You are not logged in.

#1 2012-09-03 13:21:40

cirrus
Member
From: Glasgow , Scotland
Registered: 2012-07-10
Posts: 55
Website

New malware targets Linux and Mac OS X

http://www.techspot.com/news/50009-new- … -os-x.html
pacman -S iptables shorewall
then to block the malware as root do
iptables -A INPUT -s 212.7.208.65 -j DROP
iptables -A OUTPUT -d 212.7.208.65 -j DROP


Desktop 3x Boot Sabayon,Debian,Archbang
Arch-Arm - Raspberry Pi Model B Rev 1.0
GPU:ASUS® [G92 EN8800 GT TOP] 512MB DDR3]
http://cirrusminor.info

Offline

#2 2012-09-03 13:26:26

pablokal
Administrator
From: Nijmegen, Holland
Registered: 2010-10-12
Posts: 3,633
Website

Re: New malware targets Linux and Mac OS X

Thanks!


Getting your questions answered here at ArchBang Forums
Please! Always give hardware info, if there is a chance that 's relevant: #lspci -vnn
On Arch(bang) and Openbox: http://stillstup.blogspot.com/

Offline

#3 2012-09-03 23:15:50

Mr Green
Administrator
Registered: 2010-11-07
Posts: 6,920

Re: New malware targets Linux and Mac OS X


Comments, suggestions please feel free to contact me mrgreen(at)archbang(dot)org

Offline

#4 2012-09-04 19:26:22

mike4ca
Happy (Arch|Manjaro)[B,b]ang User
From: Iowa, USA
Registered: 2011-10-17
Posts: 435

Re: New malware targets Linux and Mac OS X

So others don't need to check the article each time, in addition to blocking the ip address listed in cirrus' post they recommend:

1. Check for the offending file in your home directory: search for and remove any files titled ”WIFIADAPT.”


Free Software Foundation member 10865

Offline

#5 2012-09-05 04:13:06

oliver
Administrator
Registered: 2010-11-04
Posts: 2,209

Re: New malware targets Linux and Mac OS X

How does WIFIADAPT get installed?  A drive-by browser thing or you specifically have to click on something?

This opens up a design issue in sudo IMO.  For example, assume your sudo config is set to cache the credentials for 5 minutes:

(pseudo code)

while true
do
  is sudo credential cached?
  if yes
    do my stuff
  if no
    sleep 299
done

Offline

Board footer

Powered by FluxBB