Linux Viruses?

isolationist · 02-26-2003, 11:37 PM

Is there any worry about Linux viruses?

Or does Linux have the respect of virus programmers.

cuckoopint · 02-26-2003, 11:46 PM

short answer:

one does not have to worry about viruses too much in linux - because of the *nix file structure, permissions, way of doing things, etc. it is very HARD to write linux viruses (vs. not impossible) and they can't do much unless they have root access - anither reason why you don't do normal day operations as root. More worries about worms - basically eliminated by downloading from trusted sources. So, for most setups, it should be enough security to have a good firewall running and common sense. : )

wr3ck3d · 02-27-2003, 03:54 AM

one time i scanned my windows partition and it found a virus called unix.penguin..when i looked it up it said it sends the password file in /etc to wherever its programmed to.

nakkaya · 02-27-2003, 04:11 AM

windows can see linux partions by default so how can it send it?(not juding you kust asking)

kater · 02-27-2003, 04:43 AM

Windows can't handle any of the Linux filesystems, so how could Windows see a partition of Linux?

wapcaplet · 02-27-2003, 07:17 AM

Quote:

Originally posted by wr3ck3d
one time i scanned my windows partition and it found a virus called unix.penguin..when i looked it up it said it sends the password file in /etc to wherever its programmed to.

So? The password file just contains a bunch of DES hashes. Won't do a cracker much good unless they have as much computing power as the NSA to brute-force them... Unless you use shadow passwords, in which case it doesn't even contain that. The most exciting knowledge that can be gained from the passwd file is username, uid, gid, home directory, and shell.

wr3ck3d · 02-27-2003, 12:59 PM

no, i was in windows and scanned my windows partition....was just mentioning that i did come across a linux virus.

Proud · 02-27-2003, 01:24 PM

But you didnt, so anyway...

Don't run suspicious shell scripts

wr3ck3d · 02-27-2003, 01:35 PM

dont understand...what didn't i??

Proud · 02-27-2003, 01:40 PM

It's not a virus, look up the definition, that's just some stupid malicious code.

isolationist · 02-28-2003, 12:23 AM

couldn't all viruses be classified as 'stupid malicious code'?

Proud · 03-02-2003, 07:19 AM

True, but I was going for the angle that a virus replicates itself, while malicious code doesnt have to by definition.

Quote:

What is a virus?
A computer virus is a small program written to alter the way a computer operates, without the permission or knowledge of the user. A virus must meet two criteria:
It must execute itself. It will often place its own code in the path of execution of another program.
It must replicate itself. For example, it may replace other executable files with a copy of the virus infected file. Viruses can infect desktop computers and network servers alike.

fenriswolf · 03-05-2003, 12:33 PM

virii dont necessarily spread themselves, and they dont necessarilly need to execute temselves. Those are all worm qualities...most viruses need the user to execute them...usually the user is tricked into exevuting.

Proud · 03-05-2003, 12:48 PM

In which case I'd refer you to the definition of a worm from the same link:

Quote:

What is a worm?
Worms are programs that replicate themselves from system to system without the use of a host file. This is in contrast to viruses, which requires the spreading of an infected host file. Although worms generally exist inside of other files, often Word or Excel documents, there is a difference between how worms and viruses use the host file. Usually the worm will release a document that already has the "worm" macro inside the document. The entire document will travel from computer to computer, so the entire document should be considered the worm. PrettyPark.Worm is a particularly prevalent example.

You seem to be describing malicious code, for that code to techincally be a virus or worm it must furfill the definitions stated.
It's why a 'virus' or 'worm' got it's name in the first place, biological virii replicate themselves, etc.

fenriswolf · 03-05-2003, 12:59 PM

Yes. but Virii fo not replicate without the permission of the user. In all virus cases, the user must run something, whether or not he knows it contains virus code, he still has to run it.