|
Home > Archive > Unix Programming > December 2007 > JASS for viral intrusion??
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
JASS for viral intrusion??
|
|
| qazmlp1209@rediffmail.com 2007-12-14, 1:30 pm |
| If JASS is installed in the Solaris box, does it mean that it is
completely protected against any viral intrusion?
| |
| fjblurt@yahoo.com 2007-12-14, 1:30 pm |
| On Dec 14, 5:57 am, "qazmlp1...@rediffmail.com"
<qazmlp1...@rediffmail.com> wrote:
> If JASS is installed in the Solaris box, does it mean that it is
> completely protected against any viral intrusion?
No. Nothing can guarantee this.
| |
| Michael Vilain 2007-12-14, 7:23 pm |
| In article
<5e8754e1-96a7-47fe-95a6-1b87de08bab3@i29g2000prf.googlegroups.com>,
fjblurt@yahoo.com wrote:
> On Dec 14, 5:57 am, "qazmlp1...@rediffmail.com"
> <qazmlp1...@rediffmail.com> wrote:
>
> No. Nothing can guarantee this.
"It's impossible to make something foolproof because fools are so
ingenius"--Lazarus Long
--
DeeDee, don't press that button! DeeDee! NO! Dee...
| |
| Richard B. Gilbert 2007-12-14, 7:23 pm |
| qazmlp1209@rediffmail.com wrote:
> If JASS is installed in the Solaris box, does it mean that it is
> completely protected against any viral intrusion?
AIRC JASS is a script that changes file permissions to restrict access
to less than what some O/S files were installed with. I don't think
it's COMPLETE protection against ANYTHING. It does make unauthorized
removal or modification of the affected files more difficult.
I never heard of a Solaris virus which doesn't prove that there isn't
one. OTOH, I don't think that Solaris viruses (virii??) are at all
common! They are largely a PC/Windows phenomenon!
| |
| Gordon Burditt 2007-12-15, 1:41 am |
| >> If JASS is installed in the Solaris box, does it mean that it is[vbcol=seagreen]
I'll dispute that there is any such thing as "completely protected",
but here are some security measures as a start:
(1) Ensure that there is an "air gap" between any power source (including
batteries) and the system. 10 kilometers should be enough.
(2) Ensure that the system is not connected to any network. Bomb any
wireless network towers within 10 kilometers.
(3) If the system cannot be reached physically, it is more secure.
Throwing it into an active volcano is a start.
(4) A nuclear explosion, say, 100 kilotons at 10 meters, is pretty good
at securing a system.
(5) Most viruses are restricted to Earth. If you crash it (Earth or
the system) into the sun, the system should be safe from Earth viruses.
| |
| Alan Coopersmith 2007-12-18, 7:23 pm |
| rgilbert88@comcast.net writes in comp.unix.solaris:
|I never heard of a Solaris virus which doesn't prove that there isn't
|one. OTOH, I don't think that Solaris viruses (virii??) are at all
|common! They are largely a PC/Windows phenomenon!
There have been network worms which spread across Solaris machines -
there was one a year or so ago when the telnet security hole was found
that used that hole to propogate. The first known Internet worm
spread using holes in sendmail and finger on SunOS almost 20 years ago.
--
Alan Coopersmith * alanc@alum.calberkeley.org * Alan.Coopersmith@Sun.COM
http://blogs.sun.com/alanc/ * http://people.freedesktop.org/~alanc/
http://del.icio.us/alanc/ * http://www.csua.berkeley.edu/~alanc/
Working for, but definitely not speaking for, Sun Microsystems, Inc.
| |
| Richard B. Gilbert 2007-12-18, 7:23 pm |
| Alan Coopersmith wrote:
> rgilbert88@comcast.net writes in comp.unix.solaris:
> |I never heard of a Solaris virus which doesn't prove that there isn't
> |one. OTOH, I don't think that Solaris viruses (virii??) are at all
> |common! They are largely a PC/Windows phenomenon!
>
> There have been network worms which spread across Solaris machines -
> there was one a year or so ago when the telnet security hole was found
> that used that hole to propogate. The first known Internet worm
> spread using holes in sendmail and finger on SunOS almost 20 years ago.
>
Ahh yes. The Robert Morris worm. I remember it although I was not
involved at the time. VMS was not infected by that one.
I think there is some sort of technical distinction between a virus and
a worm though I would hate to have to try to define it. The generic
term is "malware".
| |
| Måns Rullgård 2007-12-18, 7:23 pm |
| "Richard B. Gilbert" <rgilbert88@comcast.net> writes:
> Alan Coopersmith wrote:
>
> Ahh yes. The Robert Morris worm. I remember it although I was not
> involved at the time. VMS was not infected by that one.
>
> I think there is some sort of technical distinction between a virus
> and a worm though I would hate to have to try to define it. The
> generic term is "malware".
Traditionally, a virus is a code fragment that attaches itself to
executable files in order to spread. A worm, on the other hand, is a
complete program, which when executed will attempt to load itself onto
networked systems through exploitation of vulnerabilities, such as
buffer overflow attacks, in programs running there, for instance HTTP
servers or mail clients.
Nowadays, the proper viruses (no, not virii) are less common, largely
replaced by worms, and the term virus is often misused to refer to
these.
Malware is a fairly recent word, formed as a contraction of "malicious
software", and its meaning encompasses viruses, worms, Trojans, and
any other software created with malicious intent.
--
Måns Rullgård
mans@mansr.com
|
|
|
|
|