Language Selection

English French German Italian Portuguese Spanish

Linux is as secure as ever

Filed under
Linux
Security

There have been several stories proclaiming that a recent Linux infection proves Windows malware monopoly is over and that Think Linux is free from malware? Think again; it's been hacked. Much as it pains me to disagree with the good people, they're wrong.

Here's what really happened. UnrealIRCd, a rather obscure open-source IRC (Internet Relay Chat) server, wasn't so much hacked as the program it was letting people download has been replaced by one with a built-in security hole.

Let me spell it out for you. Even before this latest fiasco, no one who cares about security was letting IRC clients or servers run on their systems. It's always been too easy to abuse.

In this particular case, the group behind UnrealIRCd were just dumb about tracking their own program. Clearly, they never bothered to check their own code. The users, by virtue of the fact that they were running IRC in the first place, don't get any prizes for being bright either. After all, they were running IRC: Case closed.

Rest Here




How much more malware is lurking

zdnet.com: The revelation that the open-source Unreal IRC server download has been infected with malware for some eight months is pretty worrying. But the added discovery that this Trojan horse made its way into the Gentoo distro is real reason for the Linux community to re-examine how trusted repositories are handled.

Rest Here

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Why open source runs the world

GNU/Linux as an operating system and open source as a movement have become phenomenal driving forces in the technology world. Without it the internet wouldn't exist as the free and open resource we enjoy today. Read more

Google's Chrome to pull plug on plugins next September

  • Google's Chrome to pull plug on plugins next September
    Google is moving ahead with its plan to end support for Netscape plugins in its Chrome browser – and has set next September as the date for when they will stop working altogether.
  • The Final Countdown for NPAPI
    Last September we announced our plan to remove NPAPI support from Chrome, a change that will improve Chrome’s security, speed, and stability as well as reduce complexity in the code base. Since our last update, NPAPI usage has continued its decline. Given this usage data, we will continue with our deprecation plan.
  • Fair Warning: Chrome Team Starts Final Countdown for NPAPI Extensions
    As we've reported several times, Google is introducing big changes in its Chrome browser, especially when it comes to how the browser handles extensions. If you've regularly used either or both of the most popular open source Internet browsers--Google Chrome and Mozilla Firefox--then you're probably familiar with the performance and security problems that some extensions for them can cause.

Antarctic ice might be thicker than previously thought, reveals Linux powered underwater robot seaBED

SeaBED, a submersible robot powered by Linux, was recently used to scan the huge frozen ice sheets across Antarctica. That has helped scientists get detailed and high-resolution 3-D maps of the frozen continent for the first time. Researchers at the British Antarctic Survey will now be able to know more regions which had earlier been difficult to access because of the hostile conditions prevailing in the area. Read more

Meizu and Canonical Reach Agreement to Release Ubuntu-Powered Meizu Handsets

Meizu is on a roll lately. The company has announced their newest flagship handset, Meizu MX4 Pro only two and a half months after they released the original MX4. This upgrade wasn’t actually needed, but Meizu saw an opportunity and decided to take it, they released a beastly handset and made it available at a rather affordable price point, which is a great thing. This handset improves upon MX4 in many aspects, bigger and higher-res screen is here, as well as more RAM, a more powerful processor and even a fingerprint scanner below the display. Meizu won’t stop there, rumors have been pointing towards further Meizu launches before the end of the years. According to reports, this Chinese manufacturer will launch 2 additional devices before the end of 2014. Read more Also: Ubuntu powered Meizu MX4 to hit market early 2015