cross-platform virus
Lukas Sabota
punkrockguy318 at comcast.net
Sun Apr 9 17:53:38 BST 2006
On Mon, 2006-04-10 at 00:00 +1000, Sasha Tsykin wrote:
> Lukas Sabota wrote:
> >> Fair enough, it actually is quite a worrying scenario. If, for example,
> >> the menu entry for synaptic were to be targeted, and changed to load a
> >> virus instead, then you would type the password into gksudo without
> >> realising you are activating a virus. This definitely needs to be fixed.
> >> Maybe if there is the command being run in BIG LETTERS next to the place
> >> where you type in your password.
> >
> > Yes, but if they are hacking the desktop entry, they could also hack the
> > sudo command as well. They could create a "gksud" a psuedo-sudo
> > program. This program could say /usr/bin/synaptic, but really
> > run /usr/bin/VirusXXx. So I'm not sure how much emphasizing the command
> > name would help.
> >
> Yes, but this program would not be an issue. The point is not some
> random program to get you to type in your password. The point is to
> authorise a virus for root access. A gksud command could not do that. It
> could only get you to type you password in.
>
> Sasha
>
Yes, but once a "gksud" program got a password, it could easily run sudo
with that password for the virus/trojan. Am I correct?
God Bless,
Lukas
More information about the sounder
mailing list