Linux

65189 readers

527 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 7 years ago

MODERATORS

nooter692@lemmy.ml

MarcellusDrum@lemmy.ml

cypherpunks@lemmy.ml

cyclohexane@lemmy.ml

192

Dirty Frag: Universal Linux LPE - allows any unprivileged local user to gain root access on a vulnerable Linux system - no patch available (github.com)

submitted 5 days ago by rabber@lemmy.ca to c/linux@lemmy.ml

78 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] TechLich@lemmy.world 2 points 4 days ago* (last edited 4 days ago)

Yes kinda? It depends a lot on the system. It's still pretty common, even with containers like docker, for different services to run with different accounts and permissions. Eg. If you have a webapp with a small database or something, the web server will be www-data or whatever and the db will be a different user account like a postgres user or something. Even a fresh Linux install will have a separate user account for things like ntp (or systemd-timesync) etc. Users aren't usually people, they're daemons with limited scope and rule of least privilege.

Even if it's all docker containers and you deploy them with the same docker account on the host, there are almost certainly a bunch of different accounts inside.

That way if there's some vulnerability in ntp or something, an attacker might have permission to mess with the time but can't, in theory, take over the whole container.

I think there is a trend towards caring less about that aspect of defence in depth if each service is in its own container and just rely on isolation. People are deploying services running as root with ansible or even just in dockerfiles, and not caring about it because there's nothing else on the box for an attacker anyway. If they compromise the service, they've already got what they want.

I get the thought process but it still doesn't feel good to me. If some docker bug shows up that allows a container user with root to break isolation and use the shared kernel to pivot to the host or other containers, then that one dodgy webapp that's not running as a restricted user can become a part of a larger kill chain. It's really easy to develop systems with least privilege in mind and there's not much downside to doing it. It's a good habit to to create different accounts for different services (even if there's one admin/docker/ansible/whatever account for deployment).