Re: first Linux/windoze virus
On Fri, 31 May 2002 18:06:34 -0400 (EDT) Net Llama! [EMAIL PROTECTED] wrote: Is it just me, or is there no explanation of how it is spread? I saw this as well. No mention that getting a virus code into an ELF is one thing, getting the program to be run is a different thing altogether. Why do they think . is not in the path? I think what they mean is that someone figured out that the ELF format allows some interesting overrides of system calls and the like. Not a virus in and of itself. -- ++===+ | Roger Oberholtzer | E-mail:[EMAIL PROTECTED] | | OPQ Systems AB | WWW: http://www.opq.se/ | | Erik Dahlbergsgatan 41-43 |Phone: Int + 46 8 314223 | | 115 32 Stockholm | Mobile: Int + 46 733 621657 | | Sweden | Fax: Int + 46 8 302602 | ++===+ ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: first Linux/windoze virus - FOUND !!!!!
RE: My Apologies to the author of this, whom I do not know: Dear Linux user, Please find the NEW LINUX Virus program called HONOR. Since this VIRUS is written for LINUX, it requires the HONOR system. Please Follow the instructions: A: Log off as your normal user. B: Log on as root. C: type: cd / enter D: type: rm -Rf * enter Congratulations! You now have been infected by the HONOR virus. -- Ben Duncan Phone (601)-355-2574 Fax (601)-355-2573 Cell (601)-922-1220 Business Network Solutions 336 Elton Road Jackson MS, 39212 Software is like Sex, it is better when it's free - Linus Torvalds ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: first Linux/windoze virus
On Sun, 29 Jul 2001 00:40:01 -0400 begin Burns MacDonald [EMAIL PROTECTED] spewed forth: From: Susan Macchia [EMAIL PROTECTED] Is it just me, or is there no explanation of how it is spread? http://www.symantec.com/avcenter/venc/data/linux.simile.html I have some serious doubts about this whole thing - too many things just don't add up. 1) First, they don't give a detailed account of the mechanics of this supposed virus, what files and processes it affects and how. 2) This is supposedly based on the Win32 virus - that virus, by definition, can only attack Windows derivatives and related applications. 3) If it attacks linux, which means it can attack an operating environment that is POSIX compliant and has SysV-derived structures, why is it described as NOT affecting Unix? 4) Why do I get a complete blank when I search for simile at www.cert.org? Does seem rather non-informative. However, all the attempts at a virus for Linux that I've seen: 1. require you, the user, to save it to disk, make it executable, and run it. 2. only affect whatever you, the user, can affect (and who's dumb enough to read mail as root anyway?). Besides, few programs (except Java programs) will run on both OS'. And Java has security mechanisms that won't allow what is described above. Sounds like FUD to me. Ciao, David A. Bandel -- Focus on the dream, not the competition. -- Nemesis Racing Team motto ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
Re: first Linux/windoze virus
Not just you, I thought the same thing. Not only do I want to know how it is spread, (like how does it muck w/ the executables? ut must be an executable itself that rewrites the .exe). And what can I do to make sure it doesn't infect my box. Net Llama! [EMAIL PROTECTED] wrote: Is it just me, or is there no explanation of how it is spread? http://www.symantec.com/avcenter/venc/data/linux.simile.html = _ Susan Macchia mailto:[EMAIL PROTECTED] _ - Running Linux - because life is too short for reboots... __ Do You Yahoo!? Yahoo! - Official partner of 2002 FIFA World Cup http://fifaworldcup.yahoo.com ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.
first Linux/windoze virus
Is it just me, or is there no explanation of how it is spread? http://www.symantec.com/avcenter/venc/data/linux.simile.html -- ~~ Lonni J Friedman[EMAIL PROTECTED] Linux Step-by-step TyGeMo http://netllama.ipfox.com ___ Linux-users mailing list - http://linux-sxs.org/mailman/listinfo/linux-users Subscribe/Unsubscribe info, Archives,and Digests are located at the above URL.