Skip to comments.
Microsoft uses its expertise in malware to help with fileless attack detection on Linux
The Register ^
| Feb 25, 2020
| Richard Speed
Posted on 02/25/2020 8:32:01 AM PST by dayglored
click here to read article
Navigation: use the links below to view more comments.
first 1-20, 21-35 next last
One might suspect that the reason Microsoft is so interested in helping Linux is that their own Azure Cloud Services run (in large part) on Linux, not Windows Server. Linux is the OS Of The Cloud for a good reason, and it's great that Microsoft is supporting that view.
1
posted on
02/25/2020 8:32:01 AM PST
by
dayglored
To: ShadowAce; Abby4116; afraidfortherepublic; aft_lizard; AF_Blue; AppyPappy; arnoldc1; ATOMIC_PUNK; ..
2
posted on
02/25/2020 8:32:57 AM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government."`)
To: ShadowAce
“Never A Dull Moment” *PING*
3
posted on
02/25/2020 8:33:28 AM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government."`)
To: dayglored
All versions of Windows was a hackers delight so I wonder how long it will be till someone hacks their cloud?
To: dayglored
Would using firejail on your browser and email stop something from being downloaded into memory?
5
posted on
02/25/2020 8:49:50 AM PST
by
Cats1
To: rdb3; JosephW; Only1choice____Freedom; martin_fierro; Still Thinking; zeugma; Vinnie; SW6906; ...
6
posted on
02/25/2020 8:59:52 AM PST
by
ShadowAce
(Linux - The Ultimate Windows Service Pack)
To: dayglored
Linux is a monolithic kernal meaning that if one part of the kernal is “infected” by a non file attack, the whole system has to be rebooted.
The alternative architecture would be a micro kernal (Minux3) that can re-start OS level services. In Minux, if a low level driver stops working, it can be restarted ... almost like it was a service.
This could potentially provide a very strong defense against this type of attack by regularly restarting drivers and or services.
To: taxcontrol
Ive never needed AV in Mac OSX or Linux. Malware is so rare its not worth the bother of installing security software.
8
posted on
02/25/2020 9:05:04 AM PST
by
goldstategop
(In Memory Of A Dearly Beloved Friend Who Lives In My Heart Forever)
To: goldstategop
I agree, but use ClamAv for a weekly scan. In 20 years of using Linux I have NEVER found a virus.
To: dayglored
A properly locked-down server would, of course, also mitigate things somewhat. Do ya think?
10
posted on
02/25/2020 9:21:21 AM PST
by
SanchoP
(DC is the deep state.)
To: Cats1
>
Would using firejail on your browser and email stop something from being downloaded into memory? I don't know; perhaps another FReeper has an informed opinion.
11
posted on
02/25/2020 9:38:08 AM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government."`)
To: taxcontrol
>
[A microkernel architecture] could potentially provide a very strong defense against this type of attack by regularly restarting drivers and or services. I suspect so. OTOH, converting a monolithic arch into a microkernal arch is a staggering undertaking.
I taught some college seminars using MINIX 30 years ago, and was very impressed with the OS. But despite its beauty and technical advantages, it hasn't quite set the world on fire in those 30 years since, and I doubt it will. At least for the foreseeable future, we're stuck with what we have, and have to protect it as-is.
12
posted on
02/25/2020 9:42:59 AM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government."`)
To: dayglored
I dont know how current you are with Minux but it’s code base now follows the NetBSD distribution. I have a project to convert from my home Linux Mint to Minux3.
But that is still a few months away.
To: taxcontrol
Honestly, I haven’t stayed familiar with MINIX, so I appreciate your comments, and good luck with the migration!
14
posted on
02/25/2020 9:53:14 AM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government."`)
To: Cats1
I can’t get firejail to work dang it- wanted to use it- using linux mint cinnamon 19.3
15
posted on
02/25/2020 10:16:08 AM PST
by
Bob434
To: Bob434
I’m using 19.3 and had trouble with it as well. Pretty sure I uninstalled firejail and then copied and pasted the below commands into a terminal:
sudo add-apt-repository ppa:deki/firejail
sudo apt-get update
sudo apt install firejail firejail-profiles
The link explaining what’s going on is below. — Good Luck. :)
https://forums.linuxmint.com/viewtopic.php?t=273533
16
posted on
02/25/2020 10:24:43 AM PST
by
Cats1
To: Cats1
Thanks, I’ll give that a try (but do a ‘TimeShift’ backup first incase something doesn’t work)
17
posted on
02/25/2020 10:27:45 AM PST
by
Bob434
To: Cats1
I’m always a little nervous about adding PPA’s
Maybe I shouldn’t be, but i am-
18
posted on
02/25/2020 10:30:03 AM PST
by
Bob434
To: Bob434
I know just enough about linux to get into trouble, so not sure what a ppa is, but the instructions worked. —Might have to look into ppas a little more.
19
posted on
02/25/2020 10:41:47 AM PST
by
Cats1
To: Bob434
Ok I looked PPA up... and you’re right, not something to put on your machine lightly. May try to figure out a different way to get firejail up and running. Need to figure out how to get rid of the ppa first though.
20
posted on
02/25/2020 10:46:43 AM PST
by
Cats1
Navigation: use the links below to view more comments.
first 1-20, 21-35 next last
Disclaimer:
Opinions posted on Free Republic are those of the individual
posters and do not necessarily represent the opinion of Free Republic or its
management. All materials posted herein are protected by copyright law and the
exemption for fair use of copyrighted works.
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson