lemmyuser@programming.dev to

Linux@programming.dev · 1 day ago

File canary kill switch

cross-posted to:
linux@lemmy.ml

44

File canary kill switch

lemmyuser@programming.dev to

Linux@programming.dev · 1 day ago

cross-posted to:
linux@lemmy.ml

Danny Rosseau / file-canary · GitLab

GitLab.com

I wrote a dead simple file canary tool that will install an eBPF program that drops all outgoing packets if a canary is touched. I wrote this in response to the current trend of supply chain attacks that try to harvest credentials

Chat

BetterDev@programming.dev
link
fedilink
arrow-up
3·
21 hours ago
Uh yeah, that’s the whole idea. I can always just bring it offline and mount the root as a separate disk to a different VM to investigate.
- BetterDev@programming.dev
  link
  fedilink
  arrow-up
  1·
  21 hours ago
  Or even just log in via serial console, but that’s not a capability I have coded in yet.
  - BetterDev@programming.dev
    link
    fedilink
    arrow-up
    2·
    20 hours ago
    I guess what I’m saying is I match the “really know what you’re doing” criteria.

Linux@programming.dev

linux@programming.dev

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !linux@programming.dev

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

274 users / day
1.14K users / week
3.27K users / month
10.1K users / 6 months
1 local subscriber
14.1K subscribers
1.95K Posts
15.4K Comments
Modlog