Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230

 

 

 

[Discussed] Security from remote data files

Here you can discuss every aspect of Debian. Note: not for support requests!
Post Reply
Message
Author
User avatar
makh
Posts: 651
Joined: 2011-10-09 09:16

[Discussed] Security from remote data files

#1 Post by makh »

Hi

According to:
https://www.bleepingcomputer.com/forums ... n-a-image/

And a message for android safety:
Gif may contain code for scripts, malware or data stealing...
Please inform that when we download any file from any server or link, will it be a security threat to our linux system?

Thankyou
Last edited by makh on 2018-02-03 17:25, edited 1 time in total.
ThinkPad E14: Arch, Debian Stable
GUI: Xfce

For new: Try MX Linux, Linux Mint; later join Debian Stable

User avatar
bw123
Posts: 4015
Joined: 2011-05-09 06:02
Has thanked: 1 time
Been thanked: 28 times

Re: Security from remote data files

#2 Post by bw123 »

makh wrote:Hi
Gif may contain code for scripts, malware or data stealing...
Please inform that when we download any file from any server or link, will it be a security threat to our linux system?

Thankyou
Imagine how secure your house would be if it had no doors or windows? Nothing could get in easily. That would be impractical, because you yourself could not get in and out, or store/remove items.

Now if you install a window, a door, or a tunnel under the house, bringing items in, (or the items themselves) isn't the "threat," it is people being *aware of the ways to enter.

I do seem to recall some issues that have popped up over the years from .gif files. You can probably look up compuserve, cshow, gif header, and things like that for more info.

I think it is very interesting how images are misused on the internet. They are often not used as images, often you never see them. They can inform others of the location of your house, and the tunnel, door, or window.
resigned by AI ChatGPT

User avatar
makh
Posts: 651
Joined: 2011-10-09 09:16

Re: Security from remote data files

#3 Post by makh »

So an application in debian or linux or android may not be spam safe, if the file we open is from untrusted or bugged source.
ThinkPad E14: Arch, Debian Stable
GUI: Xfce

For new: Try MX Linux, Linux Mint; later join Debian Stable

n_hologram
Posts: 459
Joined: 2013-06-16 00:10

Re: Security from remote data files

#4 Post by n_hologram »

Can you mark this as "solved"?
bester69 wrote:There is nothing to install in linux, from time to time i go to google searching for something fresh to install in linux, but, there is nothing
the crunkbong project: scripts, operating system, the list goes on...

User avatar
makh
Posts: 651
Joined: 2011-10-09 09:16

Re: Security from remote data files

#5 Post by makh »

n_hologram wrote:Can you mark this as "solved"?
Hi
Sir! having a solution to a problem, means: Solved.
So it is still a pending issue.
If you want, I can consider closing it with <Discussed>...?
Thankyou
ThinkPad E14: Arch, Debian Stable
GUI: Xfce

For new: Try MX Linux, Linux Mint; later join Debian Stable

steve_v
df -h | grep > 20TiB
df -h | grep > 20TiB
Posts: 1400
Joined: 2012-10-06 05:31
Location: /dev/chair
Has thanked: 79 times
Been thanked: 175 times

Re: Security from remote data files

#6 Post by steve_v »

makh wrote:Please inform that when we download any file from any server or link, will it be a security threat to our linux system?
On any system, downloading and running an executable from an untrusted source is a security risk.
If the application handling it has security flaws, opening a non-executable file from an untrusted source may also be a risk.
Install software updates and don't download stuff, especially executables, from dodgy sites. This is not Debian or Linux specific, just good computing practice.
makh wrote:So it is still a pending issue.
And it will continue to be so as long as the internet exists. Unless you want to live in a <insert proprietary vendor> walled-garden and only use approved content.

Now can we mark this silly question as solved?
Once is happenstance. Twice is coincidence. Three times is enemy action. Four times is Official GNOME Policy.

User avatar
makh
Posts: 651
Joined: 2011-10-09 09:16

Re: Security from remote data files

#7 Post by makh »

steve_v wrote:...
Now can we mark this silly question as solved?
Not all are Post Doctorate in Linux, like you.


---

I suppose theres a solution, easily possible.
ThinkPad E14: Arch, Debian Stable
GUI: Xfce

For new: Try MX Linux, Linux Mint; later join Debian Stable

User avatar
bw123
Posts: 4015
Joined: 2011-05-09 06:02
Has thanked: 1 time
Been thanked: 28 times

Re: [Discussed] Security from remote data files

#8 Post by bw123 »

makh wrote: I suppose theres a solution, easily possible.
If the problem is, "Networked computers are vulnerable to security threats," then No, there is not an easy solution.

If the problem is specifically how to ensure downloaded images are okay, then maybe something like this http://virusscan.jotti.org/en

I don't know if it works on image files. I haven't used jotti in a long time but it might help you.
resigned by AI ChatGPT

User avatar
makh
Posts: 651
Joined: 2011-10-09 09:16

Re: [Discussed] Security from remote data files

#9 Post by makh »

bw123 wrote:....
If the problem is specifically how to ensure downloaded images are okay, then maybe something like this http://virusscan.jotti.org/en
...
Hi
I will try it ... I hope it is helpful.
It looks like a remote feature only...
Thankyou
ThinkPad E14: Arch, Debian Stable
GUI: Xfce

For new: Try MX Linux, Linux Mint; later join Debian Stable

Post Reply