Linked by Jordan Spencer Cunningham on Mon 14th Jun 2010 23:58 UTC
Bugs & Viruses Recently, the Linux version of UnrealIRCd was discovered to have had a Trojan worm its way into the source code. Even more embarrassing for the developers of Unreal is that the Trojan's been holding open the backdoor in the source code since November of 2009-- not very recently. And, of course, bloggers and press in general are taking the opportunity of another breach in Linux security to point out doomsday devices that don't really exist.
Thread beginning with comment 430058
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: Comment by ssa2204 - problem
by lemur2 on Tue 15th Jun 2010 06:28 UTC in reply to "Comment by ssa2204"
lemur2
Member since:
2007-02-17

But it does mean that Linux users who believe they can't be infected by malware are simply wrong.


This is very oblique, and more than a bit misleading.

For example ... Linux users who believe they can't be infected by malware because they use package managers to install their signed open source software still have no incident on record, after all these years, to contradict that belief.

Anything unsigned and closed, or indeed anything simply unsigned and binary, that is downloaded and installed without checking (to any system at all) could potentially contain a malware payload. Windows users, of all people, should be aware of this.

Edited 2010-06-15 06:30 UTC

Reply Parent Score: 2

steogede2 Member since:
2007-08-17

"But it does mean that Linux users who believe they can't be infected by malware are simply wrong.


... Linux users who believe they can't be infected by malware because they use package managers to install their signed open source software still have no incident on record, after all these years, to contradict that belief.
"

I think "can't" is a bit too strong a word, I think "extremely unlikely to" is a better phrase. "can't" is too black and white.

"can't" implies that unless it happens, then it cannot and therefore will not happen. This in-turn implies that once it has happened, it can and therefore will happen.

If you were to say that it is extremely unlikely (never in x years), and then it happens, you can still say that it is extremely unlikely (once in x years).

Reply Parent Score: 2

lemur2 Member since:
2007-02-17

"But it does mean that Linux users who believe they can't be infected by malware are simply wrong.

... Linux users who believe they can't be infected by malware because they use package managers to install their signed open source software still have no incident on record, after all these years, to contradict that belief.


I think "can't" is a bit too strong a word, I think "extremely unlikely to" is a better phrase. "can't" is too black and white.

"can't" implies that unless it happens, then it cannot and therefore will not happen. This in-turn implies that once it has happened, it can and therefore will happen.

If you were to say that it is extremely unlikely (never in x years), and then it happens, you can still say that it is extremely unlikely (once in x years).
"

Fair enough.

http://en.wikipedia.org/wiki/Advanced_Packaging_Tool#History
APT was introduced in 1998 and original test builds were circulated on IRC. The first Debian version that included it was Debian 2.1, released on 9 March 1999.


So then to describe the record for infection of end users systems via APT open source repositories you would suggest it be described as "it is extremely unlikely, say nonce in eleven years".

OK, I can live with that.

Here are the estimated infection rates for another frequently-used system, for objective comparison purposes:
http://gorumors.com/crunchies/malware-infection-rate-worldwide/

Edited 2010-06-15 10:24 UTC

Reply Parent Score: 2