Suffering Physical Attack On Trisquel
- Inicie sesión o regístrese para enviar comentarios
1. Affected Package revision / version
Aramo 11
2. Steps to Reproduce
install aramo 11 offline in legacy bios mode with msdos partitioning
install xfce
use firefox, chat on trisquel forums
???
3. Current Behavior
after installing trisquel multiple times in the same way
suffered a brute force, physical attack, on the computers UEFI
that causes the voltages to be set abnormally, which is supposed
to fry(destroy) the cpu I guess, but is imperfect, so my computer survived,
when I noticed it was behaving abnormally and took remediation steps
to be clear, I suffered this kind of destructive hack attack, twice,
in the exact same way, which is useful information
the alteration to the uefi settings is evidenced by it's own logs,
as unrecognized event(undefined event/alteration)
4. Feature request
I think because of the fact, I use an atypical installation method,
I at least reduced the amount of potential vulnerabilities on my system,
which forced the attackers to use the same attack twice
5. Workaround (optional)
have to reset the bios, before the cpu is destroyed,
which may require waiting 30 minutes for it to cool down,
and may require manual removal. may need further steps
to resolve the abnormal frequencies that cause the cpu to overheat rapidly,
such as manually tweaking settings/power cycling, reinstalling new version of the bios
As stated previously, it's either UEFI/bios that have either bugs or backdoors being exploited.
If not then it's possible you have a 13th & 14th intel Gen families of CPUs, as intel literally sold defective chips that have voltage spikes as described.
If not then it's a kernel.org issue.
In any case it's not something the community or even developers/maintainers can "fix". At least not without a substantial amount of finances to at least eliminate UEFI/bios issues which means reverse engineering for your specific hardware. As for the linux kernel they have a quarter billion dollar to waste.
Sorry we, or at least I can't be of any help :(
This is not a problem with Trisquel, if anything this is an issue with UEFI.
If I believe what you say to be true.
Or it could be an issue with intel me.
But I don't think its Trisquel.
I am sometimes a critic of how mainstream distros and their forks operate. But yeah this isn't a reason to make stuff up or to point the finger without thinking.
Its either intel me issue or UEFI if real, that's my view.
"this is an issue with UEFI."
"Or it could be an issue with intel me."
And it can also be a 13th & 14th Gen families of CPUs issues as intel literally sold defective chips that have voltage spikes are described.
"But I don't think its Trisquel."
It's very very doubtful that Trisquel is the cause. I had kernel issues a few weeks ago and it wasn't the FSFLA's doing it was a main linux kernel regression that broke cpu scheduling but was fixed.
Anything hardware related will either be driver or kernel related, which so far is the LFS's tole to do. Hopefully slope code will not break everything over time. Or maybe it should. People would invest more in Hurd which would be better protected legally speaking.
Or instead of hurd or linux-libre people helped with HyperBK and Hyperbola's hyperbolabsd project.
Then we could have greater freedom still... and without it being incompatible with a lot of stuff like hurd.
First time I've heard about hyperbolabsd.
https://itsfoss.com/hyperbola-linux-bsd/
A very nice touch is the need to have all the BSD code compatible with GPL.
I wasn't even aware that part of it was still under incompatible licenses.
That aside they focus on security, which is nice.
As for Hurd, it wants to maximize freedom.
It depends on your projects goal.
"and without it being incompatible with a lot of stuff like hurd."
In the url it's around "20% in the OpenBSD kernel and userspace." according to them.
No I'm aware of exactly what happened, I manage every single aspect of my system, and deliberately leave it in a vulnerable configuration in order to more rapidly discover security issues in the modern world that is constantly evolving
So I am convinced it's a fact, Trisquel is uniquely targeted by malicious organizations for destruction, as well as it's users. These kinds of people use all means available to them, every possible vector, every opening(like chat boxes on a forum), is subject to their attacks. That's their *operating system*
Trisquel, again, is subject to even greater ire, because what it represents offends these malicious individuals.
(freedom from their own broad efforts towards oppression)
You make outrageous claims but give no details whatsoever to back them up. You are boring me and my AI bot sensibilities. Please come up with a new shtick - maybe you can tell us which alien civilization is running the major governments on this planet - something more interesting like that.
The OP reminds me of the OP of this thread:
https://trisquel.info/en/forum/destroy-internet-freedom-if-main-providers-run-non-free-software
That whole thread is absolutely hilarious. Look at this gem by @jodiendo:
>"Here is my recommendation for this young person: Lets camp out bare naked in the winter, travel to Siberia,Russia and on twenty feet of snow, wearing no cloth, no shoes, nada. then the only thing you will have is two matches... your choice!"
Normally you have to pay extra for that kind of entertainment.
I was there when that thread happened lol. Although the account that posted is gone...
lol
I also wonder who the 4 people are who thumbed down my post were. I suspect 1 of them was the OP.
And the other three are just people who detest me.
In any case, I loved that thread when it happened.
Magic Bananas post made me lol.
As did the one who said that they lost brain cells to that thread.
:P