|
|
Linux Systems Being Hit By SSH-Key Attacks - TechAmok
Linux Systems Being Hit By SSH-Key Attacks - [security]
04:31 AM EDT - Aug,28 2008 - post a comment US-CERT
warns that Linux PCs are being attacked by a technique that uses stolen SSH
keys to gain access to computers then, using a local kernel exploit, a rootkit
is installed in order to steal other SSH keys and send them back to the attacker:
According to US-CERT, the attack appears to rely on stolen SSH keys to gain access to a system. It then uses a local kernel exploit to gain root access, whereupon it installs the "phalanx2" rootkit, derived from the older "phalanx" rootkit.
"Phalanx is a self-injecting kernel rootkit designed for the Linux 2.6 branch that does not use the now-disabled /dev/kmem device," explains computer security group Packet Storm on its Web site. "Features include file hiding, process hiding, socket hiding, a tty sniffer, a tty connectback-backdoor, and auto injection on boot." Once in place, the rootkit steals other SSH keys and sends them to the attacker to facilitate further attacks. SANS Internet Storm Center handler John Bambenek in a blog post said that the weak key vulnerability identified in Debian-based systems a few months ago could be one source of compromised SSH keys. Debian's flawed random number generation, fixed in May, led to keys that were predictable.
|
|
Add your comment (free registrationrequired)
Short overview of recent news articles |
|
Nov,26 2025 Stop Wasting Money on Premium Monitors Nov,23 2025 The Blackest Friday - Tech News Nov 23 Nov,23 2025 T-Roc: Will this new VW be the best car of 2026? Nov,23 2025 Can I build my own Steam Machine? Nov,22 2025 50 NEXT-LEVEL Gadgets Every Man NEEDS to See Nov,22 2025 RETURN TO SILENT HILL Trailer (2026) Nov,20 2025 I was WRONG about the Porsche 911 GT3 (or was I?) Nov,20 2025 Pi GPT Tool Turns Raspberry Pi into a ChatGPT-Powered Smart Device Nov,17 2025 Rainbow Six Siege X - Official 'Team Rainbow's Last Mission' Nov,17 2025 Stranger Things Seasons 1-4 Recap Nov,16 2025 Kill Bill: The Whole Bloody Affair - Official Trailer (2025) Uma Nov,15 2025 The Devil Wears Prada 2 - Official Teaser Trailer (2026) Meryl Nov,15 2025 Valve’s New Console and Controller - STEAM Machine & STEAM Nov,15 2025 Valve Steam Machine, Desktop SteamOS, Steam Frame VR, & Controller | Nov,01 2025 Battlefield REDSEC - Official Live-Action Trailer Nov,01 2025 What's the Best PC Upgrade (besides CPU/GPU)? Oct,31 2025 Directive 8020 - RTX On Trailer Oct,30 2025 Stranger Things 5 - Official Trailer Oct,29 2025 AMD Releases Software Adrenalin Edition 25.10.2 WHQL Drivers Oct,29 2025 Exploding AMD CPUs | Investigating ASRock's Murderboards Oct,29 2025 Setting Up Our First Huge Gaming Event was CHAOS Oct,27 2025 Malware of the Future: What an infected system looks like in 2025 Oct,27 2025 F1: Race Highlights | 2025 Mexico City Grand Prix Oct,26 2025 F1: Qualifying Highlights | 2025 Mexico City Grand Prix Oct,25 2025 New Big Windows 11 25H2 October Update - New Taskbar Battery Icons Oct,25 2025 Apple Prepping 'Transfer to Android' Feature, Including 3rd-Party Oct,24 2025 HW News - RIP Internet, RAM Prices Skyrocket from AI Demand, Intel Oct,21 2025 Retro Gaming PC Upgrades go WRONG! Oct,21 2025 How social media has ruined us - the more time you spend online, the Oct,20 2025 FERRARI 12 CILINDRI // 340KMH REVIEW on AUTOBAHN Oct,20 2025 ROG Xbox Ally X - a PC Gamer's Perspective Oct,20 2025 Race Highlights | 2025 United States Grand Prix Oct,18 2025 RedMagic Puts Liquid Cooling in its New Gaming Phone Oct,18 2025 Russia Says U.S. Is Planning a $37 Trillion Crypto Reset Oct,18 2025 Tor Browser says no to Firefox's AI features as it removes them Oct,14 2025 NVIDIA GeForce 581.57 WHQL Driver Oct,13 2025 Samsung One UI 8.5 vs iOS 26 - COMPARISON Oct,12 2025 Google Turned Down by Supreme Court, Must Open up App Payments Oct,10 2025 AMD releases new 25.10.1 preview graphics driver with Battlefield 6 Oct,10 2025 MERCY Official Trailer (2026) Chris Pratt
>> News Archive <<
| |
|
