How come we haven't had any viruses proliferating our systems? Not that I'd want one but, then we'll get some new antivirus sofrware out of it.

Quote:
Probably because it's a waste of time to make a virus for a system with such a small userbase.

http://en.wikipedia.org/wiki/Security_through_obscurity

Wow, I just read that wiki page. In fact I don't think that's the same definition of STO I've ever heard before.

DOS is secure because it's a waste of time to try to exploit. The "juice is not worth the squeeze." Same with certain OS's that don't offer any advantage to an attacker to exploit.

Does MorphOS even have any security holes? This is a dumb question but is anti-virus necessary if there isn't any security holes in an operating system? One time I asked about a firewall for Mac OS 9.2.2 and they said a firewall is not necessary, because of other security features already enabled. (Also, does MorphOS have a firewall? Does it need one?)

Would making security updates to MorphOS itself eliminate the need for anti virus? Even if MorphOS had a user base of millions? Why does anti virus exist at all? Because an operating system is too slow releasing the security updates? But that does not make sense because how in the world are

Anti virus definitions updates

Possibly be faster than

a security patch updates

released directly by the operating system?! Would this make any sense or do I sound crazy? Also, I am thinking about Microsoft Windows updates compared with Microsoft Security Essentials updates. Is MorphOS superior compared to Microsoft? If MorphOS increase user base enough to attract virus, would the virus be successfully created, deployed, and infecting the computer? Or would MorphOS be invincible?

You sound crazy. ;)

Security issues and viruses have nothing to do with each other, although some viruses use exploits to spread they don't necessarily need them as they are "voluntarily" run most of the time (piggybacked on a seemingly innocuous program that has been infected).

Although there are currently no known MorphOS native viruses keep in mind that old 68k Amiga viruses mostly work perfectly fine on MorphOS. Luckily so does old 68k anti-virus software (like f.ex. VirusZ).

Oh, yeah, and one last thing; there are plenty of security holes in MorphOS as we do bundle and use many of the same libraries that other OSes do, however most of those security holes would have to be exploited in such a way that they are targeted explicitly towards MorphOS to work so they are less likely to be an issue (though you cannot rule it out) other than causing a DoS/crash.


- CISC

How about virus from Classic machines? Is it possible that some of them work?

@ Yasu

CISC had already provided an answer to your question in his post.

Quote:

Are you nostalgic and need ones?

Ah, I didn't read carefully enough

I read recently that Windows XP is not longer supported which means all the remaining security holes will not be patched. And all these other websites are urging people to upgrade (or should I say pressuring people to upgrade) soon anti virus will not exist either.

And I guess that is why I thought security holes are the only way for virus to sneak and infect. I forgot about infected file downloads.

If any *new* antivirus created for MorphOS just develop it "In House" some time in future. Make it fast and efficient and snappy and an unnoticeable background process. In other words, make it part of operating system. (Also, make it apply for combating the spyware and malware.)

Because that is the last thing I need is for a common antivirus solution, with the lengthy process assuming scanning and the real time scanning every time I open a folder or rename a file. And, something that process consuming is the last thing MorphOS needs.

I have scanned my MorphOS-System with VirusZ.
No virus found.

[ Edited by Tom01 26.12.2014 - 19:57 ]

In modern sense, the big security hole would be the OS itself. Almost all security issues in modern world is about gaining "super user privileges", Amiga systems have no concept of security levels, any software can at any time read and write into memory of other programs. This implies that anyone can easily target Amiga like systems if they desire, and be able to do just about anything, without any obstacles. I used to have fun in mid 90ies with messing around with people on IRC who had their amiga computers available for all kinds of remote exploits, nothing at all has really changed since back then.

Oh no! This issue must be resolved. Will you launch a bounty?

>> Amiga systems have no concept of security levels, any software can at any time read and
>> write into memory of other programs. This implies that anyone can easily target Amiga
>> like systems if they desire, and be able to do just about anything, without any obstacles.

> This issue must be resolved. Will you launch a bounty?

I don't think a bounty will do. Resolving this issue would in large part mean developing a new OS missing backwards compatibility. The MorphOS Team started official talk about such "MorphOS NG" in 2011.

https://morph.zone/modules/newbb_plus/viewtopic.php?topic_id=8121&forum=9&start=18
https://morph.zone/modules/newbb_plus/viewtopic.php?topic_id=8917&forum=3&start=39
https://morph.zone/modules/newbb_plus/viewtopic.php?topic_id=8904&forum=3&start=62
https://morph.zone/modules/newbb_plus/viewtopic.php?topic_id=9204&forum=11&start=14

Quote:

At least Netstack doesn't have AmigaNetFS enabled by default :) Or other that kind of services to be exploited easily either.

Most users do have firewall in their routers anyway.. although laptops may make some difference now, but then it would also need those services to exploit.

Since most virus scanners work by searching for specific signatures (certain code in files or memory), I'd say it's not possible to write a functional virus scanner without a functional virus (as said, 68k virus scanners handle 68k viruses just fine)

And as said before, any program can potentially do any kind of damage. Take f.ex. the old elbox drivers, that would nuke RDB on purpose, if certain part of memory was modified on purpose or by accident (and such accidents DO happen without memory protection)

Quote:

Hah! But we also had a Netbus client to "communicate" with Windows machines that haven`t had the high security levels
http://aminet.net/package/comm/tcp/netbus

While you are right, backdoors, exploits and other modern day hacks should be distinguished from traditional viruses. Some are "mostly harmless" (e.g. data mining) and some are real threats (e.g. taking over processes like you say)

Well, it would be about time to introduce less privileged users in multi user AmigaOS forks (maybe MorphOS 4 could be the first ?)

However, sometimes the feelin of full control in single master level user mode is to be loved. Once you turn to be less under Linux or Windows, and do know what power user can do, you mostly start to loose nerves. Or try to find the way to upgrade your user priviledges It was normal back in 90s. Operating System were ment to be used by home users

P.S.
Someone named a malware "Amiga Anywhere" I suppose that wost biggest success of Amiga Inc
http://www.econsultant.com/spyware-database/a/amigaanywhere.html

I have installed Viruz III on my Mac Mini and it has found "Happy new year 96!" virus. How reliable is this program? Should I let it desinfect the files? Just wanna make sure.

15975_Snap-2%20-%20830x507x24.jpg

Quote:

It should be pretty reliable, since the HNY96 virus doesn't conceal itself. I'd make a backup of these files, and disinfect them.

@BSzili

Thanks

[ Edited by Yasu 02.12.2015 - 16:10 ]

We need a new version of Lamer Exterminator...for nostalgia sake...

Quote:

I just checked my Pro Station Audio files and VirusZ didn't find any infections here, so you probably have them really infected.

Anyway, disinfecting has worked fine for me earlier just fine, so I'd do it there.