Linux and Malware

[Debojit]

Hi, I'm thinking of loading linux, but after some research on the net, I read some conflicting articles regarding the malware threat to linux, which, previously I had thought to be impossible. I'd like some clarifications on the matter, if anybody can help me out. I'm planning on using Fedora 12, and WINE for windows apps, like MS Office 2007. Thank You.

[meton_magis]

the popular theory (to people who have never used linux before, and think that windows and linux should be compared) is that linux is not impervious to viruses, and the only reason you don't hear of many intrusions, is that not enough people use linux, so it is not a target.

This first assumption is not correct, as businesses use linux EVERYWHERE. The most common webserver is something called a LAMP server. Linux, apache, mysql, and PHP (there are other P's, but php is the MOST common.) Most crackers that are good at what they do would love to be able to claim that they wrote a good linux virus, it would be serious bragging rights.

The second flaw, is that windows is not linux, and linux is not windows. They can't be compared, because it is just SO different. I could write malware that would completely obliterate a linux box in 30 seconds, it's incredibly trivial. The hard part is not writing malware, it is getting someone to run it.

When you install software in windows, you usualy go to your web browser, google for whatever you want to install, download it, and install. In linux, you install 99% through a package manager. It would be similar to windows update, but for 99% of software that you use, word processors, web browsers, e-mail clients, games (what is avaiable, this is linux's biggest weakness IMO) everything. All packages are signed using encryption that is not easily broken, it is VERY difficult to slip in malware into a distributions package repository, and even harder to make it look legitimate.

The other bit thing, is that you do not run common programs as administrator (called root in linux.) you run applications as an unprivelaged user, that can only mess up files in his home directory (similar to my documents.) While it is possible to login as root, and install bad software, the seperation of users makes it only possible to consciously install stuff as root, you don't just click the OK box and it's installed.


I talk too much, so I'll cut off here, but basicaly, there does not seem to be any Linux malware threat at this time, so long as you don't download something from the internet, and start running it without knowing what you're doing. I use Fedora 12, and I personaly love it, but I'd recomend you download the livecd, try it for a while, and if you like it, install to your hard drive. Wine will work for quite a bit, but it is not perfect, I don't know what the quality of Office 2007 is in wine, but there is an alternative if "almost the same" is good enough, OpenOffice.org is very similar. And you do not need to go to openoffice.org to download, it is available in your package manager on fedora 12 (but that is a question for another thread.)

[Freston]

In addition to meton_magis, I could just add that it's very difficult to find an unbiased comparison of Windows vs Linux...

They either state that Linux is an impenetrable bastion -or- that it's a sorry excuse for a hackers hobby and no production machines should be trusted with it. Both statements are false.

It's best, as meton_magis said, to ignore comparisons and judge all operating systems just on their own merits. Even Linux can be compromised. True, less through virii or other forms of walware, but when you run webservices you see lots and lots of (scripted) attacks coming in. When the machine is configured properly, and it's security patches installed, you should be safe.

Be sure to have good passwords, don't allow remote root logins and don't run services you don't need.

[oz]

I read some conflicting articles regarding the malware threat to linux, which, previously I had thought to be impossible.

I rarely hear of serious security threats with Linux, but those users that think of Linux as impenetrable are going to be the best targets, in my own opinion. We have a short guide to security that you can read that may help you in determining any security apps that you might want to employ.