search:
[Google]
103KB, 1024x768px
And there is the file. Encrypted. Lets see what happens when I go back to my normal user account.
>>
File: RedStarOSbackonasuser.png (1MB, 1024x768px) Image search:
[Google]
1MB, 1024x768px
OK, back as my normal user account. I can encrypt and decrypt the file as before, but whats this? Notice anything different? The little animated red flag has returned to the top bar.
Did activating (?) Bokem as root do this (Did Bokem shit itself and turn itself off when I originally got root? I dont know. Weird).
>>
>>52226578
Why would encrypting do anything at all since you can just decrypt it anyway on another account
>>
File: timthumb.jpg (755KB, 1150x1533px) Image search:
[Google]
755KB, 1150x1533px
>>52226487
whats up with the light shininc down from her skirt?
>>
>>52226609
Damn, must be that legendary "vagina" thing I've heard so much about...
>>
>>52226598
You need a passphrase to decrypt. That document you saw on both my screens is not the same document. Root has a different copy to the normal user (albeit with the same name).
Or am I misunderstanding you?
>>52226609
It makes her legs glow like her tits
>>
File: RedStarOSredflag1.jpg (187KB, 1024x768px) Image search:
[Google]
187KB, 1024x768px
The red flag that reappeared seems to have three options when you right click on it.
1. You can search for folders (not files) and add a path t5o a folder to a pop up box. But I cannot see what to do after that. Perhaps you need to be logged on as root to make use of this.
2. The second option produces this with a hex-key of some sort.
3. The last function is depicted by an email symbol. It allows you to search for a file. When it is clicked, a message pops up. Perhaps this is something that allows to to submit a suspicious file to the big guys at 10.76.1.11
>>
>>52225687
That dialog is very un-Mac-like. There you wouldn't get details such as the PID. Apply yourself, Kim!
>>
File: RedStarOSredflagrootagain.jpg (105KB, 1024x768px) Image search:
[Google]
105KB, 1024x768px
Back on as root, the operation of the 3 choices at the red flag remain unchanged. I think this is some sort of virus scanner, with a capability to upload if one feels the need to.
It would be great to have a Korean speaker in the thread.
>>
>>52226609
LED's under her skirt: http://imgur.com/a/cAyO2
>>
Does it phone home?
Post Wireshark logs
>>
>>52226756
what's that coffee mug(?) on the warning icon?
>>
>>52226756
Kim here, AMA.
>>
>>52226713
Yeah. Its a strange beast, this OS for sure. I really hope that the researchers keep plugging away at it over the next few months.
>>
>>52226767
Read the thread. It doesn't seem to do that.
>>
>>52226783
Do you have access to porn >>52225921?
>>
>>52226774
No idea, it looks like it holds pens or paint brushes though.
>>52226767
I dont think so. Perhaps because it sense it is not on its home network? I had WS running on my host machine here. All I saw was a bunch of stick standard Net BIOS stuff.
The researchers from Germany had it running for 2 or so days and the logs showed nothing of interest.
>>
>>52226783
WWIII when?
>>
Is there any way to get into the Korean intranet from the outside? Surely they must have built a way in for the children of the ruling elite studying abroad.
>>
File: kim-jong-un-imac.jpg (55KB, 620x337px) Image search:
[Google]
55KB, 620x337px
>>52226783
Hi - please look through the thread and translate anything that is Korean.
Then tell me why, when you have this wonderful OS, you persist in using a MAC?
>>
>>52226797
>>52226813
Fairly sure he meant he's a South Korean. Isn't "Kim" basically the equivalent of "John Smith" there?
>>
>>52226830
The supreme leader is a passionate graphic designer
>>
>>52226815
>Surely they must have built a way in for the children of the ruling elite studying abroad.
VPN?
I dont know, I think not, unless you work at Fort Meade, of course.
