Re: [vcf-midatlantic] OT Linux Malware
My signature is "approximately" true. I got tired of seeing "this email free of malware because I run such-and-so anti-virus program". Bill Dudley This email is free of malware because I run Linux. On Thu, May 11, 2017 at 9:04 AM, Systems Glitch via vcf-midatlantic < vcf-midatlantic@lists.vintagecomputerfederation.org> wrote:
I wouldn't bet on that. I've intercepted five or six Windows botnet viruses that implement just enough of SSH to get the job done and masquerade as Linux machines.
Telnets back to ports 22, 25 and 80 all report Linux.
Both immitators and actual Linux malware is out there. It's not hard to lie about a service when you contol the service, though.
Assuming malware-freeness due to running Linux is probably not correct nowadays, in the same way that "Macs don't get viruses" is incorrect -- yeah, way less of a target than Windows, but it's out there.
Thanks, Jonathan (also a Linux user)
My signature is "approximately" true. I got tired of seeing "this email free of malware because I run such-and-so anti-virus program". Bill Dudley
Brute force attempts to log into Linux hosts by SSH isn't exactly malware though? It's not like a graphical or script ad delivered via a commercial ad network on a web page that exploits vulnerabilities in a browser. You can easily free yourself from the SSH attempts by moving sshd to a different port if you must leave it open to the entire internet. Also turning off interactive (password) based logins can help. - Ethan
participants (2)
-
Ethan -
William Dudley