Pqluglist- [Gnome-Look "Social Engineering" exploit NOT just Ubuntu] (was: Re: Malware Hidden Inside Screensaver On Gnome-Look)
Parksville-Qualicum Linux Users group mail list
pqluglist at pqlug.org
Thu Dec 10 13:42:13 EST 2009
On 2009-12-10, at 10:18 AM, Parksville-Qualicum Linux Users group mail list wrote:
> I am glad I do not use Ubuntu.
> Roly
Hi, Roly...
With all due respect, this is not an Ubuntu-specific issue and your comment borders on flame bait.
Any system using debs for package maintenance could be subject to this specific exploit.
Have you ever seen the Debian ports list? That's a lot of flavours. Only one of them is Ubuntu.
If users consider a repo trusted and add the GPG keys to a keyring that just exacerbates the issue.
Alien could even convert the debs to rpm if a user was really, really wanting the screensaver.
Also, don't forget linux holds a significant market share in the server world and a lot of those servers have GUIs that might need screen savers.
Not all admins are smart. Social engineering exploits are the tip of the iceberg.
Welcome to the beginning of the end of being able to say "No virus here."
More information about the PQLUGlist
mailing list