administrator/root is turned off by default, and even if the user turned it on d... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

yieldcrv on Sept 14, 2023 | parent | context | favorite | on: Tails is a portable OS that protects against surve...

administrator/root is turned off by default, and even if the user turned it on during boot, they would still have to be tricked into approving or putting in their password again, am I missing something about the veracity of possible exploits?

vorticalbox on Sept 14, 2023 [–]

There are some exploits that allow for gaining root access.

One that comes to mind is dirty sock[0]. It uses a vulnerability in the snap api to create a root user.

https://github.com/initstring/dirty_sock/blob/master/dirty_s...

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact