Lunduke
News • Science & Tech
The creator of UNIX built a Trojan Horse which let him log in to any UNIX machine.
And nobody knew about it for years.
May 05, 2024
post photo preview

Back in 1984, the Association for Computing Machinery presented Ken Thompson with a “Turing Award” for his many contributions to the world of computing.

And for good reason.

Ken worked on Multics, co-created UNIX, created multiple programming languages (Bon and B — which directly led to C), co-created the Plan 9 operating system, UTF-8, and on and on.  If anyone deserves an award for advancing computing... it's Ken Thompson.

But we’re not here today to talk about those extraordinary contributions to computing.

No, sir.

We’re here to talk… about his acceptance speech.

Because that speech revealed a truly fascinatin computer virus that Thompson had created years earlier… for the C compiler.  One which gave him a backdoor into UNIX itself.

The Speech

He titled his speech “Reflections on Trusting Trust”, and the basic premise is this:

“To what extent should one trust a statement that a program is free of Trojan horses? Perhaps it is more important to trust the people who wrote the software.”

To prove his point, Ken told the tale of how he had — years earlier — created what was, essentially, a computer virus that infected the C compiler (cc) and the UNIX login program.

Seriously.

This is real.

Ken could gain control of most UNIX systems

It worked, essentially, like this:

Ken modified cc (the C compiler on UNIX systems) so that — only when it was compiling UNIX’s “login” program — it would inject a small “backdoor” (into “login”) that would allow him to log in as any user on the system if he used a predefined “password”.

Which is, obviously, a pretty big security hole.

However…

That sort of "universall password" code would be likely to be found during even a rudimentary code review of the C compiler. Or, heck, even by any casual programmer who happened upon that section of the code.

What Ken did next was… devious.

Hiding his UNIX backdoor

He needed to make sure that, should anyone find his nefarious code in “cc”… that his backdoor would live on.

So he then added functionality to “cc” so that it would detect if it was compiling itself (because the C compiler was compiled… in the C compiler)… and insert code into the compiler that would add… itself.

Which means…

Even if the source code is removed from “cc” project… the code (for adding both the login backdoor and the “keep adding this to the C compiler” bits) would get “invisibly” injected into “cc” every time it got compiled by an already infected build of the compiler.

So… as long as there was an unbroken chain of using the C compiler from that point onward, the UNIX login backdoor was unlikely to be effectively removed.

Brutal.

According to Thompson:

“The actual bug I planted in the compiler would match code in the UNIX "login" command. The replacement code would miscompile the login command so that it would accept either the intended encrypted password or a particular known password. Thus if this code were installed in binary and the binary were used to compile the login command, I could log into that system as any user.”

The Moral of the story

As Ken Thompson put it…

“The moral is obvious. You can't trust code that you did not totally create yourself. (Especially code from companies that employ people like me.) No amount of source-level verification or scrutiny will protect you from using untrusted code. In demonstrating the possibility of this kind of attack, I picked on the C compiler. I could have picked on any program-handling program such as an assembler, a loader, or even hardware microcode. As the level of program gets lower, these bugs will be harder and harder to detect. A well installed microcode bug will be almost impossible to detect.”

Did this make it out into the wild?

I know what you're thinking.  "Is this code still out there?  How many systems were impacted by this?"

What we know: This bit of naughty code was released to at least one machine (used by a UNIX support group). This has been confirmed by Ken, himself.

However, it is believed that the code went no further than that machine.

But... do we know for sure?

Do we actually have a high level of confidence that the modified “cc” and “login” went no further than that support group UNIX box?

No. No, we do not.

In fact, according to Eric S. Raymond

“[I have] heard two separate reports that suggest that the crocked login did make it out of Bell Labs, notably to BBN, and that it enabled at least one late-night login across the network by someone using the login name “kt”.”

BBN.  That's Raytheon.  A critical DARPA researcher -- one which was instrumental in the early days of ARPANET.  A huge amount of software came out of BBN.  Heck, even the first Text Adventure game came from there.

If UNIX machines at Raytheon BBN were infected... the possibility of infected versions of those files making it to other sites is incredibly high.

Truly wild

Which leads to a (rather amusing, and mildly terrifying) bit of historical trivia:

Ken Thompson — one of the co-creators of UNIX — intentionally created a trojan horse that infected both the C compiler and the “login” program of UNIX systems.

What’s more… it went undetected for years.  We wouldn't even have known about it, if he hadn't told us he created it.

And we truly have no clue how widespread that trojan became.

community logo
Join the Lunduke Community
To read more articles like this, sign up and join my community today
22
What else you may like…
Videos
Podcasts
Posts
Articles
The Apache Software Foundation Drops the "Apache"

“As a non-Indigenous entity, we acknowledge that it is inappropriate for the Foundation to use Indigenous themes or language.”

And, yes. It says “1985” in the date. But, do not be fooled. For it is not actually 1985.

More from The Lunduke Journal:
https://lunduke.com/

00:09:38
September 14, 2025
Microsoft & Red Hat Employees Celebrating Charlie Kirk's Murder

At Microsoft & Red Hat -- and across Big Tech -- many employees are celebrating and encouraging murder. Microsoft has responded... but not Red Hat.

And, yes. The date on the video says 1985. But, no. It's not actually 1985.

More from The Lunduke Journal:
https://lunduke.com/

00:15:26
September 13, 2025
Open Source & Big Tech Leftists Lost Their Minds This Week

Open Source Leftists Celebrate Murder, Censor Conservatives, and say "Free Software is White Supremacy". It's been one of those weeks in the Tech world.

Lunduke's Week in Tech - Sep 13, 2025:
https://lunduke.substack.com/p/lundukes-week-in-tech-sep-13-2025

More from The Lunduke Journal:
https://lunduke.com/

00:21:48
November 22, 2023
The futility of Ad-Blockers

Ads are filling the entirety of the Web -- websites, podcasts, YouTube videos, etc. -- at an increasing rate. Prices for those ad placements are plummeting. Consumers are desperate to use ad-blockers to make the web palatable. Google (and others) are desperate to break and block ad-blockers. All of which results in... more ads and lower pay for creators.

It's a fascinatingly annoying cycle. And there's only one viable way out of it.

Looking for the Podcast RSS feed or other links? Check here:
https://lunduke.locals.com/post/4619051/lunduke-journal-link-central-tm

Give the gift of The Lunduke Journal:
https://lunduke.locals.com/post/4898317/give-the-gift-of-the-lunduke-journal

The futility of Ad-Blockers
November 21, 2023
openSUSE says "No Lunduke allowed!"

Those in power with openSUSE make it clear they will not allow me anywhere near anything related to the openSUSE project. Ever. For any reason.

Well, that settles that, then! Guess I won't be contributing to openSUSE! 🤣

Looking for the Podcast RSS feed or other links?
https://lunduke.locals.com/post/4619051/lunduke-journal-link-central-tm

Give the gift of The Lunduke Journal:
https://lunduke.locals.com/post/4898317/give-the-gift-of-the-lunduke-journal

openSUSE says "No Lunduke allowed!"
September 13, 2023
"Andreas Kling creator of Serenity OS & Ladybird Web Browser" - Lunduke’s Big Tech Show - September 13th, 2023 - Ep 044

This episode is free for all to enjoy and share.

Be sure to subscribe here at Lunduke.Locals.com to get all shows & articles (including interviews with other amazing nerds).

"Andreas Kling creator of Serenity OS & Ladybird Web Browser" - Lunduke’s Big Tech Show - September 13th, 2023 - Ep 044

Car navigation in 1986 from the BBC. Some of the comments are funny.

September 12, 2025

@Lunduke Do the folks behind Matrix.org and Element.io also have crazies that are celebrating recent events?

September 12, 2025

I'm becoming an [doom] emacs fanboy I think...

Anyone else using it? I had it installed for a few months, but never really got into it until yesterday, giving it a real go and already I can see I'm really liking it.

post photo preview
New Lunduke Journal Sub Perks, Lifetime Price Increase Next Week

A quick update: There are some new perks for Lunduke Journal subscribers, and an upcoming price increase for new Lifetime Subscriptions (if you want one of those at the lower price, you have a couple days).

All the details below.

Lifetime Subscription Price Increase

This coming Friday (September 19th), the price of a new Lifetime Subscription to The Lunduke Journal will be increasing from $200 to $300. I wanted to give all of you a few days notice so you could grab one at the lower rate.

If you want to pick up a Lifetime Subscription for the lower price, simply grab one (via Locals, Substack, or Bitcoin) by Thursday night (Sep 18th).

The prices for new Yearly and Monthly subscriptions will remain the same. No changes.

Reminder: The Lunduke Journal has phased out sales and discount promotions. The current price of a subscription is the best price.

New Perks for Lunduke Journal Subscribers

I am working on adding a few new perks for Lunduke Journal subscribers — a way of saying “Thank You” for making this work possible (while still keeping all of the articles and shows free for the world).

Here are the perks as of today.

Perks for all Subscribers (Monthly, Yearly, and Lifetime):

Note: The eBooks & Games are currently only available on Locals & Substack (due to platform features). Those perks will also become available to subscribers on X, YouTube, & Patreon next week. Stay tuned for access details.

Additional (Optional) Perks only for Lifetime Subscribers:

  • The Lunduke Journal will follow your account on X.

  • Your name (real, or internet handle) listed in a special thanks slide at the end of new Lunduke Journal videos.

Both of these perks are 100% optional.

If you are a Lifetime Subscriber, and would like to take advantage of either (or both), simply email “bryan at lunduke.com” with the subject line “Lifetime Perk” (that part is important, I get so many emails this will help me see yours) and include a link to your X profile and/or the way you want your name to appear at the end of videos.

One of the nice parts of having Lunduke Journal follow your X account… is it will make it far easier (and more likely) for me to see your comments.

Thank You

I am working to expand all of the regular perks (books, etc.) to subscribers across all platforms (which was a little tricky, considering the differences in each platform, but I managed to figure out how to do it) — while adding a few new ones as well.

Nothing crazy, just a way of saying “Thank You”.

Seriously.

From the bottom of my heart, thank you for your support. The Lunduke Journal is only possible thanks to each and every one of you.

-Lunduke

Read full Article
September 13, 2025
post photo preview
Lunduke's Week in Tech - Sep 13, 2025
Open Source Leftists Celebrate Murder, Censor Conservatives, and say "Free Software is White Supremacy".

So many stories this week about Leftist Activists, within Open Source and Big Tech, going absolutely insane.

From celebrating the murder of Charlie Kirk to censoring Conservatives and even equating Free and Open Source Software with White Supremacy. And there’s more.

What’s truly crazy to me, is that most of these cases of Leftist insanity are from leaders within Open Source. These are the people running projects and representing companies.

Seriously. It’s wild.

Here are the stories of the week, presented in reverse chronological order.

All of these links are to Substack (where you can watch the video or listen to the audio podcast) — but all of these stories are available for free on every platform which The Lunduke Journal publishes to. Use whichever platform works for you.

Only The Lunduke Journal Told These Stories

This week I am reminded why The Lunduke Journal is important.

Over the last 7 days, we published 13 stories.

Of those 13 stories only 2 were covered by any other Tech News outlet. Two.

And, in both of those 2 stories, The Lunduke Journal is the only Tech News outlet that covered them accurately — and without a pro-Big-Tech, Left Wing bias.

If we didn’t exist, the other 11 stories wouldn’t get told at all. How crazy is that?

Thankfully the stories are spreading — with people seeing them over 9 million times last month alone.

If you want to be part of making The Lunduke Journal possible, consider becoming a subscriber. Lots of options, big and small. And all go directly towards daily operations.

Might I make a suggestion?

The Lifetime Subscription (which counts towards both Substack and Locals — and last for life) is a marvelous, one time, way to show support. And it comes with all of the perks (access to the Locals community as well as the official Lunduke Journal forum, & DRM-free eBooks).

You can snag a Lifetime Subscription via Locals, Substack, or with Bitcoin.

But, heck, any type of subscription (via any platform) is appreciated! Choose whichever works best for you!

Then be sure to go to Lunduke.com and choose the platforms which are the most convenient for you to use — The Lunduke Journal publishes all over the Inter-Tubes!

And, once again, thank you to every subscriber. This work is only possible because of you. You rule.

-Lunduke

Read full Article
September 11, 2025
Keep The Lunduke Journal Free!

So far, in 2025, The Lunduke Journal has published 246 shows — being the only Tech News outlet covering the vast majority of those stories.

All without even the slightest influence from Big Tech. No sponsorships, no ad reads, not a penny taken from any company.

And every single story — every article, podcast, & video — is free to share far and wide.

In order for The Lunduke Journal to continue doing this unique work — to keep the lights on well into the future — we need your help.

If you haven’t yet become a subscriber to The Lunduke Journal, doing so today makes a big impact. Pick one of the options below. Big or small. Monthly, Yearly, or Lifetime subscriptions — or even simply one-time donations — all make a huge difference.

Support The Lunduke Journal

Monthly or Yearly Subscriptions:
Locals, Substack, X, YouTube, or Patreon

Lifetime Subscriptions:
Pay Once, For Life (Locals & Substack)

One-Time Donations:
Locals or Bitcoin

You Make The Lunduke Journal Possible

Seriously. This is all possible because of you.

We are able to make all of this free to share with the world because of you.

Might I make a suggestion?

The Lifetime Subscription (which counts towards both Substack and Locals) is a marvelous, one time, way to show support. And it comes with all of the perks (access to the Locals community as well as the official Lunduke Journal forum, & DRM-free eBooks).

You can snag a Lifetime Subscription via Locals, Substack, or with Bitcoin. Lots of options.

But, heck, any type of subscription (via any platform) is appreciated! Choose whichever works best for you!

Then be sure to go to Lunduke.com and choose the platforms which are the most convenient for you to use — The Lunduke Journal publishes all over!

And, once again, thank you for making The Lunduke Journal possible.

-Lunduke

Read full Article
See More
Available on mobile and TV devices
google store google store app store app store
google store google store app tv store app tv store amazon store amazon store roku store roku store
Powered by Locals