Category: Linux

Linux will never have a Virus, Some say!

Paul2 Replies

I got an Interesting Comment yesterday:

Wouldn’t you bet that this topic is very popular with the linux community at a whole but that isn’t what makes it interesting.   I got a comment that I must talk about in parts.

It’s not a question of whether Linux will get viruses. There are already a number of worms and other malware that have struck Linux services. As for a virus or other malware attacks against Linux as a whole, it can’t happen the way it can for Windows and Mac OS X. It’s a question of homogeneity vs. heterogeneity. Windows and Mac OS X have two flavors, 32bit and 64bit essentially [this is an over-generalization, but it’s generally true]. Linux is so balkanized, that it’s difficult to think a virus could be written that could affect every distro out there, since none of them run the same versions of various system software [like services, filesystems, etc.], so it’s not likely that the same type of flaw will exist everywhere. Also, with distributions like Debian so many architectures are supported, and it’s difficult to imagine some virus author to put in the effort to make the virus able to infect so many disparate systems. The law of diminishing returns applies here.

This argument is something that is near and dear to my heart for several reasons.    Having seen Apple getting hit by a virus and malware, who thought they were educated also never once thought about getting a virus.   Now lets face it this isn’t like a major system to some but there are more and more of linux users out there because of the fact this is a free system and many people would argue that they can’t afford to buy a new version of Windows every 2 or 4 years and some of us will not buy Apple due the Apple tax.   So there we have it, more and more people are turning to Linux because of this worldly recession and that means more and more people are using Linux and the eyes of the malware writers will start to find holes and other ways to infect users.

Just because it is unlikely doesn’t mean it won’t happen!

We have seen in the past that there are Unix viruses and that was never really popularized as Apple having a Virus.   Now just because the Linux community is fragmented into many different flavors doesn’t mean they don’t have something in common to all of them.   The Kernel alone has to have something in common with all flavors to be considered viable.  That in such means that the flaw that you suggest could and probably does exist everywhere.    When someone says law of diminishing returns applies here, I have to imagine that you do not know that with any web surfing instance, I can easily find out which Linux you might be using and thus create a script for it.     Which in my Mind that sounds oddly like your using the old argument of Security through obscurity and we already saw how Apple got hit by a virus because they thought this same thought for several years.

Segmentation is everything to Malware:

So I agree, it’s possible that viruses for Linux will be in the wild sooner than later, but they will target specific distros/architectures [like Debian, Red Hat, SuSE, and derivatives, or even Android, and all the architectures supported by them]. Also, this means that the target markets for Linux viruses will be segmented and segregated, and thus much less profitable than markets as huge and contiguous as Windows or even Mac OS X. Until there’s no more low hanging fruit like this, virus writers won’t have the economic incentive to target Linux in general, except maybe to prove it can be done. But then again, the returns won’t ever be as spectacular as they can be on relatively homogeneous systems like Windows and Mac OS X. Thus it will always be possible to write Linux viruses, but not nearly as probable as with other commercial operating systems.

Segmented Linux distributions makes it just that more probable of getting a virus.   Most writers will love to have segmentation and they have used it in the past.  The Market segmentation would make it just that much harder for any one Linux Distro to remove the virus.    If you have several different flavors of Linux, you would have to remove the virus or malware a certain way with each and every version of the flavor.    Not everything is about economics, most of the writers have in the past did not want to segment because of the need to infect for ransomware, thus creating a way for income.   With the development of Antivirus Companies for Windows, they have alternatively changed tactics.   One of there new tactics is to spread to as many systems and use those system to send out spam, to redirect, infect other systems, and also pop up advertisements.    This is why they would love Linux because of the fact that there are so many segregated communities that it would be much harder for a system to be cleaned and thus the user would have no other option but to re-install Linux or live with the problem.   I for one have fought off viruses in the past with my clients so I know that some customers do not know anything about virus removal and thus will live with the virus until someone comes to fix the problem.   That is why I believe the Linux community as a whole should start developing a Virus database and work at stopping the problem before it starts.

What do you think?  I’d love to hear your comments?  Feel free to leave your comments at tell me your thoughts!

Only Time Will Tell!

Paul Sylvester

 

Related articles

Does Linux need an Anti-Virus?

Paul6 Replies

Anti-virus Programs and Linus Torvalds

Hey let’s face it with the recent virus problems Machnitoshes has had, we’ve got a bit of problem on our hands.   I’ve come to the realization that there must be a way to protect my Linux operating system much better.   Although there are several different programs out there that can be used with Linux.  I however wanted to talk about the necessity of having a program installed and running to better protect me from doing something bad.   Hey I admit it, I occasionally click on links when I shouldn’t and also occasionally like to see what is in my spam folder just to make sure I am not missing something that I should.

Is Anti-virus Really needed for Linux?

There have been advocates for Anti-virus programs for the Linux community over the past few years.   I have been one of those myself.

 

Any antivirus/spyware needed?

 

I have been an advocate of “Linux” “doing” “enabling” antivirus/spyware for over 6 years now….it WILL hit “us” sooner or later….but given the money involved I think…..MUCH later….so….no, for now, do not worry about it at all.

If you get “something” that says it is “checking your computer” it is because WINE has automatically been enabled and the malware is seeing that and NOT Kubuntu….so….ummmm….close the browser….re-open and get on with your malware free life.

Via Kunbuntuforums.net

Now I tell you,  What is wrong with this picture?   Are the Linux users acting a little like Apple users, and thinking they can’t get a virus.   I won’t say that right now there are any viruses in the wild but I would caution everyone not to consider your system invulnerable even though there aren’t as many reports of virus out in the wild.   It will hit us next if not this year probably in a year or two.

Linux is Next for sure!

I don’t say that lightly, I am sure in the coming years to even months that the malware writers and virus writers will be looking at Linux more and more.   With Apple just being hit and finally admitting that they have been hit with a virus, you can bet that some of the Apple users will convert to Linux just because they were using Apple’s believe that they were immune to viruses and malware.   They will come and when that comes the eyes of the world will be on Linux users.   It will be our job to get ready for these nefarious users and fight them off.   So I call to the community to get ready for this to happen.   I know it is coming almost as much as I know I am going to keep blogging.   Only time will prove me right, but I know it is going to happen and if your not ready then you can only blame yourself.

Stay Safe

Paul Sylvester

Related articles

How to Get a Free VPN for Ubuntu/Kubuntu!

Paul3 Replies

 

Is there a Free VPN for Linux?

Use Coupon Code “savenow15” AND SAVE 15% on the lifetime of your account!I had to search both high and low.   It took me several hours and searching to find a viable option for me.   I wanted to share this so others wouldn’t have to work as hard to surf safer on the web.   If your like me, I like to go to free wifi spots to blog or even just surf the web.   I don’t want anyone getting my personal information so I would always have to use Windows.   I really got fustrated having to always load Windows when It was just easier to load up Kubuntu.   I know in the past this was something that was never really an option because you’d have to be a real geek to do anything like this.   Thanks to the open community of Linux, we have a viable option now for those who aren’t technically geeks but would still like to keep their web surfing secret from prying computers on an open wifi spots.

How to setup your free VPN for Kubuntu!

 

  • If you haven’t updated to Kubuntu 11.04  or later then you will need to make sure you have that version or later for this tutorial to work.  You can also use Ubuntu 11.04 or later but the screenshots will be for Kubuntu, so there may be some difference in looks and names but should be relatively the same.

  • Book Mark the FREE US PPTP VPN site — This is essential because the problem with this free VPN service is that changes every 12 hours.   This however isn’t a big problem because if your using a VPN for Wifi Hotspots.   It just means everytime you go to a wifi spot you will be unsecure until you go to the bookmark and change the password.  To Bookmark the site you can easily just press CLT-D.

If you have done those two steps then you are ready to setup your VPN.

Setting up the VPN

This is going to be relilitivly simple, because if your using the Linux you will know some of this already.

  • Go to your Network Manager —  There are 2 ways to do this.   You can find it on your toolbar either being a Ethernet or Wireless icon, just right click it and choice “Network Manager Settings” or you can click the “Start > Applications > Settings > System Settings > Network Settings”.

  • Once there you will want to click VPN

Click to see larger picture

  • Click the Add Button

  • As you can see if you have booked mark that page I told you earlier to go to.  You will need to add the Gateway, username and password(remember this password is only good for a few hours, so remember this step). Then click “Advanced

 

  • You will only need to do this once.   Uncheck all in the Authentaction area but the MSCHAPv2 and Check “Use MPPE Encryption” but do not check the “Use Stateful Encryption”, if it is checked uncheck it.   Then click OK!

  • Hit Ok or Apply and exit out of the manager.   You may have to reboot to get the new settings to activate.   I had to with my current system but that was only when creating the new VPN, after that it work fine.

 

You will need to edit the password everytime you want to use the VPN but if you have made it this far than you should be all set to use the VPN to safely surf the web.   In order to change the password just remember the first 2 steps and instead of adding a new VPN just edit the one you created and change the password and hit Apply when done.   I hope this has helped other Linux users to surf the web safely on free wifi spots.   Enjoy!

*Update*

There seems to be a kde4d Bug and ntrack bug that causes the menu bar and toolbar to freeze.   Just thought you’d like to know!!

*Update #2*

There are another site that you should also check out for a Free VPN Service:

 

If I find more sites that you can use to get a free VPN with PPTP then I’ll update this as soon as I find them!

 

Paul Sylvester

 

 

 

Related articles

 

Lastpass still the best there is!

Paul2 Replies

Lastpass had been broken!

In a recent blog post by the Lastpass team, they talked about how they saw data being sucked from one of their servers.   They hit the panic and Paranoia button because they know how important it is for our passwords to be safe.   They have inititated a password reset for some accounts.   There openness only shows me they want to be as plain as possible.   That is why I thought I should at least talk about this recent Lastpass Hack as some would say.  I have said it in the past but I will say it again.   Lastpass is the best there is and I support there efforts a 100 percent.

Lastpass has implemented a forced password on some users!

I’m not saying everyone is effected but if your one of the few who they have forced you to change your password, I would certainly do it.    The most part if your unsure, the best possible advice I could give you right now is to just hold tight.   We know that they working hard to resolve the issues and that you will probably be next in line.   Just hold off until we know more.

Are you in offline mode?

This is the other problem right now with Lastpass but don’t worry.   You can download the proper files needed to keep your self busy while they fix the problem.   I am using Linux but if your need to have access to your Lastpass passwords, go download the offline versions of Lastpass and use them until they have fixed the problems associated with the passwords.    I have installed the Pocket Password from Lastpass on my Kubuntu system without a hitch. This will be a valuable edition for when I am not able to get connected online.

Lastpass I am still a USER and I thank you for your hard work!

Paul Sylvester

 

Related articles