• 1 Post
  • 110 Comments
Joined 2 years ago
cake
Cake day: August 15th, 2023

help-circle



  • If you did, the phone-home beacons are super easy to spot and block. Appliance manufacturers don’t think of their products as computers so they don’t bother to hide anything.

    On the flip side, it seems that laptop manufacturers think of their products as appliances, so they don’t even hide their beacons either.

    Spoiler: Acer ties it’s proprietary fan control drivers to"NitroSense" that loves to beacon home with your geo location and serial numbers. If you insert a random python webserver for it to connect to, it will just blurt out its API keys for the Acer CMS. Connecting back to their CMS manually allows you to inject as much shit data into their CMS as you want.













  • remotelove@lemmy.catoLinux@lemmy.mlWhy do we hate SELinux?
    link
    fedilink
    arrow-up
    6
    arrow-down
    2
    ·
    edit-2
    11 days ago

    Its just complex

    When a security mechanism becomes more complex to manage than what it is supposed to protect, it becomes a vulnerability itself.

    If you had a minimal system that you built from the ground up yourself and wanted to only have that system function in very specific ways, SELinux would be perfect. I would go so far as to say it would be nearing perfection in some ways.

    Sorry, but in the real world, ain’t nobody got time for that shit. If you use auto configuration tools or pre-canned configs for SELinux on a system you are unfamiliar with, it’s more likely to cause application issues, create security gaps and will likely be shut off by a Jr. admin who really has no fucking clue what he is doing anyway.

    It’s just easier to keep your system patched and ensure basic network security practices anyway.

    It’s not impossible to manage these days. In the early days it was, but most everything is automagic now. If I am not mistaken, SELinux can be enabled to ‘log only’ which would give you data better handled by a HIPS anyway. (Don’t quote me on that.)