Re: Linux and security

From: erik (erik_at_geenspam.vanwesten.net)
Date: 07/28/03 

Date: Mon, 28 Jul 2003 12:01:27 +0200

Johannes Halmann wrote:

>>> i don't necessarily agree... viruses are less common on linux
>>> because its market share isn't yet big enough....
>
>> Linux and other *nix like platforms run more web servers then
>> windows.
>
> what do webservers have to do with viruses?? how would a virus come to
> be "installed" on a webserver?? are you sure that you're not talking
> about worms?

Do Nimda and Code Red ring a bell?

>
>> Just as you can delete only your own files (i.e., those you have
>> "write" permission to), executables you run cannot affect other
>> users' (or root's) files. Therefore, although you can create (or
>> retrieve), and then run, a virus, worm, trojan horse, etc., it can't
>> do much.
>
> exactly my point. but as many, many systems are used by exactly ONE
> person, the deletion of his/her files becomes equivalent to a
> system-wide infection. what else could happen to the system that is
> graver than the loss of the systems only user?
>
> i have actually read this article before and i can't see AT ALL how
> that refutes what i posted earlier??
> what i was saying was:
>
> * current *nix users are more professional than the overall average
> user * the root user is (still) used with caution. but looking at
> lindows and the need of users to install software that is not supplied
> by their distribution will give rise to root-installed software from
> untrusted sources.
> * the deletion of a users files is damage enough! to say: "well, but
> the OS is unharmed" is missing the point. on systems with only one
> user the system matters less than the users data!
> * SELinux or other ACL, role-based models could really do something
> against the threat of viruses, but someone will ALWAYS have to have
> access to files. maybe you can deny him the right to delete files or
> have different users for "creating files", "changing files", ...
>

Nevertheless, there does not exist an active virusbase like Windowd has.

EJ 

-- 
Remove the obvious part (including the dot) for my email address

Relevant Pages

  • Re: Anti-virus software
    ... A computer virus is just like a human virus. ... Intel Mac running Windows. ... I'm lumping viruses and malware together by ...
    (microsoft.public.macintosh.general)
  • Re: Computing for Outlook Express in VB.
    ... >> Hello Mike, I know of a company called Computer Associates who ... Much depends on the actual viruses that you've ... > Windows are you using by the way?). ... With this infernal virus it I ...
    (comp.lang.basic.visual.misc)
  • Re: HELP! KLEZ & PE_ELKERN.A Virus
    ... > I have Windows XP Microsoft Outlook Express. ... > recently contaminated KLEZ & PE_ELKERN viruses which I ... The problem, I think, lies with the virus ... Almost any virus protection software would protect you from something ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Is there a risk with firewalls ctd.
    ... further info regarding these viruses. ... DOS mode outside of Windows, because this file was in use by windows and ... Just because you have had a virus on the machine does that mean you ... I guess that decision making process is going to be your decision to make. ...
    (comp.security.firewalls)
  • Re: So, windows doesnt get viruses and worms eh?
    ... and most viruses travel through OE address book entries -- making most ... Windows users would have benefitted a great deal years ago by giving up ... But then I can take a Mac with OS X out of the box as is and hook it straight to the internet without any problems. ... The Dell system comes with two years of virus protection software installed out of the box. ...
    (comp.sys.mac.advocacy)