LOONIX USERS BTFO

>>61147965
>Literally just a regular fucking virus
>No remote exploits or any actual major bugs
wow its literally nothing

Sooo... nothing?

They still need access to the PC to do it.

File: russianhacker.jpg (271KB, 1350x1450px) Image search: [Google]

271KB, 1350x1450px

>>61147981
its a big something

>>61147995
no ((((they)))) can put the bloat via airdrop on cloud only if port69 is open

>>61147981
It's not even a virus.

>>61147965
>I'm using >meme arrows every >two words so I hopefully >fit in and >make more people mad >xdddd >talking about my >one virus that is off course >worse than all hundreds of windows viruses that are around >LOOOOOL time to cry u faggots xdddddddddddddddddddd

File: sushi.gif (34KB, 540x250px) Image search: [Google]

34KB, 540x250px

OpenBSD doesn't have this problem

>>61148047
XD

>>61148047
It's not even a virus. It's a kernel module.

File: muskconfused.jpg (153KB, 2175x1631px) Image search: [Google]

153KB, 2175x1631px

>>61148073

what the hell is a kernel

>>61147981
>>61147995
Not sure if retarded or just a desperate attempt at damage control.

>>61148073
oh yeah you're right, I even overestimated it when ridiculing
>Harm can be done when having access to someone's computer
Oh fuggggggggggggggggggg

Alpine with a hardened linux kernel doesn't have this problem.

>>61147965
Only works on enterprise distros like red hat, try again pajeet.

File: panic.png (598KB, 600x878px) Image search: [Google]

598KB, 600x878px

>>61147965
>The installation and persistence method of the malware is not described in detail in the document; an operator will have to rely on the available CIA exploits and backdoors to inject the kernel module into a target operating system.

>backdoors

File: Screenshot_2017-06-29-21-54-05.png (225KB, 1080x1920px) Image search: [Google]

225KB, 1080x1920px

And there is also this.......

>>61148281
fuck off phoner

File: 1497567056418.jpg (53KB, 590x550px) Image search: [Google]

53KB, 590x550px

>>61148281
>mfw Centos at work

>>61147965
lsmod | grep nf_table
returns nothing

>>61148303
Aww.... Does that make you mad?
Should I go turn my laptop back on instead?

>>61148313
I don't think the cia niggers care about your work. Unless you work for Russians or chinks.

>>61148233
>not realizing loonix is backdoored

Loonix has freedom, aka the freedom for CIA to sneak shit in there because despite the code being open nobody ever really checks it

Loonix is only safer because less people use it so it's targetted less

>>61148402
Exactly this!!
Plus, what normie is going to be able to decipher the source code anyway??

>>61147965
>OutlawCountry v1.0 contains one kernel module for 64-bit CentOS/RHEL 6.x; this module will only work with default kernels.
>CentOS/Rhel 6.X
>Curent version of CentOS=7.X
Wew.

>>61148085
A function that you can choose to add or not when you compile your kernel (i.e. something that you can only install while sitting in front of the computer). Fucking newfag. Get out of my board asshole.

CIA can't touch the people they want and only the really naive and reckless fall on their clutches. Paranoia means freedom for some people here and they don't want be arrested.

>>61148395
or host an irc network for anonymous

>>61148035
>The >malware consists of a kernel module

>>61148281

>the operator must already have shell access

top kek I always knew the CIA was a bunch of fags

>>61148281
>NAT table
>CentOS/RHEL gateway
ISHYGDDT

>>61148281
>Operator must have shell acess
kek

>requires local root access
>pwnd

File: paranoia-792.jpg (20KB, 420x344px) Image search: [Google]

20KB, 420x344px

I encrypt and sign all my sensitive messages on an airgapped low power sbc and broadcast them to my other PCs via headphone jack. HOW YOU GUYS DOIN?

echo -n FUCK OFF NSA NIGGERS | openssl aes-256-cbc -e | base32 | minimodem --tx 600

Loonex confirm as worst OS in history

>>61148755
Obviously a joke, you fucking spaz.

>>61149625
Linux is not an operating system.

>>61148281
>2.6.32
up2date

>>61149676
it references one

>>61149625
Ok. Don't use it. What's your problem with Linux?

>>61147965
dude looks like a faggit

>>61149676
Who cares, I will never call it ganoo leenoox.

>>61149665
Y-yy-eah it was obviously a-a-a j-jj-oke......


ˢᵖᵃᶻ

>>61149805
Autism

>>61149781
IT'S GNU SLASH LINUX

>>61149625
I'd just like to interject for a moment. What you’re referring to as Linux, is in fact, GNU/Linux, or as I’ve recently taken to calling it, GNU plus Linux. Linux is not an operating system unto itself, but rather another free component of a fully functioning GNU system made useful by the GNU corelibs, shell utilities and vital system components comprising a full OS as defined by POSIX.
Many computer users run a modified version of the GNU system every day, without realizing it. Through a peculiar turn of events, the version of GNU which is widely used today is often called “Linux”, and many of its users are not aware that it is basically the GNU system, developed by the GNU Project. There really is a Linux, and these people are using it, but it is just a part of the system they use.
Linux is the kernel: the program in the system that allocates the machine’s resources to the other programs that you run. The kernel is an essential part of an operating system, but useless by itself; it can only function in the context of a complete operating system. Linux is normally used in combination with the GNU operating system: the whole system is basically GNU with Linux added, or GNU/Linux. All the so-called “Linux” distributions are really distributions of GNU/Linux.

File: 1495436764741.png (3KB, 280x272px) Image search: [Google]

3KB, 280x272px

>>61148281
>CentOS/RHEL 6.x
>kernel version 2.6.32
>must have shell access
And it fucking nothing.

>>61149989
it's*

File: THEO.png (1007KB, 1280x720px) Image search: [Google]

1007KB, 1280x720px

>>61147965
He warned us.

>uses iptables
>ditched iptables for nftables a year ago

>>61147965
Reassuring for Linuxfags that NSA has all sorts of gee-whiz end-to-end stuff for Windows but only a poorly maintained rootkit with limited portability for Linux.

Those guns aren't pointed at you.

>must have shell access

is this a fucking joke or what. I wouldn't even patch this low severity garbage if all it took was sudo apt-get update cmd

>>61147965
Protip: This is really just a data exfiltration package. you install it on a target machine (using an exploit perhaps, or by hand) and it'll work as a nice little package that takes data out of the target machine.

Probably includes keyloggers and directory navigation as well as way to access memory to get sensitive keys and such.

>>61148402
So can you show where in the code the backdoor is?

>>61148092
You know you need to give it Permission to run and then run it, right?

>>61148092
Damage control by who? Linux is literally opensource.

>>61151852
It's free software, not open source.

>>61151889
And you're gay, what's your point?

>>61148402
Sounds like a bizarre conspiracy to me, I'm sure someone will find such a thing. Why not just use the processor backdoor?

>>61151896
didn't know your mom is male

File: 1357889859682.jpg (256KB, 1920x1200px) Image search: [Google]

256KB, 1920x1200px

>>61147965
This is actually a fake. Basically GNU/Linux is very secure and it pisses the CIA and FBI off because they can't find any zero day exploits or backdoors and such so they decided to play it smart: If you can't hack an OS then trick people into not using that OS.
So they leaked fake news to wikileaks that linux is filled with holes which will scare people into switching to windows, which is filled with holes and backdoors in all editions and CIA/NSA can access it effortlessly.

>>61148281
>2.6.32
laughinggirls.jpg

>>61147965
> requires root access
> kernel version 2.6
Oh wow it's fucking nothing

>>61147965
>Linux-2.6
>netfilter
>needing an operator to get shell access first
>unironically mounting unsigned kernel modules
you have to be 16 degrees of retarded to fail victim to this

>>61151948
You didn't actually read it, did you?

File: Sow38uc.jpg (69KB, 960x720px) Image search: [Google]

69KB, 960x720px

>>61147965

>>61148281
Wonder how many actual real world systems that would cover.
Single digits?

>>61148281
I was going to joke about that old Linux version, but it seems it's still updated. Though the attacker needs shell access, this is relevant.

I hope Wikileaks really is sending the actual malware/exploits to upstream so they can patch it. I don't want insecure machines so the CIA/NSA can """"catch terrorists"""".

did you guys hear about the rm rf exploit?

This is a post exploitation module retards
They use this after they pop the box and are already running as root to monitor traffic afterwards

>OutlawCountry v1.0 contains one kernel module for 64-bit CentOS/RHEL 6.x

>using anything besides Ubuntu
AUTISTS BTFO

HOW WILL THEY EVER RECOVER?

