On MovieTome: X-Men: First Class' shooting next year?
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 25 of 79:
Next »
« Previous
There are a total of 20 known viruses
[url=http://www.viruslibrary.com/virusinfo/search.htm](Source)[/url] for Linux of those, 7 [url=http://www.viruslibrary.com/virusinfo/Linux.htm](Virus Library)[/url] are in the wild, but all are over 3 years old and their infection vectors sealed off. The newest Linux virus located was in July of 2002.

Now if you go to another source and include worms, trojan horses and rootkits with viruses then the total number jumps to 1,017 according to this [url=http://www.viruslist.com/en/viruslistfind?objs=virus&words=linux](Source)[/url]. But also note that of these only a very small percentage are actual Linux issues, the majority are applications and utilities or scripting language bugs, of which all are corrected with 24-96 hours of being reported. Each source will give you a different number. The second one I cite I believe (need to look closer later) includes Unix viruses as well.

Linux Trojan horse = 350
Linux worms = 150
Linux virus = 211
Linux rootkits = 5
Total = 716

Windows Trojan horse = 977
Windows worms = 1,483
Windows virus = 1,977
Windows rootkits = 27
Total = 4,464

That's a huge difference that equates to a 623% higher probability of getting hit on Windows versus Linux!

Linux is a damn sight more secure and safe than the current offering from Microsoft. For starters all distributions come with a solid firewall that is started from the word go. That has been there for at least 5 years now. All Linux distributions offer several LIDS applications. The SuSE offerings use AppArmor to sandbox applications. That has been available for sometime now (over a year). Since most Linux systems are still built by people with a clue and all newbies are educated about security, the security is pretty tight. Sure there are instances of idiots that ignore the warnings and do stupid things, like run as root. But human ignorance cannot be programmed for 100%.

Every client I set-up with Linux is set-up with the following:
1.training on the proper use and acceptance of e-mail / web browsing.
2.Firewall.
3.NAT router with it's own firewall.
4.AIDE intrusion detection software which performs the same duties as Tripwire but for free and with a few more nice features.
5.all new passwords are validated against John the Ripper for strength. Linux also will perform it's own tests.
6.All passwords expire every 45-90 (180 for home users) days.
7.All passwords are a minimum of 8 characters long.
8.All systems use CLAMAV to ensure that viruses are not accidentally passed along to Windows users.
9.All systems use Spam Assassin as an additional level of spam protection.
10.FAKEBO to send anyone that manages to get through the two firewalls on a wild goose chase.
11.Port Sentry to watch for any activity, again if someone gets through the two firewalls. Port sentry is set up to send an e-mail to me and one other source, detailing which client has been affected.
12.Logcheck is also installed and run by CRON.

And even with all these security measures in place, the user is still able to do their job on their PC without being bothered to validate their OS, annoyed by ?warnings? that someone has attempted to gain entry (generally the NAT firewall stops the intruders at the gate). And without having to utilize run as. The user accounts are locked down so as to prevent local system corruption without the user actively running something as root. Which in the case of business clients, only one other person besides me has the root password. Home users are trained NOT to run as root EVER. But if they want to install or remove software and perform updates, then they are shown the correct way to run the proper tools as the user with the Linux equivalent of Microsoft's run as command.

Bottom line is, it takes a lot effort to infect a Linux system that is being operated by a properly trained user. Most of the vulnerabilities listed in the references, are also local exploits not remote. And in that case if someone has local access to the machine and a little time, game over regardless the system. Since 1999 I have yet to see any successful infections of any of my or my clients Linux systems. In that time I have seen 1 client that was hacked into because they didn't listen to my advice. After that clean up and the expense the client has since learned to follow my advice and has been operating flawlessly for over 3 years now.

As a parting shot here are a couple of other sources you can read up on.

