Re: [Ilugc] Linux infection proves Windows malware monopoly
Hello Arun Khan, I just want to make our users aware about the threat. as you said the sysadmins should not be lazy or over confident, irrespective of the platform they works. Thanks for your reply. Hello Arun S.A.G, Thanks for you information about zdnet. But zdnet also posted some good articles about Linux, like 10 top Linux rescue tools and information about the Giant companies are switching to Linux from Windows over security concerns. Thats why I post the article in our group. I am using Ubuntu 10.04 UE at my home. could you please suggest any good scanner to find the trojans/worms in the linux environment. Thanks -- -Siddharthan ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Linux infection proves Windows malware monopoly
On Mon, Jun 14, 2010 at 4:43 PM, Siddhu wrote: > > I am using Ubuntu 10.04 UE at my home. > could you please suggest any good scanner to find the trojans/worms > in the linux environment. As long as you are not running any Internet facing services on your desktop you system integrity should be OK. I always use the default NAT option of the DSL modem/routers and get a "natural" firewall for my network. As for scanners None. To the best of my knowledge the scanners that run on Linux are for (possibly) detecting Windows based Virus. Use "aide" or "tripwire" and save the initial sig files on a read only media like CD/DVD; use cron to schedule aide/tripwire to compare the sigs with the "ro" version and report differences. BTW, this should be done after you do a fresh install as well as security/bug updates from "trusted" repos. -- Arun Khan ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
[Ilugc] Linux infection proves Windows malware monopoly is over
Hello friends, I joined this group recently, I am working with Linux server more than 7 yrs, The following article gave me a little shock, as a linux user we also should have a good spyware scanner. http://www.zdnet.com/blog/bott/linux-infection-proves-windows-malware-monopoly-is-over/2206 -- -Siddharthan Quote: I may never know the results of my action, but if i do nothing there will be no result. ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Linux infection proves Windows malware monopoly is over
On Mon, Jun 14, 2010 at 8:31 AM, Siddhu wrote: > The following article gave me a little shock, as a linux user we also should > have a good spyware scanner. Even if you had a spyware scanner do you think it would have caught the backdoor trojan that is embedded into the source code of the Unreal IRC code? I think not. > > http://www.zdnet.com/blog/bott/linux-infection-proves-windows-malware-monopoly-is-over/2206 > Similar incidents have happened in the past. This compromise points to lack of checking by sys admins of the servers - i.e file integrity checking. Such exploits can be done on any system for software for any OS platform where the sys admins have gone to sleep :D This is amply reflected by the feedback posts on the article which you may not have read. It appears the replacement of the .tar.gz occurred in November 2009 (at least on some mirrors). It seems nobody noticed it until now. (Notice that the compromise was on the mirrors and not on the sourceforge server) IMO, the article is a FUD and shows the lack of sys admin knowledge on the part of the author. My two cents. -- Arun Khan ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Linux infection proves Windows malware monopoly is over
On Mon, Jun 14, 2010 at 8:31 AM, Siddhu wrote: > > The following article gave me a little shock, as a linux user we also > should > have > a good spyware scanner. > > > http://www.zdnet.com/blog/bott/linux-infection-proves-windows-malware-monopoly-is-over/2206 > > It is an isolated incident. zdnet is a microsoft mouth piece . The article's aim is to spread FUD. -- Arun S.A.G ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
