Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: Is GNU/Linux Malware a Real Threat?

Posted by timothy on from the send-you-this-file-in-order-to-have-your-advice dept.

New submitter m.alessandrini writes "I've been using Debian for a long time, and I'm not a novice at all; I install system updates almost daily, I avoid risky behaviors on Internet, and like all Linux users I always felt safe. Yesterday my webcam suddenly turned on, and turned off after several minutes. I'm pretty sure it was nothing serious, but I started thinking about malware. At work I use noscript and other tools, but at home I have a more relaxed browser to be used by other family members, too. Here I'm not talking about rootkits or privilege escalation (I trust Debian), I think more of normal user compromise. For example, these days much malware come from malicious scripts in sites, even in advertising banners inside trusted sites, and this is more 'cross-platform' than normal viruses. So, what about non-root user malware? How much could this be real? And how can you diagnose it?"

14 of 252 comments (clear)

  1. Preinfected by Anonymous Coward · · Score: 4, Funny

    It would help if the manufacturers would preinfect their software so we could stop worry about "if" we are infected and move towards just accepting it.
    *Disclaimer: I in no way work for, represent, or contract for Sony. (Sorry Sony lawyers made me add the preceding text.)

  2. Nice deniability by Anonymous Coward · · Score: 0, Funny

    So you get GF / Wife vids of doing who knows what posted to the internet and you can now claim plausible deniability - smart move!

  3. Your webcam by girlintraining · · Score: 5, Funny

    Yesterday my webcam suddenly turned on, and turned off after several minutes.

    Hey, sorry about that. I was trying to get the girl next door that's leeching off your wifi. She's so cute! But when I turned on the webcam, I knew I had the wrong person. Also, dude, put some pants on. Nobody wants to see that.

    Oh, and that stuff about Linux having malware? I'm sure you have nothing to worry about. The Year of the Linux Desktop hasn't come yet (though they say it'll be this summer for sure!), so you're safe. All the malware me and my friends at the Evil League of Evil make for Linux is designed to worm its way into web servers, ftp, etc., to spread malware to Windows boxes. We aren't interested in your personal life. You're a nerd, running Linux. We haven't found a single case of one of you having a life yet. Hell, you don't even have a decent car, man.

    oh oh, gotta go, the webcam is up and... oooooh my....

    --
    #fuckbeta #iamslashdot #dicemustdie
  4. Re:Don't worry by Anonymous Coward · · Score: 5, Funny


    luser$ sudo apt-get install rootkit

  5. I got a virus for Linux once by trime · · Score: 5, Funny

    But I couldn't get the damn thing to compile!

    1. Re:I got a virus for Linux once by maxwell+demon · · Score: 3, Funny

      You probably forgot to install libmalware.

      --
      The Tao of math: The numbers you can count are not the real numbers.
    2. Re:I got a virus for Linux once by H0p313ss · · Score: 3, Funny

      You probably forgot to install libmalware.

      That was deprecated in favor of libopenmalware ages ago, do try to keep up.

      --
      XML is a known as a key material required to create SMD: Software of Mass Destruction
    3. Re:I got a virus for Linux once by Austerity+Empowers · · Score: 4, Funny

      libmalware depended on libkeylogger3.6.1 which depended on libmalware0.9 and fuck...

      I installed windows and it was so much easier to get rootkitted. Damn linux dorks.

    4. Re:I got a virus for Linux once by aklinux · · Score: 5, Funny

      YOU HAVE NOW RECEIVED THE UNIX VIRUS -

      This virus works on the honor system:-

      If you're running VMS or a variant of unix or linux, please forward this message to everyone you know. Afterwards, delete a bunch of your own files at random.

    5. Re:I got a virus for Linux once by elashish14 · · Score: 4, Funny

      Obligatory: http://archive09.linux.com/articles/42031

      Sadly the article is a bit out of date, and Wine has hopefully increased support by now.

      --
      I have left slashdot and am now on Soylent News. FUCK YOU DICE.
  6. Updates, backups, and Flash by raymorris · · Score: 3, Funny

    Assuming you don't do silly things like run completely unknown commands, you're pretty safe. JavaScript and Flash is cross-platform, though. I've seen one Linux system where their Yahoo email account was compromised, probably by malicious JavaScript. It might have been phishing, though, or a combination. The main things I do for security are - run most updates provided by the distro and browser, have backups, don't run services I don't use, and I have a separate browser for Flash and Java. Most Flash is ads or pointless eyecandy so I don't miss not having Flash in my daily browser. Even YouTube doesn't need Flash these days, so I open the Flash browser maybe once per month, if that.

    TEEX.com has some free online cybersecurity courses that may have good reminders for your and your family members regarding safe browsing habits and simple security practices.

  7. Re:someone's spying on you by hobarrera · · Score: 3, Funny

    I avoid risky behaviors on Internet

    I don't think op has flash installed.

    [...]turned on, and turned off after several minutes[...]

    Even so, polling a webcam is a few seconds at most, not minutes.

  8. Re: someone's spying on you by Anonymous Coward · · Score: 3, Funny

    Please, save up your money so you can buy a line feed or a paragraph tag.

  9. Re: It's easier to exploit. by Anonymous Coward · · Score: 3, Funny

    2003 is calling? Don't forget to warn them about Vista and Windows 8!