From owner-freebsd-questions  Mon Mar 12 21:28:39 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from obsecurity.dyndns.org (adsl-63-207-60-59.dsl.lsan03.pacbell.net [63.207.60.59])
	by hub.freebsd.org (Postfix) with ESMTP id 97B0B37B719
	for <freebsd-questions@FreeBSD.ORG>; Mon, 12 Mar 2001 21:28:36 -0800 (PST)
	(envelope-from kris@obsecurity.org)
Received: by obsecurity.dyndns.org (Postfix, from userid 1000)
	id 2407466E25; Mon, 12 Mar 2001 21:28:36 -0800 (PST)
Date: Mon, 12 Mar 2001 21:28:36 -0800
From: Kris Kennaway <kris@obsecurity.org>
To: Paijo <psutomo@yahoo.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Virus
Message-ID: <20010312212836.A4671@mollari.cthul.hu>
References: <006301c0ab7c$acfb0400$6600a8c0@benny>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
	protocol="application/pgp-signature"; boundary="r5Pyd7+fXNt84Ff3"
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <006301c0ab7c$acfb0400$6600a8c0@benny>; from psutomo@yahoo.com on Tue, Mar 13, 2001 at 12:15:48PM +0700
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


--r5Pyd7+fXNt84Ff3
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline

On Tue, Mar 13, 2001 at 12:15:48PM +0700, Paijo wrote:
> Is it possible to have our freebsd apps or OS infected by virus???

If you run untrusted applications as root, then it's possible in
theory, although I don't know of any FreeBSD viruses (there are
several for Linux).  However the UNIX security model inherently guards
against infection of system files by viruses, because users are not
allowed to corrupt system files used by others.  Root is the only
exception to this, which is one reason why you shouldn't use root for
general tasks unless you have to.  There are other security risks like
using a client application (e.g. web browser) which has security
vulnerabilities, to connect to malicious webpages, bugs in mail
readers which may allow malicious email to execute code as the user,
etc.

Kris

--r5Pyd7+fXNt84Ff3
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (FreeBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE6rbADWry0BWjoQKURAjwYAKCo429ApuKfdRKQYFLBhzZCpm0lrQCgz6wI
6208vqdzOTAGT1IG//l9WYE=
=T077
-----END PGP SIGNATURE-----

--r5Pyd7+fXNt84Ff3--

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message