VNUNet: Linux users warned of new Trojan danger

"Security companies are warning Linux users over a new and dangerous Trojan that may have originated in the UK.

The Trojan contains self-replicating virus-like capabilities and has similarities to the Windows-based Back Orifice tool, putting Linux boxes at risk of remote control.

The so-called Remote Shell Trojan spreads through email as well as replicating itself across the infected system. It installs a backdoor which listens for incoming connections on UDP port 5503 or higher, and allows remote attackers to connect to, and take control of, an infected system."

Complete Story

Related Stories:

• Trojan in Aide Distribution at ftp.linux.hr(Aug 07, 2001)
• Linux Kernel-Level Trojan - Kernel Intrusion System (KIS)(Jul 23, 2001)
• Eric S. Raymond: Reliance on closed source for security considered harmful(May 15, 2001)
• SANS.org: New Linux Worm Adore(Apr 04, 2001)
• Worm Targeting Linux Could Cause Serious Damage(Mar 24, 2001)
• Security Portal: Ask Buffy - Mysterious Files In Linux /tmp Directory and Log Analyzer for Firewall(Mar 08, 2001)
• LinuxProgramming.com: Editor's Comment: The Ramen Worm: Opportunity Knocks(Jan 21, 2001)