The Linux kernel project itself has not issued a ban on contributions from Russian developers. But, some US-based tech companies and open-source foundations have taken steps to limit interactions with developers in sanctioned regions to remain compliant with US export control laws (such as OFAC regulations)
I fear they are. It looks to me they control the companies paying for the development and that they control the people doing the development by means of laws and decrees.
Yes, you can fork Linux in Kenya, France, Russia, China and Brazil. But then, you'll get several different Linux branches, diverging more and more as time goes by.
Exactly. All countries are equal, but there are countries that are more equal than others.
USA used to have quite some business on the Russian soil. Sacrificing them for the sake of politics was considered needed and doable.
One thing is antisemitism and anticommunism. One thing is being against Putin and Netanyahu, for example. Putin is not communism, Netanyahu is not Israel.
Probably not? I could think of ways to hide the controls but the most likely targets would be Linux forks and firmware that run in cell phones, cars, appliances, IoT's, etc... Those are more likely to be in the path of monitoring something interesting. Even in the case of cell phones, cars, etc, I would expect the control to be in firmware that one could tickle with JTAG over bluetooth, USB, WiFi, LoRa to take full control of the OS and bypass all security controls rendering encryption into a placebo or a CPU warmer. Why waste processing cycles on brute forcing when you can tell the application that the encryption key was successfully decrypted without ever even looking at the key.
I guess a simpler way to say that is, why control Linux when there are always so many proprietary things are in the path that only have a handful of people controlling them, especially when one could replace said people whereas replacing all the Linux developers would be hard. Firmware that provides a CPU ring -4 shell can bypass absolutely every security control anyone could imagine in microseconds.
27 comments
[ 5.0 ms ] story [ 59.5 ms ] threadBut ... what if you shutdown access to all Linux kernel-related sites and repos?
It's not always correct of course but it's a better heuristic than it has any right to be.
You reply with no reasoning, for sure.
conjunction
For the reason that;
In a way yes, Linux is under the control of the is government… via a bunch of indirection layers.
So you answer reads like "Yes, USA gov can control Linux".
Yes, you can fork Linux in Kenya, France, Russia, China and Brazil. But then, you'll get several different Linux branches, diverging more and more as time goes by.
USA used to have quite some business on the Russian soil. Sacrificing them for the sake of politics was considered needed and doable.
One thing is antisemitism and anticommunism. One thing is being against Putin and Netanyahu, for example. Putin is not communism, Netanyahu is not Israel.
Probably not? I could think of ways to hide the controls but the most likely targets would be Linux forks and firmware that run in cell phones, cars, appliances, IoT's, etc... Those are more likely to be in the path of monitoring something interesting. Even in the case of cell phones, cars, etc, I would expect the control to be in firmware that one could tickle with JTAG over bluetooth, USB, WiFi, LoRa to take full control of the OS and bypass all security controls rendering encryption into a placebo or a CPU warmer. Why waste processing cycles on brute forcing when you can tell the application that the encryption key was successfully decrypted without ever even looking at the key.
I guess a simpler way to say that is, why control Linux when there are always so many proprietary things are in the path that only have a handful of people controlling them, especially when one could replace said people whereas replacing all the Linux developers would be hard. Firmware that provides a CPU ring -4 shell can bypass absolutely every security control anyone could imagine in microseconds.
There are private contractor hound of war among us who are hygenxing any and every layer.
These will sell to the government just as the Ruski mob will pimp it on the dark side.
They are there and they are active. The USA government are incompetent opportunists doing their jobs mostly.
Be vigilant.