• Alberat@lemmy.world
      4·
      1 day ago

      it removed your disc encryption keys and the only way to recover it is finding it in memory through the minefield

  • KoboldCoterie@pawb.socialEnglish
    105·
    3 days ago

    Based on the responses in this thread, I feel like you could present this screenshot with a “I bet you couldn’t find your way out of this!” and a zip of the directory, and a significant number of users would voluntarily download it and extract it just to “prove that they could”.

    • tyler@programming.dev
      15·
      2 days ago

      Well yeah? And you do it in a vm. But seems like a decently simple problem anyway. ls -al and compare the sizes.

        • tyler@programming.dev
          2·
          23 hours ago

          I mean they didn’t, cause you can just open another terminal window or pull the plug on the computer, but like someone else said, a binary can’t change the directory for you cd is a shell built in, so I’m pretty sure this would be trivial to get past.

        • Denvil@lemmy.ml
          8·
          2 days ago

          The greatest trick is to make your opponent think you thought of everything. Powering off might just straight up work and they’re just bluffing, might as well try

          • assa123@lemmy.world
            1·
            9 minutes ago

            What if it encrypts the disk when entering the dir and the only way to decrypt it is by winning? Decryption keys will be provided via API at the end.

  • kivihiiliEnglish
    21·
    2 days ago

    while this is not real, something similar in principal very much was! (but not too widespread)

    see here or look up “casino dos malware”

    uh in short it erases “the disk’s” (unsure which) file allocation table (pretty much the dos/windows version of a superblock). apparently some versions did copy it to memory and give the user a chance though!

  • SavvyWolf@pawb.socialEnglish
    28·
    3 days ago

    Reminder that binaries cannot change a shell’s working directory, so the non-mines will do nothing.

    (cd is a shell builtin)

  • CannedYeet@lemmy.world
    30·
    3 days ago

    Reminds me of gameshell, which is a rogue-like game designed to teach you the unix shell. So instead of navigating with NESW, you cd to locations. At one point you search the “garden”, which is an unmanageable tangle of directories, with find.

    • grue@lemmy.world
      19·
      3 days ago

      Magic, I guess, 'cause nothing in the sceenshot would do it, unless the attacker had already replaced cat with a trojan or something.

    • hperrin@lemmy.caEnglish
      13·
      3 days ago

      AFAIK, there’s no way to without modifying the system tools and shell.

      • Unleaded8163@fedia.io
        10·
        3 days ago

        You could probably install a handler for the event that’s triggered when the power button is pressed. Most OSes do that and pop up a graceful shutdown options window. Most hardware will have a hard shutdown option when you hold the power button for a few seconds. You would probably have to overwrite the BIOS or something at that level to prevent that way out.

        • esc@piefed.socialEnglish
          3·
          3 days ago

          alt+sysrq+b bypasses this handler, also switching to another vt should just drop you in a normal shell it as well as long the login shell isn’t modified. There are a lot of ways that can be used to break out.

      • ChaoticNeutralCzech@feddit.orgEnglish
        4·
        3 days ago

        Encrypt hard drive and keep the key in RAM. Could be recovered with a cold boot attack but that’s very advanced. The DOS virus ONEHALF would run as a daemon encrypring a block on the drive on each boot and intercept reads/writes to the encrypted part as if nothing ever happened. Only after encrypting ½ of the disk, it would reveal itself with an ominous

        Dis is one half.
Press any key to continue...

        The decryption was eventually cracked by ESET and they developed a tool to recover the drive.

    • pelya@lemmy.world
      4·
      3 days ago

      But it’s on a dedicated server you have already paid for, which also hosts your own Minecraft game server with active players (mission-critical process which can never be allowed to stop).