[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] virus and firewall

To: list@xxxxxxxxxxxxx
Subject: Re: [LUG] virus and firewall
From: Henry Bremridge <henry.bremridge@xxxxxxxxx>
Date: Sat, 3 Feb 2007 11:50:12 +0000

On Thu, Feb 01, 2007 at 11:13:14PM +0000, james kilty wrote:
> My friend says:
> 
> "I note also that the virus/firewall issue is under
> discussion.  AVG certainly offer protection against viruses, but I'm
> uncertain about the firewall situation.  Apparently the sociopaths who
> write viruses have recently taken an interest in Linux and there's some
> malware around"
> 
> How should I reply? I told him I thought a router should be good as a
> firewall and Linux distros including Ubuntu had their own for each
> desktop. He will be communicating with Windows computers on his LAN so
> the AVG for Linux might be useful.
> 
>
I could not see a response so I will take stab at replying. No doubt any
errors will be corrected

There are two seperate issues here

-   Ensuring that the security of a linux box

    In short users have to take responsibility for ensuring that their
    administration of their linux box is sensible. Linux on its own can
    be broken into, most of the major distros take steps to ensure that
    the common weaknesses are closed.

    If a user wants to remove the protections, that is possible.

    Suggested solutions 
    -   Use a NAT / router
    -   Use a computer firewall
    -   Ensure the computer is patched with all appropriate releases
    -   Have reasonable passwords
    -   Do not operate as root

-   Virus and Malware

    Two issues here

    -   Windows is a common operating system with a system of defaults
        eg all documents are stored in the "My Documents" folder. All
        retail boxes operate the same way. Therefore if a virus writer
        spots a flaw in one computer then the probability is that all
        systems will have the same flaw.

        Linux is not common. Each distro (and each computer) works
        differently: files will be stored in different areas and there
        is no "My Documents" Folder

        Therefore it is easier for a virus writer to target windows.

    -   Running a program on Windows is easy. Double click the wrong
        pif, scr or exe file and your computer is toast. (Use the wrong
        email program and evening opening the email will infect your
        computer). Under Linux to really harm your computer, you have to
        execute the file while running as "root".

        But once your machine is set up you do not need to run as root.
        
Taken together, Linux virus's do not exist. 

I attach some quotes

http://www.vnunet.com/vnunet/news/2153723/virus-sees-across-platforms

    While the virus is capable of infecting files on both platforms, it
    infects files only in the current directory. Most importantly, it
    does not cause any actual harm to infected systems and does not
    self-propagate.

    The ability to infect Linux systems limits the virus in its attempt
    to cause harm, according to David Perry, global education director
    with antivirus vendor Trend Micro. 

http://librenix.com/?inode=21

    A more literate and knowledgable version of what I have written
    above

http://www.desktoplinux.com/articles/AT3307459975.html


--
Henry
Sat Feb  3 11:49:19 GMT 2007

Attachment: signature.asc
Description: Digital signature

-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html

References:
- Re: [LUG] OT: Mac verses PC
  - From: Robin Menneer
- Re: [LUG] OT: Mac verses PC
  - From: Rob Beard
- Re: [LUG] OT: Mac verses PC
  - From: Robin Menneer
- [LUG] virus and firewall
  - From: james kilty

Prev by Date: Re: [LUG] PDA M$
Next by Date: Re: [LUG] Vista/Nvidia Snigger Snigger Snigger
Previous by thread: [LUG] virus and firewall
Next by thread: Re: [LUG] OT: Mac verses PC
Index(es):
- Date
- Thread