[kwlug-disc] Linux malware
Ron Singh
ronsingh149 at gmail.com
Mon Sep 23 22:57:00 EDT 2019
Thanks Jason, I will have a go at that with Debian Stretch(Buster is too
fresh for me) in a VM to see what's what.
Thanks,
Ron Singh
On Mon, Sep 23, 2019 at 7:43 PM Jason Eckert <jason.eckert at gmail.com> wrote:
> Implement SELinux if you haven't already.
> Just my two cents.
>
> On Mon, Sep 23, 2019 at 7:23 PM Ron Singh <ronsingh149 at gmail.com> wrote:
>
>>
>> This piece of news is likely old hat by now, but it was news to me when I
>> learned of it yesterday.
>>
>> https://blog.trendmicro.com/trendlabs-security-intelligence/skidmap-linux-malware-uses-rootkit-capabilities-to-hide-cryptocurrency-mining-payload/
>>
>> Given the serious nature of it's vector(kernel), it made me pause and
>> tried to think of a better way to protect my Linux devices.
>> I currently employ the "Debian" way(my coinage?) as in keeping my use
>> profile real limited with no su privileges and auto-blocking JS stuff on my
>> browser(Firefox) with only known safe site being allowed to run Java.
>>
>> Anything else I can do to reduce my attack surface that you smartypants
>> folks might deem necessary/useful?
>>
>> Thanks,
>>
>> Ron Singh
>>
>> _______________________________________________
>> kwlug-disc mailing list
>> kwlug-disc at kwlug.org
>> http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
>>
> _______________________________________________
> kwlug-disc mailing list
> kwlug-disc at kwlug.org
> http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://kwlug.org/pipermail/kwlug-disc_kwlug.org/attachments/20190923/99c713c4/attachment.htm>
More information about the kwlug-disc
mailing list