Red Star Linux Caught Spying, Modifying, Deleting
Follow Us:
Follow us on Twitter
Subscribe to our RSS
Red Star Linux Caught Spying, Modifying, Deleting
by Susan Linton - Dec. 29, 2015Comments (0)
Related Blog PostsDebian Founder Ian Murdock Dead at 42Debian Founder in Trouble, Ubuntu's Wrong TurnLinux Flaws - or Perhaps FeaturesTake the Free Path to Get Going with LinuxMint's the Best and Ubuntu Don't Care
The big story today was the confirmation of hidden features in North Korea's Red Star OS, based on Red Hat/Fedora. It was a top headline on most websites many with plays on the words Open Source and oppressive. In more local circles the release of the first stable Solus OS excited the community and the first reviewer asked where's vi. Red Star was found to contain lots of extra software that allows the government to keep their citizens oppressed. A synopsis was published of the talk given over the weekend at the thirty-second annual Chaos Communication Congress in Germany. The CCC is a construct of the Chaos Computer Club, a group of hackers working for freedom of speech, privacy, security, encryption, and such. Each year they hold a convention to discuss and learn the latest. This year Florian Grunow and Niklaus Schiess shared the findings of their research on Red Star OS. Grunow reported earlier in the year on things like a program that "pretends to be some kind of virus scanner" that actually watermarks users' files, even if they haven't opened them. Apparently this is how the government can tract "illegal" code and users thereof. After making a document file, "the MD5sum of the file changed" without it being reopened or "touched in any way." It changed because the nefarious code had access to it. Grunow said the file was now really a zip of the original file with multiple files added. "Garbage" was added at the beginning of the file including the users hardware serial numbers. The files can even be deleted if undesirable to dear leader. He summarized, "Creating and using media files and documents on RedStar OS can get you into trouble if you are living in North Korea." In this weekend's talk, Grunow and Schiess said the system is designed to "defend and protect itself from changes made from user space" and will reboot if changes are detected. The web browsers all connect to central servers before transferring content tracking all users' activity. They drove the point home with, "We found that the features implemented in Red Star OS are the wet dream of a surveillance state dictator." The first stable release of Solus OS with the Budgie desktop was released Sunday. Lots of sites carried the news and Neil Rickert was anxious to test drive Solus OS 1.0. He said the boot was pleasant in appearance and the desktop reveals "that this is Gnome 3.18.2." He also couldn't find a way to run software updates. The live DVD just froze when faced with UEFI machine and manual bootloader configuration was needed. I had to chuckle when Rickert complained that the lack of vi force him to use Nano. Then the host command was also MIA as were the entries in power settings. He concluded that Solus OS is "an interesting new distro, but it's newness is showing." In other news, * China Linux PCs: full details and pictures * Linux Mint 17.3 KDE Beta Released, 17.3 Xfce Beta * Best Xfce distro of 2015, KDE/Plasma * A year of Linux has already happened. You missed it. * Manjaro 15.12 (Capella) KDE Review: Slow to Boot, But Stable & Beautiful * Top Linux Distributions To look Forward To In 2016
linux linux mint Red Star OS Solus OS
Previous: On the OpenStack Sce...Next: Apache Turns to Big ... Browse Blog
Jesse Babson uses OStatic to support Open Source, ask and answer questions and stay informed. What about you?
Share Your Comments
If you are a member, Sign in to have your comment attributed to you. If you are not yet a member, Join OStatic and help the Open Source community by sharing your thoughts, answering user questions and providing reviews and alternatives for projects.
Your Name
Email Address (kept hidden)
Your Comment *
Promote Open Source Knowledge by sharing your thoughts, listing Alternatives and Answering Questions!
Featured MembersViewLeon MerchiSystem Analyst at a large IT Services firm. Based...
ViewJesse BabsonI used to work for a large chip company here and a...
Related Questions
Get answers and share your expertise.
Have a question? Ask the community
Seriously, OSTatic! This is plain annoying!
By McKinsey - Oct 17, 2012
post answer
Installing Linux from Live CD
By Dineshrawar - Apr 09, 2012
3 answers
Scheduling backups to the cloud server
By Alvin Pieterson - Sep 16, 2011
post answer
Partner Center
Happening Now on OStatic
anonymous commented on Linux Flaws - or Perhaps Features
anonymous commented on Debian Founder in Trouble, Ubuntu's Wrong Turn
hoori commented on Deepin the Best, Fedora 21 Buried, and RMS
About OStatic
Terms of Service
Privacy Policy
Send Feedback
Powered by Vox Holdings
© 2015 OStatic. Built on fine Open Source Software from projects like
MySQL and
Sign in to OStatic
Username: *
Password: *
Not a member? Join NowI forgot my password