likelihood of being compromised by visiting a suspicious website
Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
likelihood of being compromised by visiting a suspicious website
while surfing the web, i entered into a horrible website (don't ask me to describe its contents); it looked suspicious, and popped up little boxes that floated around the screen
i was using firefox 0.9 on linux (of course) 2.6.5; is it likely that some malicious code could have been used to compromise my system? the only place i had write access to was in my home directory
i cleared my cache and history, checked my secure and messages log, and nothing looks suspcious... anything else i can check, or am i just being paranoid unnecessarily?
i doubt anything bad (at least for linux) was installed ... now if you were in windows then id be concerned
even if some bad code (that worked) got in, then it wont be able to do to much if you can only write into your home directory (and if you have grsecurity in the kernel then it would diffidently leave a message or 2)
i'll delete .firefox (for me it's ~/.mozilla/firefox); i just need to write down all the stored passwords (fortunately they're nothing massively important, so even if those were stolen, it's not a big deal; i'll just change my LQ password, of course)
i figured that most websites with code hidden in websites or the pictures would be targetting windows-based platforms, but you can never be too sure
the Pax patch's (i feel these are almost required for every kernel, esp the trusted path execution which can prevent users from executing stuff that is was not installed in /bin ,use/bin, etc
and also gives you some role based security if you want it, as well as more logging options
check if out, its not that much of a pain to configure (tho i haven't set up role based controls yet, so i have no clue about how bad setup is once the kernel is configured)
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.