Re: Media Redefines Security

Home	Messages Index

[Date Prev]	[Date Next]	[Thread Prev]	[Thread Next]

Author Index	Date Index	Thread Index

Re: Media Redefines Security

Subject: Re: Media Redefines Security
From: Roy Schestowitz <newsgroups@xxxxxxxxxxxxxxx>
Date: Mon, 20 Feb 2006 06:54:05 +0000
Newsgroups: comp.os.linux.advocacy
Organization: schestowitz.com / MCC / Manchester University
References: <dt7au3$1h4i$1@godfrey.mcc.ac.uk> <HS1Kf.34042$F_3.29455@newssvr29.news.prodigy.net>
Reply-to: newsgroups@xxxxxxxxxxxxxxx
User-agent: KNode/0.7.2

__/ [Philip] on Sunday 19 February 2006 17:25 \__

> Roy Schestowitz wrote:
>>     "Malicious worm aims to bite Apple"
>> 
>>                 http://news.bbc.co.uk/1/hi/technology/4723390.stm
>> 
>>     
>> 
>>     "A OS X myth is shattered to pieces"
>> 
>>                - Silicon Valley Sleuth
>> 
>> However:
>> 
>> "I?m sorry to report that it?s not a virus, it?s a trojan, and it does not
>> spread. The trojan poses as a compressed file, and when you double click
>> on it, you need to enter your administrator password to activate it. Not
>> really what I would call a virus. This is something that a total ass hat
>> would be able to program in Applescript in about ten minutes. I?m certain
>> that we will see a virus that actually works under Mac OS X sooner or
>> later, but this is not it. So I guess that companies like Sophos needs to
>> hype up something else to sell their products."
>> 
>>      http://www.jackenhack.com/blog/archives/2006/02/17/alarm-report/
>> 
>> 
>> You know what this means, don't you? If someone was to chmod and then
>> execute a malicious script (as root) on Linux, the media would be all over
>> it with hyped-up statements.
> 
> This reminds of the first unix virus-trojan email I ever saw. It sort of
> went:
> 
> "This is a unix virus. Please follow these instructions:
> 1. su root
> 2. cd /
> 3. rm -rf *"

That's not an effective virus. *smile* It neglects the stage that precedes 1,
which is to pass it on (voluntarily of course) to everyone in your address
book.

Speaking of which:

http://ostoolbox.blogspot.com/2006/02/more-info-on-new-linux-php-worm.html

"It's a worm based on kaiten, an older and less "successful" worm. What's so
special about this worm, in respect to other linux worms, is the fact that
this one was caught "in the wild" - to say that it is not a 'proof of
concept' worm. Together with the Mac own very first virus (the one Apple
denies being one), the year sure has started quite busy for users unaware of
viruses so far."

Needless to say, it's a PHP issue, not a Linux worm. But people like to
over-inflate stuff, which gets attention.

Best wishes,

Roy

-- 
Roy S. Schestowitz      |    "Software sucks. Open Source sucks less."
http://Schestowitz.com  |    SuSE Linux     |     PGP-Key: 0x74572E8E
  6:45am  up 2 days 19:04,  9 users,  load average: 0.12, 0.50, 0.72
      http://iuron.com - help build a non-profit search engine

References:
- Media Redefines Security
  - From: Roy Schestowitz

[Date Prev]	[Date Next]	[Thread Prev]	[Thread Next]

Author Index	Date Index	Thread Index