Page 4 of 4 FirstFirst ... 234
Results 31 to 39 of 39

Thread: Linux is far from being free of malware - is that true?

  1. #31
    Join Date
    Nov 2008
    Beans
    Hidden!

    Re: Linux is far from being free of malware - is that true?

    Hand of thief Trojan
    http://www.zdnet.com/linux-hot-bank-...re-7000020436/
    Ubuntu got out unscathed.
    The bad guys got burnt. Good for them.

  2. #32
    Join Date
    Nov 2013
    Location
    On the edge
    Beans
    707
    Distro
    Ubuntu

    Re: Linux is far from being free of malware - is that true?

    Quote Originally Posted by monkeybrain20122 View Post
    If see dubious attachment and neverthe less curious to open it would it be safe if do it in guest session?
    No. Don't open it. Delete it as soon as you decide it's suspicious.
    "If somebody thinks they're a hedgehog, presumably you just give 'em a mirror and a few pictures of hedgehogs and tell them to sort it out for themselves."
    Douglas Adams

  3. #33
    Join Date
    Aug 2013
    Beans
    2,416

    Re: Linux is far from being free of malware - is that true?

    Quote Originally Posted by bashiergui View Post
    No. Don't open it. Delete it as soon as you decide it's suspicious.
    I am just wondering, as it seems that everything is erased from the guest session upon reboot, so it seems to be a very safe environment to do risky stuffs.

  4. #34
    Join Date
    Feb 2008
    Location
    ɹǝpun uʍop
    Beans
    Hidden!
    Distro
    Xubuntu

    Re: Linux is far from being free of malware - is that true?

    Quote Originally Posted by monkeybrain20122 View Post
    I am just wondering, as it seems that everything is erased from the guest session upon reboot, so it seems to be a very safe environment to do risky stuffs.
    So I believe. Some people log on as a guest to do their banking stuff and financial transacting.

  5. #35
    Join Date
    Nov 2013
    Location
    On the edge
    Beans
    707
    Distro
    Ubuntu

    Re: Linux is far from being free of malware - is that true?

    Quote Originally Posted by monkeybrain20122 View Post
    I am just wondering, as it seems that everything is erased from the guest session upon reboot, so it seems to be a very safe environment to do risky stuffs.
    It is not persistent, true. But it is not isolated like a sandbox. It is possible to escalate the guest account to root. http://cyberarms.wordpress.com/2013/...guest-account/

    It's unlikely that there are any attacks like this happening anywhere other than in researchers' labs, but what the attack demonstrates is that it's possible. If you're dying to click on risky stuff then set up an isolated sandbox and do it there. If you're not analyzing the malware then how can you know what it's going to do until it's too late?
    "If somebody thinks they're a hedgehog, presumably you just give 'em a mirror and a few pictures of hedgehogs and tell them to sort it out for themselves."
    Douglas Adams

  6. #36
    Join Date
    Nov 2008
    Location
    Metro Boston
    Beans
    9,812
    Distro
    Kubuntu 14.04 Trusty Tahr

    Re: Linux is far from being free of malware - is that true?

    If you want to play with malware, I recommend using a virtual machine to limit collateral damage. You can just blow it away if things get wonky.

    Install a copy of Windows into VirtualBox and save a copy of "~/VirtualBox VMs" when everything is working as you like. Then if you try something dangerous, you can wipe out the infected image and use the saved clean copy.
    Last edited by SeijiSensei; January 7th, 2014 at 03:56 PM.
    If you ask for help, please have the courtesy to check for responses and thank the people who helped you.

    Blog · Linode System Administration Guides · Android Apps for Ubuntu Users

  7. #37
    Join Date
    Nov 2013
    Location
    On the edge
    Beans
    707
    Distro
    Ubuntu

    Re: Linux is far from being free of malware - is that true?

    Yes, exactly what SeijiSensei said. A virtual machine with a clean snapshot is isolated (if you do host-only networking) and can be a sandbox.

    Contrast that with Ubuntu's guest session which is not isolated nor a sandbox.
    "If somebody thinks they're a hedgehog, presumably you just give 'em a mirror and a few pictures of hedgehogs and tell them to sort it out for themselves."
    Douglas Adams

  8. #38
    Join Date
    Aug 2013
    Beans
    2,416

    Re: Linux is far from being free of malware - is that true?

    Quote Originally Posted by bashiergui View Post
    It is not persistent, true. But it is not isolated like a sandbox. It is possible to escalate the guest account to root. http://cyberarms.wordpress.com/2013/...guest-account/

    It's unlikely that there are any attacks like this happening anywhere other than in researchers' labs, but what the attack demonstrates is that it's possible. If you're dying to click on risky stuff then set up an isolated sandbox and do it there. If you're not analyzing the malware then how can you know what it's going to do until it's too late?
    Interesting. But that was a temporary bug which was patched as soon as discovered. Users in the comment section could not reproduce it after update and OP said had to use an preupdated os for the exploit to work. I think it actually shows the strength of Linux security rather than weakness: as soon as a loophole is discovered it is publicised and fixded.

    The point that guest session is not sand boxed is well taken.
    Last edited by monkeybrain20122; January 7th, 2014 at 09:58 PM.

  9. #39
    Join Date
    Oct 2011
    Beans
    3

    Re: Linux is far from being free of malware - is that true?

    Definately agree that common sense is the best weapon.

    Sophos has a Linux version that does on-access scanning.
    Chapter 3.3.1 of http://tw.sophos.com/sophos/docs/eng...vl_7_umeng.pdf

Page 4 of 4 FirstFirst ... 234

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •