Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I recently read somewhere that a virus had attacked some Linux system. Is this true? I had Linux on my computer for 5 years, went to many disreputable sites and never once picked up anything.
There's always potential exploits in operating systems. You might be referring to a Java exploit that happened recently. When you browse the internet you should keep in mind that plugins and scripting in your browser is always a possible vulnerability.
I browse with Firefox using NoScript on all websites. I have all of my external browser plugins disabled and only enable scripting for certain websites. If you feel you need flash then noscript blocks flash and other content. You can whitelist websites you frequent which after about a week of use is rarely needed.
Care to give a reference, so we can discuss facts?
Quote:
Originally Posted by Sisyphus48
...that a virus had attacked some Linux system. Is this true?
For a number of years, researchers have been able to create lab conditions in which this could happen. This is seen so rarely 'in the wild' that mostly people say 'it never happens' although it probably does happen at some low, mostly insignificant, rate.
Recently, for example, there has been a lot of attention (disproportionate? it depends on your point of view) given to the 'Hand of Thief' trojan, because it is intended to attack Linux and not windows. So, there is no cause for complacency because you think that Linux is 'malware-proof', because it isn't. But, on the other hand, in the hands of a competent user, Linux malware isn't something common, in contrast to some other platforms, where it can be very, very common.
(Note; that trojan isn't a virus, it is a trojan. Not quite sure why people get so worked up about viruses when, as far as I can tell, viruses constitute probably less than 10% of malware. The other 90% doesn't cause as much excitement, though. Note also that attacking the user's gullibility is disturbingly successful irrespective of the computing platform.)
Last edited by salasi; 08-15-2013 at 09:35 AM.
Reason: bad cut 'n paste
I also read stuff about this trojan. It's main design is to steal logins and passwords while banking online.
The only tip I have is never click a link to your bank's url from an email or from another site. Always enter your bank's url directly into the browser. Or better yet, if you do a lot of banking online use a liveCD.
Anti-viruses and anti-malware programs can't protect you all the time. You need to be cyber smart as well.
There are some people, out of curiosity, still put unknown USB sticks they find or were handy to them into their computers and not realizing it could be infected.
I will use the analogy of the history of the Trojan wooded house where soldiers were hidden for a surprise attack. Those unknown USB sticks are the trojan wooden horses and the viruses/malware/trojans are the solders waiting to surprise you.
Be careful eveerone
Last edited by matrixworld; 08-22-2013 at 04:45 PM.
I heard it too. It was Larry Bushey's on Computer America.
Computer America has graciously allowed Larry Bushey to post his appearances on Computer America, with all commercials removed, to Going Linux, which is Larry Bushey's project. I really enjoy those episodes.
While we are at this infection theme: How to see if linux doesn't have spyware and already active viruses and other threads? Process list is different from MS Windows..just to make sure everything is way it's supposed to be.
While we are at this infection theme: How to see if linux doesn't have spyware and already active viruses and other threads? Process list is different from MS Windows..just to make sure everything is way it's supposed to be.
It's not much different than the process you undertake on Windows.
Look at the running process list.
If you recognize the process then go to 1, otherwise go to 3.
If you don't recognize the process then google and learn more about it. Go to the next process in the process list and start at step 1.
Do those above steps until you've reviewed all of the processes running on your system. Troubleshooting method applies to both Windows and Linux.
*EDIT*: There's also LMD. I've not used it myself but it looks promising.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.