Bugtraq mailing list archives
Re: [linux-security] Re: Linux virus
From: alan () CYMRU NET (Alan Cox)
Date: Wed, 5 Feb 1997 14:32:49 +0000
In any event -- McAfee may be able to add this to their existing uvscan product. uvscan scan Linux filesystems for DOS and Windows (including Word Macro) viruses. It may be possible for the AV team to simply add bliss' signature to the next release -- and it may even be possible for them to create a remover.
I've had a look at the algorithms used for this "Bliss" toy. Its quite interesting as its a completely portable technique. It works for NT DLL's it works for all Unixen. Tripwire pretty much immediately spots such tampering. Alan
Current thread:
- [linux-security] Linux virus Aleph One (Feb 04)
- Re: [linux-security] Linux virus Jim Dennis (Feb 05)
- Re: [linux-security] Re: Linux virus Alan Cox (Feb 05)
- Re: [linux-security] Re: Linux virus Leejay Wu (Feb 05)
- bliss version 0.4.0 nobody () INTERNIC NET (Feb 05)
- HPSBUX9702-052 Security Vulnerability in the rlogin executable Aleph One (Feb 05)
- [linux-security] Re: Linux virus Aleph One (Feb 06)
- setlocale() bug in all released versions of FreeBSD (SA-97:01) Aleph One (Feb 06)
- Wierd behavior of MS's NT4 DNS Jason T. Luttgens (Feb 07)
- New OFFICIAL patch for BSD/OS 2.1 (*SECURITY*) (fwd) Josh Gilliam (Feb 07)
- Bliss: The Facts Jared Mauch (Feb 08)
- view-source myst (Feb 08)
- IRIX: Bug in startmidi David Hedley (Feb 09)
(Thread continues...)
- Re: [linux-security] Linux virus Jim Dennis (Feb 05)