"You can also consult a site like http://www.packetstormsecurity.org/ to measure how many, day after day, appear many critical vulnerabilities for SunOS, GNU / Linux, Unix, Mac OS X... which are in probability less often corrected than in Windows due of some laxity by the user."
Pretty much every Linux user thinks they're immune to viruses, but they're wrong. Just recently, malware was found hidden inside an innocuous-looking Gnome theme from a reputable site. Users who installed the theme also got several scripts installed as root that were designed to attack internet targets, but it could easily have been much worse.
You see, the problem with thinking that Linux is immune is that sooner or later, something like this happens
ikey wrote:Please provide the link to that post
ikey wrote:.desktop files look like one possibility, another being the high usage of Python and bash scripts readily available
on the Internet. I, for one, always read through the code before executing said script, maybe I'm just
paranoid I know for a fact that many people don't, and if the script is of some considerable size, or of the
self-extracting .run type shell scripts, people will not bother to even look. That to me is a yet unexploited
possibility for the malicious um.. 'developers' out there.
ikey wrote:Long time no speak rich, hi
ikey wrote:I'd like to point out a post made by Fred (much love ) : http://forums.linuxmint.com/viewtopic.php?f=90&t=46634&p=269043#p269043 which iterates just some of the risks of being root.
(I know rich_roast has seen it but I feel others should take the time to look too )
clem wrote:DEB packages do not only contain data, they can also contain executable code. A lot of packages do, and this code is executed with root permission. So for instance, a DEB could contain "nothing" and have an "rm -rf /" as its post-installation script, and that would be run as root...
So be aware that debs aren't simply containers, they're very much like Windows self-installing .exe files, and they get run with full permissions. One of the main reasons why Linux is safer than Windows is because distributions package the available software themselves and so you rarely have to get .debs from untrusted sources, whereas Windows simply provide the OS and lets you browse the Web to get everything else... so most Windows users are used to install things they don't know without looking at where it came from. Don't be tempted to do the same under Linux as it's just as dangerous.
markfiend wrote:ikey wrote:A chain is only as strong as its weakest link, so they say. I think Linux users should still be aware that any system
is still fallible in some way or other. Just because Linux is fundamentally more secure, this does not mean that
users should throw all caution to the wind.
Or as the saying goes: the most common source of computer failure is between the keyboard and the chair...
Users browsing this forum: No registered users and 2 guests