Re: Why are there few viruses for UNIX/Linux systems?

From: Tim Haynes (usenet-20030823_at_stirfried.vegetable.org.uk)
Date: 08/23/03

• Next message: Tim Haynes: "Re: Disable Remote X11 and ipp Logins"
• Previous message: Andreas Mueller: "Re: Disable Remote X11 and ipp Logins"
• In reply to: Michael Erskine: "Re: Why are there few viruses for UNIX/Linux systems?"
• Next in thread: Anne & Lynn Wheeler: "Re: Why are there few viruses for UNIX/Linux systems?"
• Reply: Anne & Lynn Wheeler: "Re: Why are there few viruses for UNIX/Linux systems?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sat, 23 Aug 2003 09:57:41 +0100

osiris@deltaville.net (Michael Erskine) writes:

> While I respect your expertise (a lot), I feel you are inexact about a
> couple of points.
>
> These days most daemons are chrooted, or do not run as root, thus the
> exploits which might have been available to them previously no longer
> are available to them.
>
> While I understand that chrooting a daemon is not something one would
> expect of a Winderz user, it is something one *SHOULD* expect from
> Slakware, SuSE, Red Hat, or Mandrake because these people are experts
> and do know how to build a system.

I know of no native "layers of virtualisation" system in any M$loth OS,
that's one of the problems. Around here, we have chroot() with GRsecurity
patches for further security, jail() on *BSE, ctx server patches and UML.
Take your pick, how do you want it to be "not the real machine" running
your services today?

MSware: VMware. Well, we got that *too*.

~Tim

-- 
  09:50:28 up 78 days, 26 min,  9 users,  load average: 0.31, 0.39, 0.24
piglet@stirfried.vegetable.org.uk |Famous moments vanish without trace
http://piglet.is.dreaming.org     |Trees grow tall, fields grow wheat

• Next message: Tim Haynes: "Re: Disable Remote X11 and ipp Logins"
• Previous message: Andreas Mueller: "Re: Disable Remote X11 and ipp Logins"
• In reply to: Michael Erskine: "Re: Why are there few viruses for UNIX/Linux systems?"
• Next in thread: Anne & Lynn Wheeler: "Re: Why are there few viruses for UNIX/Linux systems?"
• Reply: Anne & Lynn Wheeler: "Re: Why are there few viruses for UNIX/Linux systems?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages [REVS] Chrooting Daemons and System Processes HOW-TO ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... what chrooting is, how to chroot daemons and how to make sure they are ... used to jail users in multi-user environments to protect system files. ... Chrooting can also be used to jail system daemons to prevent them from ... (Securiteam) Re: Chrooting Openssh ... Subject: Chrooting Openssh ... If you're chrooting individual users, ... attacks, then you have to chroot the entire ... because even root is restricted to the new root. ... (Focus-Linux) Re: What are the two roots in grub? ... That root is the "root" of your machine. ... unadorned filenames bentioned in the stanza. ... Maybe you're problem is in the initrd. ... Try chrooting into the new ... (Debian-User)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint