Slashdot Mirror

← Back to Stories (view on slashdot.org)

Secretly Monopolizing the CPU Without Being Root

Posted by CmdrTaco on from the because-you-shouldn't dept.

An anonymous reader writes "This year's Usenix security symposium includes a paper that implements a "cheat" utility, which allows any non-privileged user to run his/her program, e.g., like so 'cheat 99% program' thereby insuring that the programs would get 99% of the CPU cycles, regardless of the presence of any other applications in the system, and in some cases (like Linux), in a way that keeps the program invisible from CPU monitoring tools (like 'top'). The utility exclusively uses standard interfaces and can be trivially implemented by any beginner non-privileged programmer. Recent efforts to improve the support for multimedia applications make systems more susceptible to the attack. All prevalent operating systems but Mac OS X are vulnerable, though by this kerneltrap story, it appears that the new CFS Linux scheduler attempts to address the problem that were raised by the paper."

18 of 250 comments (clear)

  1. A Useful Tool by Bios_Hakr · · Score: 4, Funny

    I run several websites off of a single host. If I need to login to do maintenance during peak hours, I'm slowed by Apache and MySQL. This would be a nice utility if it were wrapped into SUDO.

    --
    I'd rather you do it wrong, than for me to have to do it at all.
    1. Re:A Useful Tool by lecithin · · Score: 4, Funny

      alias renice 'echo Renice\? You must mean kill -9.; kill -9 \!*'

      --
      It could be worse, it could be Monday.
  2. gnome by dattaway · · Score: 2, Funny

    The gnome desktop for years has been hiding processes that h0rk the cpu.

  3. What the?! by Rik+Sweeney · · Score: 4, Funny

    Using up 99% of the CPU's easy!

    #include

    int main(int argc, char *argv[])
    {
          while (1) {}

          return 0;
    }

    --
    Summation 2
  4. First announced exploit.. by SuperBanana · · Score: 1, Funny

    This year's Usenix security symposium includes a paper that implements a "cheat" utility, which allows any non-privileged user to run his/her program, e.g., like so 'cheat 99% program' thereby insuring that the programs would get 99% of the CPU cycles, regardless of the presence of any other applications in the system, and in some cases (like Linux), in a way that keeps the program invisible from CPU monitoring tools (like 'top').

    Next up, a virus which senses bad grammar and punishes you by using 99% of your CPU. Seriously, somewhere a middle school English teacher is crying, and doesn't know why.

    --
    Please help metamoderate.
    1. Re:First announced exploit.. by Minwee · · Score: 4, Funny

      Somewhere a middle school English teacher is crying, and doesn't know why.

      Do you think this might be related to that incident where thousands of English teachers all burst into flames moments after the first SMS-enabled phone was released?

  5. Re:What does this mean? by Da+Fokka · · Score: 5, Funny

    If you reply, do so only to what I explicitly wrote. If I didn't write it, don't assume or infer it.


    You gun-toting marxist redneck zealot astroturfers make me sick!

  6. Back at NYIT we hacked the "nice" command... by Thagg · · Score: 2, Funny

    We had a user who insisted on abusing the "nice" command, to run his jobs at a higher priority. Pleading and cajoling didn't work, so we decided to get creative.

    We changed nice so that whenever this particular user ran it, it lowered his priority by exactly as much as he was attempting to raise it.

    He stopped coming to work soon after that. I suppose he had the last laugh though -- NYIT continued to pay him for another six months.

    Thad

    --
    I love Mondays. On a Monday, anything is possible.
  7. Inevitable reply by lilomar · · Score: 4, Funny

    My mother is a gun-toting marxist redneck zealot astroturfer, you insensitive clod!

    --
    The creator of this post (Jacob Smith) hereby releases it, and all of his other posts, into the public domain.
    1. Re:Inevitable reply by Some_Llama · · Score: 4, Funny

      My mother is a Clod! you insensitive.. um.. nevermind.

  8. Re:The "sue" command by db32 · · Score: 4, Funny

    This is an outrage. You cannot 'sue' without lawyerd! What about the required functionality of 'sue --counter' and 'appeal'?!

    --
    The only change I can believe in is what I find in my couch cushions.
  9. The sysadmin's best defense isn't a new scheduler by Anonymous Coward · · Score: 1, Funny

    It's a baseball bat.

    It doesn't even matter if these CPU-hogging processes can hide from "top" - you should already be making regular rounds of your users, even the ones you haven't caught doing anything wrong. Nobody questions it when you tell them, "You know what you did." Not when you're the one with the bat.

  10. Re:Google-cache article by Bobb+Sledd · · Score: 4, Funny

    and for those who dont have the time to read the paper...

    it works by avoiding running during the exact moment of a clock tick (which would be the moment when CPU usage...


    --Uhm... (looks at watch...) Say, I really don't have time for wordy summaries... could you maybe cut this down into about 10 words or less? Hurry it up! I ain't got all day!

    --
    "They said I probly shouldn't fly with just one eye," "I am Bender. Please insert girder."
  11. Re:The "sue" command by Wite_Noiz · · Score: 2, Funny

    lawyerd

    What a scary, scary thought...
  12. Re:Google-cache article by brunascle · · Score: 5, Funny

    it run when OS not looking

  13. Re:How It Works by Anonymous Coward · · Score: 2, Funny

    Like in Superman 3.

  14. Re:Hmmm... by Anonymous Coward · · Score: 0, Funny

    Wrong n00b!

  15. Re:Security! by Fred_A · · Score: 2, Funny

    At least this paper should help dispel that old "Mac OS X is BSD with eye candy" meme. While reading it, it's hard not to realize that XNU (the OS X kernel) and the BSD kernel are completely different beasts. Figure 1 in particular drives the point home: it shows that with respect to the timing model used, you have OS X and RTOSs on one side, and FreeBSD, Linux, Windows etc. on the other.
    I'll prove you wrong as soon as that stupid spinning beach ball of death lets me do something.
    --

    May contain traces of nut.
    Made from the freshest electrons.