Re: Virus Scanner 64 bits version ??
On Thu, Oct 20, 2005 at 03:36:47PM +1300, Chris Bannister wrote: I used to think that as well. Apparently most distributions are not secure *out of the box*. It takes more work/skill to secure Linux than it does to secure Windows XP. Hence there are probably more secure XP installations out there than Linux boxes. Viruses and spyware are another matter. I can install debian 3.1 on a system and have it connected to the internet while doing it, and I won't be worried at all doing it. Do that with XP while downloading service packs and hotfixes, and most likely the system has spyware/worms/viruses/othermalware on it before you have the service packs installed. That is unless you have a router/firewall between the XP machine and the internet. That is my understanding. Of course I may be wrong, but it is probably the best way to lean. :-) Debian by default has just about no services running, especially not listnening to external interfaces. That alone makes it way more secure than windows. It also doesn't make it easiest to run as administrator for most of your work, but rather tries quite hard to discourage using root. Len Sorensen -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Virus Scanner 64 bits version ??
It takes more work/skill to secure Linux than it does to secure Windows XP. Hence there are probably more secure XP installations out there than Linux boxes. Secure has different definitions in *nix and MS Windows. For instance, Microsoft does not consider local exploits to be real security flaws. Google for shatter attack. Also, if you find a way to turn off the administrative SMB/CIFS share(s) under XP without disabling SMB/CIFS all together, please let me know. It was possible under Win2k, but now the administrative share(s) are better hidden and (as far as I can tell) not easily disabled without disabling all of the MS SMB/CIFS client functionality along with the SMB/CIFS server fuctionality. -Karl
Re: Virus Scanner 64 bits version ??
On Thu, 20 Oct 2005, Karl Magdsick wrote: Also, if you find a way to turn off the administrative SMB/CIFS share(s) under XP without disabling SMB/CIFS all together, please let me know. It was possible under Win2k, but now the administrative share(s) are better hidden and (as far as I can tell) not easily disabled without disabling all of the MS SMB/CIFS client functionality along with the SMB/CIFS server fuctionality. Would this do what you want? REGEDIT4 HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters AutoShareWks=dword: Don Don Hayward at pomobuli.net -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Virus Scanner 64 bits version ??
On Mon, Oct 17, 2005 at 07:35:21PM -0500, Mike Dobbs wrote: Nothing is impossible! Yes linux as a non-root user is very secure especially today, but you should still have an idea of what you are running. That's why debian repositories are great, gpg signed, and maintained by good people. I think there are some virus scanner that run on linux, but don't waste your time. Linux is too secure, or too small of market (depending on the view) to get any real viruses as of yet. MD I used to think that as well. Apparently most distributions are not secure *out of the box*. It takes more work/skill to secure Linux than it does to secure Windows XP. Hence there are probably more secure XP installations out there than Linux boxes. Viruses and spyware are another matter. That is my understanding. Of course I may be wrong, but it is probably the best way to lean. :-) -- Chris. == Reproduction if desired may be handled locally. -- rfc3 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Virus Scanner 64 bits version ??
mmh..i'm not lazy, i was just thinking that was useless to install a virus scanner and other stuff on my debian : ) So, what do u suggest to me to secure my os? there is a quick guide somewhere that explains some basic steps to do? thank you! michele -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Virus Scanner 64 bits version ??
So, what do u suggest to me to secure my os? there is a quick guide somewhere that explains some basic steps to do? See the Securing Debian Manual, on www.debian.org/doc
Re: Virus Scanner 64 bits version ??
On Tue, Oct 18, 2005 at 01:58:53AM +0200, Michele Concina wrote: mmh..just a stupid question..do i need a virus scanner? r there virus for linux? i thought that was impossible to be infected coze how can a virus install itself if i use my os not as root? I'm just a newbie so i don't know so much about security on debian and GNU/Linux systems So you can scan email before letting windows users read it. :) Len Sorensen -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Virus Scanner 64 bits version ??
Paulo Marcondes ha scritto: So, what do u suggest to me to secure my os? there is a quick guide somewhere that explains some basic steps to do? See the Securing Debian Manual, on www.debian.org/doc yè i already knew about that..i was hoping in something less that 233 pages : ) whatever..i've something to read now :D tnx michele
Re: Virus Scanner 64 bits version ??
Hello, On Sun, Oct 16, 2005 at 07:11:58PM +0200, Thierry wrote: I am looking for an free virus scanner running under 64 bits OS Any idea ? clamav. You might want to use the volatile version, though: http://volatile.debian.net/mirrors.html Best regards Frederik Schueler -- ENOSIG signature.asc Description: Digital signature
Re: Virus Scanner 64 bits version ??
Frederik Schueler ha scritto: Hello, On Sun, Oct 16, 2005 at 07:11:58PM +0200, Thierry wrote: I am looking for an free virus scanner running under 64 bits OS Any idea ? clamav. You might want to use the volatile version, though: http://volatile.debian.net/mirrors.html Best regards Frederik Schueler mmh..just a stupid question..do i need a virus scanner? r there virus for linux? i thought that was impossible to be infected coze how can a virus install itself if i use my os not as root? I'm just a newbie so i don't know so much about security on debian and GNU/Linux systems michele -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Virus Scanner 64 bits version ??
Nothing is impossible! Yes linux as a non-root user is very secure especially today, but you should still have an idea of what you are running. That's why debian repositories are great, gpg signed, and maintained by good people. I think there are some virus scanner that run on linux, but don't waste your time. Linux is too secure, or too small of market (depending on the view) to get any real viruses as of yet. MD On Tue, 2005-10-18 at 01:58 +0200, Michele Concina wrote: Frederik Schueler ha scritto: Hello, On Sun, Oct 16, 2005 at 07:11:58PM +0200, Thierry wrote: I am looking for an free virus scanner running under 64 bits OS Any idea ? clamav. You might want to use the volatile version, though: http://volatile.debian.net/mirrors.html Best regards Frederik Schueler mmh..just a stupid question..do i need a virus scanner? r there virus for linux? i thought that was impossible to be infected coze how can a virus install itself if i use my os not as root? I'm just a newbie so i don't know so much about security on debian and GNU/Linux systems michele -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Virus Scanner 64 bits version ??
The anti-virus is for Windows machines, you run the anti-virus on the Linux mail-server, http-proxy etc. in order to protect your users which mostly use Windows on their PCs Linux is leader in the server segment, where windows should never have penetrated. Michel. Em Seg, 2005-10-17 às 19:35 -0500, Mike Dobbs escreveu: Nothing is impossible! Yes linux as a non-root user is very secure especially today, but you should still have an idea of what you are running. That's why debian repositories are great, gpg signed, and maintained by good people. I think there are some virus scanner that run on linux, but don't waste your time. Linux is too secure, or too small of market (depending on the view) to get any real viruses as of yet. MD On Tue, 2005-10-18 at 01:58 +0200, Michele Concina wrote: Frederik Schueler ha scritto: Hello, On Sun, Oct 16, 2005 at 07:11:58PM +0200, Thierry wrote: I am looking for an free virus scanner running under 64 bits OS Any idea ? clamav. You might want to use the volatile version, though: http://volatile.debian.net/mirrors.html Best regards Frederik Schueler mmh..just a stupid question..do i need a virus scanner? r there virus for linux? i thought that was impossible to be infected coze how can a virus install itself if i use my os not as root? I'm just a newbie so i don't know so much about security on debian and GNU/Linux systems michele
Re: Virus Scanner 64 bits version ??
On 10/18/05 01:58:53AM +0200, Michele Concina wrote: mmh..just a stupid question..do i need a virus scanner? r there virus for linux? i thought that was impossible to be infected coze how can a virus install itself if i use my os not as root? I'm just a newbie so i don't know so much about security on debian and GNU/Linux systems michele Virus scanners on Linux are largely worthless right now since 99% of the definitions they use are for Windows viruses. But don't fool yourself into thinking that Linux is impregnable. The kernel has had it's share of local root exploits and most network daemons have had some kind of remote exploit in their lives. A virus may not be able to infect /bin/ls as your regular user, but it sure could delete all of your personal data and mail itself to your friends. And most people care more about their own data than their OS, I can install Debian sid in a very small amount of time but replacing all of my data would be virtually impossible since I don't back things up like I should =) I'm not recommending that you install a virus scanner, I'm just saying that you shouldn't be any more lax in your security procedures since you're running Linux. Jim. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Virus Scanner 64 bits version ??
Don't get lazy just because you're running *nix.
If your unprileged user account got infected, it could still wipe out or corrupt
all of that user's data, and/or infect any binaries or source code writeable
by that user. Your command shell initialization/customization scripts are
executed at every login and usually an process running as your user
can set the permissions on these files to make them writeable by your user.
One Halloween somewhere in 1997-1999, the MIT chapter of Phi Kappa Sigma
advertised their Skuffle party using a virus that infected a user's
dotfiles. I remember
that the virus stored most of itself in ${HOME}/.../ In the MIT
Athena system, users'
home directories are on the AFS networked filesystem. A user with an infected
home directory would infect a workstation upon login, and all people
subsequently
logging into that machine would have their home directories infected.
After a centain
date, infected machines displayed a party advertisement as part of the
xlogin screen.
The machine may have had the root password hard-coded into the virus, since the
root password to the public workstations is available to all students.
On the other
hand, the virus would have been able to infect non-public workstations
if it aliased
logout (and modified configuration files to use a fake xlogout) to
display a fake login
screen and then used su (and some kerberos commands) to emulate the behavior
of a regular login.
I don't recall if the virus ran on Solaris, IRIX, and Linux Athena
stations, or a subset
thereof. In any case, it was certainly possible that the virus was
cross-*nix and
did not require root access to spread. I believe the majority of the logic was
implemented as tcsh scripts, with modified xlogin binaries dragged
along for the ride.
-Karl
mmh..just a stupid question..do i need a virus scanner? r there virus
for linux? i thought that was impossible to be infected coze how can a
virus install itself if i use my os not as root?
I'm just a newbie so i don't know so much about security on debian and
GNU/Linux systems
michele
Virus Scanner 64 bits version ??
Hi, I am looking for an free virus scanner running under 64 bits OS Any idea ? Thx -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
