From owner-freebsd-chat  Wed Mar 28 13:41:22 2001
Delivered-To: freebsd-chat@freebsd.org
Received: from smtp02.primenet.com (smtp02.primenet.com [206.165.6.132])
	by hub.freebsd.org (Postfix) with ESMTP id 7C12237B718
	for <chat@FreeBSD.ORG>; Wed, 28 Mar 2001 13:41:19 -0800 (PST)
	(envelope-from tlambert@usr02.primenet.com)
Received: (from daemon@localhost)
	by smtp02.primenet.com (8.9.3/8.9.3) id OAA19195;
	Wed, 28 Mar 2001 14:33:43 -0700 (MST)
Received: from usr02.primenet.com(206.165.6.202)
 via SMTP by smtp02.primenet.com, id smtpdAAANFa4yL; Wed Mar 28 14:33:34 2001
Received: (from tlambert@localhost)
	by usr02.primenet.com (8.8.5/8.8.5) id OAA12301;
	Wed, 28 Mar 2001 14:40:21 -0700 (MST)
From: Terry Lambert <tlambert@primenet.com>
Message-Id: <200103282140.OAA12301@usr02.primenet.com>
Subject: Re: Virus targetting both Windows and Linux?
To: bostergaard@siticom.com (=?iso-8859-1?Q?Bryan_=D8sterg=E5rd?=)
Date: Wed, 28 Mar 2001 21:40:21 +0000 (GMT)
Cc: tlambert@primenet.com ('Terry Lambert'), chat@FreeBSD.ORG,
	rsidd@physics.iisc.ernet.in
In-Reply-To: <C3CC10B4E6D5D411B21D00508BEA25D40142FF@EXCHANGE-TMP> from "=?iso-8859-1?Q?Bryan_=D8sterg=E5rd?=" at Mar 28, 2001 02:51:00 PM
X-Mailer: ELM [version 2.5 PL2]
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-chat@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

> The way this virus works, is as follows:
> 
> It has one Linux ELF image capable of infecting both Linux ELF and Windows
> PE files.
> It has one Windows PE image capable of infecting both Linux ELF and Windows
> PE files.
> 
> This doesn't mean the same file will be able to run under both Windows and
> Linux, quite the contrary.
> So it's simple a Linux program capable of editing (infection) to different
> executable formats, as well as a Windows program capable of the same.
> 
> I hope this explanation clears up any confusion as to the possibility of
> such a virus.

I feel cheated.


> As for spreading, Benny (the author of Winux) thinks that it should be able
> to spread from Linux to Windows, as many users have a FAT (Windows)
> partition mounted, for exchanging data. As far as I know he haven't
> explained how the Windows version of Winux would spread to Linux.

UMSDOSFS?


					Terry Lambert
					terry@lambert.org
---
Any opinions in this posting are my own and not those of my present
or previous employers.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message