Re: Unix NOT secure against Viruses on home PCs

From: NeoSadist (neosad1st_at_charter.net)
Date: 10/01/04 

Date: Fri, 01 Oct 2004 20:24:16 +0000

Bill Unruh wrote:

> Daniel Mewes <danielmewes@web.de> writes:
>
> No linux machines are not affected by viruses because most viruses (or
> rather malware) is written for windows.

That's so logical ... </sarcasm>
 
> Secondarily, yes, most work is done as user not root.

Very true.
 
> Could malware be written for linux? Of course. No one will dispute that.
> Could it be written so as to spoof the user into being root. Yes, but
> usually root users are also more knowledgable than the general user.

Well actually,
1) Unless the malware somehow got root, all it could do is trash the user's
account.
2) If it could get root (i.e. through a kernel hack), it's all over.
3) If it could imitate other (aka Mandrake and other askpass stuff) programs
that want root, the user might blindly enter root's password, which would
also result in system compromise.
 
> Could an ignorant user be fooled into running as root, and then running a
> piece of malware? Of course.

Yes, based on how much they want to run it.

> Again noone will dispute that. Is it
> worthwhile demonstrating this-- I guess you could walk into your workplace
> with a backpack full of dynamite and set it off to demostrate that your
> workplace is not secure against people walking in with a backpack full of
> dynamite.

That might be painful too ...

> And I want to convince you that if you put a bullet through a bird brain
> (oops sorry that was supposed to be bird's brain) it stops flying.

And I might be able to show otherwise also, if using a powerful enough gun.

> uh, you just distributed it.

True, he did overlook that.... 

-- 
Necessity is a mother.

Relevant Pages

  • Re: boot.ini disappears on restart or startup XP Pro
    ... procedure it seems to boot normally. ... I have 11 files in the root directory of c:\ plus 17 folders. ... It isn't the number of files of folders in the root causing your ... sounds like malware to me. ...
    (microsoft.public.windowsxp.general)
  • Security Weaknesses of OS X
    ... installed applications which would then provide access to the root ... If you don't set a password for the root user, ... administrator password would be required to make changes to a specific ... This would prevent malware from ...
    (comp.sys.mac.system)
  • Re: Security Weaknesses of OS X
    ... I don't see how enabling the root account and setting a root ... I suspect that one of the ways writers of malware code protect their ... they would not be able to infect the real computer which is ... be transferred to or from the virtual computer to the real computer. ...
    (comp.sys.mac.system)
  • Re: Odd list of unused file extensions
    ... I sincerely doubt that any "cleaning" of the registry using CCleaner ... Malwarebytes, and at least one other malware scanner/remover... ... Some I am looking for a root cause, ...
    (microsoft.public.windows.vista.performance_maintenance)
  • Re: Why are there few viruses for UNIX/Linux systems?
    ... which often run as root. ... Viruses, which tend to enter ... ] some clue about system security. ... students screw themselves as badly as others if they crash the machine. ...
    (comp.os.linux.security)