Find the answer to your Linux question:
Results 1 to 4 of 4
What's up everybody. I've been away for a while, working on my UB12.04 remix. It turned out great, it's just what I want and I learned a lot. Now for ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux User Steven_G's Avatar
    Join Date
    Jun 2012
    Location
    Western US
    Posts
    335

    Doze rootkit and spyware in wine?


    What's up everybody. I've been away for a while, working on my UB12.04 remix. It turned out great, it's just what I want and I learned a lot.

    Now for an odd question:

    After my wife's HD blew up I built the remix on her system and used remastersys to extract an installable copy.

    During the course of things I bought an EA game and installed in on my primary W7 rig that I had tweaked out just right. Well, evidently the friggin thing included one of those stupid DRM rootkits like Sony got slapped for a few years back and it rooted my system. On a doze system once rooted I never try for a repair, I always start from scratch.

    So I blew off the 7 install.

    I'm going to try installing my remix on my spiffy machine with the Optimus issues. Since April when I started to really get in to *nix my skill level has improved a lot and so has the kernel. I also found several hacks from different sources that have come up with novel solutions to exporting to an external monitor through the DGPU.

    I think I'll be able to cook up something spiffy.

    I see there are patches available now that will let NetFlix run on *nix through wine, so I'll give that a shot and maybe renew my subscription. I dropped NF over a year ago b/c they changed the routing of their content pipeline, started pumping content through Akamai and added in a bunch of tracking crap.

    The game which rooted my system is also supposed to run in wine like charm.

    I have zero experince with wine so far.

    So, does all of the doze tracking crap work in wine?

    And what are the security implications of installing a known doze DRM rootkit in to wine? Would it run, would it effect the "main" *nix part of the setup, would it open up holes outside of wine, would it be able to install hidden rules in my firewall and hidden entries in my system startup like it did in doze, etc?
    Last edited by Steven_G; 12-07-2012 at 05:10 AM.

  2. #2
    Linux Guru Rubberman's Avatar
    Join Date
    Apr 2009
    Location
    I can be found either 40 miles west of Chicago, in Chicago, or in a galaxy far, far away.
    Posts
    11,452
    If it infects Wine, it should not affect your base system. Just uninstall Wine and you should be Fine...
    Sometimes, real fast is almost as good as real time.
    Just remember, Semper Gumbi - always be flexible!

  3. #3
    Penguin of trust elija's Avatar
    Join Date
    Jul 2004
    Location
    Either at home or at work or down the pub
    Posts
    3,488
    Wine will run Windows viruses but they seem to be easier to remove.
    What do we want?
    Time machines!

    When do we want 'em?
    Doesn't really matter does it!?


    Conkybots: Interactive plugins for your Conkys!

  4. #4
    Linux User Steven_G's Avatar
    Join Date
    Jun 2012
    Location
    Western US
    Posts
    335
    Well, I've been doing a lot of reading on the subject and from what I've found wine is "malware compatible", does not work well with most doze security programs and *may* enable doze malware to do such things as change start up settings or firewall rules (seems to be a lot of controversy on that last bit).

    But, a few important security precautions can fix that and most involve changing some default wine settings. But, the most important thing to do seems to be to install wine to a chroot jail so that if malware does corrupt stuff outside of wine it can't mess with your "real" root in the process.

    So, that's what I'll do once I figure out all the other stuff I need to do.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •