Petronella Blog Archive

Visit our New Blog

You can break into a Linux machine HOW?

Blog Post

Two Spanish security researchers recently discovered a ridiculously simple way to break into Linux machines.  It's a little embarrassing that a system generally considered to be more secure than most can be hacked by...

...pushing the backspace key 28 times.

Yes, that's it.  Pushing the backspace key 28 times allows a user to bypass all the security on a Linux machine.  When the computer asks for a username, hit backspace 28 times and it will exploit a bug in the Grub2 bootloader.  From there you have access to the machine's data.  You could install malware if you want.

Fortunately, Debian, Red Hat and Ubuntu have released emergency security patches to fix the problem.  

The good news is that this isn't something a remote hacker can exploit.  It does, however, serve as a reminder that it's important to keep a computer's physical security in mind.