LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 06-30-2005, 06:00 AM   #1
Hosiah
Member
 
Registered: Sep 2004
Location: Des Moines, Iowa
Distribution: Slackware, Mandriva, Debian derivatives, +BSD/ Solaris/ Minix/ plan9/ GNU/HURD...
Posts: 185

Rep: Reputation: 30
download switcheroo?


I just had the weirdest thing happen...

My setup: Dual boot Red Hat Linux 9.0 and Windows98, on two seperate drives. I have a DSL internet connection.

What I was doing: Trying to download the "Freeduc" live CD from DistroWatch.com. I'm running as regular user in Linux, open an xterm to go superuser for this operation, and start Mozilla from the console (I have to use superuser for the write permissions to the Windows disk.). I use the Minnesota mirror (geographically closest) and choose to save the download onto a folder on my Windows drive (what else would I use the Windows side for but to store Linux iso's ?)

Well, the drill is, a 700MB iso download on my connection setup is about 7 hours, so I leave it run overnight. I get up this morning to find the download failed, and a message-box on the screen "Not enough hard-drive space to download:" + the name of some ".exe" file! Of course, I recognize that ".exe" means an executable file under Windows. I of course stopped everything. My disk quotas appear exactly as they did before. The name of the executable was a long random-appearing string of letters and digits, bearing no relation to what I was trying to get.

What happened? How was this done? What answers are possible?
 
Old 07-01-2005, 03:39 PM   #2
qwijibow
Guru
 
Registered: Apr 2003
Location: nottingham england
Distribution: Gentoo
Posts: 2,672

Rep: Reputation: 47
noooooo !

Never ever ever run an application like a browser as root.
add the option "user" and "umask=0" to /etc/fstab to allow regular users to mount / write to your windows disk.

clear up some space, and try to download the file again, using a more reliable download rpogram like wget.
 
Old 07-02-2005, 08:50 AM   #3
Hosiah
Member
 
Registered: Sep 2004
Location: Des Moines, Iowa
Distribution: Slackware, Mandriva, Debian derivatives, +BSD/ Solaris/ Minix/ plan9/ GNU/HURD...
Posts: 185

Original Poster
Rep: Reputation: 30
Thank you, qwijibow, I will do as you suggest.

But I'm still curious how this was done. Did somebody packet-sniff a router somewhere and detect a download, then slip their file into the stream? Or was the download mirror-site itself compromised? Or was this one of those cases of malware that tries to auto-send itself to random IP addresses, and it was just "my turn"?
 
Old 07-04-2005, 05:02 AM   #4
qwijibow
Guru
 
Registered: Apr 2003
Location: nottingham england
Distribution: Gentoo
Posts: 2,672

Rep: Reputation: 47
I dont think anything happened other than your windows disk ran out of space, and the download manager saved only part of the downloaded file with a temporary name.

how much space is left on the disk you tried to download to ?
 
Old 07-04-2005, 10:46 AM   #5
Hosiah
Member
 
Registered: Sep 2004
Location: Des Moines, Iowa
Distribution: Slackware, Mandriva, Debian derivatives, +BSD/ Solaris/ Minix/ plan9/ GNU/HURD...
Posts: 185

Original Poster
Rep: Reputation: 30
Quote:
how much space is left on the disk you tried to download to ?
1.9 Gig! And the .iso was the standard 700 MB CD image.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Fast Download Site for Linux, enables >4GB Download of single file TigerLinux Linux - Distributions 9 10-29-2005 12:45 PM
Restricting Download based on total download using Squid,SARG& Webmin jomy Linux - Networking 0 04-27-2005 06:04 AM
hdd-related download problem(upload 4-5MB/s, download ~1MB/s) tine Linux - Hardware 4 09-15-2004 03:06 PM
Konqueror wont download download TAR,ZIP file but preview Velocide Linux - Newbie 0 03-22-2004 06:07 AM
Download Manager - download BIG files AndrewMSConvert Linux - General 3 11-09-2003 06:26 AM


All times are GMT -5. The time now is 08:02 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration