Re: [SLE] Error on virusscanning

On Thu, 2005-12-22 at 11:03 -0500, David A. Parker wrote:

> The risk isn't huge (unless you do everything as root all the
> time), but you never know.
> ...
> - Dave
>

That is what I enjoy with Linux. I never have to work as root (can,
however, simultaneously log in to a completely isolated and safe root
session and do the work there), but in M$ some applications just don't
work properly as a normal user; it requires Administrator rights, like
some CD-DVD toaster software (nero now has a patch which may provide a
security risk when it increases the rights to burn with it's
NeroBurnRightsInstaller.exe. There was time when K3b also needed root
rights).
99% of all M$ Win users I encounter are either logged in as
Administrators or have its rights. In any event, the question is if the
risks like e-mail attachments, worms, trojans etc can become a threat as
they are in windows, or is the virus scanner production industry just
using Linux newbies' fear (because we are still ignorant of the OS's
abilities and philosophy, but learning every day on lists like this
one), to sell their software to a growing market?

Here is an interesting article (I think of year 2000):
http://librenix.com/?inode=21
Why aren't the existing Linux viruses anything more than a topic for
conversation? Why don't they affect you in your daily computing in the
way that MS viruses affect Windows users?

The main arguments are that viri have a minuscule chance to get in and
be undetected even without virus scanners because of:
1. Executable's ownership
2. User account privilege restrictions
3. Network programme's conservative construction
4. "Many eyes" in open source community that will find hiding viri
5. Production rate limitations impeding propagation

Are these reasons also obsolete? WHY?

Some thoughts also from year 2000 here:
http://freshmeat.net/articles/view/165/

What is the current situation?

:-)
Al


--
Check the headers for your unsubscription address
For additional commands send e-mail to suse-linux-e-help@xxxxxxxx
Also check the archives at http://lists.suse.com
Please read the FAQs: suse-linux-e-faq@xxxxxxxx

Relevant Pages

  • Re: user with root rights
    ... I would like to create a new linux user with all the root rigths. ... but I do not know how to use it to give temproot rights to ...
    (comp.os.linux.misc)
  • Re: Password
    ... I ran a quick search on Ask with the phrase "linux lost ... Have you ever forgotten your root password? ... Fortunately, it wasn't a boot password, so I did have ... (although "mount" may say it is). ...
    (alt.os.linux)
  • RE: Linux hacked
    ... Subject: Linux hacked ... After you boot up into the OS running from CD, ... >> First let me say I'm a security novice. ... >> been unsuccessful in getting root back. ...
    (Security-Basics)
  • Re: Greetings / Newbie questions
    ... Please, don't jump on the "Linux is the be-all, end-all OS and is ... I am having a bit of trouble deciding which to use: Gnome or KDE. ... >I have found that alot of things need to be done as root. ...
    (alt.os.linux.redhat)
  • Linux boot hint needed
    ... We're gettting further in getting linux to run on our board. ... Looking up port of RPC 100003/2 on 172.22.33.87 ... RPC: sendmsg returned error 101 ... Unable to mount root fs via NFS, ...
    (comp.os.linux.embedded)