Full Disclosure mailing list archives
Re: Re: January 15 is Personal Firewall Day, help the cause
From: David Luyer <david () luyer net>
Date: Sat, 17 Jan 2004 20:53:45 +1100
On Fri, Jan 16, 2004 at 01:57:15PM -0500, David F. Skoll wrote:
On Fri, 16 Jan 2004, Exibar wrote:Will any of these do? Will you still think you don't need AV on Linux now? here's a partial list..... don't choke too hard now!Those are all proof-of-concept. I'm unaware of a single production Linux machine anywhere in the world succumbing to one of them. Perhaps you can provide evidence to the contrary? Furthermore, most of them are not self-propagating, but require active cooperation from the recipient. I do not need nor use AV on Linux.
But what about ye evil polymorphic .sig virus? To my knowledge it's the most prolific virus to infect Linux users to date, see below for evidence of three infections! +== Begin quote: Gregory Maxwell on linux-kernel, 20 May 1999 === + + On Wed, 19 May 1999, Thomas Wouters wrote: + > > Hi! I'm a .signature virus! Copy me into your ~/.signature to help me spread! + > + > Excellent signature :-) + > + > -- + > Thomas Wouters <thomas () xs4all net> + > + > Hi! I'm a .signature virus! copy me into your .signature file to help me spread! + + Wow! It's polymorphic! + -- + Gregory Maxwell <gmaxwell () martin fl us> + + Hi! I'm a .signature virus! cp me into your .signature file to help me spread! + === End quote === Seriously - while there are no prolific Linux "viruses", there is still a place for "scanners" - eg. chkrootkit; it's also potentially useful to use something to check your system hasn't accidentally ended up with eggdrops and other things installed. The chance of a Linux "virus" propogating and remaining valid for an extended period of time against updated systems may be extremely low, but the chance of an uneducated user's Linux system with full net access getting compromised is non-zero. David. -- Hi! I'm a .sig virus. Copy me into your .signature file to help me spread! _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: Re: January 15 is Personal Firewall Day, help the cause, (continued)
- Re: Re: January 15 is Personal Firewall Day, help the cause Mary Landesman (Jan 16)
- Re: Re: January 15 is Personal Firewall Day, help the cause David F. Skoll (Jan 16)
- Re: Re: January 15 is Personal Firewall Day, help the cause jan . muenther (Jan 16)
- Re: Re: January 15 is Personal Firewall Day, help the cause David F. Skoll (Jan 16)
- RE: Re: January 15 is Personal Firewall Day, help the cause Bill Royds (Jan 16)
- RE: Re: January 15 is Personal Firewall Day, help the cause Erik van Straten (Jan 17)
- Re: Re: January 15 is Personal Firewall Day, help the cause jan . muenther (Jan 17)
- Re: Re: January 15 is Personal Firewall Day, help the cause William Warren (Jan 17)
- Re: Re: January 15 is Personal Firewall Day, help the cause Ron DuFresne (Jan 20)
- Re: Re: January 15 is Personal Firewall Day, help the cause Alvaro Gomes Sobral Barcellos (Jan 23)
- Re: Re: January 15 is Personal Firewall Day, help the cause David Luyer (Jan 17)
- Re: Re: January 15 is Personal Firewall Day, help the cause Valdis . Kletnieks (Jan 16)
- Re: Re: January 15 is Personal Firewall Day, help the cause Tobias Weisserth (Jan 16)
- Re: Re: January 15 is Personal Firewall Day, help the cause Exibar (Jan 16)
- Re: Re: January 15 is Personal Firewall Day, help the cause David F. Skoll (Jan 16)
- Re: Re: January 15 is Personal Firewall Day, help the cause Tobias Weisserth (Jan 16)
- Re: Re: January 15 is Personal Firewall Day, help the cause Exibar (Jan 16)
- Re: Re: January 15 is Personal Firewall Day, help the cause Tobias Weisserth (Jan 16)
- Re: Re: January 15 is Personal Firewall Day,help the cause Exibar (Jan 16)
- Re: Re: January 15 is Personal Firewall Day,help the cause Tobias Weisserth (Jan 17)
- Re: Re: January 15 is Personal Firewall Day,help the cause jan . muenther (Jan 17)