Archived from groups: comp.security.firewalls (
More info?)
x-no-archive: yes
Bit Twister wrote:
> On Sat, 26 Jun 2004 19:16:31 -0400, "Crash" Dummy wrote:
>>> It would be a pretty poor firewall which can be disabled from the
>>> internet side of the connection. Now if the user runs programs
>>> (browser/email,...) which can disable the firewall, the best
>>> firewall inthe world is useless.
>>
>>> My solution is to take Micro$oft's advice you see on their product
>>> specifications,
>>> Memory: 128meg or more
>>> OS: win98 or better
>>> So I run linux OS.
>>
>> Oh? Will Linux protect you if you run malicious software on your
>> computer?
>
> It will not run it unless I save/download it, change the permissions
> to execute, then execute it.
>
> Even at that, it can only wipe out my home directory/folder and not
> disable the firewall or any other system dammage.
Don't be naive. For one thing, you can run as a limited user on
Windows, just as you can on Linux (though it's pretty unbearable in
actual practice). And malware can do damage on Linux just as it does on
Windows. There are privilege-elevation exploits on Linux, and there
would be more of them if there were an impetus for malware authors to
target the platform.
Changing permissions has nothing to do with it for the average idiot. I
don't care what platform you plop a moron down in front of--if that
moron knows how to make something run, the moron will run it. Just look
at the recent Windows malware which was sent in password-protected ZIP
files. The payload email messages gave the users instructions on how to
open the ZIP files, and the morons opened and ran it. Don't you think
that the same morons would do the same thing, if they were at a Linux
workstation, and that email gave instructions on how to change
permissions and make something execute?