From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1RHu2H-0004KO-QX for garchives@archives.gentoo.org; Sun, 23 Oct 2011 09:08:06 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 3DC7121C0B8; Sun, 23 Oct 2011 09:07:52 +0000 (UTC) Received: from out5.smtp.messagingengine.com (out5.smtp.messagingengine.com [66.111.4.29]) by pigeon.gentoo.org (Postfix) with ESMTP id 9F47821C085 for ; Sun, 23 Oct 2011 09:06:56 +0000 (UTC) Received: from compute6.internal (compute6.nyi.mail.srv.osa [10.202.2.46]) by gateway1.nyi.mail.srv.osa (Postfix) with ESMTP id 5EB0C2010F for ; Sun, 23 Oct 2011 05:06:56 -0400 (EDT) Received: from frontend1.nyi.mail.srv.osa ([10.202.2.160]) by compute6.internal (MEProxy); Sun, 23 Oct 2011 05:06:56 -0400 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=binarywings.net; h=message-id:date:from:mime-version:to:subject:references :in-reply-to:content-type; s=mesmtp; bh=sU3R4GljRk9aOcgjV7BjeIsv avI=; b=bHz5ATz0zyWgLYkOKfW2W3SdxI89SexMb15Y/oGM5L2u+MInpn9enf3W fQQSxe/gEN1UE33MRWM7nL7oZqc8af0p5apNZ1nsLRS0PAByT0Z4IJecI8FEkmzJ BQY3qRi69/Fyl9H+ylt5qItN6OyzertPAyENJoEc8XdyTFoXhiU= DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=message-id:date:from:mime-version:to :subject:references:in-reply-to:content-type; s=smtpout; bh=sU3R 4GljRk9aOcgjV7BjeIsvavI=; b=FTJzW25XenjlO8Ugfanqf2sriMqMOfJTy0cI XYapEoV3yZmjTTETZVP3lM9LommPt4veDQJhLSzzRi6AZ1UTQhA3KEppPH5u1XRv kqGv0IIY5wgdOcODN477c1KFvLJeiMuxszMzNlPHwKCxvz2FNJ4gZ5TrkOYfh/4M WcEOmZo= X-Sasl-enc: SBEL4VmctzHZvM9PI6aihAxmO6o1vcNPuiTCSDJiKUsp 1319360815 Received: from [192.168.5.18] (serv.binarywings.net [83.169.5.6]) by mail.messagingengine.com (Postfix) with ESMTPSA id 24BBE4065DF for ; Sun, 23 Oct 2011 05:06:54 -0400 (EDT) Message-ID: <4EA3D91B.2060006@binarywings.net> Date: Sun, 23 Oct 2011 11:06:35 +0200 From: Florian Philipp User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.20) Gecko/20110925 Lightning/1.0b3pre Thunderbird/3.1.12 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: Which desktop antivirus? References: <201110221227.43568.michaelkintzios@gmail.com> <2119952.ariVlydFnF@localhost> <201110230849.53603.michaelkintzios@gmail.com> In-Reply-To: <201110230849.53603.michaelkintzios@gmail.com> X-Enigmail-Version: 1.1.2 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig999A39F4E9ADF59B7C1991BB" X-Archives-Salt: X-Archives-Hash: fef2d019cc269b1a3c8410cb52c0954e This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig999A39F4E9ADF59B7C1991BB Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Am 23.10.2011 09:49, schrieb Mick: > On Saturday 22 Oct 2011 22:30:45 Volker Armin Hemmann wrote: >> Am Samstag 22 Oktober 2011, 18:14:32 schrieb Nikos Chantziaras: >>> On 10/22/2011 05:07 PM, Adam Carter wrote: >>>>> there aren't any Linux viruses, >>>> >>>> Except for the ones listed on the page below, which is probably >>>> incomplete. http://en.wikipedia.org/wiki/Linux_malware >>>> >>>> But yeah, on a linux desktop (especially a Gentoo one) you don't nee= d >>>> a virus scanner. Yet. >>> >>> There are literally *millions* of Windows viruses. The Wikipedia pag= e >>> just proves Linux has virtually no viruses, and those listed don't ev= en >>> work anymore (exploits have been patched long ago.) Most existing Li= nux >>> malware targets servers (like PHP software exploits in forums, wikis,= >>> etc) and desktop users don't need to worry. >>> >>> Furthermore, even if there were enough Linux viruses to worry about, >>> there isn't a good way of getting infected. On Windows, you download= >>> random executables from the net. On Gentoo, you install your stuff >>> through portage. It's nearly impossible to get infected. >> >> except when someone puts up or takes over a rsync server and starts >> providing malicious ebuilds. >> >> >> Hilarious. >=20 > Isn't that what happened back in 2003/04? I can't recall exactly but t= here=20 > was some discussion where it was suggested that clients should rsync ag= ainst=20 > two different mirrors and diff the portage contents (or hashes thereof?= ), before=20 > accepting the sync result. That still doesn't protect you against man-in-the-middle attacks or an attack against the CVS tree (like the recent kernel.org disaster). Signing the manifest files is really the only reasonable solution. Good thing there seems to be some progress in that direction: https://bugs.gentoo.org/show_bug.cgi?id=3D360363 Regards, Florian Philipp --------------enig999A39F4E9ADF59B7C1991BB Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk6j2SgACgkQqs4uOUlOuU8PGgCeMIfjAFCnI1Fym7mzWAe7+7ej ka0An3ghZMjESYPLKDsjkaP1uUtWCLLM =Kup9 -----END PGP SIGNATURE----- --------------enig999A39F4E9ADF59B7C1991BB--