还是UNIX和LINUX特性不一样,不是LINUX是UNIX发展过来的吗?
苹果的MAC是UNIX没事的吧。
那平比大家叫嚷嚷的安全没病毒是在骗自己还是不知道或是还没人去开发,因为没市场?
[问题]问下,都叫着LINUX比WIN安全多,没病毒,那基于UNIX的MAC却老有病毒~怎么回事
-
wiice
- 帖子: 20
- 注册时间: 2007-12-22 15:18
-
sevk
- 帖子: 2060
- 注册时间: 2007-05-08 16:26
- 系统: arch
- 来自: 火星内核某分子内某原子核内
- 联系:
-
wiice
- 帖子: 20
- 注册时间: 2007-12-22 15:18
-
zydbeckham
- 帖子: 140
- 注册时间: 2007-05-26 15:04
-
skyx
- 论坛版主
- 帖子: 9202
- 注册时间: 2006-12-23 13:46
- 来自: Azores Islands
- 联系:
-
hyy_m
- 帖子: 140
- 注册时间: 2008-02-18 16:25
-
PhoenixJ
- 帖子: 1492
- 注册时间: 2007-08-09 3:33
- 系统: Windows 12.04
Linux malware
From Wikipedia, the free encyclopedia
(Redirected from List of Linux computer viruses)
Jump to: navigation, search
The Linux operating system, along with Unix and other Unix-like computer operating systems, is generally regarded as well-protected against computer viruses [1]. There have been successful attacks, however, on both Linux and Unix systems, the most notable perhaps being the Cuckoo's Egg attacks on Unix systems in the 1980s.
The number of viruses specifically written for Linux has been on the increase in recent years and more than doubled during 2005 from 422 to 863.[2]
Contents [hide]
1 Linux vulnerability
2 Cross-platform viruses
3 Anti-virus applications
4 Threats
4.1 Trojans
4.2 Viruses
4.3 Worms
5 References
6 External links
[edit] Linux vulnerability
Like other Unix systems, Linux implements a multi-user environment where users are granted specific privileges and there is some form of access control implemented. As such, viruses typically have a diminished ability to change or impact the host system.
One of the vulnerabilities of Linux is that many users do not think it is vulnerable to viruses. Tom Ferris a researcher with Mission Viejo, California-based Security Protocols said in 2006, "In people's minds, if it's non-Windows, it's secure, and that's not the case. They think nobody writes malware for Linux or [Mac] OS X. But that's not necessarily true...."[2]
Shane Coursen a senior technical consultant with Kaspersky Lab noted, "The growth in Linux malware is simply due to its increasing popularity, particularly as a desktop operating system...The use of an operating system is directly correlated to the interest by the malware writers to develop malware for that OS".[2]
The viruses listed below still pose a potential, although minimal threat, to Linux systems. If an infected binary containing one of the viruses were run, the system would be infected. The infection level would depend on which user with what privileges ran the binary. A binary run under the root account would be able to infect the entire system. Privilege escalation vulnerabilities may permit malware running under a limited account to infect the entire system.
The use of software repositories significantly reduces any threat of installation of malware, as the software repositories are checked by maintainers, who ensure that their repository is malware-free. Subsequently to ensure safe distribution of the software, md5 checksums are made available. These methods of attack can be defended against using repositories protected by digital signatures which prevent the hijacking of communications using a man-in-the-middle attack or via a redirection attack such as arp or DNS poisoning. This limits the scope of attacks to include those that have administrative access to the repository itself.
[edit] Cross-platform viruses
A new area of concern identified in 2007 is that of cross-platform viruses, driven by the popularity of cross-platform applications. This was brought to the forefront of malware awareness by the distribution of an Openoffice.org virus called Bad Bunny.
Stuart Smith of Symantec wrote:
"What makes this virus worth mentioning is that it illustrates how easily scripting platforms, extensibility, plug-ins, ActiveX, etc, can be abused. All too often, this is forgotten in the pursuit to match features with another vendor... [T]he ability for malware to survive in a cross-platform, cross-application environment has particular relevance as more and more malware is pushed out via Web sites. How long until someone uses something like this to drop a JavaScript infector on a Web server, regardless of platform?"[3]
[edit] Anti-virus applications
Virus scanners such as the open source Clam AV and the commercial freeware Avast! and AVG are available for Linux.
SecurityFocus's Scott Granneman, says:
"...some Linux machines definitely need anti-virus software. Samba or NFS servers, for instance, may store documents in undocumented, vulnerable Microsoft formats, such as Word and Excel, that contain and propagate viruses. Linux mail servers should run AV software in order to neutralize viruses before they show up in the mailboxes of Outlook and Outlook Express users."[1]
[edit] Threats
The following is a partial list of known Linux malware:
[edit] Trojans
Kaiten - Linux.Backdoor.Kaiten trojan horse [4]
Rexob - Linux.Backdoor.Rexob trojan[5]
[edit] Viruses
Alaeda - Virus.Linux.Alaeda[6]
Bad Bunny - Perl.Badbunny[3][7]
Binom - Linux/Binom[8]
Bliss
Brundle[9]
Bukowski[10]
Diesel - Virus.Linux.Diesel.962[11]
Kagob a - Virus.Linux.Kagob.a[12]
Kagob b - Virus.Linux.Kagob.b[13]
MetaPHOR (also known as Simile)[14]
Nuxbee - Virus.Linux.Nuxbee.1403[15]
OSF.8759
Podloso - Linux.Podloso (The The iPod virus)[16][17]
Rike - Virus.Linux.Rike.1627[18]
RST - Virus.Linux.RST.a[19]
Satyr - Virus.Linux.Satyr.a[20]
Staog
Vit - Virus.Linux.Vit.4096[21]
Winter - Virus.Linux.Winter.341[22]
Winux (also known as Lindose and PEElf[23]
ZipWorm - Virus.Linux.ZipWorm[24]
[edit] Worms
Adm - Net-Worm.Linux.Adm[25]
Adore[26]
Cheese - Net-Worm.Linux.Cheese[27]
Devnull
Kork[28]
Linux/Lion (also known as Ramen)
Mighty - Net-Worm.Linux.Mighty[29]
Millen - Linux.Millen.Worm[30]
Slapper[31]
SSH Bruteforce[32]
[edit] References
^ a b Granneman, Scott (October 2003). Linux vs. Windows Viruses. Retrieved on 2008-03-06.
^ a b c Patrizio, Andy (April 2006). Linux Malware On The Rise. Retrieved on 2008-03-08.
^ a b Smith, Stuart (June 2007). Bad Bunny. Retrieved on 2008-02-20.
^ Florio, Elia (February 2006). Linux.Backdoor.Kaiten. Retrieved on 2008-03-08.
^ Florio, Elia (December 2007). Linux.Backdoor.Rexob. Retrieved on 2008-03-08.
^ Kaspersky Lab (May 2007). Virus.Linux.Alaeda. Retrieved on 2008-03-08.
^ Smith, Stuart (May 2007). Perl.Badbunny. Retrieved on 2008-03-08.
^ McAfee (December 2004). Linux/Binom. Retrieved on 2008-03-08.
^ Rieck, Konrad and Konrad Kretschmer (August 2001). Brundle Fly 0.0.1 - A Good-Natured Linux ELF Virus. Retrieved on 2008-03-08.
^ de Almeida Lopes, Anthony (July 2007). Project Bukowski. Retrieved on 2008-03-08.
^ Kaspersky Lab (February 2002). Virus.Linux.Diesel.962. Retrieved on 2008-03-08.
^ Kaspersky Lab (April 2001). Virus.Linux.Kagob.a. Retrieved on 2008-03-08.
^ Kaspersky Lab (undated). Virus.Linux.Kagob.b. Retrieved on 2008-03-08.
^ The Mental Driller (February 2002). Metamorphism in practice or "How I made MetaPHOR and what I've learnt". Retrieved on 2008-03-08.
^ Kaspersky Lab (December 2001). Virus.Linux.Nuxbee.1403. Retrieved on 2008-03-08.
^ Ferrie, Peter (April 2007). Linux.Podloso. Retrieved on 2008-03-08.
^ Ferrie, Peter (April 2007). The iPod virus. Retrieved on 2008-03-08.
^ Kaspersky Lab (August 2003). Virus.Linux.Rike.1627. Retrieved on 2008-03-08.
^ Kaspersky Lab (January 2002). Virus.Linux.RST.a. Retrieved on 2008-03-08.
^ Kaspersky Lab (March 2001). Virus.Linux.Satyr.a. Retrieved on 2008-03-08.
^ Kaspersky Lab (March 2000). Virus.Linux.Vit.4096. Retrieved on 2008-03-08.
^ Kaspersky Lab (October 2000). Virus.Linux.Winter.341. Retrieved on 2008-03-08.
^ Rautiainen, Sami et al (March 2001). F-Secure Virus Descriptions : Lindose. Retrieved on 2008-03-08.
^ Kaspersky Lab (January 2001). Virus.Linux.ZipWorm. Retrieved on 2008-03-08.
^ Kaspersky Lab (May 2001). Net-Worm.Linux.Adm. Retrieved on 2008-03-08.
^ Rautiainen, Sami (April 2001). F-Secure Virus Descriptions : Adore. Retrieved on 2008-03-08.
^ Kaspersky Lab (May 2001). Net-Worm.Linux.Cheese. Retrieved on 2008-03-08.
^ Rautiainen, Sami (April 2001). F-Secure Virus Descriptions : Kork. Retrieved on 2008-03-08.
^ Kaspersky Lab (October 2002). Net-Worm.Linux.Mighty. Retrieved on 2008-03-08.
^ Perriot, Frederic (February 2007). Linux.Millen.Worm. Retrieved on 2008-03-08.
^ Rautiainen, Sami et al (September 2002). F-Secure Virus Descriptions : Slapper. Retrieved on 2008-03-08.
^ Voss, Joel (December 2007). SSH Bruteforce Virus by AltSci Concepts. Retrieved on 2008-03-13.
[edit] External links
Linux viruses on VirusLibrary
VX Heavens Virus List
[hide]v • d • eThe Linux operating system
General Adoption · Comparison of Windows and Linux · Criticism · GNU Project · Linux kernel (history · portability) · Linus's Law · Naming controversy · SCO and Linux · Tux Linux Portal
Distribution Distribution (list · comparison) · LiveCD (list · comparison) · Live USB · Mini Linux · Package formats
Applications ALSA · Desktop · Devices · Embedded · Gaming · LAMP · Thin client
People Richard Stallman · Linus Torvalds
Other topics Linux Foundation · Linux malware · Linux Users' Group (LUG) · Linux Standard Base
Retrieved from "http://en.wikipedia.org/wiki/Linux_malware"
Categories: Linux viruses | Computer lists | Linux
From Wikipedia, the free encyclopedia
(Redirected from List of Linux computer viruses)
Jump to: navigation, search
The Linux operating system, along with Unix and other Unix-like computer operating systems, is generally regarded as well-protected against computer viruses [1]. There have been successful attacks, however, on both Linux and Unix systems, the most notable perhaps being the Cuckoo's Egg attacks on Unix systems in the 1980s.
The number of viruses specifically written for Linux has been on the increase in recent years and more than doubled during 2005 from 422 to 863.[2]
Contents [hide]
1 Linux vulnerability
2 Cross-platform viruses
3 Anti-virus applications
4 Threats
4.1 Trojans
4.2 Viruses
4.3 Worms
5 References
6 External links
[edit] Linux vulnerability
Like other Unix systems, Linux implements a multi-user environment where users are granted specific privileges and there is some form of access control implemented. As such, viruses typically have a diminished ability to change or impact the host system.
One of the vulnerabilities of Linux is that many users do not think it is vulnerable to viruses. Tom Ferris a researcher with Mission Viejo, California-based Security Protocols said in 2006, "In people's minds, if it's non-Windows, it's secure, and that's not the case. They think nobody writes malware for Linux or [Mac] OS X. But that's not necessarily true...."[2]
Shane Coursen a senior technical consultant with Kaspersky Lab noted, "The growth in Linux malware is simply due to its increasing popularity, particularly as a desktop operating system...The use of an operating system is directly correlated to the interest by the malware writers to develop malware for that OS".[2]
The viruses listed below still pose a potential, although minimal threat, to Linux systems. If an infected binary containing one of the viruses were run, the system would be infected. The infection level would depend on which user with what privileges ran the binary. A binary run under the root account would be able to infect the entire system. Privilege escalation vulnerabilities may permit malware running under a limited account to infect the entire system.
The use of software repositories significantly reduces any threat of installation of malware, as the software repositories are checked by maintainers, who ensure that their repository is malware-free. Subsequently to ensure safe distribution of the software, md5 checksums are made available. These methods of attack can be defended against using repositories protected by digital signatures which prevent the hijacking of communications using a man-in-the-middle attack or via a redirection attack such as arp or DNS poisoning. This limits the scope of attacks to include those that have administrative access to the repository itself.
[edit] Cross-platform viruses
A new area of concern identified in 2007 is that of cross-platform viruses, driven by the popularity of cross-platform applications. This was brought to the forefront of malware awareness by the distribution of an Openoffice.org virus called Bad Bunny.
Stuart Smith of Symantec wrote:
"What makes this virus worth mentioning is that it illustrates how easily scripting platforms, extensibility, plug-ins, ActiveX, etc, can be abused. All too often, this is forgotten in the pursuit to match features with another vendor... [T]he ability for malware to survive in a cross-platform, cross-application environment has particular relevance as more and more malware is pushed out via Web sites. How long until someone uses something like this to drop a JavaScript infector on a Web server, regardless of platform?"[3]
[edit] Anti-virus applications
Virus scanners such as the open source Clam AV and the commercial freeware Avast! and AVG are available for Linux.
SecurityFocus's Scott Granneman, says:
"...some Linux machines definitely need anti-virus software. Samba or NFS servers, for instance, may store documents in undocumented, vulnerable Microsoft formats, such as Word and Excel, that contain and propagate viruses. Linux mail servers should run AV software in order to neutralize viruses before they show up in the mailboxes of Outlook and Outlook Express users."[1]
[edit] Threats
The following is a partial list of known Linux malware:
[edit] Trojans
Kaiten - Linux.Backdoor.Kaiten trojan horse [4]
Rexob - Linux.Backdoor.Rexob trojan[5]
[edit] Viruses
Alaeda - Virus.Linux.Alaeda[6]
Bad Bunny - Perl.Badbunny[3][7]
Binom - Linux/Binom[8]
Bliss
Brundle[9]
Bukowski[10]
Diesel - Virus.Linux.Diesel.962[11]
Kagob a - Virus.Linux.Kagob.a[12]
Kagob b - Virus.Linux.Kagob.b[13]
MetaPHOR (also known as Simile)[14]
Nuxbee - Virus.Linux.Nuxbee.1403[15]
OSF.8759
Podloso - Linux.Podloso (The The iPod virus)[16][17]
Rike - Virus.Linux.Rike.1627[18]
RST - Virus.Linux.RST.a[19]
Satyr - Virus.Linux.Satyr.a[20]
Staog
Vit - Virus.Linux.Vit.4096[21]
Winter - Virus.Linux.Winter.341[22]
Winux (also known as Lindose and PEElf[23]
ZipWorm - Virus.Linux.ZipWorm[24]
[edit] Worms
Adm - Net-Worm.Linux.Adm[25]
Adore[26]
Cheese - Net-Worm.Linux.Cheese[27]
Devnull
Kork[28]
Linux/Lion (also known as Ramen)
Mighty - Net-Worm.Linux.Mighty[29]
Millen - Linux.Millen.Worm[30]
Slapper[31]
SSH Bruteforce[32]
[edit] References
^ a b Granneman, Scott (October 2003). Linux vs. Windows Viruses. Retrieved on 2008-03-06.
^ a b c Patrizio, Andy (April 2006). Linux Malware On The Rise. Retrieved on 2008-03-08.
^ a b Smith, Stuart (June 2007). Bad Bunny. Retrieved on 2008-02-20.
^ Florio, Elia (February 2006). Linux.Backdoor.Kaiten. Retrieved on 2008-03-08.
^ Florio, Elia (December 2007). Linux.Backdoor.Rexob. Retrieved on 2008-03-08.
^ Kaspersky Lab (May 2007). Virus.Linux.Alaeda. Retrieved on 2008-03-08.
^ Smith, Stuart (May 2007). Perl.Badbunny. Retrieved on 2008-03-08.
^ McAfee (December 2004). Linux/Binom. Retrieved on 2008-03-08.
^ Rieck, Konrad and Konrad Kretschmer (August 2001). Brundle Fly 0.0.1 - A Good-Natured Linux ELF Virus. Retrieved on 2008-03-08.
