Ubuntu

tech republic news/ malware found in linux

Asked by GREG T.

Linux infection proves Windows malware monopoly is over
http://www.zdnet.com/blog/bott/linux-infection-proves-windows-malware-monopoly-is-over/2206?tag=nl.e539
 question is what is the best protection ?

Question information

Language:
English Edit question
Status:
Solved
For:
Ubuntu Edit question
Assignee:
No assignee Edit question
Solved by:
actionparsnip
Solved:
Last query:
Last reply:
Revision history for this message
actionparsnip (andrew-woodhead666) said : 		#1

Stay off root, the access of your user is VERY limited so will keep you very safe.

It also relates to an IRC server which many users will not run so unless you run the IRC server you are pretty safe. You should also not run web facing services (like ircd) as root due to it being massively stupid and also unnecessary.

The affected file also got replaced in November 2009 so updated will have replaced the file.

Revision history for this message
GREG T. (ubuntuer) said : 		#2

who is the root user ? i am the only person on this pc , does this mean that when i log in after startup that i am at root .
 i do not trust face book ,twetter , or irc `s , so i don`t use them , and very select what places get my email address . just a little more info i try not to use any software that is not in the software center .

Revision history for this message
Best actionparsnip (andrew-woodhead666) said : 		#3

root is disabled by default, apps ran by you are ran as user and not root, this makes the OS more secure. Morons logging on as root thinking they "are ok and are careful" are even stupider due to ignorance.

You are a member of the admin group who are allowed to use sudo and gksudo to get admin rights for one shot only.This also makes the user able to do less damage without typing in their password to essentially OK the activity.

The default settings are pretty secure so don't sweat it, just dont have the ircd running as root :)

Revision history for this message
GREG T. (ubuntuer) said : 		#4

Thanks actionparsnip, that solved my question.

Revision history for this message
GREG T. (ubuntuer) said : 		#5

thought it would good to add this http://www.zdnet.com/blog/hardware/how-much-more-malware-is-lurking-in-linux-official-repositories/8615?alertspromo=&tag=nl.rSINGLE