Quantcast

Don't have an account? Register Now! Forgot password?

Related Articles
Maximum IT
SEE MORE MAXIMUM IT
News

Linux is Under Attack!

Posted 08/27/08 at 10:43:55 AM  by Paul Lilly

comment Commentsprint Printemail EmailDeliciousDiggStumbleUponRedditFacebookSlashdot

Some Linux users are getting a feel for what it's like to be one of the Windows faithful, as the open source community looks to be under siege. The U.S. Computer Emergency Readiness Team (CERT) has issued a warning for "active attacks" against Linux-based infrastructures using compromised SSH keys.

Specifics remain scarce, but the attacks appear to use stolen SSH keys to gain access to a system, after which time the attacker uses local kernel exploits to gain root access and install a rootkit called phalanx2.

"Phalanx2 appears to be a derivative of an older rootkit named "phalanx". Phalanx2 and the support scripts within the rootkit, are configured to systematically steal SSH keys from the compromised system. These SSH keys are sent to the attackers, who then use them to try to compromise other sites and other systems of interest at the attacked site."

The US-CERT has outlined ways Linux users can reduce the risk of attack, as well as what steps should be taken if a compromise is already confirmed.

Image Credit: Flickr dsearl

COMMENTS:3
TAGS: operating system, Software, Security, linux, OS
COMMENTS
avatarThe real question

Submitted by Dwood15 on Wed, 08/27/2008 - 7:02pm

The real question is how can one tell if they have been compromised?

Login or register to post comments
avatarI know what you mean.  It

Submitted by xiqtem on Tue, 09/02/2008 - 4:49pm

I know what you mean.  It gets you thinking.  I've always said that linux is not bulletproof.  So many loyalists to linux and mac blindly believe they are invulnerable.  I use all OS's I can find.  They all have their strengths and weaknesses.

Login or register to post comments
avatarNinja Virus?

Submitted by AntiHero on Mon, 09/29/2008 - 11:35am

Agreed with that one my friend. Linux has vulnerabilities that most malware/virus programmers don't care about because typically a linux user will read what they're about to agree to, and are considered "power users" which are knowledgable with computers, unlike 70% of windows users who are common people who click yes to everything (like my mother does, i've spent countless hours fixing mistakes she made) Mac is just that it's so unused for corporations, that no one can suffer large problems. Majority of computer owners are Windows users, and a large fraction of them are inexperienced and think popups are usually positive things. (In the case of the Antivirus 2008 virus)

Scary thought that we may be infected and not knowledgable of the fact.  

Login or register to post comments

This Month's Issue
Maximum PC
SUBSCRIBE NOW
AND SAVE!
FEATURE How to Get FREE Programs, Services, Software & MoreFEATURE Digital Photo Printer RoundupHOW TOBuild a 3D CameraFEATUREDIY Arcade PCWHITE PAPERHow TRIM Works