North Korea is known for their strict internet restrictions in the country. Almost all the countries internet is run as a private network called Kwangmyong with, selected few getting privilege to access global internet through a collection of proxies. They were using English versions of pirated Microsoft Windows to access the network till 2002 when they developed their own secure OS called Redstar OS. Details of this OS was unknown to outside word till a Russian international student at the Kim Il-sung University in Pyongyang purchased a copy and posted about it on his LiveJournal account. Latest Version 3.0 was released in the summer of 2013 and somebody has managed to create a torrent and upload it to various download sites in form of an ISO image.
_________________ ________/ \____________ ______________
| | _____ |slip| |\ / | |__| __ | |
| ____| |___| |____| | \ /| __| ___| | ____|
| | | _____| ____ | / \|__ | |__| /\ | |
| | | | /___/ |/__ _\ | | \/ | |
|___| |________|________| \ / |______|_____|_/\_|___|
Red Star OS 3.0 Desktop *retail*
I gave you server, now here’s desktop! Welcome, one and all, to best korea’s Linux distro, version 3.0.
Otherwise known as, “the one to prease the fappletards”.
Unlike server, this one doesn’t need a serial, just mount in your VM and go boot from it 😀
To use this, I guess you better praise juche ideals and post sincere comments about how much you love DPRK to /r/pyongyang.
But don’t ask about The Interview.. I’ve heard its a touchy subject there… 😉
Wanna ~~cyber~~ discuss this, and maybe just maybe shower me with praise?
or: irc.ringoflightning.net #RIS
Or perhaps you’d like to shower me with dogecoins? DRFLRDccwLbdzgGPPADMDxZBXQxn5We3sb
~ slipstream / raylee – “pulling data out of DPRK’s ass since 2014!”
Not as secure as announced
Within few days of its torrent/ISO release, security researchers had found many vulnerabilities in the OS. Browser comes with Redstar called Naenara Web Browser is built from an ancient version of Firefox with many vulnerabilities.
A pseudonymous researcher noted in a post to the Open Source Software Security (oss-sec) mailing list, that the OS has one significant security hole: Red Star 3.0 ships with a world-writeable udev rule file /etc/udev/rules.d/85-hplj10xx.rules (originally designed for HP LaserJet 1000 series printers) which can be modified to include RUN+= arguments executing arbitrary commands as root by Udev. In the post he also mentions how the older Red Star 2.0 shipped with another schoolboy mistake: /etc/rc.d/rc.sysinit was world-writeable. He also provided a screenshot demonstrating the attack.
Even though root is denied by default in Redstar, using a security vulnerability in the software manager swmng.app one can easily install unassigned rpm package and get root access to the system.