termain@programming.dev to Technology@lemmy.worldEnglish · 6 months agoMystery malware destroys 600,000 routers from a single ISP during 72-hour spanarstechnica.comexternal-linkmessage-square26fedilinkarrow-up1208
arrow-up1205external-linkMystery malware destroys 600,000 routers from a single ISP during 72-hour spanarstechnica.comtermain@programming.dev to Technology@lemmy.worldEnglish · 6 months agomessage-square26fedilink
minus-squareStarDreamer@lemmy.blahaj.zonelinkfedilinkEnglisharrow-up13arrow-down1·6 months agoAs someone who works with 100Gbps networking: why the heck do these routers run Lua of all things???
minus-squareMax-P@lemmy.max-p.melinkfedilinkEnglisharrow-up9·6 months agoOpenWRT uses Lua for its web UI. The interpreter can be really small which works well for tiny embedded devices with mere megabytes of storage, and it’s much safer than writing a web GUI entirely in C.
minus-squareStarDreamer@lemmy.blahaj.zonelinkfedilinkEnglisharrow-up2·6 months agoYeah I completely forgot about the consumer side of things. I was expecting there being Cisco iOS/FRR router configs, not a full web dashboard.
minus-squareredcalcium@lemmy.institutelinkfedilinkEnglisharrow-up2·6 months agoI imagine the malware binary includes a lua interpreter for executing scripts fetched from its command and control server.
As someone who works with 100Gbps networking:
OpenWRT uses Lua for its web UI. The interpreter can be really small which works well for tiny embedded devices with mere megabytes of storage, and it’s much safer than writing a web GUI entirely in C.
Yeah I completely forgot about the consumer side of things. I was expecting there being Cisco iOS/FRR router configs, not a full web dashboard.
I imagine the malware binary includes a lua interpreter for executing scripts fetched from its command and control server.