>>
Interesting
http://arstechnica.com/information-technology/2015/07/a-handy-cheat-sheet-for-north-koreas-private-internet/
>>
>>52226797
>>52226813
>>52226830
It was a joke, morons. I'm not really Kim. I don't even know if he still posts here.
>>
>>52226895
>http://arstechnica.com/information-technology/2015/07/a-handy-cheat-sheet-for-north-koreas-private-internet/
Nice find. Thanks for that
>>
>>52226914
Ya shit
>>
>>52226914
>if he still posts here
Nice try Kim
>>
File: NK_intranet.png (231KB, 1000x999px) Image search:
[Google]
231KB, 1000x999px
>>52226895
>>
>>52227010
OP here. Notice the Red Star OS Browser IP?
>>
>>52227032
"While KCC mainly works on projects within the DPRK, it has since 2001 served clients in Europe, China, South Korea, Japan, and the Middle East.[3][4] It operates Naenara, North Korea's official web portal."
https://en.wikipedia.org/wiki/Korea_Computer_Center
>>
>>52227010
There's also people regularly scanning the NK ip range
https://nknetobserver.github.io/
>>
>>52227077
>https://nknetobserver.github.io/
Thanks. Thats interesting.
Here is the website of the Browser / portal folk: http://www.naenara.com.kp/en/
>>
File: c-02-15-1.jpg (51KB, 216x201px) Image search:
[Google]
51KB, 216x201px
>>52227120
http://www.naenara.com.kp/en/society/?health+1
What a wonderful woman.
>>
>>52227182
https://en.wikipedia.org/wiki/Naenara
"South Korean users' access to the site has been blocked by South Korean authorities since 2011[3] and as of 17 July 2014 the website remains blocked.[4]"
SoUth Korea, Shit-tier KoREA
>>
>>52225092
According to an American who taught comp sci in NK, most of the students there had laptops with XP and Red Star dual boot.
>>
>>52227657
they teach compsci in North Korea?
>>
>>52227182
>>52227306
> It's just you. http://www.naenara.com.kp is up.
I think I got blacklisted for trying to wget all their mp3 and wma files. I really wanted that music.
http://www.naenara.com.kp/en/society/index_music.php
>>
>>52225921
From what I have heard, JAV DVDs is one of the most (if not the most) popular things to bribe guards with on the Chinese border.
They have people going in and out who transfers mobile phones and people, so some porn should not be completely absent, just very limited.
>>
>>52227718
>>52227657
https://media.ccc.de/v/31c3_-_6253_-_en_-_saal_2_-_201412292115_-_computer_science_in_the_dprk_-_will_scott
>This talk will reflect on teaching Computer Science in Pyongyang over the last two years, and look at how technology has been integrated into civilian life in the DPRK. Remaining an extremely isolated country, many people would be surprised to hear that cellphones have become commonplace within the capitol, let alone that the country invests in custom hardware and software. I'll talk through the current state of desktop and mobile technology in pyongyang, and what's changing.
There's even webm/opus for free as in freedom.
>>
>>52227759
Chinese border guards have fine taste.
>>
>>52227724
>wma
Do you know no shame, anon?
>6kb/s
Bandwidth throttling for those dirty imperialists. Like!
>>
>>52227794
They're the ones hosting them not me! I think it's funny because it's in a directory named "/mp3/".
>>
>>52227807
But *you* want to download wma. Explain yourself anon, then pray to RMS for forgiveness!
>>
>>52227820
DPRK knows better than RMS.
>>
File: Screenshot_2016-01-04-07-38-01.png (137KB, 800x1280px) Image search:
[Google]
137KB, 800x1280px
>>52223999
Oh wow
>>
>>52227847
WE DON'T TALK ABOUT THAT PLACE HERE FRIEND
>>
>>52227931
Oh, ok
>>
>>52227847
w0t
>>
>>52228043
IT'S NOTHING
ASK NO FURTHER QUESTIONS
>>
>>52224252
I'm assuming it's reserved for government officials
>>
>>52226756
I am Korean-American so I can speak and write English, as well as Korean.