>>61156621
Pretty sure there are still a ton of openvz boxes on old kernels

>>61147965
interesting

File: 1496966378582.jpg (130KB, 872x1016px) Image search: [Google]

130KB, 872x1016px

>>61149504
>-n
Non-standard

>base32
Retarded

>cbc mode
Lmao, are we in the 90s?

>AES
Enjoy your ancient shitty crypto algo

>no MAC
Good job you retard

>>61150682
To be frank linux is a bloated mess consisting of millions upon millions of lines of code. Proper OSes are based on a microkernel architecture and thus have small kernels.

>>61157289
Also, does not specify a KDF.

>>61157289
What do you suggest for symmetric crypto then?

>>61147965
> Kernel 2.6
lol? I think I was still using Windows 98 when that series came out, not joking...

Also, this is a fucking KERNEL MODULE that someone MUST install in the system, not a bug, you stupid micro$hill.

Sage and reported.

>>61156670
no, it hasn't had an official release in almost 7 years

linux-2.6.32.27.tar.bz2                            09-Dec-2010 21:32            64445765

it might be maintained by other people, however (such as distro maintainers)

>>61157394
It's a rootkit you autistic fuck, are you trying to say rootkits aren't malware?

>>61157394
2.6 came out dec 2003
i was using ME up until 2004
a lot of people were still running win98 in 2003

>>61157483
It is maintained by Red Hat.
>6.9, also termed Update 9, March 21, 2017; 3 months ago (kernel 2.6.32-696)

The last update was 3 months ago.

>>61157535
can't blame linux devs for it's use, it's been out of their hands for some time

>>61157483
http://lkml.iu.edu/hypermail/linux/kernel/0312.2/0348.html
> 2003

>>61157566
that's 2.6.0, not 2.6.32.27
the version numbers sped up after 3.0, it was 2.6.x for quite a while

>>61157589
Do you know what a "Kernel series" mean? Oh you don't, because you work at Microsoft. FUCK OFF FAGGOT!

>>61148281
Wait wait wait

Shell access?

Does to be clear

Does that mean, the login screen?

Or that means they are logged into the terminal as a user (any user), and can issue shell commands?

>>61148281
>your kernel must be 10 years old AND your PC must already be infected
Wow. This is nothing. Only idiot corporations wouldn't have a more up to date kernel.

>>61157553
I'm not blaming them, just pointing that this malware targets a version of Linux (or, as it makes sense in this case, GNU/Linux) that still has commercial support.

Its different from malware targetting, let's say, Windows XP.

File: 1498489354628.jpg (20KB, 478x484px) Image search: [Google]

20KB, 478x484px

>>61148281
>2.6.x required
>shell access required

>>61157628
i'm not sure what you're trying to say
that 2.6.0 and 2.6.32.27 are basically the same thing?
no way, by the end of it things were so different that "2.6" might as well have been a single digit, being the series, and the "32" was essentially the major version
it's no wonder 2.6 was replaced simply with 3

>>61157647
>Or that means they are logged into the terminal as a user (any user), and can issue shell commands?
this

>Does that mean, the login screen?
that would be graphical console access, though it's not typical to provide access to this without authentication

>>61157676
>I don't understand exploitation or operations but I'm going to talk anyways!
Fuck off retard

>>61147965
>one linux exploit, with new windows exploits coming out every day
sage

>>61157371
Chacha20 or Keccak with a Carter-Wegman style MAC like poly1305
Or NORX/Keyak if you want a sponge-based thing that calculates the MAC in a single pass.

>>61157628
>I am a retard

>>61147981
Doing THIS much damage control.

>>61157811
>exploit
no

>>61148048
Sure.

>>61157811
no, it's just a dodgy module you need to install yourself
it's literally no different to installing a driver in windows yourself

>>61158237
It
Is
A
Post
Exploitation
Module
This means that they already pwned your box, and are installing this rootkit for continued survallience
how is this hard for you fags to understand, the user never installs this themselves

>>61158325
what part of my post suggests i don't already understand this?

I would use a whole CIA operating system.
I literally don't give a fuck about some module they're trying to install on terrorist computers.

>>61158354
The part where you say "you need to install yourself"

>>61158325
You talk like you know shit, kiddo. But do you have any evidence that this thing actually exists and works?
Do you have any idea how many people watch and test Linux boxes constantly all over the world?

>>61158464
Proof that rootkits exist? Sure
These aren't being used on normal people, these are nation state exploits and exploitation packages, they aren't using them on random retards

>>61158464
>I am a turbo retard
-- You

>>61148281
>2.6.32

>>61147965

64 bit CentOS/RHEL6.x /w 2.6.32 kernel users who allow NSA agents shell access BTFO!
>FTFY

see >>61148281
/thread

Shit like this just makes you look desperate, Pajeet.

>>61158535
LOL you don't even know what a rootkit is.

>muh nation state
They don't do anything special. The multitude of fanatical and virtuoso bad guys out there have infinitely bigger capability than fewer obscure 9-5 state employees who chose that career instead of so many better options, you fucking retard.

>>61158738
What do you think a rootkit is champ?
Do you really think these multi million dollar exploits that leaked (ms17-010) is something a normal bad guys have?
You realize there's a 100m dollar vuln research contractor industry that does nothing but VR all day, and sells them to feds? Of course you don't, you've never seen an 0day in your life

>>61147981
DAMAGE CONTROL
A
M
A
G
E

>>61148105
.......why

>>61148048
Neither does TempleOS, and it isn't harmful software to boot.
Upgrade to TempleOS today.

File: 1497470086106.png (458KB, 850x480px) Image search: [Google]

458KB, 850x480px

>>61160123

Here's an idea, hear me out.

Don't install that kernel module.

Done, everybody go home.

>>61161432
>I'm too dumb to understand what post exploitation is
It's honestly sad to see how little /g/ knows about real security

>>61157788
Ok englighten us how this matters whatsoever. Is the CIA going to have shell access to my computer, replace my kernel with a version that's like a decade old and then install this malware?

>>61147981
>First post is damage control

Lol

>>61161462
Provide a realistic scenario where this could be a problem then. As far as I see, this is something you'd have to install, unlike the backdoors that macOS and Windows could contain.

>>61161470
They're not going to touch you, because you're irrelevant
But hypothetically, they know what version of Linux their target is running from recon, put out a contract for code exec, someone like raytheon gets the contract to VR and fulfills it, delivering an 0day, the government weaponizes the 0day, uses it on their target, privescs to root and installs this, and monitors future comms

>>61161498
These are used in conjunction with 0day, it's a mission specific stage 2 payload for when they want to monitor traffic after they are already on a system
They might also have a kernel module that installs a file system filter to hide a file on disk, or they might activate and send back all voice comms from mics

Their exploitation frameworks are built similar to something like metasploit, they have a repository of 0day they have either deved in house or bought, then post exploitation modules, they choose an exploit for the system they want to attack, use it to gain execution on their systems, then install secondary packages to continue monitoring. It's like if you were to drop a reverse shell, obviously users aren't going to randomly run it, that isn't the intention

>>61161597
I asked for how would they use THIS exploit on my computer, running Linux 4.5, that requires shell access and Linux 2.6. What you described is how how they would develop ANOTHER exploit for another kernel version that does not require shell access, or that can somehow get shell access. I can say the exact same thing for any OS in the world since it's 100% conjecture. Just replace Linux with whatever OS you want.

>>61147981
it's not damage control you retards
rootkits for linux have existed before
0days for linux have existed before
there's nothing extraordinary about this

>>61161741
They wouldn't use this rootkit on you specifically, I'm only explaining what this is and how it's used
The CIA doesn't care about you, they don't operate in the US, thats the nsa

>>61161768
When did I ever say I was in the USA? Greetings from Portugal.
>I'm only explaining what this is and how it's used
Yes, and this is nothing but an exploit they found for a 10 year-old kernel version that requires shell access. There's no realistic scenario for how this exploit in particular can be used against anyone who has updated their system ever since How I Met Your Mother ended.

>>61161802
You underestimate how much other people update anything
Half of China still runs windows xp

>>61161899
If you don't update your system, then you can't really complain when a patched exploit fucks your system, can you?

Looking at you, Debianfags.

>>61161923
I doubt there's even any exploits in this, it probably just relies on a specific kernel feature that was removed

>>61161923
>What is unstable

>>61161986
Something I didn't talk about. I was talking about stable, which is what the majority uses.

>>61161973
Yep. It's like me digging up a bug from XP that requires you to be logged in and say WINFAGS BTFO.

File: Heatingsy.jpg (3MB, 3504x2336px) Image search: [Google]

3MB, 3504x2336px

>this module will only work with default kernels
that's why linux-libre exists
also
>Linux operating system
ROOOOOOOOOOOOOO

>>61161923
Debian backports the patches
wth are you talking about?