^ de Almeida Lopes, Anthony (July 2007). Project Bukowski. Retrieved on 2008-03-08.
^ Kaspersky Lab (February 2002). Virus.Linux.Diesel.962. Retrieved on 2008-03-08.
^ Kaspersky Lab (April 2001). Virus.Linux.Kagob.a. Retrieved on 2008-03-08.
^ Kaspersky Lab (undated). Virus.Linux.Kagob.b. Retrieved on 2008-03-08.
^ The Mental Driller (February 2002). Metamorphism in practice or "How I made MetaPHOR and what I've learnt". Retrieved on 2008-03-08.
^ Kaspersky Lab (December 2001). Virus.Linux.Nuxbee.1403. Retrieved on 2008-03-08.
^ Ferrie, Peter (April 2007). Linux.Podloso. Retrieved on 2008-03-08.
^ Ferrie, Peter (April 2007). The iPod virus. Retrieved on 2008-03-08.
^ Kaspersky Lab (August 2003). Virus.Linux.Rike.1627. Retrieved on 2008-03-08.
^ Kaspersky Lab (January 2002). Virus.Linux.RST.a. Retrieved on 2008-03-08.
^ Kaspersky Lab (March 2001). Virus.Linux.Satyr.a. Retrieved on 2008-03-08.
^ Kaspersky Lab (March 2000). Virus.Linux.Vit.4096. Retrieved on 2008-03-08.
^ Kaspersky Lab (October 2000). Virus.Linux.Winter.341. Retrieved on 2008-03-08.
^ Rautiainen, Sami et al (March 2001). F-Secure Virus Descriptions : Lindose. Retrieved on 2008-03-08.
^ Kaspersky Lab (January 2001). Virus.Linux.ZipWorm. Retrieved on 2008-03-08.
^ Kaspersky Lab (May 2001). Net-Worm.Linux.Adm. Retrieved on 2008-03-08.
^ Rautiainen, Sami (April 2001). F-Secure Virus Descriptions : Adore. Retrieved on 2008-03-08.
^ Kaspersky Lab (May 2001). Net-Worm.Linux.Cheese. Retrieved on 2008-03-08.
^ Rautiainen, Sami (April 2001). F-Secure Virus Descriptions : Kork. Retrieved on 2008-03-08.
^ Kaspersky Lab (October 2002). Net-Worm.Linux.Mighty. Retrieved on 2008-03-08.
^ Perriot, Frederic (February 2007). Linux.Millen.Worm. Retrieved on 2008-03-08.
^ Rautiainen, Sami et al (September 2002). F-Secure Virus Descriptions : Slapper. Retrieved on 2008-03-08.
^ Voss, Joel (December 2007). SSH Bruteforce Virus by AltSci Concepts. Retrieved on 2008-03-13.
[edit] External links
Linux viruses on VirusLibrary
VX Heavens Virus List
[hide]v • d • eThe Linux operating system
General Adoption · Comparison of Windows and Linux · Criticism · GNU Project · Linux kernel (history · portability) · Linus's Law · Naming controversy · SCO and Linux · Tux Linux Portal
Distribution Distribution (list · comparison) · LiveCD (list · comparison) · Live USB · Mini Linux · Package formats
Applications ALSA · Desktop · Devices · Embedded · Gaming · LAMP · Thin client
People Richard Stallman · Linus Torvalds
Other topics Linux Foundation · Linux malware · Linux Users' Group (LUG) · Linux Standard Base
Retrieved from "http://en.wikipedia.org/wiki/Linux_malware"
Categories: Linux viruses | Computer lists | Linux
-
carbont
- 帖子: 3406
- 注册时间: 2007-11-22 10:20
- 来自: 北京
-
skyx
- 论坛版主
- 帖子: 9202
- 注册时间: 2006-12-23 13:46
- 来自: Azores Islands
- 联系:
-
xiooli
- 帖子: 6956
- 注册时间: 2007-11-19 21:51
- 来自: 成都
- 联系:
-
qiang_liu8183
- 论坛版主
- 帖子: 10699
- 注册时间: 2006-09-10 22:36
- 系统: Arch Debian
- 来自: 北京
-
yuan001
- 帖子: 271
- 注册时间: 2006-08-26 14:39
- 来自: nj
- 联系: