Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hi, I have no idea what category this should go into, hence the general placement.
My PC sometimes turns on by itself, I haven't been able to identify a pattern yet. It runs Ubuntu server 14.04, although I'm not using it as a server anymore - I just installed Xfce for a GUI and am using it as a regular desktop now. The firewall still has internet ports open though, there's just nothing listening.
I'm wondering whether or not it could have been infected and is working as a bot now. Is it possible that malware makes it up power up when it's off (not asleep, off!)?
It also does that at times when the modem is turned off, so it can't be "on demand", but maybe some schedule. I don't have wake on lan installed either (as far as I can tell...).
What other possible explanations are there for this behaviour?
Do you think I'll have to wipe it completely?
I would check the BIOS configuration, there may be some wake on LAN, wake on WLAN or wake on schedule set (powering up at a specific time repeatedly would be an indicator).
Hm, good call. It appears there were some wakeup options enabled (see attachment), but I don't remember enabling those, and I don't really know what they do. Disabled them all now, let's see if it keeps switching itself on.
Can something like this be done by malware over the Internet?
That's a good question, but I don't know the answer. I suppose if the data can be written while the OS is running, then anything is possible.
Well I for one cannot make any changes in Bios while the OS is running, can I? It's necessary to reboot, shutting down the OS to get into Bios. The way it looks in my, albeit very very schematic understanding, is that Bios does something to get the Os booted, but the Os never does anything to Bios (i.e. there is no "channel" for information to travel the other direction), yes?
There's no reason that malware couldn't attempt to manipulate the bios. I don't believe it to be write protected.
Should the bios be ok, try reloading the operating system. It may be a genuine electronic problem where a fault creates curcuit noise allerting the power management system.
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
Rep:
I would more likely put this down to either you having played with the settings when you first bought the machine and accidentally or otherwise turned this on or somebody else who has access to the machine doing it to wind you up. Or even a previous owner of the machine setting it up if it's not brand new.
This isn't to say that it cannot be malware setting it just that it seems the least likely option to me as it's not something I have heard of and from what I can gather it would be difficult to do especially without targeting it to a specific BIOS.
I would more likely put this down to either you having played with the settings when you first bought the machine and accidentally or otherwise turned this on or somebody else who has access to the machine doing it to wind you up. Or even a previous owner of the machine setting it up if it's not brand new.
This isn't to say that it cannot be malware setting it just that it seems the least likely option to me as it's not something I have heard of and from what I can gather it would be difficult to do especially without targeting it to a specific BIOS.
You're right, it's probably the first thing you mentioned. That's good because it doesn't compel me to do a fresh install (although that might be in order sometime soon anyways).
thanks everyone!
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.