File: 1495448957043-g.gif (393KB, 640x360px) Image search: [Google]

393KB, 640x360px

>>61151889
>It's free software, not open source.
>not open source
The fuck you talking about?

>>61162090
>that's why linux-libre exists
no

File: qt.jpg (194KB, 900x675px) Image search: [Google]

194KB, 900x675px

>>61162193
Yes, because this thing works only with default kernels

>>61162453
How is this relevant? This is not the reason for the existence of linux-libre.

File: outlaw-2.gif (2MB, 500x281px) Image search: [Google]

2MB, 500x281px

>>61147965
>OutlawCountry

That Archer reference. Are NSA/CIA based, now?

File: nonfree bsod.png (52KB, 400x279px) Image search: [Google]

52KB, 400x279px

>>61162469
ikr but OutlawCountry works only with default kernels

>>61161597
The important question here being: How can I get NSA-senpai to notice me? uguu~

>>61147965
No better way to turn the spooks off Linux, kernel binary module compatibility is a nightmare desu. And it only inserts rerouting. Perhaps there are more interesting tools at the other end of the rerouting.

>>61147965
So what is your solution dipshit? Windows 10?

>>61161923
>Looking at you, Debianfags.
Debian gets security updates for old software.

>The OutlawCountry tool consists of a ***kernel module*** for Linux ***2.6***.
>The Operator loads the module ***via shell access*** to the target.
Now, only if they leaked how the fuck you shell the said system in the first place.
>wtf 2 classified 2b leaked!?>!?!

>>61165318
Chortled and guffawed.

>>61147965
you DO know you could have copy pasted the text and used only one meme arrow right?

>>61147965
>using netfilter
>using iptables
kek

Let me guess. This wont do shit if SELinux is enforcing and firewall is running.

Linux status = UNSTUMPED

>>61165928
this same thing can be said about every single windows vuln too lmao
just turn on EMET bro!!

>>61148105
>that finale
fuggen died

>>61148149
Wtf

>>61147965
>Today, June 29th 2017, WikiLeaks publishes documents from the OutlawCountry project of the CIA that targets computers running the Linux operating system.
i bet you read that first line only, got a hard on then jumped on here to shitpost without reading anything else
>The OutlawCountry tool consists of a kernel module for Linux 2.6.
2.6
AHAHAHAHAHA

>you need physical access so it's totally okay

I guess the usb exploit was fine and dandy too according to some of you faggots.

>>61148402
Let's say you are right. By your logic you are paying for your backdoors with using Windows and paying premium by using osx.
Hahahaha well at least you have your gaymer shit and Photoshop

If you bumped this thread you should feel ashamed of yourself.

>>61148085
You realize that Windows has a kernel, too?

https://en.wikipedia.org/wiki/Windows_NT

It's literally 23 years old and was developed and released before the internet is a thing. It's monolithic architecture is also why you need an antivirus, because once you allow FF or chrome to run once, it is given system administrator privileges.

>>61148281
Who the fuck is on a kernel that old?

>>61158416
youd enjoy windows 10 then

>>61166898
>you need physical access
That is wrong. You need MUCH more then physical access, you need to be able to issue shell commands.

>>61147965
Go back to your NSA spyware botnet. I'll take my chances with Linux.

>>61167440
Koreans like even older kernels
>>61157535
The Red Hat 2.6.32-692 kernel it's ridiculously different to the 2.6.32 mainline kernel, they have backported pretty much every single security update
I actually doubt this works on updated RHEL/CentOS 6.x
>>61161923
Debian has a better security track record on their packages, including the kernel, than Ubuntu

>>61157518
It's a rootkit that needs root access and a sysadmin that will allow you to run whatever the fuck you want
The only way that would happen it's if you were already the sysadmin, but then what's the fucking point of a rootkit?

>>61166898
You need access to the shell, not just physical access

>>61148281
>Need physical access
>Need to access the shell on top of this
>Must be an absolutely ancient kernel on a very specific OS
Most worthless exploit ever.

Worthless. Old as fuck, works with one specific kernel from 2010 or something, needs shell access.

>>61167640
>>61168229
Usb boot live image and chroot unless like I do, encrypt whole drive.

Good luck faggets.

>>61149676
Actually it is. Go look up the definition of an operating system