<div dir="ltr"><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394">Hello Anooj,</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394">You write a "program" to do a task on Windows. It does.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394">Then you write the same logic to do similar task on Linux. It will still do it.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394">When people say Linux isn't vulnerable to virus that spread across Windows platforms, it's because those virus (think of them as programs) were designed & compiled for the Windows platform. Thus, you can't execute them on Linux and we say Linux isn't vulnerable to Windows-type virus.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394">"something got installed in the kernel" is too vague. Besides you don't really install something in the Linux kernel. You load or unload modules or you compile the kernel with, to make the "something" part of the kernel.</div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394"><br></div><div class="gmail_default" style="font-family:tahoma,sans-serif;color:#0b5394">Regards,</div></div><div class="gmail_extra"><br clear="all"><div><div class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div><font face="courier new, monospace">Ish Sookun</font></div><div><font face="courier new, monospace"><br></font></div><div><font face="courier new, monospace">- Geek by birth, Linux by choice.</font></div><div><font face="courier new, monospace">- I blog at HACKLOG.in.</font></div><div><font face="courier new, monospace"><br></font></div><div><font face="courier new, monospace"><a href="https://twitter.com/IshSookun" target="_blank">https://twitter.com/IshSookun</a> ^^ Do you tweet?</font></div></div></div></div></div></div></div></div></div></div></div></div></div></div></div>
<br><div class="gmail_quote">On Wed, Apr 1, 2015 at 8:06 AM, Beach Samurai <span dir="ltr"><<a href="mailto:beach.samurai@gmail.com" target="_blank">beach.samurai@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><p dir="ltr">Are linux users prone to such attacks?<br>
I moved from windows to ubuntu because i thought linux was impervious to such attacks unless something got installed on the kernel....</p>
<div class="gmail_quote">On Apr 1, 2015 7:38 AM, "Ish Sookun" <<a href="mailto:ish@hacklog.in" target="_blank">ish@hacklog.in</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Thank you for the good work[1] Logan :-)<br>
<br>
As Logan specified xz is a widely used compression utility which might be exploited. Capsicum chips in to help containing the execution of code during compression/decompression in a "controlled" environment; thus not affecting the rest of the OS.<br>
<br>
[1] <a href="http://git.tukaani.org/?p=xz.git;a=commit;h=1238381143a9a7ce84839c2582ccd56ff750a440" target="_blank">http://git.tukaani.org/?p=xz.<u></u>git;a=commit;h=<u></u>1238381143a9a7ce84839c2582ccd5<u></u>6ff750a440</a><br>
<br>
Regards,<span class="HOEnZb"><font color="#888888"><br>
<br>
-- <br>
Ish Sookun<br>
<br>
- Geek by birth, Linux by choice.<br>
- I blog at HACKLOG.in.<br>
<br>
<a href="https://twitter.com/IshSookun" target="_blank">https://twitter.com/IshSookun</a> ^^ Do you tweet?<br>
<br>
</font></span></blockquote></div>
</blockquote></div><br></div>