Printable View
I am sorry to burst anyone's bubble, but there are linux viruses. A
lot of them spread via bad PHP software. I have seen some in
action. That's the reason why I avoid PHP where possible.
However, in general Linux viruses are harder to write and harder to
spread and it is harder for them to get root privileges. But nothing
is impossible.
At the moment, it is much easier to write viruses for Windows.
i
In Message-ID: <47eba2bd$0$14353$e4fe514c@news.xs4all.nl> Dirk T. Verbeek:
[Snip...]
[color=blue]
> (I just wonder why it sounded you directed this as an accusation at me?)[/color]
Sorry; it was NOT my intent at all. I'm actually fed up with wintrolls who
hype ancient *nix security lapses as sorryass "examples" of *nix bugs (not
you, definitely).
If Morris is the best the M$ shills have to offer they're closer to having
a final Come To Jesus Meeting about net sanitation than even I imagined.
I answered your post, because in it I found what seemed to be some wintard
on Morris, as a FU (apparently, the OP tripped into my bozobin).
Again, apologies for any confusion about the "target" in my posting.
--
Regards, Weird (Harold Stevens) * IMPORTANT EMAIL INFO FOLLOWS *
Pardon any bogus email addresses (wookie) in place for spambots.
Really, it's (wyrd) at airmail, dotted with net. DO NOT SPAM IT.
Kids jumping ship? Looking to hire an old-school type? Email me.
Ignoramus17842 wrote:
[color=blue]
> I am sorry to burst anyone's bubble, but there are linux viruses. A
> lot of them spread via bad PHP software. I have seen some in
> action. That's the reason why I avoid PHP where possible.
>[/color]
You're not bursting my bubble. Prove it. Show us a linux virus that spreads
via bad PHP software.
Thanks
Cheers.
--
The world can't afford the rich.
Q: What OS is built for lusers?
A: Which one requires running lusermgr.msc to create them?
Francis (Frank) adds a new "gadget" to his Vista box ...
Download it here: [url]http://tinyurl.com/2hnof6[/url]
On 2008-03-27, NoStop <nospam@nospam.com> wrote:[color=blue]
> Ignoramus17842 wrote:
>[color=green]
>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>> lot of them spread via bad PHP software. I have seen some in
>> action. That's the reason why I avoid PHP where possible.
>>[/color]
> You're not bursting my bubble. Prove it. Show us a linux virus that spreads
> via bad PHP software.[/color]
[url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
[url]http://vil.nai.com/vil/content/v_136821.htm[/url]
[url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url]
I run a webserver and frequently see those worms probing my
webserver. I do not get infected since I have a anti-PHP policy.
i
Ignoramus17842 wrote:
[color=blue]
> On 2008-03-27, NoStop <nospam@nospam.com> wrote:[color=green]
>> Ignoramus17842 wrote:
>>[color=darkred]
>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>> lot of them spread via bad PHP software. I have seen some in
>>> action. That's the reason why I avoid PHP where possible.
>>>[/color]
>> You're not bursting my bubble. Prove it. Show us a linux virus that
>> spreads via bad PHP software.[/color]
>
> [url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
> [url]http://vil.nai.com/vil/content/v_136821.htm[/url]
>[/color]
[url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url][color=blue]
>
> I run a webserver and frequently see those worms probing my
> webserver. I do not get infected since I have a anti-PHP policy.
>
> i[/color]
All references are 3 years old. Tell us whether PHP has been patched since
then.
Thanks
Cheers.
--
The world can't afford the rich.
Q: What OS is built for lusers?
A: Which one requires running lusermgr.msc to create them?
Francis (Frank) adds a new "gadget" to his Vista box ...
Download it here: [url]http://tinyurl.com/2hnof6[/url]
Ignoramus17842 <ignoramus17842@NOSPAM.17842.invalid> writes:
[color=blue]
> On 2008-03-27, NoStop <nospam@nospam.com> wrote:[color=green]
>> Ignoramus17842 wrote:
>>[color=darkred]
>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>> lot of them spread via bad PHP software. I have seen some in
>>> action. That's the reason why I avoid PHP where possible.
>>>[/color]
>> You're not bursting my bubble. Prove it. Show us a linux virus that spreads
>> via bad PHP software.[/color]
>
> [url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
> [url]http://vil.nai.com/vil/content/v_136821.htm[/url]
> [url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url]
>
> I run a webserver and frequently see those worms probing my
> webserver. I do not get infected since I have a anti-PHP policy.
>
> i[/color]
If you write correct PHP there is nothing to worry about IMO. Most
errors occur from buffer overruns caused by entry fields not correctly
escaping/detecting php code which is then "redisplayed" as a user name
or some such but obviously then execed by the php server instead.
Having a no php rule is over kill, especially if its a non submission
site.
--
I thought you had a CS degree? And you never did a compiler course? I am
amazed! - Hadron Quark, COLA
Really? Why are you amazed? Do you think computer science courses include courses on writing
compilers too? REALLY? - Andrew "Spike1" Halliwell BSc CS, COLA
-- COLA where they put the lunacy in Advocacy.
NoStop wrote:[color=blue]
> Ignoramus17842 wrote:
>
>[color=green]
>>I am sorry to burst anyone's bubble, but there are linux viruses. A
>>lot of them spread via bad PHP software. I have seen some in
>>action. That's the reason why I avoid PHP where possible.
>>[/color]
>
> You're not bursting my bubble. Prove it. Show us a linux virus that spreads
> via bad PHP software.
>
> Thanks
>
> Cheers.
>[/color]
Live with it old man. You proly have an infected computer and are not
even aware of it.
Ignorance is bliss...LOL!
Frank
Ignoramus17842 wrote:[color=blue]
> On 2008-03-27, NoStop <nospam@nospam.com> wrote:[color=green]
>> Ignoramus17842 wrote:
>>[color=darkred]
>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>> lot of them spread via bad PHP software. I have seen some in
>>> action. That's the reason why I avoid PHP where possible.
>>>[/color]
>> You're not bursting my bubble. Prove it. Show us a linux virus that spreads
>> via bad PHP software.[/color]
>
> [url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
> [url]http://vil.nai.com/vil/content/v_136821.htm[/url]
> [url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url]
>
> I run a webserver and frequently see those worms probing my
> webserver. I do not get infected since I have a anti-PHP policy.
>
> i[/color]
Just taking your word for it isn't enough, especially since you are the
only detector of such worms on record. For the benefit of the community,
please take the time and trouble to give us a full report the next time
you encounter a linux worm in the wild. I suspect that with the help of
the members of this message group you will find it to be something else.
--
++====+=====+=====+=====+=====+====+====+=====+=====+=====+=====+====++
||Arnold VICTOR, New York City, i. e., <arvimideQ@Wearthlink.net> ||
||Arnoldo VIKTORO, Nov-jorkurbo, t. e., <arvimideQ@Wearthlink.net> ||
||Remove capital letters from e-mail address for correct address/ ||
|| Forigu majusklajn literojn el e-poŝta adreso por ĝusta adreso ||
++====+=====+=====+=====+=====+====+====+=====+=====+=====+=====+====++
NOTICE: Due to Presidential Executive Orders, the National Security
Agency may have read this email without warning, warrant, or notice.
They may do this without any judicial or legislative oversight. You
have no recourse or protection.
On Thu, 27 Mar 2008 03:20:24 -0400, Anonymous wrote:
[color=blue]
> William Poaster wrote:
>[color=green]
>> ray wrote:
>>[color=darkred]
>> > On Wed, 26 Mar 2008 22:04:32 +0000, 80 H wrote:
>> >
>> >> I'm about to load and run Ubuntu (Indeed, Linux...) for the first
>> >> time...
>> >>
>> >> I'm using Ubuntu 7.10 on an IBM T40 and plan to use it with a WEP
>> >> wireless PCMCIA link to my current wireless hub. Do I need to use
>> >> an antivirus, or does the security permissions in Linux really
>> >> prevent third parties accessing data on my machne?
>> >>
>> >> Many thanks
>> >>
>> >> A
>> >
>> > I've never run antivirus on Linux. I've been using various
>> > distributions for over five years - currently have five home systems
>> > on the net 14/7/365 via broadband - I've never had an infestation.[/color]
>>
>> I've run Linux distributions of one sort or another for 10/11 years &
>> never used an AV. AV applications are only any use if you have windoze
>> machines in your network, to stop them getting infected.[/color]
>
> My av software sorts out all manner of "cross platform" nasties like
> html tricks and phishing scams.
>
> Are you saying that's of no use to anyone?[/color]
I would not say "of no use to anyone" - but certainly not necessary to
keep the machine safe and secure.
On Thu, 27 Mar 2008 07:16:25 +0100, Non scrivetemi wrote:
[color=blue]
> ray wrote:
>[color=green]
>> I've never run antivirus on Linux. I've been using various
>> distributions for over five years - currently have five home systems on
>> the net 14/7/365 via broadband - I've never had an infestation.[/color]
>
> How do you know?
>
> Your statement distills down to "can't have happened because I never
> bothered to look".[/color]
I have indeed "bothered to look" from time to time. Perhaps it would be
more accurate to say I've never seen any indication of an infestation -
happy now?
ray <ray@zianet.com> writes:
[color=blue]
> On Thu, 27 Mar 2008 03:20:24 -0400, Anonymous wrote:
>[color=green]
>> William Poaster wrote:
>>[color=darkred]
>>> ray wrote:
>>>
>>> > On Wed, 26 Mar 2008 22:04:32 +0000, 80 H wrote:
>>> >
>>> >> I'm about to load and run Ubuntu (Indeed, Linux...) for the first
>>> >> time...
>>> >>
>>> >> I'm using Ubuntu 7.10 on an IBM T40 and plan to use it with a WEP
>>> >> wireless PCMCIA link to my current wireless hub. Do I need to use
>>> >> an antivirus, or does the security permissions in Linux really
>>> >> prevent third parties accessing data on my machne?
>>> >>
>>> >> Many thanks
>>> >>
>>> >> A
>>> >
>>> > I've never run antivirus on Linux. I've been using various
>>> > distributions for over five years - currently have five home systems
>>> > on the net 14/7/365 via broadband - I've never had an infestation.
>>>
>>> I've run Linux distributions of one sort or another for 10/11 years &
>>> never used an AV. AV applications are only any use if you have windoze
>>> machines in your network, to stop them getting infected.[/color]
>>
>> My av software sorts out all manner of "cross platform" nasties like
>> html tricks and phishing scams.
>>
>> Are you saying that's of no use to anyone?[/color]
>
> I would not say "of no use to anyone" - but certainly not necessary to
> keep the machine safe and secure.[/color]
A sensible answer.
Unfortunately though the usual blowhards have totally missed the point
here : its a point about security as much as about one form of
compromising security .
Here the more important issue was the WEP. It makes hardly any
difference, only good, if he does install an AV for Linux.
But using WEP is tantamount to idiocy if his data must remain secure.
--
- "Just think, consumers are not sold on XP, and Microsoft shelled out
some major $$$ to develop this thing. This is a great opportunity for
alternative operating systems to intercept the ball, and run it back for a
touchdown."
comp.os.linux.advocacy - where they put the lunacy in advocacy
On 2008-03-27, NoStop <nospam@nospam.com> wrote:[color=blue]
> Ignoramus17842 wrote:
>[color=green]
>> On 2008-03-27, NoStop <nospam@nospam.com> wrote:[color=darkred]
>>> Ignoramus17842 wrote:
>>>
>>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>>> lot of them spread via bad PHP software. I have seen some in
>>>> action. That's the reason why I avoid PHP where possible.
>>>>
>>> You're not bursting my bubble. Prove it. Show us a linux virus that
>>> spreads via bad PHP software.[/color]
>>
>> [url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
>> [url]http://vil.nai.com/vil/content/v_136821.htm[/url]
>>[/color]
> [url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url][color=green]
>>
>> I run a webserver and frequently see those worms probing my
>> webserver. I do not get infected since I have a anti-PHP policy.
>>
>> i[/color]
>
> All references are 3 years old. Tell us whether PHP has been patched since
> then.[/color]
It was patched a lot of times. I do not believe that it fully stopped
PHP viruses. I am not going to do your research for you. Just last
year I saw viruses probing for functions.php files on my server.
See this:
[url]http://developers.slashdot.org/article.pl?sid=06/12/14/0410240[/url]
[url]http://www.php-security.org/[/url]
i
On 2008-03-27, Hadron <hadronquark@googlemail.com> wrote:[color=blue]
> Ignoramus17842 <ignoramus17842@NOSPAM.17842.invalid> writes:
>[color=green]
>> On 2008-03-27, NoStop <nospam@nospam.com> wrote:[color=darkred]
>>> Ignoramus17842 wrote:
>>>
>>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>>> lot of them spread via bad PHP software. I have seen some in
>>>> action. That's the reason why I avoid PHP where possible.
>>>>
>>> You're not bursting my bubble. Prove it. Show us a linux virus that spreads
>>> via bad PHP software.[/color]
>>
>> [url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
>> [url]http://vil.nai.com/vil/content/v_136821.htm[/url]
>> [url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url]
>>
>> I run a webserver and frequently see those worms probing my
>> webserver. I do not get infected since I have a anti-PHP policy.
>>
>> i[/color]
>
> If you write correct PHP there is nothing to worry about IMO.[/color]
It is very easy to write i ncorrect PHP code without realizing.
[color=blue]
> Most errors occur from buffer overruns caused by entry fields not
> correctly escaping/detecting php code which is then "redisplayed" as
> a user name or some such but obviously then execed by the php server
> instead.[/color]
No. That's not the case.
[color=blue]
> Having a no php rule is over kill, especially if its a non submission
> site.[/color]
The only PHP software that I run, is mediawiki.
i
On 2008-03-27, AV3 <arvimide@earthlink.net> wrote:[color=blue]
> Ignoramus17842 wrote:[color=green]
>> On 2008-03-27, NoStop <nospam@nospam.com> wrote:[color=darkred]
>>> Ignoramus17842 wrote:
>>>
>>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>>> lot of them spread via bad PHP software. I have seen some in
>>>> action. That's the reason why I avoid PHP where possible.
>>>>
>>> You're not bursting my bubble. Prove it. Show us a linux virus that spreads
>>> via bad PHP software.[/color]
>>
>> [url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
>> [url]http://vil.nai.com/vil/content/v_136821.htm[/url]
>> [url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url]
>>
>> I run a webserver and frequently see those worms probing my
>> webserver. I do not get infected since I have a anti-PHP policy.
>>
>> i[/color]
>
>
> Just taking your word for it isn't enough, especially since you are the
> only detector of such worms on record. For the benefit of the community,
> please take the time and trouble to give us a full report the next time
> you encounter a linux worm in the wild. I suspect that with the help of
> the members of this message group you will find it to be something else.
>
>[/color]
How about these entries from my yesterday log file:
/var/log/httpd==>grep 'php ' access_log.1 |grep -v majestic
62.93.234.61 - - [21/Mar/2008:19:11:30 -0500] "GET /thisdoesnotexistahaha.php HTTP/1.0" 404 301 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows 98)" hahaha.com
62.93.234.61 - - [21/Mar/2008:19:11:30 -0500] "GET /vhcs2/tools/filemanager/login.php HTTP/1.0" 404 309 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows 98)" hahaha.com
62.93.234.61 - - [21/Mar/2008:19:11:30 -0500] "GET /vhcs2/lostpw.php HTTP/1.0" 404 292 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows 98)" hahaha.com
Ignoramus17842 wrote:
[color=blue]
> NoStop <nospam@nospam.com> wrote:[color=green]
>> Ignoramus17842 wrote:[color=darkred]
>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>> lot of them spread via bad PHP software. I have seen some in
>>> action. That's the reason why I avoid PHP where possible.
>>>[/color]
>> You're not bursting my bubble. Prove it. Show us a linux virus that
>> spreads via bad PHP software.[/color]
>
> [url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
> [url]http://vil.nai.com/vil/content/v_136821.htm[/url]
> [url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url][/color]
Those old references do not actually prove these are Linux viruses or
worms. It would seem that if a Windows web server was running three-year
old unpatched PHP or CGI script, the result would be the same.
Notice too, from your third link, that nearly all of the vulns are cgi
scripts. Still nothing to do with Linux.
[color=blue]
> I run a webserver and frequently see those worms probing my
> webserver. I do not get infected since I have a anti-PHP policy.[/color]
Does that mean you don't use PHP in the sites you write? Or don't visit
sites made with PHP?
I use hand-coded PHP for all my sites, and with no third-party scripts
or "cgi", and have yet to discover a vulnerability. Yes, they are all
hosted on Linux servers running cPanel.
Your references would be valid (except for the Linux part) for web
authors still using Matt Wright's ten year old insecure formmail script,
for example.
--
-bts
-Friends don't let friends drive Vista
Ignoramus17842 <ignoramus17842@NOSPAM.17842.invalid> writes:
[color=blue]
> On 2008-03-27, Hadron <hadronquark@googlemail.com> wrote:[color=green]
>> Ignoramus17842 <ignoramus17842@NOSPAM.17842.invalid> writes:
>>[color=darkred]
>>> On 2008-03-27, NoStop <nospam@nospam.com> wrote:
>>>> Ignoramus17842 wrote:
>>>>
>>>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>>>> lot of them spread via bad PHP software. I have seen some in
>>>>> action. That's the reason why I avoid PHP where possible.
>>>>>
>>>> You're not bursting my bubble. Prove it. Show us a linux virus that spreads
>>>> via bad PHP software.
>>>
>>> [url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
>>> [url]http://vil.nai.com/vil/content/v_136821.htm[/url]
>>> [url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url]
>>>
>>> I run a webserver and frequently see those worms probing my
>>> webserver. I do not get infected since I have a anti-PHP policy.
>>>
>>> i[/color]
>>
>> If you write correct PHP there is nothing to worry about IMO.[/color]
>
> It is very easy to write i ncorrect PHP code without realizing.
>[color=green]
>> Most errors occur from buffer overruns caused by entry fields not
>> correctly escaping/detecting php code which is then "redisplayed" as
>> a user name or some such but obviously then execed by the php server
>> instead.[/color]
>
> No. That's not the case.[/color]
Explain. That is indeed the case for most PHP based exploits.
[color=blue]
>[color=green]
>> Having a no php rule is over kill, especially if its a non submission
>> site.[/color]
>
> The only PHP software that I run, is mediawiki.
>
> i[/color]
So you dont have a no PHP rule?
--
revision 1.17.2.7
date: 2001/05/31 21:32:44; author: branden; state: Exp; lines: +1 -1
ARRRRGH!! GOT THE G** D*** SENSE OF A F******* TEST BACKWARDS!
On 2008-03-27, Beauregard T. Shagnasty <a.nony.mous@example.invalid> wrote:[color=blue]
> Ignoramus17842 wrote:
>[color=green]
>> NoStop <nospam@nospam.com> wrote:[color=darkred]
>>> Ignoramus17842 wrote:
>>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>>> lot of them spread via bad PHP software. I have seen some in
>>>> action. That's the reason why I avoid PHP where possible.
>>>>
>>> You're not bursting my bubble. Prove it. Show us a linux virus that
>>> spreads via bad PHP software.[/color]
>>
>> [url]http://www.theregister.co.uk/2006/02/20/linux_worm/[/url]
>> [url]http://vil.nai.com/vil/content/v_136821.htm[/url]
>> [url]http://www.pandasecurity.com/enterprise/media/press-releases/viewnews?noticia=5766&ver=2004,all&pagina=&numprod=&entorno=[/url][/color]
>
> Those old references do not actually prove these are Linux viruses or
> worms. It would seem that if a Windows web server was running three-year
> old unpatched PHP or CGI script, the result would be the same.[/color]
Sure. If a windows server was running that crap, it would be infected
too. Which is the whole point.
[color=blue]
> Notice too, from your third link, that nearly all of the vulns are cgi
> scripts. Still nothing to do with Linux.[/color]
It has everything to do with linux if they run on Linux.
[color=blue][color=green]
>> I run a webserver and frequently see those worms probing my
>> webserver. I do not get infected since I have a anti-PHP policy.[/color]
>
> Does that mean you don't use PHP in the sites you write? Or don't visit
> sites made with PHP?[/color]
That means that I do not use PHP on any server that I host, with the
exception of mediawiki.
[color=blue]
> I use hand-coded PHP for all my sites, and with no third-party scripts
> or "cgi", and have yet to discover a vulnerability. Yes, they are all
> hosted on Linux servers running cPanel.[/color]
If no one knows what code you are writing, you most likely will be
safe from automated attacks. But if your hand written code has
vulnerabilities, and someone wants to hack you specifically, chances
are good that you will be hacked.
Also if you are on shared hosting, most likely other users of that
hosting would be able to see the source code of your script.
I hacked a user of panix.com 12 years ago because they set up wrong
permissions on telnet binary that they uploaded to their account
~/bin/telnet (telnetting to outside was against panix policy and
/usr/bin/telnet was mode 710). I then changed it to a altered version
that was to run a script that I wrote to set other permissions to read
his email. I am not a pro hacker either, it was just a USENET asshole
on whom I needed some intel.
If you are on shared hosting, source code of your scripts is almost
publicly available (to anyone with $12 to sign up for a month), as,
most likely, are your database credentials.
[color=blue]
> Your references would be valid (except for the Linux part) for web
> authors still using Matt Wright's ten year old insecure formmail
> script, for example.[/color]
And a lot of other things.
Security is not simple and PHP is making it very difficult to be
secure.
Linux systems are not impervious to viruses. To think otherwise is to
delude oneself and to invite trouble.
i
Frank wrote:[color=blue]
> NoStop wrote:[color=green]
>> Ignoramus17842 wrote:
>>
>>[color=darkred]
>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>> lot of them spread via bad PHP software. I have seen some in
>>> action. That's the reason why I avoid PHP where possible.
>>>[/color]
>>
>> You're not bursting my bubble. Prove it. Show us a linux virus that
>> spreads
>> via bad PHP software.
>> Thanks
>>
>> Cheers.
>>[/color]
> Live with it old man. You proly have an infected computer and are not
> even aware of it.
> Ignorance is bliss...LOL!
> Frank[/color]
So haw does it feel. tee hee hee
On Thu, 27 Mar 2008 16:30:00 +0100, Hadron wrote:
[color=blue]
> ray <ray@zianet.com> writes:
>[color=green]
>> On Thu, 27 Mar 2008 03:20:24 -0400, Anonymous wrote:
>>[color=darkred]
>>> William Poaster wrote:
>>>
>>>> ray wrote:
>>>>
>>>> > On Wed, 26 Mar 2008 22:04:32 +0000, 80 H wrote:
>>>> >
>>>> >> I'm about to load and run Ubuntu (Indeed, Linux...) for the first
>>>> >> time...
>>>> >>
>>>> >> I'm using Ubuntu 7.10 on an IBM T40 and plan to use it with a WEP
>>>> >> wireless PCMCIA link to my current wireless hub. Do I need to use
>>>> >> an antivirus, or does the security permissions in Linux really
>>>> >> prevent third parties accessing data on my machne?
>>>> >>
>>>> >> Many thanks
>>>> >>
>>>> >> A
>>>> >
>>>> > I've never run antivirus on Linux. I've been using various
>>>> > distributions for over five years - currently have five home
>>>> > systems on the net 14/7/365 via broadband - I've never had an
>>>> > infestation.
>>>>
>>>> I've run Linux distributions of one sort or another for 10/11 years &
>>>> never used an AV. AV applications are only any use if you have
>>>> windoze machines in your network, to stop them getting infected.
>>>
>>> My av software sorts out all manner of "cross platform" nasties like
>>> html tricks and phishing scams.
>>>
>>> Are you saying that's of no use to anyone?[/color]
>>
>> I would not say "of no use to anyone" - but certainly not necessary to
>> keep the machine safe and secure.[/color]
>
> A sensible answer.
>
> Unfortunately though the usual blowhards have totally missed the point
> here : its a point about security as much as about one form of
> compromising security .
>
> Here the more important issue was the WEP. It makes hardly any
> difference, only good, if he does install an AV for Linux.
>
> But using WEP is tantamount to idiocy if his data must remain secure.[/color]
I'm certainly not a security expert, but it would seem to me that steps
like: not broadcasting essid and having a list of approved MAC addresses
for connection would go a long way.
measekite wrote:
[color=blue]
>
>
> Frank wrote:
>[color=green]
>> NoStop wrote:
>>[color=darkred]
>>> Ignoramus17842 wrote:
>>>
>>>
>>>> I am sorry to burst anyone's bubble, but there are linux viruses. A
>>>> lot of them spread via bad PHP software. I have seen some in
>>>> action. That's the reason why I avoid PHP where possible.
>>>>
>>>
>>> You're not bursting my bubble. Prove it. Show us a linux virus that
>>> spreads
>>> via bad PHP software.
>>> Thanks
>>>
>>> Cheers.
>>>[/color]
>> Live with it old man. You proly have an infected computer and are not
>> even aware of it.
>> Ignorance is bliss...LOL!
>> Frank[/color]
>
> So haw does it feel. tee hee hee[/color]
Why not tell all of us measher****head. Infected computers is something
you're an expert on...hehehehe...LOL!
Frank