LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices



Reply
 
Search this Thread
Old 06-17-2013, 02:12 AM   #1
ld_k
LQ Newbie
 
Registered: Jun 2012
Distribution: Debian
Posts: 12

Rep: Reputation: Disabled
Protect Linux from rats


How can I protect my Linux desktop from rats ?
Would be a solution to block all ports (using iptables) and open some of them I need ?
 
Old 06-17-2013, 02:34 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,710
Blog Entries: 54

Rep: Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966
While not installing what you don't need, not running (exposed) services and being behind a NAT router are some measures, the Securing Debian Manual should be your first port of call as it handles hardening in a most complete way IMHO.
 
1 members found this post helpful.
Old 06-17-2013, 03:09 AM   #3
ld_k
LQ Newbie
 
Registered: Jun 2012
Distribution: Debian
Posts: 12

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by unSpawn View Post
While not installing what you don't need, not running (exposed) services and being behind a NAT router are some measures, the Securing Debian Manual should be your first port of call as it handles hardening in a most complete way IMHO.
Thanks I will read it .

A friend of mine send me a file written in Java while I was using a live usb after I run it, he said to me that it was a rat and he could do whatever he wanted to my computer. I reboot my computer removed live usb and now I am writing here.

Is it sure that this rat will not harm my regular os ?

Should I format my live usb ?

I know this sounds like I am noob
 
Old 06-17-2013, 06:45 AM   #4
chrism01
Guru
 
Registered: Aug 2004
Location: Sydney
Distribution: Centos 6.6, Centos 5.10
Posts: 16,324

Rep: Reputation: 2041Reputation: 2041Reputation: 2041Reputation: 2041Reputation: 2041Reputation: 2041Reputation: 2041Reputation: 2041Reputation: 2041Reputation: 2041Reputation: 2041
If he's serious (& not my idea of a friend), then it will have installed onto your HDD and be revived at bootup.
You may have to re-install to clear it.

If you want to investigate, read the Sticky Posts at the top of the forum.
 
1 members found this post helpful.
Old 06-17-2013, 06:53 AM   #5
ld_k
LQ Newbie
 
Registered: Jun 2012
Distribution: Debian
Posts: 12

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by chrism01 View Post
If he's serious (& not my idea of a friend), then it will have installed onto your HDD and be revived at bootup.
You may have to re-install to clear it.

If you want to investigate, read the Sticky Posts at the top of the forum.
Okay then I will re-install Debian or maybe I will give a try to Arch.

Edit :

I din't knew that while I am using live usb a program would be able to harm my hdd..

Last edited by ld_k; 06-17-2013 at 07:07 AM.
 
Old 06-17-2013, 04:16 PM   #6
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,710
Blog Entries: 54

Rep: Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966
Quote:
Originally Posted by ld_k View Post
A friend of mine send me a file written in Java while I was using a live usb after I run it (..)
Is it sure that this rat will not harm my regular os ?
Any chance of having us inspect that file first?
 
Old 06-17-2013, 04:22 PM   #7
ld_k
LQ Newbie
 
Registered: Jun 2012
Distribution: Debian
Posts: 12

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by unSpawn View Post
Any chance of having us inspect that file first?
Sorry , it is too late I re-installed my os..
 
Old 06-17-2013, 04:42 PM   #8
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,710
Blog Entries: 54

Rep: Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966Reputation: 2966
What you generally speaking should be aware of is that this forum deals with facts, not fiction. If anything seems unclear what you reflexively should ask for is proof or at least elaboration. Basing your actions on having checked the facts is OK but doing the same on nothing but a hunch is counterproductive and may lead to all sorts of "interesting" things.
 
Old 06-18-2013, 12:34 AM   #9
ld_k
LQ Newbie
 
Registered: Jun 2012
Distribution: Debian
Posts: 12

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by unSpawn View Post
What you generally speaking should be aware of is that this forum deals with facts, not fiction. If anything seems unclear what you reflexively should ask for is proof or at least elaboration. Basing your actions on having checked the facts is OK but doing the same on nothing but a hunch is counterproductive and may lead to all sorts of "interesting" things.
So should I wait ? If it was an another kind of problem I would be able to wait for weeks or even months but I can't get such a big risk, yeah maybe it wasn't real but as I said it is too risky.

Thread can be closed.
 
Old 06-18-2013, 03:52 PM   #10
John VV
Guru
 
Registered: Aug 2005
Posts: 13,481

Rep: Reputation: 1803Reputation: 1803Reputation: 1803Reputation: 1803Reputation: 1803Reputation: 1803Reputation: 1803Reputation: 1803Reputation: 1803Reputation: 1803Reputation: 1803
rats ?

i am guessing you mean "bad guys/gals"

not the rodent that will eat the cables

for that use metal conduit
and a steal box for the computer
 
Old 06-20-2013, 06:50 AM   #11
theNixGuy
LQ Newbie
 
Registered: May 2013
Location: USA & India
Distribution: CentOS & Ubuntu
Posts: 8

Rep: Reputation: Disabled
I thought there are not a lot of RATs that exploit Linux OS, no?
 
Old 06-21-2013, 01:13 AM   #12
Soapm
Member
 
Registered: Dec 2012
Posts: 169

Rep: Reputation: Disabled
Quote:
Originally Posted by ld_k View Post
So should I wait ? If it was an another kind of problem I would be able to wait for weeks or even months but I can't get such a big risk, yeah maybe it wasn't real but as I said it is too risky.

Thread can be closed.
I think the implication was in the future post the file so someone can take a look to see what in fact it was. The friend could have been joking or the friend could be a wolf in sheep's clothing, the answer was in the files code...

Do yourself a favor and make an image of your disk. That way if this happens again you can just restore the image and be where you are now.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Installation of RATS in RHEL Desktop 6.4 abhi_momo Linux - Software 1 04-05-2013 09:03 AM
LXer: Unity, GNOME3, Windows 8 andâ?¦ jumping rats LXer Syndicated Linux News 0 04-03-2012 04:20 PM
[SOLVED] Rats! Degraded Software Raid 5 Issue aleinin Linux - Server 12 02-05-2011 02:28 PM
Windows Rats soplin General 4 08-09-2009 06:25 PM
How to Protect Linux Directory? nishith Linux - Security 2 11-07-2008 03:35 AM


All times are GMT -5. The time now is 04:15 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration