this post was submitted on 02 Apr 2024
466 points (94.3% liked)

Programmer Humor

34106 readers
120 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

founded 5 years ago
MODERATORS
AgreeableLandscape@lemmy.ml
cat_programmer@lemmy.ml
466
Wait... it's all backdoors ? Always has been bro... (lemmy.world)
submitted 11 months ago by devilish666@lemmy.world to c/programmerhumor@lemmy.ml
23 comments fedilink hide all child comments
 
all 24 comments
sorted by: hot top controversial new old
[–] BestBouclettes@jlai.lu 113 points 11 months ago (3 children)

There are two types of backdoors, the ones that were fixed and the ones we don't know about.

[–] magic_lobster_party@kbin.run 70 points 11 months ago* (last edited 11 months ago) (2 children)

The only reason why xz got exposed was because someone noticed SSH was a bit slower and decided to take it to their own hands to investigate. It’s possible this backdoor would go unnoticed for far longer if the attacker didn’t make this slight oversight.

So it might be that there have been other, successful attacks before. It’s just that this one is the one that got exposed.

[–] scarilog@lemmy.world 69 points 11 months ago (1 children)

Slower as in 500ms slower iirc.

Linux users when bloat

[–] imnotfromkaliningrad@lemmy.ml 56 points 11 months ago (1 children)

tbh given the context 500ms is a lot.

[–] nickwitha_k@lemmy.sdf.org 21 points 11 months ago (1 children)

Yeah. 500ms for ssh feels like an eternity.

[–] LostXOR@fedia.io 7 points 11 months ago

SSHing into my less powerful machines takes a good few seconds, so I'm not sure if I'd notice an extra 500ms. For the more powerful ones that are basically instant it would be much more noticeable.

[–] LazaroFilm@lemmy.world 25 points 11 months ago (2 children)

And the ones you leave for yourself to check during development and forgotten to close before release.

[–] BestBouclettes@jlai.lu 11 points 11 months ago

Shhh we don't talk about these !

[–] redcalcium@lemmy.institute 6 points 11 months ago (1 children)

This is why you should secure your own bureaucracy-bypassing backdoor with a long ass key (bonus point if you use pki instead of a simple static key).

[–] LazaroFilm@lemmy.world 3 points 11 months ago

I just use the Konami code as a secret password.

[–] knorke3@lemm.ee 13 points 11 months ago

don't forget the ones we got paid for very well and the ones we introduced to not go to prison

[–] AVincentInSpace@pawb.social 34 points 11 months ago (1 children)

https://xkcd.com/2166/

[–] fibojoly@sh.itjust.works 9 points 11 months ago

Backdoors all the way down!

[–] xmunk@sh.itjust.works 16 points 11 months ago (1 children)

Jim Morrison was truly a developer born into the wrong age.

[–] rob64@startrek.website 7 points 11 months ago (1 children)

I feel compelled to point out that "back door man" was already a common expression in blues lyrics.

[–] xmunk@sh.itjust.works 4 points 11 months ago

Oh, I'm well aware, I just have a core association of Jim Morrison wailing "I'm a back door man." It wasn't an innovative line or anything.

[–] cmgvd3lw@discuss.tchncs.de 11 points 11 months ago (2 children)

I love backdoors

[–] Shady_Shiroe@lemmy.world 6 points 11 months ago

I'm more of a sidedoor guy myself

[–] AdamEatsAss@lemmy.world 0 points 11 months ago

Sure the front is nice but sometimes my girl and I like the backdoor.

[–] Mio@feddit.nu 5 points 11 months ago

Both open and closed source got these.

[–] TDCN@feddit.dk 3 points 11 months ago