Results 1 to 9 of 9

Thread: Another security question

  1. #1
    Join Date
    Sep 2011
    Location
    127.0.0.1
    Beans
    277
    Distro
    Lubuntu 12.04 Precise Pangolin

    Another security question

    Hi all,

    I am not really worried about my OS security. I have been using ubuntu (or lubuntu) for about 2 years now and ran a clamav scan on my machine recently with no found viruses or stuff...

    However I am interested in these security issues of flash and other multi-platform programs. How do viruses coming via flash "work"? Will they also be able to infect my Linux system or are they just some sort of backdoor to make malicious code executable on windows machines?

    Thanks for your answers!

  2. #2
    Join Date
    Jan 2013
    Beans
    525

    Re: Another security question

    You don't need a virus scanner for linux. Clam AV is for scanning files for Windows viruses on a linux box before they are sent to a Windows PC. As for Flash exploits, they cannot harm your linux PC beyond screwing your Home folder. So there is a possibility of danger, but it isn't too big. You are pretty safe. Best advice, never enter your password for root access for a window that pops out the blue asking for it.

  3. #3
    Join Date
    Apr 2008
    Location
    LOCATION=/dev/random
    Beans
    5,767
    Distro
    Ubuntu Development Release

    Re: Another security question

    Take a read of the wiki, it should explain the basics of computer security to you...

    https://wiki.ubuntu.com/BasicSecurity
    Cheesemill

  4. #4
    Join Date
    Sep 2011
    Location
    127.0.0.1
    Beans
    277
    Distro
    Lubuntu 12.04 Precise Pangolin

    Re: Another security question

    k, thanks for your help.
    I have read, that there have already been some viruses for linux, so what do you mean by
    Clam AV is for scanning files for Windows viruses on a linux box before they are sent to a Windows PC. As for Flash exploits, they cannot harm your linux PC beyond screwing your Home folder.
    How may my home folder be screwed?

  5. #5
    Join Date
    Jan 2013
    Beans
    525

    Re: Another security question

    The home folder is the only folder that dosen't require a password to access it's contents. So anybody can technically access it. But the chances of somebody messing with it really are slim.

  6. #6
    Join Date
    Feb 2008
    Location
    Texas
    Beans
    14,703
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Another security question

    Thread moved to Security Discussions.

  7. #7
    Join Date
    Mar 2011
    Beans
    668

    Re: Another security question

    You visit malicious webpage.

    Attacker compromises FlashPlayer.

    Attacker now controls FlashPlayer process.

    Attacker can now access anything FlashPlayer can access.

    At this point you want to restrict what FlashPlayer can access with Apparmor. Run your browser in a profile.

  8. #8
    Join Date
    Nov 2008
    Location
    Metro Boston
    Beans
    8,754
    Distro
    Kubuntu 14.04 Trusty Tahr

    Re: Another security question

    Quote Originally Posted by ManamiVixen View Post
    The home folder is the only folder that dosen't require a password to access it's contents. So anybody can technically access it. But the chances of somebody messing with it really are slim.
    Canonical has chosen to make /home/username have 755 permissions by default in Ubuntu. That means users can list and read each others' files. This is a controversial decision, and one I do not support. I prefer the RedHat default where /home/username has 700 permissions. You can change the default permissions in /etc/adduser.conf to make this the default for Ubuntu as well. On a multi-user system with well-specified user groups, you might want 750 permissions to allow other group members to view your files but deny everyone else.
    If you ask for help, please have the courtesy to check for responses and thank the people who helped you.

    Blog · Linode System Administration Guides · Android Apps for Ubuntu Users

  9. #9
    Join Date
    Sep 2011
    Location
    127.0.0.1
    Beans
    277
    Distro
    Lubuntu 12.04 Precise Pangolin

    Re: Another security question

    ok, so in response to Hungry Man
    How do I make my browser run in a specific profile?

    Furthermore, i only have one user on my system at the moment, so changing the permissions to 700 would be rather pointless, right?

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •