Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
self_awareness 6 hours ago

And how a malware can use this if it's configured globally in a root:root owned config file?

drdexebtjl 6 hours ago | parent [-]

Not all package managers require root.

But yeah, maybe through an exploit with a narrow reach. Once in, the malware can veto security updates and escalate to full control.

self_awareness 6 hours ago | parent [-]

With root, malware can reach out to UEFI anyway, and can do whatever it likes.