|
Security Basics
File sharing with Bittorrent: what possible security threads? Mar 25 2008 09:41PM Simon Jolle sjolle (urandomdev gmail com) (2 replies) Re: File sharing with Bittorrent: what possible security threads? Mar 28 2008 11:10AM brabo (brabo nrgsports be) Re: File sharing with Bittorrent: what possible security threads? Mar 27 2008 08:14AM Alexander Klimov (alserkli inbox ru) (1 replies) Re: File sharing with Bittorrent: what possible security threads? Mar 27 2008 02:31PM Adam Pal (pal_adam gmx net) (2 replies) Re: File sharing with Bittorrent: what possible security threads? Mar 28 2008 11:30AM Orlin Gueorguiev (orlin baturov com) |
|
|
Privacy Statement |
> i see no difference between the usual Windows-user and the
> linux-user who stays logged in as root on his KDE and surfs on the
> web (yes, such behavioral patterns exists *G* ), so from this point
> of view, in certain circumstances linux viruses propagate similar to
> windows-viruses.
Probably they can, but do they really?
Consider, for example, an attack described by F-secure
<http://www.f-secure.com/weblog/archives/00001406.html>.
When you open the attached PDF file, you actually get a real
PDF document with a relevant statement. However, this is not
a normal PDF document. It contains a modified version of
a PDF-Encode vulnerability to exploit Adobe Acrobat when the
document is opened. The exploit silently drops and runs a file
called C:\Program Files\Update\winkey.exe. This is a
keylogger that collects and sends everything typed on the
affected machine
Is it possible to write a keylogger for Linux and construct such
an attack? Sure. Are where enough Linux users to justify the cost
of development? No! And, by the way, almost for sure an exploit
against Adobe Acrobat will not work with xpdf, plus there is
a good chance that an attack developed for Red Hat will not work
on Debian (or vice versa).
--
Regards,
ASK
[ reply ]