SlideShare a Scribd company logo

Linux Security Myth

Mackenzie Morgan, profile picture
Mackenzie Morgan

Mackenzie Morgan gave a presentation at Ohio LinuxFest 2010 about the Linux security myth. They discussed that while Linux is less vulnerable to viruses than Windows, it can still be affected by malware through email trojans, untrusted software from third-party repositories, and browser-based attacks. However, users can protect themselves by only installing software from trusted software sources, being cautious of launchers from unknown origins, and using browser plugins like NoScript to block malicious scripts.

Technology
1 of 38
Downloaded 71 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
Linux Security Myth Mackenzie Morgan Ohio LinuxFest 2010 11 September 2010 Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 1 / 35
Introduction Outline 1 Introduction 2 Vocabulary 3 What can still hurt me? 4 What protection is there? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 2 / 35
Introduction Me Mackenzie Morgan Computer Science student Ubuntu Developer Kubuntu user http://ubuntulinuxtipstricks.blogspot.com ← find slides here Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 3 / 35
Introduction This Talk Linux Zealot: Try Linux! It doesn’t get viruses! Average Person: No viruses? I’m invincible! Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 4 / 35
Vocabulary Outline 1 Introduction 2 Vocabulary 3 What can still hurt me? 4 What protection is there? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 5 / 35
Vocabulary Malware Malware (or “badware”) is an umbrella term for viruses, trojans, worms, rootkits, etc. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 6 / 35
Vocabulary Virus Viruses infect individual files. They spread when people share those files. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 7 / 35
Vocabulary Social Engineering Social Engineering is tricking people into doing something that is bad for security. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 8 / 35
Vocabulary Trojan Trojans are malware that get installed via social engineering. . . or, well, lying. “I’m a fun game and totally safe! but not really, I’m actually going to steal your passwords. . . ” Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 9 / 35
Vocabulary Worm A worm infects other systems, automatically, usually over a network. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 10 / 35
Vocabulary Botnet A botnet is a group of systems infected by malware which operate as a collective and are controlled by a erm. . . jagoff. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 11 / 35
Vocabulary Botnet A botnet is a group of systems infected by malware which operate as a collective and are controlled by a erm. . . jagoff. Yes, I’m from Pittsburgh. How’d you guess? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 11 / 35
Vocabulary Rootkit A rootkit keeps the activities of an unauthorised user hidden so that you can’t tell your system has been owned. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 12 / 35
Vocabulary Keylogger A keylogger tracks everything you type. Yes, including passwords. It could be hardware (see ThinkGeek), but usually software. There are legitimate(-ish) uses. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 13 / 35
Vocabulary Browser-based Attack A browser-based attack is any attack that takes place inside the web browser. They are usually not limited to a specific OS. Examples: Cross-site Scripting (XSS) – using Javascript on one webpage to steal data from another Tracking cookies – harvests the information stored in your browser by other websites Cookie jacking – stealing credentials for other websites from your browser’s cookies Click jacking – hiding clickable objects on a webpage on top of other objects so that you’re not clicking what you think you’re clicking Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 14 / 35
Vocabulary Phishing Phishing is social engineering aimed at making you believe you are interacting with someone else whom you trust Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 15 / 35
What can still hurt me? Outline 1 Introduction 2 Vocabulary 3 What can still hurt me? 4 What protection is there? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 16 / 35
What can still hurt me? What’s still a problem? All of those Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 17 / 35
What can still hurt me? But what about no viruses? Windows ones usually won’t run, even in Wine Several hundred for Linux Only ∼30 in the wild ever No known viruses exploiting current vulnerabilities Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 18 / 35
What can still hurt me? Email Trojans “Check out this cool new game! http://example.com/foo.desktop” Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 19 / 35
What can still hurt me? Untrusted Software .deb for “screensaver” on gnome-look.org Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 20 / 35
What can still hurt me? Untrusted Software .deb for “screensaver” on gnome-look.org . . . and now you’re on a botnet http://ubuntuforums.org/showthread.php?t=1349678 Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 20 / 35
What can still hurt me? Browser-based attacks Unless only for Internet Explorer Firefox? Opera? Chrome? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 21 / 35
What can still hurt me? Phishing There’s no patch for gullibility Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 22 / 35
What can still hurt me? Rootkits If any of the previous work, the attacker might install one Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 23 / 35
What protection is there? Outline 1 Introduction 2 Vocabulary 3 What can still hurt me? 4 What protection is there? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 24 / 35
What protection is there? Trusted software sources Stick to your distro’s repos Otherwise, source directly from upstream Avoid non-software in .deb or .rpm format Heed warnings about failed signature checks Arch Linux does not sign packages Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 25 / 35
What protection is there? Launchers You get a .desktop from web/email. . . Do you know what it’ll run? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 26 / 35
What protection is there? Launchers You get a .desktop from web/email. . . Do you know what it’ll run? Could be anything Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 26 / 35
What protection is there? Launchers in KDE Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 27 / 35
What protection is there? Launchers in GNOME Fedora’s & openSUSE’s GNOME: Ubuntu’s GNOME: Ubuntu has a policy against “ignore this security warning” buttons Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 28 / 35
What protection is there? Browser - Javascript Use NoScript Users might not be equipped to know what to allow, but it blocks cross-site scripting & click-jacking Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 29 / 35
What protection is there? Browser - Encryption Don’t send passwords unencrypted! Lock icon: Means connection is encrypted and probably no man-in-the-middle NOT necessarily a sign that all is good! Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 30 / 35
What protection is there? Browser - Phishing But how do you know it’s the site it claims to be? Look at everything before the third slash—that’s the domain Check out this green thing Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 31 / 35
What protection is there? Minimal privileges Don’t login graphically as root! Why? Malware gets full access Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 32 / 35
What protection is there? Don’t need it? Don’t use it! Don’t login remotely with command line or push files to it? Uninstall your SSH and S/FTP servers Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 33 / 35
What protection is there? Detecting problems Find rootkits: rkhunter chkrootkit Warn of changes: tripwire Warn of attacks: snort These are advanced tools Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 34 / 35
What protection is there? Questions? Slides will be posted: http://ubuntulinuxtipstricks.blogspot.com Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 35 / 35

More Related Content

PDF
Is Linux Secure?
Mackenzie Morgan
 
PPTX
Metasploit framework in Network Security
Ashok Reddy Medikonda
 
PPTX
Introduction To Exploitation & Metasploit
Raghav Bisht
 
PPTX
Metasploit
Lalith Sai
 
PPTX
Metasploit framwork
Deepanshu Gajbhiye
 
PDF
Metaploit
Ajinkya Pathak
 
PPTX
Metasploit seminar
henelpj
 
PPTX
Hack beachpresetation
Yadev Jayachandran
 
Is Linux Secure?
Mackenzie Morgan
 
Metasploit framework in Network Security
Ashok Reddy Medikonda
 
Introduction To Exploitation & Metasploit
Raghav Bisht
 
Metasploit
Lalith Sai
 
Metasploit framwork
Deepanshu Gajbhiye
 
Metaploit
Ajinkya Pathak
 
Metasploit seminar
henelpj
 
Hack beachpresetation
Yadev Jayachandran
 

Viewers also liked (20)

PDF
linux security: interact with linux
Ammar WK
 
PDF
Security of Linux containers in the cloud
Dobrica Pavlinušić
 
PPT
Linux Security
nayakslideshare
 
PDF
How Many Linux Security Layers Are Enough?
Michael Boelen
 
PDF
Kernel Recipes 2013 - Linux Security Modules: different formal concepts
Anne Nicolas
 
PDF
Linux Security Scanning with Lynis
Michael Boelen
 
PPT
Security and Linux Security
Rizky Ariestiyansyah
 
ODP
Introduction To Linux Security
Michael Boman
 
PDF
Linux Security for Developers
Michael Boelen
 
PPTX
Essential security for linux servers
Juan Carlos Pérez Pardo
 
PDF
Linux security
sanchetanparmar
 
PDF
Linux security (outline)
R.Harish Navnit
 
PDF
Linux Security best Practices with Fedora
Uditha Bandara Wijerathna
 
PPT
Linux security-fosster-09
Dr. Jayaraj Poroor
 
PPTX
Game cih
Harsh Malpani
 
PPTX
File System Implementation & Linux Security
Geo Marian
 
PDF
Torrent technology
Harsh Malpani
 
PPTX
Ethical hacking Chapter 9 - Linux Vulnerabilities - Eric Vanderburg
Eric Vanderburg
 
PDF
2009-08-11 IBM Teach the Teachers (IBM T3), Linux Security Overview
Shawn Wells
 
PPTX
Linux security introduction
Mohamed Gad
 
linux security: interact with linux
Ammar WK
 
Security of Linux containers in the cloud
Dobrica Pavlinušić
 
Linux Security
nayakslideshare
 
How Many Linux Security Layers Are Enough?
Michael Boelen
 
Kernel Recipes 2013 - Linux Security Modules: different formal concepts
Anne Nicolas
 
Linux Security Scanning with Lynis
Michael Boelen
 
Security and Linux Security
Rizky Ariestiyansyah
 
Introduction To Linux Security
Michael Boman
 
Linux Security for Developers
Michael Boelen
 
Essential security for linux servers
Juan Carlos Pérez Pardo
 
Linux security
sanchetanparmar
 
Linux security (outline)
R.Harish Navnit
 
Linux Security best Practices with Fedora
Uditha Bandara Wijerathna
 
Linux security-fosster-09
Dr. Jayaraj Poroor
 
Game cih
Harsh Malpani
 
File System Implementation & Linux Security
Geo Marian
 
Torrent technology
Harsh Malpani
 
Ethical hacking Chapter 9 - Linux Vulnerabilities - Eric Vanderburg
Eric Vanderburg
 
2009-08-11 IBM Teach the Teachers (IBM T3), Linux Security Overview
Shawn Wells
 
Linux security introduction
Mohamed Gad
 
Ad

Similar to Linux Security Myth (20)

PDF
"Viruses Exploits Rootkits the Dilemma of a Linux Product Manager" by Alexand...
eLiberatica
 
PDF
On hacking & security
Ange Albertini
 
PPT
Threats, Vulnerabilities & Security measures in Linux
Amitesh Bharti
 
PPT
Chapter 10
cclay3
 
PPTX
Botnets Attacks.pptx
MuhammadRehan856177
 
PPT
Linux Operating System Vulnerabilities
Information Technology
 
PPT
Linux Vulnerabilities
SecurityTube.Net
 
PPTX
Mitppt
Aarti Prakash
 
PDF
Crouching powerpoint, Hidden Trojan
Maarten Van Horenbeeck
 
PPT
BPotter-L1-05
webuploader
 
PDF
Security on the Mac
Allison Sheridan
 
PDF
Your First Guide to "secure Linux"
Toshiharu Harada, Ph.D
 
PDF
Invited Talk - Cyber Security and Open Source
hack33
 
PPTX
Information about malwares and Attacks.pptx
malikmuzammil2326
 
PDF
Ch14 security
Welly Dian Astika
 
PDF
Crouching Powerpoint, Hidden Trojan
guest17b7c7
 
PPT
Malware
Nikola Milosevic
 
PDF
Dan Guido SOURCE Boston 2011
Source Conference
 
PDF
Vale Security Conference - 2011 - 17 - Rodrigo Rubira Branco (BSDaemon)
Vale Security Conference
 
PDF
Hacking the Company : Risks with carbon-based lifeforms using vulnerable systems
khalavak
 
"Viruses Exploits Rootkits the Dilemma of a Linux Product Manager" by Alexand...
eLiberatica
 
On hacking & security
Ange Albertini
 
Threats, Vulnerabilities & Security measures in Linux
Amitesh Bharti
 
Chapter 10
cclay3
 
Botnets Attacks.pptx
MuhammadRehan856177
 
Linux Operating System Vulnerabilities
Information Technology
 
Linux Vulnerabilities
SecurityTube.Net
 
Mitppt
Aarti Prakash
 
Crouching powerpoint, Hidden Trojan
Maarten Van Horenbeeck
 
BPotter-L1-05
webuploader
 
Security on the Mac
Allison Sheridan
 
Your First Guide to "secure Linux"
Toshiharu Harada, Ph.D
 
Invited Talk - Cyber Security and Open Source
hack33
 
Information about malwares and Attacks.pptx
malikmuzammil2326
 
Ch14 security
Welly Dian Astika
 
Crouching Powerpoint, Hidden Trojan
guest17b7c7
 
Malware
Nikola Milosevic
 
Dan Guido SOURCE Boston 2011
Source Conference
 
Vale Security Conference - 2011 - 17 - Rodrigo Rubira Branco (BSDaemon)
Vale Security Conference
 
Hacking the Company : Risks with carbon-based lifeforms using vulnerable systems
khalavak
 
Ad

Recently uploaded (20)

PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
KodekX | Application Modernization Development
KodekX
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Cloud computing and distributed systems.
kkkkkhan
 
KodekX | Application Modernization Development
KodekX
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Teaching material agriculture food technology
LiaRayya
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 

Linux Security Myth

  • 1. Linux Security Myth Mackenzie Morgan Ohio LinuxFest 2010 11 September 2010 Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 1 / 35
  • 2. Introduction Outline 1 Introduction 2 Vocabulary 3 What can still hurt me? 4 What protection is there? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 2 / 35
  • 3. Introduction Me Mackenzie Morgan Computer Science student Ubuntu Developer Kubuntu user http://ubuntulinuxtipstricks.blogspot.com ← find slides here Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 3 / 35
  • 4. Introduction This Talk Linux Zealot: Try Linux! It doesn’t get viruses! Average Person: No viruses? I’m invincible! Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 4 / 35
  • 5. Vocabulary Outline 1 Introduction 2 Vocabulary 3 What can still hurt me? 4 What protection is there? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 5 / 35
  • 6. Vocabulary Malware Malware (or “badware”) is an umbrella term for viruses, trojans, worms, rootkits, etc. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 6 / 35
  • 7. Vocabulary Virus Viruses infect individual files. They spread when people share those files. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 7 / 35
  • 8. Vocabulary Social Engineering Social Engineering is tricking people into doing something that is bad for security. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 8 / 35
  • 9. Vocabulary Trojan Trojans are malware that get installed via social engineering. . . or, well, lying. “I’m a fun game and totally safe! but not really, I’m actually going to steal your passwords. . . ” Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 9 / 35
  • 10. Vocabulary Worm A worm infects other systems, automatically, usually over a network. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 10 / 35
  • 11. Vocabulary Botnet A botnet is a group of systems infected by malware which operate as a collective and are controlled by a erm. . . jagoff. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 11 / 35
  • 12. Vocabulary Botnet A botnet is a group of systems infected by malware which operate as a collective and are controlled by a erm. . . jagoff. Yes, I’m from Pittsburgh. How’d you guess? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 11 / 35
  • 13. Vocabulary Rootkit A rootkit keeps the activities of an unauthorised user hidden so that you can’t tell your system has been owned. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 12 / 35
  • 14. Vocabulary Keylogger A keylogger tracks everything you type. Yes, including passwords. It could be hardware (see ThinkGeek), but usually software. There are legitimate(-ish) uses. Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 13 / 35
  • 15. Vocabulary Browser-based Attack A browser-based attack is any attack that takes place inside the web browser. They are usually not limited to a specific OS. Examples: Cross-site Scripting (XSS) – using Javascript on one webpage to steal data from another Tracking cookies – harvests the information stored in your browser by other websites Cookie jacking – stealing credentials for other websites from your browser’s cookies Click jacking – hiding clickable objects on a webpage on top of other objects so that you’re not clicking what you think you’re clicking Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 14 / 35
  • 16. Vocabulary Phishing Phishing is social engineering aimed at making you believe you are interacting with someone else whom you trust Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 15 / 35
  • 17. What can still hurt me? Outline 1 Introduction 2 Vocabulary 3 What can still hurt me? 4 What protection is there? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 16 / 35
  • 18. What can still hurt me? What’s still a problem? All of those Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 17 / 35
  • 19. What can still hurt me? But what about no viruses? Windows ones usually won’t run, even in Wine Several hundred for Linux Only ∼30 in the wild ever No known viruses exploiting current vulnerabilities Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 18 / 35
  • 20. What can still hurt me? Email Trojans “Check out this cool new game! http://example.com/foo.desktop” Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 19 / 35
  • 21. What can still hurt me? Untrusted Software .deb for “screensaver” on gnome-look.org Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 20 / 35
  • 22. What can still hurt me? Untrusted Software .deb for “screensaver” on gnome-look.org . . . and now you’re on a botnet http://ubuntuforums.org/showthread.php?t=1349678 Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 20 / 35
  • 23. What can still hurt me? Browser-based attacks Unless only for Internet Explorer Firefox? Opera? Chrome? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 21 / 35
  • 24. What can still hurt me? Phishing There’s no patch for gullibility Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 22 / 35
  • 25. What can still hurt me? Rootkits If any of the previous work, the attacker might install one Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 23 / 35
  • 26. What protection is there? Outline 1 Introduction 2 Vocabulary 3 What can still hurt me? 4 What protection is there? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 24 / 35
  • 27. What protection is there? Trusted software sources Stick to your distro’s repos Otherwise, source directly from upstream Avoid non-software in .deb or .rpm format Heed warnings about failed signature checks Arch Linux does not sign packages Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 25 / 35
  • 28. What protection is there? Launchers You get a .desktop from web/email. . . Do you know what it’ll run? Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 26 / 35
  • 29. What protection is there? Launchers You get a .desktop from web/email. . . Do you know what it’ll run? Could be anything Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 26 / 35
  • 30. What protection is there? Launchers in KDE Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 27 / 35
  • 31. What protection is there? Launchers in GNOME Fedora’s & openSUSE’s GNOME: Ubuntu’s GNOME: Ubuntu has a policy against “ignore this security warning” buttons Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 28 / 35
  • 32. What protection is there? Browser - Javascript Use NoScript Users might not be equipped to know what to allow, but it blocks cross-site scripting & click-jacking Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 29 / 35
  • 33. What protection is there? Browser - Encryption Don’t send passwords unencrypted! Lock icon: Means connection is encrypted and probably no man-in-the-middle NOT necessarily a sign that all is good! Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 30 / 35
  • 34. What protection is there? Browser - Phishing But how do you know it’s the site it claims to be? Look at everything before the third slash—that’s the domain Check out this green thing Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 31 / 35
  • 35. What protection is there? Minimal privileges Don’t login graphically as root! Why? Malware gets full access Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 32 / 35
  • 36. What protection is there? Don’t need it? Don’t use it! Don’t login remotely with command line or push files to it? Uninstall your SSH and S/FTP servers Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 33 / 35
  • 37. What protection is there? Detecting problems Find rootkits: rkhunter chkrootkit Warn of changes: tripwire Warn of attacks: snort These are advanced tools Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 34 / 35
  • 38. What protection is there? Questions? Slides will be posted: http://ubuntulinuxtipstricks.blogspot.com Mackenzie Morgan (OLF 2010) Linux Security Myth 11 September 2010 35 / 35