Linux or BSD? Librenix.com!
Sitereview.org front page
Feature: The Short Life and Hard Times of a Linux Virus
O
p
S
y
s
    
Why aren't the existing Linux viruses anything more than a topic for columns such as this one? Why don't they affect you in your daily computing in the way that MS viruses affect Windows users?

There are several reasons for the non-issue of the Linux virus. Most of those reasons a Linux user would already be familiar with, but there is one, all important, reason that a student of evolution or zoology would also appreciate.

First, let's take a look at the way Linux has stacked the deck against the virus.

For a Linux binary virus to infect executables, those executables must be writable by the user activating the virus. That is not likely to be the case. Chances are, the programs are owned by root and the user is running from a non-privileged account. Further, the less experienced the user, the lower the likelihood that he actually owns any executable programs. Therefore, the users who are the least savvy about such hazards are also the ones with the least fertile home directories for viruses.

Even if the virus successfully infects a program owned by the user, its task of propagation is made much more difficult by the limited privileges of the user account.

Linux networking programs are conservatively constructed, without the high-level macro facilities that have enabled the recent Windows viruses to propagate so famously. This is not an inherent feature of Linux; it is simply a reflection of the differences between the two user bases and the resulting differences between the products that are successful in those markets. The lessons learned from observing these problems will also serve as an innoculation for future Linux products as well.

Linux applications and system software is almost all open source. Because so much of the Linux market is accustomed to the availability of source code, binary-only products are rare and have a harder time achieving a substantial market presence. This has two effects on the virus. First, open source code is a tough place for a virus to hide. Second, for the binary-only virus, a newly compiled installation cuts off a prime propagation vector.

Each one of these obstacles represents a significant impediment to the success of a virus. It is when they are considered together, however, that the basic problem emerges.

A computer virus, like a biological virus, must have a reproduction rate that exceeds its death (eradication) rate in order to spread. Each of the above obstacles significantly reduces the reproduction rate of the Linux virus. If the reproduction rate falls below the threshold necessary to replace the existing population, the virus is doomed from the beginning -- even before news reports start to raise the awareness level of potential victims.

The reason that we have not seen a real Linux virus epidemic in the wild is simply that none of the existing Linux viruses can thrive in the hostile environment that Linux provides. The Linux viruses that exist today are nothing more than technical curiosities; the reality is that there is no viable Linux virus.

This isn't intended to suggest that there can never be a Linux virus epidemic. It does mean, however, that a successful Linux virus must be well-crafted and innovative to succeed in this inhospitable ecosystem.

Other articles by Ray Yeargin

Posted by Ray Yeargin, March 26, 2000  (score:12)
(Updated: November 20, 2000)
[Email this link] (Article #43)

More OpSys headlines...
m
o
r
e

AllTopics
ThisMonth...Last 30 days, high scores first
LastMonth...Articles from 1 to 2 months old
LastQuarter...The quarter prior to LastMonth
LastYear...The year prior to LastQuarter
AllTime...All approved articles by score
Post...Submit an article or a review
Topics
Hotnews...Breaking news & current events
Software...PC applications and utilities
Coding...Programming and source code
Hardware...Computers, parts & related info
Games...PCGames, Netgames, Webgames
Humor...Joke sites and funny pages
Science...Science, space, high technology
eStores...Electronic storefront websites
Weblogs...Commentary sites & microportals
Sysadmin...Computer system administration
OpSys...Operating Systems: Linux, BSD...
Geeknews...Interesting news & geek sites
Sitereview
Create...a voting account (optional)
Login...to vote on articles & submissions

S
e
a
r
c
h

 

AllTopics
ThisMonth
LastMonth
LastQuarter
LastYear
AllTime
Post
Topics
Hotnews
Software
Coding
Hardware
Games
Humor
Science
eStores
Weblogs
Sysadmin
OpSys
Geeknews
Sitereview
Create an
Account
(optional)

Name:

Password:


Site Info

Posting
guidelines

News Feed

Linux downloads

ST2 Game Client
 
Starship Traders
 

Links

Admin
RootPrompt
Unix Guru Universe

BSD
FreeBSD.org
NetBSD.org
OpenBSD.org

Linux
Linux Today
Librenix

Hardware
Tom's Hardware

News
10.am
Slashdot

Coding
Advogato
dotcomma

Apps
Freshmeat
AppWatch

Games
Starship Traders

All trademarks on this site are the property of their respective owners.
Articles and reviews are owned by their authors. The rest is © 2000, Ray Yeargin.
Use Article #'s for persistent links; all other pages change regularly!