Jump to content


Photo

How I fought back!!


  • Please log in to reply
12 replies to this topic

#1 Elvis

Elvis

    Member

  • Full Member
  • Pip
  • 9 posts

Posted 25 August 2007 - 01:30 PM

Hello

Last years I infected my computer (win XP sp2) with a nasty virus that just didn't want to go away. Even after it was remove, it had alter something in the registry and at regular interval (3 sec) it call IE to open and close. Of course this was really annoying :techsupport:

So I did the only thing that I knew would work and I did a clean windows Install :blush: After that I was really careful about what I did with my computer. You know avoiding suspicious site (pr0n), Gave up on Peer to peer application etc. I was regularly cleaning, scanning my computer for spyware, malware, virus, and IE hijacker. I was basically working for my computer to keep it free of unwanted software.

That was no fun!!

So I gradually migrated to Linux !! I kept my windows XP and used it only for gaming. And I did all the rest on Mandriva (That the name on the Linux distribution that I'm using) Installing a Linux distribution in dual boot is pretty easy and it it is done by the installer. After a few week of getting use to this new OS I finally lost the fear of infection and my computer became fun again. I was surfing the web on web site that I would never dare to visit and I was downloading and burning like I never dare before. After six month I had found plenty of game for my distribution and I was hardly using win XP anymore. So I just wipe it off my hard drive and used the free space to better use.

I know full well that not everybody can change OS because of the very specific software that they need for work or for gaming. But most of user (95%) only use there computer for thing that any modern Linux distro can do with ease.

So this is how I fought Back, by dumping Microsoft.
Antivirus:
None
Antispyware software:
None
OS: Mandriva 2007 spring

What I'm I doing here?? I'm Just trying to keep current on my windows skill for professional reason.

Posted Image

#2 screen317

screen317

    SWI Sentinel

  • Global Moderator
  • PipPipPipPipPip
  • 8,814 posts

Posted 25 August 2007 - 06:32 PM

But most of user (95%) only use there computer for thing that any modern Linux distro can do with ease.

So this is how I fought Back, by dumping Microsoft.



Did you know 72.45% of statistics are made up on the spot?


So let me ask you then, what are you going to do when the criminals target Linux in a more mainsteam manner?


~screen317

Please consider donating to help support the continued prompt and excellent services of this site.


#3 Elvis

Elvis

    Member

  • Full Member
  • Pip
  • 9 posts

Posted 25 August 2007 - 07:46 PM

Did you know 72.45% of statistics are made up on the spot?


So let me ask you then, what are you going to do when the criminals target Linux in a more mainsteam manner?


~screen317


Indeed :whistle: but it is only based on what I see around.

Let say your a criminal and you want to remotely install a key logger on a linux based system.

First your victim must make the infected file executable.

Then he must execute it as root. (with super user privilege)

Only then this virus can piggyback on the X server to start recording the key stroke.

Of course this is highly improbable. Since most software that are install on linux distribution come from repository that are audited and maintained by the maker of the distribution. It is also possible to install third party software safely. A linux user can just install it with user priviledge on is home partition. Then the infected installer is neutered and is basically harmless.

And for now and until MS is the main OS on the planet I need not to worry to much. Let's just say that I don't miss the periodic virus scan, Spyware scan, and the use of various XP cleaner.

The new Linux distribution that are out there are getting so user friendly that I'm building a PC for a family friend with Mandriva spring preinstall and configure. And this person is really not computer savvy and would have a really hard time just managing an anti virus software. I know it's sound silly but for some people all those constant virus update and spyware update etc can be a cause for stress. And especially when you have teenager using the family computer. When those kids start using kazaa or other peer to peer software on a window machine it doesn't take to long before it get infected.
Antivirus:
None
Antispyware software:
None
OS: Mandriva 2007 spring

What I'm I doing here?? I'm Just trying to keep current on my windows skill for professional reason.

Posted Image

#4 Elvis

Elvis

    Member

  • Full Member
  • Pip
  • 9 posts

Posted 25 August 2007 - 07:46 PM

Oops double post
:techsupport:

Edited by Elvis, 25 August 2007 - 07:49 PM.

Antivirus:
None
Antispyware software:
None
OS: Mandriva 2007 spring

What I'm I doing here?? I'm Just trying to keep current on my windows skill for professional reason.

Posted Image

#5 Budfred

Budfred

    Malware Hound

  • Administrators
  • PipPipPipPipPip
  • 21,526 posts

Posted 25 August 2007 - 08:25 PM

Linux is unlikely to be popular enough for a long time for malware criminals to target it... If they can easily hit it on a cross platform infection, they might, but even that may not be worth their attention since Linux users tend to be relatively poor techies... That said, it is a good idea to use protection on any system since you never know when some criminal will decide you are a good victim today...
Budfred

Helpful link: SpywareBlaster...

MS MVP 2006 and ASAP Member since 2004

Please read the Instructions for posting requested logs and the article "So how did I get infected in the first place?"

#6 Elvis

Elvis

    Member

  • Full Member
  • Pip
  • 9 posts

Posted 25 August 2007 - 09:14 PM

Since I discovered this forum today I would like to congratulate you guy's on the public service you are offering to Windows user.

And don't underestimate Linux guy's This is how my desktop look like right now

http://fr.youtube.co...h?v=RMXELOygMOA

That video is a demonstration of Mandriva 2007 using KDE and Beryl as a window manager and I love it.

Edited by Elvis, 29 August 2007 - 08:59 PM.

Antivirus:
None
Antispyware software:
None
OS: Mandriva 2007 spring

What I'm I doing here?? I'm Just trying to keep current on my windows skill for professional reason.

Posted Image

#7 screen317

screen317

    SWI Sentinel

  • Global Moderator
  • PipPipPipPipPip
  • 8,814 posts

Posted 26 August 2007 - 12:49 AM

Note that Linux open source developers are not the same as the general population that uses Linux.

If Windows was open source, I'm sure that [insert developer here] could model Mac OSX functionality (see 0:23 in the video), and throw in plenty of other bells and whistles.

Going back to your example regarding the keylogger.


What if I don't want to make a keylogger?

What if I want to delete every file that you have instead?

What if I could bypass root execution?

Anything is possible that can be thought up. We went to the Moon, and created the Internet, after all.

Having used a Gentoo distro for a while, I'm relatively Linux-savvy.


I didn't like it though. I wonder why, but I can't figure it out >.<

Perhaps I'll give it another go in ten years when I can think of a reason why I would want to stop using Windows.

Edited by screen317, 26 August 2007 - 12:52 AM.

Please consider donating to help support the continued prompt and excellent services of this site.


#8 Elvis

Elvis

    Member

  • Full Member
  • Pip
  • 9 posts

Posted 26 August 2007 - 08:08 AM

Gentoo is a pretty heavy Linux distribution for someone who would want to migrate.

From distrowatch

Gentoo Linux is a versatile and fast, completely free Linux distribution geared towards developers and network professionals. Unlike other distros, Gentoo Linux has an advanced package management system called Portage.


For a person who use windows for most of it's life (Like me) there are easier distribution to master. There is also the choice of the windows manager that is very important for new Linux user. My first Linux experience was with the very popular Ubuntu distro, which use the gnome window manager. And I had a very frustrating experience with it! So I forgot about it for a few week. Then I tried a different distribution wich was Mandriva one. It used the KDE desktop environment and I found it a lot more user friendly and more powerful and secure than XP.

Security wise I like the open approach. Most security fix come during the development phase (Alpha and Beta testing) and the security flaw are found by the developer and a fix is available for the public within hour of it's discovery. With MS someone outside of MS find a security flaw do some damage, then MS plug the hole. With the Open source system the security flaw are discovered by the team of developer's. Which mean that the security hole is plug even before it can be exploited by hacker.

screen317 you ask if it is possible to bypass root??

Well it's not possible and the developers will never allow it to be bypass. There is just no back door build in to allow an administrator to recover or bypass the root password. From within the operating system. And since the boot manager (grub or lilo) is protected by the root password it would be impossible to initiate a script in the boot manager without the owner consent.

Well why would someone would like to stop using windows? Maybe just to get the fun back into computing :whistle:

There is a lot of computer user who are really not computer savvy and that can be easy prey for criminal. And this is why a Linux based OS is a good idea for those user. At least the OS is secure from the start and doesn't need to be continually maintain by the user. I'll give you an example.

I own a very small computer business in a rural area.

The other day one of my costumer (sheep farmer) saw one of my publicity and ask me about my permanent solution for spyware and Virus. I told him that it was pretty radical but if he was willing then he could kiss is malware, spyware, tuppeware and virus problem goodbye. He told me that he was pretty fed up and that it was the third time he needed to had his computer fix. His computer was one years old BTW :gasp: (He has three teenager using is computer :rolleyes: ) . It was a Emachine if I remember. So I Put is hardrive in my PC, burn is personnal directory and install and preconfigure mandriva free.

I email him a week later just to check if he is OK. And he tell me that is kids are chatting online (Kopete) downloading music (Frostwire) that is youngest daughter is enjoying the game (Gcompris). He is telling me that is dial-up connection as never been so good and that he and his wife are using Open-Office to do there farm management.

Why did this person switch to Linux ? Just for peace of mind.

Could he had taken the time to learn and to teach his kids how to use Windows XP properly ?

No he is a farmer and he is very busy!

That's my two cent.

Edited by Elvis, 26 August 2007 - 08:11 AM.

Antivirus:
None
Antispyware software:
None
OS: Mandriva 2007 spring

What I'm I doing here?? I'm Just trying to keep current on my windows skill for professional reason.

Posted Image

#9 racooper

racooper

    Master of my own Domain

  • Retired Staff
  • PipPipPipPipPip
  • 1,420 posts

Posted 26 August 2007 - 01:15 PM

There are ways to gain root privileges that have nothing to do with the kernel developers. I had a Linux machine rootkitted via an SSH exploit that I had failed to patch, and I nearly lost the whole box. I got lucky and had the data on a separate partition, so I was able to recover everything important.

Any operating system is vulnerable to a determined cracker. The problem is that there are potential security issues with any third party software installed, from Apache to SSH to a php-based web app that doesn't validate it's input safely.

I run Linux on three servers currently, and plan to have a Linux test desktop when I next redo my PC. However, as much as I can encourage it, my clients will not become Linux users...especially not until they can have their Microsoft Office, Quicken/Quickbooks, and games available without having to jump through hoops to configure Wine, or X Windows, or 3D drivers, or audio. Even the concept of a Limited User is foreign to most of the casual (and even business) computer user.

#10 Elvis

Elvis

    Member

  • Full Member
  • Pip
  • 9 posts

Posted 26 August 2007 - 04:23 PM

There are ways to gain root privileges that have nothing to do with the kernel developers. I had a Linux machine rootkitted via an SSH exploit that I had failed to patch, and I nearly lost the whole box. I got lucky and had the data on a separate partition, so I was able to recover everything important.

Any operating system is vulnerable to a determined cracker. The problem is that there are potential security issues with any third party software installed, from Apache to SSH to a php-based web app that doesn't validate it's input safely.

I run Linux on three servers currently, and plan to have a Linux test desktop when I next redo my PC. However, as much as I can encourage it, my clients will not become Linux users...especially not until they can have their Microsoft Office, Quicken/Quickbooks, and games available without having to jump through hoops to configure Wine, or X Windows, or 3D drivers, or audio. Even the concept of a Limited User is foreign to most of the casual (and even business) computer user.


Of course a server is alway more prone to attack because of it's very nature. And keeping it current and updated is mandatory.

We don't have to jump through hoops anymore to have 3D acceleration, audio, printer, and Wifi working out of the box or even with the original win XP driver in the case of Wifi. the open Office suite is getting better and better. For big game title you can count on ID software to have a linux port for there game but we can always use cedega to play a good number of commercial title. But the main thing that in my opinion will attract the largest number of WinXP user to Linux is ............................... Porn :eek:

I know this can be shocking for some but the vast majority of my client who end up having an infected computer have been ..... well you know :whistle: going on unscrupulous Porn site.

This situation is causing me to have a moral dilemma. Do I fix there winXP and see them back in a few month Or configure a Linux distribution for there specific need :whistle: and never hear from them again?
Antivirus:
None
Antispyware software:
None
OS: Mandriva 2007 spring

What I'm I doing here?? I'm Just trying to keep current on my windows skill for professional reason.

Posted Image

#11 racooper

racooper

    Master of my own Domain

  • Retired Staff
  • PipPipPipPipPip
  • 1,420 posts

Posted 26 August 2007 - 10:24 PM

Microsoft == Job Security

You can warn someone until your eyes bleed and your tongue falls out of your face. If the user doesn't want to listen, then I'm more than happy to keep taking their money to fix their PC every six months to a year.

I've gotten my family (parents and in-laws) using Mozilla Firefox and Thunderbird, and make sure they have updated antivirus and run periodic spyware scans. Their only PCs I had problems with belonged to my college-aged sisters-in-law...

#12 Elvis

Elvis

    Member

  • Full Member
  • Pip
  • 9 posts

Posted 28 August 2007 - 07:43 AM

Microsoft == Job Security

Their only PCs I had problems with belonged to my college-aged sisters-in-law...


Microsoft == Job Security :rofl:

Well that just said it all

Thank Bill


PS: what is your sister in law using her computer for??
Antivirus:
None
Antispyware software:
None
OS: Mandriva 2007 spring

What I'm I doing here?? I'm Just trying to keep current on my windows skill for professional reason.

Posted Image

#13 racooper

racooper

    Master of my own Domain

  • Retired Staff
  • PipPipPipPipPip
  • 1,420 posts

Posted 28 August 2007 - 08:11 PM

Whatever college students do. that was several years ago...file sharing (music downloading), IM, email, unintentionally collecting virii....

They've gotten smarter since graduation, and after I've griped at them enough after having to clean up both of their PCs....




Member of UNITE
Support SpywareInfo Forum - click the button