Viruses on Servers

[AbbieRose]

I'm curious as to how easily viruses are transmitted through web pages? Recently a site that I visited became infected by a banner that they were using for income. Or rather, the banner was infecting anyone who visited.

Now, in FF I didn't have a problem so obviously risks can be reduced this way. But how can people install things like this without checking or scanning first? And how easy is it for a virus to pass from one site to others on a shared server?

 

[buldozerceto]

It really depends on the server configuration, how permissions are setup and access masks.

 

[SclekHosting]

Chances are that a virus can't be transmitted through webpages because of the way that linux is setup. It is probably easier for it to transmit on a Windows based server.

 

[gearworx]

Here is a nice little blog post talking about malware: http://blogs.technet.com/mmpc/

 

[microvps]

I'm curious as to how easily viruses are transmitted through web pages? Recently a site that I visited became infected by a banner that they were using for income. Or rather, the banner was infecting anyone who visited.

Now, in FF I didn't have a problem so obviously risks can be reduced this way. But how can people install things like this without checking or scanning first? And how easy is it for a virus to pass from one site to others on a shared server?

The web site might be hacked and server will not be infected. and the trojans come to the visitor's CP trough the web site.
Assuming that possible to contact web host and ask about full scan.

 

[RH01]

If the website itself (the designer) sets up a malicous script thats one thing... but as far asviruses that get onto the server linux its rare, but those normally dont effect a web site transmiting to a pc

 

[AbbieRose]

What about the chances of installing a banner that you believe to be clean-or rather installing a script that allows an external party to change banners from time to time? This to me always seemed risky-I don't like the idea of allowing someone externally to control an aspect of a page of mine.

 

[shockym]

Well then that makes me wonder, what if you install a clean banner but it has an exploit you have no idea about as you are unaware things like this can happen? Header exploit seem to be all over right now and its total pain. I have seen the same site 4x now have issues with their forum, header, new posts feature, etc.

 

[wschuah]

This depend the :thumbup: hardware and software configuration.

 

[AbbieRose]

Well then that makes me wonder, what if you install a clean banner but it has an exploit you have no idea about as you are unaware things like this can happen? Header exploit seem to be all over right now and its total pain. I have seen the same site 4x now have issues with their forum, header, new posts feature, etc.

I haven't known that huge a problem with a single site but yes, just lately it seems to be getting more common. I hit up a site that I've visited many times before and suddenly am getting virus warnings pop up, or have scans starting (and finding things) following the pop ups. It's all making me rather nervous, though Firefox seems a little more resistant.

 

[WeWatch]

It used to be that switching to FireFox provided an additional layer of protection but according to this article:

http://www.eweek.com/c/a/Security/Flash-Firefox-No-Longer-An-Automatic-Defense-Against-Browser-DriveBys/?kc=EWKNLSTE11202008STR1
That's no longer the case. The hackers are outsmarting everyone.

As far as infectious ads go, here is a recent article about how one website was plagued by an infectious ad:

http://seattletimes.nwsource.com/html/localnews/2008423941_webnote22.html

Another point, it doesn't matter whether your server is Linux or Windows, it's still vulnerable. Attackers are going more after the software installed rather than OS exploits. Although they'll take whatever they can get.

Joomla, Drupal, Wordpress, phpBB, take your pick. They've all had published exploits.

Hackers don't install the virus on the webserver - usually. They typically add obfuscation redirection code that silently installs the virus from another web location onto the visitors PC.

Now if the user is using either Linux or a Mac, then they're "less" susceptible, but it's still no guarantee of safety.

Just a few FYI's...

 

[AbbieRose]

The FYIs are appreciated, thank you. Firefox most definitely made me feel more secure but I guess it was just because so few people used it. It wasn't bother working to exploit, because it was such a minority-well it isn't any more.

Time to look at alternatives perhaps.

 

[jcarney1987]

That is why my servers have a virus scanner on them. But sometimes coders are very good at what they do and hide them very well.

The only thing we can do it fight it every day and run virus scans on our personal computers.

 

[mfwl]

We run the cpanel checker on a daily basis however I think it is a little crude. Are there any apps out there for Linux servermasters to use?