North Korean grammar is a bit different from our country (S.Korea)
since we've been apart since the Korean war.
But here's the rough translation. I believe this is what the message means.
The message translates into :
During the scan, running programs could malfunction, so please save all running programs.
>>
>>52223983
As a South Korean, I am fascinated that North Korea uses linux distros.
I expected them to use pirated versions of windows...
>>
>>52228163
>During the scan, running programs could malfunction, so please save all running programs.
That's the most honest AV I've ever seen. The others just silently interfere with other running programs.
>>
>>52228196
They mostly do use pirated XP.
I guess the government want to shift it over to their own OS, but it takes time.
>>
>>52228196
>I expected them to use pirated versions of windows...
First Commandment of Kim: Thou shalt not have other botnets before mine.
>>
>>52223999
Have yet to see source on that claim!
Not a source: >>52224446
In regards to VM-escape
>>
>>52224542
I actually learned a concept on /g/ today.
MMXVI is weird so far.
Pls reblog!
>>
File: Screenshot_2016-01-04-22-46-44.png (304KB, 720x1280px) Image search:
[Google]
304KB, 720x1280px
>>52227724
Hmm, naenara.com.kp
is blocked from the South Korean government.
When I try to access the site using the link, it goes to warning.or.kr
Not surprised though.
Even 4chan was blocked briefly in 2015...
>>
>>52228618
correcting typo
from -> by
>>
>>52228228
Nah, thats "Thou shalt not have seconds before me"
>>
>>52225513
There is. Forgot what it's called though, and it's shit
>>
>>52225921
Watching porn is punishable by death. So no, not a thing.
>>
>>52228714
>>52225513
darling
>>
>>52228043
IIRC, it's some site that copies 4chan threads and reposts them in a forum under fake names
The entire forum consists of nothing but reposted 4chan threads, it's eerie
>>
>>52228842
How does that benefit that site?
>>
>>52225921
As far as I know you can buy pendrives filled with porn on local markets and shit. But like in South Korea, it's illegal. If they find it on your computer, or the pendrive, you are dead.
Don't know what happens in South Korea though, but it is illegal over there too.
>>
>>52228688
How could you have seconds if NK doesn't even have any food?
>>
>>52228863
I have no idea
The user names are pulled from twitter and randomly matched to posts
The word 4chan is filtered to the name of the site
I suppose it is used to fake a real forum and rake in adbux
>>
>>52226210
They even make movies about them.
Who /gumok/ here?
>>
>>52228863
It's probably just someone's little web crawler experiment, that and bait to get ad revenue from random visitors.
>>
Anyone here watch Nork TV? Its a lot like american TV but they don't try to hide the fact its propaganda. Watching best koreans play basketball is hilarious since they're all ~170cm
>>
>>52228863
Shitton of hits from search engines and he can pretend to have a ton of users for better ad revenue.
>>
>>52229025
Not really can i stream best korea tv?
>>
>>52228618
lol SK also have a great (fire)wall?
cannot even decide which country is communist.
all of them?
>>
>>52229100
>implying only communist countries censor the internet
>>
It's like Linux with all the features of Windows except compatability with Windows software.
>>
>>52229100
Until recently, Norks actually had a better economy than the south. And greater political freedoms.
That's more of an 'asian countries are shit' thing rather than a socialist/capitalist thing though.
>>
>>52229150
>with all the features of Windows
тoп кeк
>>
>>52229150
Linux + Windows + Kim's Personal Backdoor
>>
>>52225599
Communism will never work irl, because we are humans, not ants or bees. There is always some asshole who only wants more power, so it will always end in a mass murdering dictatorship. People are not equally want to work too, a lot of them just want to leech the system. So communism is completely based on bullshit. It's only good for scamming stupid people to vote for you, so you can enslave a whole country.
