Operating Systems > Linux and UNIX

New worm targets Linux systems.

(1/4) > >>

Aloone_Jonez:
http://news.com.com/New+worm+targets+Linux+systems/2100-7349_3-5938475.html

This looks pretty serious, what do the Linux fans here think about this?

Should I worry when connecting my Linux set up to the Internet?

Refalm:
It only affects an open webserver running this:
the XML-RPC for PHP Remote Code Injection vulnerability; AWStats Rawlog Plugin Logfile Parameter Input Validation vulnerability; and Darryl Burgdorf's Webhints Remote Command Execution Vulnerability

I believe AWStats comes installed with the Ensim control panel, so if you're running a webhost that serves its clients with logs from AWStats, update the damn thang.
Otherwise, you'll be fine ;)

worker201:
It sounds like such a specific worm that there's no reason for the general home users to be afraid.  While an MS bug can affect almost anyone running Windows.

H_TeXMeX_H:
Not only are there patches for it since long, but it only affects you if you run a very specific web server as Refalm mentions :) ... no real need to worry

Oh, and if you are paranoid like me, then close UDP port 7222

The worm sends a notification message to an attacker at a remote IP address, through UDP port 7222.

Aloone_Jonez:
Thanks for reassuring me, I'vq realised now that there was no need for me to panic, it's just hard not to when you see the word Linux in the same sentence as the word worm.

Navigation

[0] Message Index

[#] Next page