Date: Thu, 4 May 2000 12:27:20 -0700 From: Alfred Perlstein <bright@wintelcom.net> To: Jeremiah Gowdy <jgowdy@home.com> Cc: Taavi Talvik <taavi@uninet.ee>, Lloyd Rennie <lloyd@vbc.net>, chat@FreeBSD.ORG Subject: Re: ILOVEYOU Message-ID: <20000504122720.U13668@fw.wintelcom.net> In-Reply-To: <002b01bfb5f7$568d17a0$5a5d0418@vista1.sdca.home.com>; from jgowdy@home.com on Thu, May 04, 2000 at 11:34:08AM -0700 References: <Pine.BSF.3.95.1000504191900.21985A-100000@ns.uninet.ee> <002b01bfb5f7$568d17a0$5a5d0418@vista1.sdca.home.com>
next in thread | previous in thread | raw e-mail | index | archive | help
move to -chat because this is _completely off topic_ for -hackers * Jeremiah Gowdy <jgowdy@home.com> [000504 12:06] wrote: > > Yes, it was real virus and quite nasty one. Which remainds us, > > that quite soon we cannot live without freebsd naitive virus > > scanning engine. Such things don't spread so easily, when ISPs > > are able to scan e-mail and other content they serve. > > lol. The only way you could really have a virus in freebsd is if it was > launched or infected as root. Otherwise the virus would be VERY limited. > If you are talking about scanning incoming email for viruses/scripts that > were destined for Windows computers, ok, I'd say that's not a bad idea. That's completely untrue, a well written UNIX virus would trojan as many places as it could to trip up a sysadmin, I'm sure there are still problems along the line of vi sourcing arbitratry .exrc files. It could also apply heuristics at grepping the user's mail and personal files to search out possible passwords transmitted that way. There's also the unfortunate effect of having the thing worm its way into other machines that the user has accounts on, eventually gaining root somehow. Simply enough if a user was a priveledged user and su'd to root, there goes the machine. Depending on the level of trust amongst machines you could pretty easily whip up another worm, the hard part is fighting the legal battle when you get caught. :) -- -Alfred Perlstein - [bright@wintelcom.net|alfred@freebsd.org] "I have the heart of a child; I keep it in a jar on my desk." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000504122720.U13668>