Thread Tools Search this Thread
Top Forums UNIX for Dummies Questions & Answers virus????????
# 8  
Old 07-01-2002
I have never seen anyone attempt to attack a unix system via a true virus. And the only true unix virus that I ever saw were written by researchers just to demonstrate that it could be done. Worms and trojan horses are the primary problems. And some folks call these (incorrectly) viruses, especially if they involve machine language payloads.

But note that the rlogin bug only requires that the rlogin executable be present on the system. You don't need to allow the r-cmds protocol on your network. You don't need to be running or even have a rlogind anywhere. You don't even need to have connected your system to a network. If you have a broken rlogind executable on your system, any non-root user can use it to become root.

And code delivered to your system via a trojan horse or worm might try it. And rlogin was just an example anyway. Most of the attacks on unix in the past decade have used buffer overrruns.
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Windows & DOS: Issues & Discussions

Windows XP keeps getting virus

Hi All, My old laptop has Windows XP. I reinstalled only last month and installed AVG free anti-virus. It's like every month, I get some kind of spyware or virus issue. which anti-virus software you guys using? Thanks. (8 Replies)
Discussion started by: samnyc
8 Replies

2. UNIX Desktop Questions & Answers

Virus and Malware

How do i manage virus and melware in Unix ? (2 Replies)
Discussion started by: Suriano10
2 Replies

3. Windows & DOS: Issues & Discussions

virus help:

:confused: folder option is dissapiaring in tool menu iam formatting c drive after removal of this virus & also regedit is also not opening the messerge say's administrater disabled with out formattiung how ican solve this problem i.e iwant to get folder options& regedit (2 Replies)
Discussion started by: seshumohan
2 Replies

4. UNIX for Dummies Questions & Answers

unix and virus

why one normally hears tht virus has stuck windows and one does not hear that unix has been stuck by virus...wht make unix so powerfull tht virus does not stuck it. (9 Replies)
Discussion started by: taurian1234
9 Replies

5. UNIX for Dummies Questions & Answers

Virus Software

I'm trying to find out what kind of virus software UNIX has, if any. Please let me know and please inform me of the prefered types. Thanks (1 Reply)
Discussion started by: GlockCW
1 Replies

6. UNIX for Dummies Questions & Answers

Worm Virus

I am running Unix SCO and have discovered the worm virus. It is enabled through a BIOS connections, I am able to get around it using telnet, believe it or not. - Can anyone recommend a virus scan software? - Has anyone successfully used a virus scan software on unix without a problem? ... (2 Replies)
Discussion started by: ana_cr32
2 Replies

7. UNIX for Dummies Questions & Answers

virus detection

IS there virus software for unix? I worked in a Solaris environment and dont remember having anything. I also ask because the current enviroment i am working on is Microsoft and they argue that they do not use unix because of virus detection. Any input would be greatly appreciated. (1 Reply)
Discussion started by: pbonilla
1 Replies

8. UNIX for Dummies Questions & Answers

Virus !!!!!!!!!!!!!!!!!!!

can linux get a virus on the boot sec from windows? becuse my buddys computer micro trend cmos virus keeps telling him that there is a boot sec virus on my hdd is that possable or is the box being dumb and looking at the linux boot as a virus? it was set up as a windows box not a linux... (4 Replies)
Discussion started by: amicrawler2000
4 Replies

9. Cybersecurity

do i have a virus???

nice board, makes interesting reading! glad to know im not the only one to have problems!! :D :D last week, our database started to crash (run on unix / solaris) for no apparant reason. the problem seems to be intermiant which lead us to believe it may be a hardware problem causing the... (2 Replies)
Discussion started by: mdma
2 Replies
Login or Register to Ask a Question
freshclam(1)							  Clam AntiVirus						      freshclam(1)

freshclam - update virus databases SYNOPSIS
freshclam [options] DESCRIPTION
freshclam is a virus database update tool for ClamAV. OPTIONS
Freshclam reads its configuration from freshclam.conf. The settings can be overwritten with command line options. -h, --help Output help information and exit. -V, --version Print version number and exit. -v, --verbose Be verbose. This option causes freshclam to print much additional information. --quiet Be quiet - output only error messages. --no-warnings Don't print and log warnings. --stdout Write all messages to stdout. -l FILE, --log=FILE Write download report to FILE. --datadir=DIRECTORY Install new database in DIRECTORY. The directory must be writable for the '' user or unprivileged user running freshclam. -u USER, --user USER Run as USER. By default (when started by root) freshclam drops privileges and operates as the '' user. -d, --daemon Run in a daemon mode. This option requires --checks. -p FILE, --pid=FILE Write daemon's pid to FILE. --no-dns This option forces old non-DNS verification method (without a TTL delay). -c #n, --checks=#n Check #n times per day for a new database. #n must be between 1 and 50. --daemon-notify=/path/to/clamd.conf Notify the daemon about the new database. By default it reads a hardcoded config file but you can use a different one. Both local and TCP sockets are supported. -a IP, --local-address=IP Use (local) IP for HTTP downloads. Useful for multi-homed systems. If binding fails for whatever reason, a warning is issued and freshclam behaves like without this flag. --on-error-execute=COMMAND Execute COMMAND if error occurred. Remember, that virus database freshness is the most important thing in anti-virus system. With this option freshclam can alert you (eg. send SMS) when something is going wrong. --on-update-execute=COMMAND Execute COMMAND after successful update. --on-outdated-execute=COMMAND Execute COMMAND when freshclam reports outdated version. In the command string %v will be replaced by the new version number. --list-mirrors Print mirror details from mirrors.dat (cache file for the mirror manager). --submit-stats[=/path/to/clamd.conf] Upload detection statistics to the ClamAV Project (see freshclam.conf(5):SubmitDetectionStats for more details). No database update will be performed. This option only works in the interactive mode. EXAMPLES
(0) Download database to default directory: freshclam (1) Download database to current directory: freshclam --datadir=. (2) Run as a daemon and check 2 times per day for new database: freshclam -d -c 2 RETURN CODES
Some return codes of freshclam can be overwritten with a built-in command EXIT_n which can be passed to --on-*-execute, eg. --on-update-execute=EXIT_1 will force freshclam to always return 1 after successful database update. 0 : Database is up-to-date or successfully updated. 40: Unknown option passed. 50: Can't change directory. 51: Can't check MD5 sum. 52: Connection (network) problem. 53: Can't unlink file. 54: MD5 or digital signature verification error. 55: Error reading file. 56: Config file error. 57: Can't create new file. 58: Can't read database from remote server. 59: Mirrors are not fully synchronized (try again later). 60: Can't get information about '' user from /etc/passwd. 61: Can't drop privileges. 62: Can't initialize logger. FILES
/etc/freshclam.conf CREDITS
Please check the full documentation for credits. AUTHOR
Tomasz Kojm <> SEE ALSO
freshclam.conf(5), clamd(8), clamd.conf(5), clamscan(1) ClamAV 0.96.1 February 12, 2007 freshclam(1)