http://www.wildlist.org/WildList/
http://www.securityfocus.com/columnists/188
http://en.wikipedia.org/wiki/Computer_virus
http://mail.limelyte.net/admin/virus/ this is dated but...
http://www.f-secure.com/virus-info/statistics/
http://www.rav.ro/ravmsstats/ - not sure of how current this one is...
http://www.eurokom.ie/servMainSite?inner=virusalerts ? this is a good site...
Posted by: Linux User 147560   Posted on: 09/28/06 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Start preparing your case now  Richard Flude | 09/28/06
Well President Bush wanted a New World Order .  Intellihence | 09/28/06
Sell only XP to Europe!  No_Ax_to_Grind | 09/28/06
Hmm...  OwningXylophone | 09/28/06
The EC is whining.. Take away their reason to whine.  No_Ax_to_Grind | 09/28/06
Must be touch being such a little guy.  B.O.F.H. | 09/28/06
That would  zkiwi | 09/28/06
Don't know about that one  John L. Ries | 09/28/06
Withdrawing from a market  zkiwi | 09/28/06
Avast mateys!  Media-Ted@... | 09/30/06
Funny...  Jim Blaine - Bellingham WA. | 09/28/06
It would seem as Symantec, Mcafee , Sophos, and other security companies  Intellihence | 09/28/06
The Power of Free Choice  OwningXylophone | 09/28/06
And the day...  Spikey_Mike | 09/28/06
MS forget about security applications  Boot_Agnostic | 09/28/06
Reviewing the situation  Anton Philidor | 09/28/06
It is much more simple than that...  Spikey_Mike | 09/28/06
But not that simple.  Anton Philidor | 09/28/06
Your wording is incorrect  Spikey_Mike | 09/29/06
I think you mean behavior(?).  Anton Philidor | 09/29/06
What hasn't happened yet?  Media-Ted@... | 09/30/06
A flaw in your plan  OwningXylophone | 09/28/06
Really?  Linux User 147560 | 09/28/06
Touche!  OwningXylophone | 09/28/06
There are a total of 20 known viruses  Linux User 147560 | 09/28/06
Wow! Thank you!  Jim Blaine - Bellingham WA. | 09/28/06
re: There are a total of 20 known viruses  Badgered | 09/29/06
Well I do have an answer, and it's only a theory as to why...  Linux User 147560 | 09/29/06
well...  Badgered | 09/29/06
Like I said it's only a theory, but plausible.  Linux User 147560 | 09/29/06
This numbers game is most interesting.  Media-Ted@... | 09/30/06
do your math right  DemonX | 09/28/06
I did!  OwningXylophone | 09/28/06
Double really?  tic swayback | 09/28/06
Think before you speak fool  OwningXylophone | 09/28/06
Here is one  the_seb | 09/29/06
The fundemental question is, may a monopoly  No_Ax_to_Grind | 09/28/06
Well...  zkiwi | 09/28/06
Good grief!!  Mad Dan | 09/28/06
What really scares me ...  Media-Ted@... | 09/30/06
Monopolies are bound by different rules.  B.O.F.H. | 09/28/06
The fundamental question for you is this:  itanalyst | 09/28/06
The answer to you question is yes, but....  maldain | 09/28/06
No_ Ax-you know this. MS is integrating this product  jjon2121 | 09/28/06
It's just amazing ...  Media-Ted@... | 09/30/06
If what everybody says is true  Qbt | 09/28/06
And  zkiwi | 09/28/06
Curious to know what your suggestion is  Qbt | 09/28/06
You're avoiding the issue  zkiwi | 09/28/06
Did ANYBODY actually read the article. Fair access is the issue.  presleye69@... | 09/28/06
Half and Half  BFD | 09/28/06
Agreed  Boot_Agnostic | 09/28/06
And...  zkiwi | 09/28/06
office 2003  way_z | 09/28/06
European rivals turn wary eye on Microsoft  Loverock Davidson | 09/28/06
Um, no  zkiwi | 09/28/06
Security should not be an issue in any OS  way_z | 09/28/06
More than abuse  John L. Ries | 09/28/06
McAfee, Symantec and others get revenue  Boot_Agnostic | 09/28/06
Nevertheless...  John L. Ries | 09/28/06
Hey, here's an idea  Qbt | 09/28/06
Read my reply to Boot_Agnostic  John L. Ries | 09/28/06
Any effort to...  Spikey_Mike | 09/28/06
Not so clear  John L. Ries | 09/28/06
Agree 100%  Spikey_Mike | 09/29/06
Here's a clue  zkiwi | 09/28/06
and THAT...  Spikey_Mike | 09/28/06
To add...  zkiwi | 09/28/06
Another thought about this.....  crash89 | 09/28/06
DOUBLE PROTECTION  majoritywhip | 09/28/06
Here's how they guage the threat from MS  Omch'Ar | 09/28/06
SOLUTION TO SYMANTEC WOES  zzz1234567890 | 09/28/06
It'd be funny if Symantec faced a market/govt  Boot_Agnostic | 09/29/06
What good would that do...  zkiwi | 09/29/06
What are they complaining about?  Mikael_z | 09/29/06
to no axe one word sovernity  Quebec-french | 09/29/06
Windows software  rsars | 09/29/06
Microsoft infringement on anti-virus parasites?  christopher94523 | 10/03/06
Dump the Microsoft carcass and its "anti-virus" parasites  christopher94523 | 10/03/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement

Meet Doc

  • Here to help you with your Document Management Needs
  • Doc is an enigma. Born to a Russian ballerina and a German electrical engineer, he grew up in various locations in the United States. He’s seen the insides of more brands, versions, and generations of printer and printer-related hardware than almost anyone.
  • To learn more about this mysterious figure check out his blog on ZDNet and his Workspace on TechRepublic. You’ll be glad you did.
  • Produced by
    ZDNet and