Page 1 of 4 123 ... LastLast
Results 1 to 10 of 34

Thread: How to make sure I didnt get a virus?

  1. #1
    Join Date
    Sep 2008
    Location
    Slovenia
    Posts
    335

    Default How to make sure I didnt get a virus?

    Hi everyone. I know that running linux makes you safer from viruses, since viruses are mostly windows based, however IMHO there are still chances to get some kind of viruses or better said some malicious code in scripts/cookies via browsing. I'm no expert if this field and would therefore need some of your advice. So the thing that made me think, happened yesterday, when I, as a registred user on forum Allgemeines Forum got an email, from one, who obviously didn't have good intentions. I did report the mail on the forum, here Forum abused?!you can check the thread with original mail I got. I did follow the link in the mail to check what is it about, and saw a script that fired up, pretending that it scans my computer for viruses and as a result showed that I have many viruses on my pc on various places. Quickly I saw it can't be true, since the content on the page displayed was showing as if I had a Win xp system. And when I tried to click to close it, it offered me some exe file to install, at that point I closed the browser and didn't download the file. However I am a bit in doubt if anything else downloaded automatically without my confirmation (a cookie, script,..), which executes with the help of the browser and is not OS dependent. So now I wonder how could I check I didn't get anything malicious? The most threatening I find some potential "key logger" which would monitor my input on password protected areas I browse. Browsing around I found a nice site showing how to protect you browser better Securing Your Web Browser and I tend to follow some of the advices mentioned for firefox. I know that for safe browsing it is not just the browser responsible, but also the user using it. So any your advices from this field would be appreciated and by posting this, I would also like to point at some most tricky ways, that some ********** imbeciles try to use in order to steal private data, so watch out. Thanks, Arcull.

  2. #2
    Join Date
    Jun 2008
    Location
    The English Lake District. UK - GMT/BST
    Posts
    36,729
    Blog Entries
    20

    Default Re: How to make sure I didnt get a virus?

    I followed that link and this is what I got.
    Leap 15.1_KDE
    My Articles Was I any help? If yes: Click the star below

  3. #3
    Join Date
    Jun 2008
    Location
    Groningen, Netherlands
    Posts
    19,788
    Blog Entries
    14

    Default Re: How to make sure I didnt get a virus?

    Even if it was a virus, it's you as a user who's browsing, so the virus has no system permissions. No doubt that there will be malicious threats for linux. My advice:

    Refuse mail from hotmail.com addresses, they're being hacked a lot.
    Don't do tests like you did with mail etc. you already don't trust.
    Use the firewall

    Like you said, you can configure FF to browse more secure.
    ° Appreciate my reply? Click the star and let me know why.

    ° Perfection is not gonna happen. No way.

    https://en.opensuse.org/openSUSE:Board#Members
    http://en.opensuse.org/User:Knurpht
    http://nl.opensuse.org/Gebruiker:Knurpht

  4. #4
    Join Date
    Sep 2008
    Location
    Slovenia
    Posts
    335

    Default Re: How to make sure I didnt get a virus?

    I followed that link and this is what I got.
    Yes, by now google has already marked it as a "dangerous site", but it wasn't marked yesterday.

  5. #5
    Join Date
    Jun 2008
    Location
    The English Lake District. UK - GMT/BST
    Posts
    36,729
    Blog Entries
    20

    Default Re: How to make sure I didnt get a virus?

    I tried it in Konqueror
    And see what you mean

    I shouldn't worry about it. It's designed for Windows.
    Leap 15.1_KDE
    My Articles Was I any help? If yes: Click the star below

  6. #6
    Join Date
    Sep 2008
    Location
    Slovenia
    Posts
    335

    Default Re: How to make sure I didnt get a virus?

    Even if it was a virus, it's you as a user who's browsing, so the virus has no system permissions. No doubt that there will be malicious threats for linux. My advice:

    Refuse mail from hotmail.com addresses, they're being hacked a lot.
    Don't do tests like you did with mail etc. you already don't trust.
    Use the firewall

    Like you said, you can configure FF to browse more secure.
    thanks for advices. But now I would like to make sure my suse and FF are clean. Is there a way to prove, that I didn't get any "key logger" or something dangerous like that. Thanks again.

  7. #7
    Join Date
    Mar 2008
    Location
    Phuket, Thailand
    Posts
    26,549
    Blog Entries
    37

    Default Re: How to make sure I didnt get a virus?

    The important thing is not to download anything to your hard drive with root permissions (such as a root kit). Its very unlikely a web site will be able to plant something on your Linux PC, without the Linux community not already being aware of this and without you being aware of this.

    I suspect there may come a day when Linux users have to worry about virus, but that day is not here yet. Instead there are other threats to Linux security that Linux users should worry about.

    I confess I am very skeptical of all software that claims to be able to scan virus for Linux. The reason being is there are no Linux virus to speak of (compared to Windows PCs) and hence it is in essence impossible to check if the Linux software that purports to detect Linux virus will actually work. If there is one thing I have learned in decades of work with software, is if the software is not tested at all, it will likely not work. And its really impossible to test the effectiveness of Linux software for detecting Linux virus, since there are no Linux virus.

    Hence rather that waste time on software that is most likely NOT to work, one should spend their time defending against the real threats to Linux security, which are NOT virus.

  8. #8
    Join Date
    Jun 2008
    Location
    The English Lake District. UK - GMT/BST
    Posts
    36,729
    Blog Entries
    20

    Default Re: How to make sure I didnt get a virus?

    You didn't OK.
    It's crapppy winders stuff. Even if you actually accepted the download it couldn't do you any harm it was an .exe
    Leap 15.1_KDE
    My Articles Was I any help? If yes: Click the star below

  9. #9
    Join Date
    Mar 2008
    Location
    Phuket, Thailand
    Posts
    26,549
    Blog Entries
    37

    Default Re: How to make sure I didnt get a virus?

    Quote Originally Posted by arcull View Post
    thanks for advices. But now I would like to make sure my suse and FF are clean. Is there a way to prove, that I didn't get any "key logger" or something dangerous like that. Thanks again.
    How can a key logger be remotely installed ? It has to execute some how.

    How can it execute ?

    It can only execute if it is run.

    How can it run ?

    It can only run if it can replace the name of a file that is normally executed.

    As a regular user, most executeables are in an area that a regular user can NOT write to. Hence if one was surfing as a regular user, any software you mistakenly download will NOT install in a nomal area outside of /home.

    Hence IMHO the risk to you is that some software was installed in /home/your-username/bin , marked as an executeable file, with a file name that matches a command you might send. So take a look at /home/your-username/bin and ensure there is nothing inappropriate in there.

    Frankly, I have never heard of any web site doing what I described above, but if I wanted to hack into a users PC after fooling them to download something, I would try to get them to unintentionally download a file into /home/your-username/bin , ... but I confess, .... I don't know how to trick them to download something into /home/your-username/bin.

  10. #10
    Join Date
    Sep 2008
    Location
    Slovenia
    Posts
    335

    Default Re: How to make sure I didnt get a virus?

    Ok, thank you all, I feel a bit more relieved now
    How can a key logger be remotely installed ? It has to execute some how.

    How can it execute ?

    It can only execute if it is run.

    How can it run ?

    It can only run if it can replace the name of a file that is normally executed.
    you have a good point, however I have a feeling that you must have overlooked something. I haven't done any java programming yet, but as much as I know from the school theory (please correct me if I'm wrong), java applets placed on a web site, do not execute it self on the web server, but on the client, which connects to the web page, meaning that it is using your local resources (ram, cpu, disk,...), therefore the logic, someone wants to realize, can be executed localy, and you run it via clicking something on the web page. And suppose you have a run time of java installed on your pc and enabled in your browser, this scenario seams possible to me. I know I must have exaggerated a little bit, but when something like this happens to you, you get pretty paranoid about security. Well I hope this didn't happen in my case. And here is what I learned within years of programming : The most dangerous type of users are two, the ones who don't know how to use computer at all, and those ones who know a lot about computer Thanks again for your help

Page 1 of 4 123 ... LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •