From: Carlos Maiolino <cem@kernel.org>
Date: Tue, 6 Aug 2024 13:47:28 +0000 (+0200)
Subject: Merge tag 'scrub-detect-deceptive-extensions-6.10_2024-07-29' of https://git.kernel... 
X-Git-Tag: v6.10.0~15
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=8dfca6229488ae855270251a347a7d7ed6e34399;p=thirdparty%2Fxfsprogs-dev.git

Merge tag 'scrub-detect-deceptive-extensions-6.10_2024-07-29' of https://git.kernel.org/pub/scm/linux/kernel/git/djwong/xfsprogs-dev into for-next

xfs_scrub: detect deceptive filename extensions [v30.9 11/28]

In early 2023, malware researchers disclosed a phishing attack that was
targeted at people running Linux workstations.  The attack vector
involved the use of filenames containing what looked like a file
extension but instead contained a lookalike for the full stop (".")
and a common extension ("pdf").  Enhance xfs_scrub phase 5 to detect
these types of attacks and warn the system administrator.

This has been running on the djcloud for months with no problems.  Enjoy!

Signed-off-by: Darrick J. Wong <djwong@kernel.org>
---

8dfca6229488ae855270251a347a7d7ed6e34399