Re: [LIH]How secure is Linux ?

Thu, 15 Dec 2005 10:47:07 -0800 

On 12/14/05, Thaths <[EMAIL PROTECTED]> wrote:
>
> #include <vast_oversimplification.h>
>
> The reason why there are fewer Linux key loggers and such exploits is
> the user-level secutity that unices have. To install some software, a
> user needs root privileges. So, if a u user is working only as a
> normal user and they download and run whatever trojans they do only
> under their own identity, they never compromise more than themselves
> (i.e. the other users of the system are safe).
>
Thaths,
    Your above statement makes me wonder, A debian (based)
distribution user will be including a lot of repositories in his
/etc/apt/sources.list file over a period of time. Is there any way to
validate if a repository is genuine or not. I mean what is stopping me
(say)  from starting a repository on a server where  I have bought
space and then I  exchange a common utility package with a rooted
version of the package. And anyone using my repository will be
downloading and using the infected package unknowingly.

> Having ports closed, while a good move to prevent crackers from using
> vulnerabilities in your servers from breaking into our machine, is not
> an indicator that you are keylogger less.
>
> > And what precautions should be taken for the
> > same.
>
> Good common sense sys admin skills.

Is there any program which helps one to check if a system is infected
or not ? I mean like checking the md5-checksum or something ?

> A rootkit detector will be a good starting point.

Can you please give an example of a root kit detector. I have heard of
bastile linux. But I presume it is a OS hardening script. And I think
it does not work on Ubuntu.

Regards
Ravi


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://ads.osdn.com/?ad_idv37&alloc_id865&op=click
_______________________________________________
linux-india-help mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/linux-india-help

Reply via email to