Like it or not, capitalism the best we have.
>>
>>52229304
>>>/pol/
We're talking about the best OS of them all here, anon (not counting TempleOS).
>>
>>52226161
Especially syria.
>>
>>52229100
That's one way to put it.
However the firewall is basically a ip blocker, preventing S. Korean users from accessing certain sites.
If you try to access a blocked site here,
you are redirected automatically to
warning.or.kr
Now I don't know a lot about networks but you are still blocked even if you use a different DNS server (eg. Google Public DNS)
Most foreign and domestic public porn sites are blocked, including some paid porn sites. Most foreign torrent sites remain unblocked, however some domestic torrent sites are blocked.
Hentai, and other 2d porn sites are mostly blocked.
Google Searches done on
google.co.kr
block certain keywords related to porn, including English searches.
Recently I've heard that the searches have been unblocked.
This can all be easily circumvented with a foreign based VPN or proxy.
Even CNET Korea has tutorials
on how to do this
http://www.cnet.co.kr/view/112227
If you are born in S. Korea, finding porn isn't easy as typing in 'porn' in Google Search...
>>
>>52228931
Yup porn is illegal here, although I don't know the details of the law.
Was never caught having porn though.
I have over 70GB of porn on my pc, lost my previous collection due to drive failure
>>
>>52229461
South Korea seems to be a country that just werks and werks pretty well. Not counting k-pop you're a very rare example of a first world country that's almost completely free of degeneracy. Don't ruin it and stop ruining your life, delete all that furry porn immediately.
>>
>>52229461
Porn censorship is getting harder here.
Usually porn is distributed illegally here through public webhard(cloud) services.
Most porn sites change their domains and IP every time the government blockes them.
Haven't heard of people getting punished by law by having porn, usually its the porn uploders that get punished by law.
Here's a wiki article (In Korean)
https://namu.wiki/w/방송통신심의위원회
>>
>>52229428
>If you are born in S. Korea, finding porn isn't easy as typing in 'porn' in Google Search
Aren't your music videos basically softcore porn though?
>>
>>52229603
Yes
>>
>>52229350
my military friend wont shut up about iraq
>what was your favorite part of your tour?
>it would defiantly have to be getting to bum around the outer cities when we had nothing to do, shits beautiful, shame the people are not
>>
>>52229428
Another different version of
warning.or.kr
This site blocks illegal(?) game sites.
Even STEAM STORE used to be blocked.
http://www.gracwarning.or.kr/!/
>>
>>52229700
What's your opinion on Glorious Nippon?
>>
Theoretically would using Red Star OS be usable as a main OS to do regular normal stuff for a person in the west? Any problems with using normal internet or just regular every day tasks?
>>
>>52229979
why.jpg
>>
>>52229979
Read the thread to find out.
>>
>>52229783
Don't know much about Japan...
But I'm sure laws are a bit more free there in general, compared to S. Korea
>>
>>52225530
Here's a reply
>>
>>52224402
Op are you north Korean?
>>
>>52224496
Look up "god existence proof" and get 59 200 000 results.
>>
>>52230578
I typed in "Taco" and got 119 million results.....
>>
OP, can you run some traffic monitoring tool (like wireshark, but on linux) to check for suspicious internet traffic?
>>
did really no /g/entooman think of the consiparcy of Red Star OS?
NK spreads it around as >muh leaks and people install it and OS starts datamining for NK
>>
>>52230709
>like wireshark, but on linux
Lol
I second this request.
Im also curious as to how much data gets piped up to China before it hit the great WWW.
>>
File: 0NxwweY.png (498KB, 1279x721px) Image search:
[Google]
498KB, 1279x721px
>>52224496
if i look up your backdoor ill see 1,210,000 dicks
>>
>>52230052
>massive hipster detected
>>
>>52226763
Cool. Thanks for the link.
Thread posts: 307
Thread images: 63
Thread images: 63