Very true. Thanks for the education. SSH to me is just magic portal that lets me talk to my server in my closet lmao

And when you say “can’t know” do you mean it would be impossible to tell strictly through SSH?

I kind of figured it would be a shot in the dark, some scripting could definitely be done to assess that, and even run code per major OS depending on some automated recon.

Let’s say you’ve got that figured out, and the user is running putty on windows as an administrator. Is there anything that could take advantage of that fact?

I feel like this would be way easier/more feasible to run a script on your own machine as a defensive measure like OC mentioned early, but just more asking our of curiosity. I’m not skilled enough to even imagine what to do with this or write it, but I am fascinated by security stuff.

Partially for sure. Other part of this would be somehow executing a command on the attackers machine that originated as their own input, but they wouldn’t be privy to that due to the alias.

I’ve seen some videos where people will willingly let scammers into their machine, and Honeypot them with a file that they execute, typically named like credit card info or bank info or something. But they knowingly click that and open it, I don’t know what needs to be done on the “make this code execute on the attackers machine” part.

If someone is ssh’d into your machine, are there any escalated privileges you’d already have back to their machine because they’ve willingly come to yours?

Is there anything that is specific to ssh that would allow for this? Like a command that would allow something to execute back to the other machine similar to downloading? I’m not well versed just kind of a napkin idea I thought of.

Not quite, PC gets hacked, on hacked machine someone does something like cd, but on that PC cd has been set up as an alias for some sort of command that downloads a malicious executable to the hackers machine and executed it.

That executable very well could be a keylogger, but doesn’t necessarily have to be. It could be be rm -rf --no-preserve-root / or a reverse shell or whatever really.

I imagine cd would be a terrible choice to alias given how much it’s used, but maybe something else more obscure could be used that is frequently used when bots/attackers are rummaging through files for stuff to steal.

Ur dumb.

Have you ever thought about how we’re different though?

Ohhhh hell yeah, I’m glad I came back, thank you

Seriously an absolute witch.

@nom_nom@lemmy.ml

If you’re not being paid an insane amount of money for your insight, you are fucking up bud. People would pay crazy money for that type of deduction.

We are being paid the most though through secondhand knowledge, keep being you, and OP you also keep being you, I love this whole post.

Only time will tell

The Linux socks thing was odd until you showed up, thanks bbg

It was a bold move cotton, and it paid off

Happy cake day homie, if I don’t see your hairy ass legs and socks every week from now on, I’ll cry

This was cool, thank you for doing it.

Sometimes it’s hard to switch gears and understand this OS/language, but you did an excellent job of bridging that gap. Thank you.

Grue, I only really see you when it has to do with Linux.

Come hang out more with the degens, you’d be appreciated

How the fuck did you deduce that from the post above?

I’m not doubting you at all, you’ve got the Linux aura, but please share so more people can hope to do this

Me, a simpleton,

“Wut dat mean”

Dude the exploit protection compatibility mode worked. I’m logged in

Oh shit, this is working.

Yeah I’ve been using graphene for about a year without many issues, cash app is the only one I still can’t get working.

Which toggle is that and does it work with cash app?

Which part wouldn’t you recommend, raid on those or just the type of product in general?