ZDNet: Linux world dismisses new Trojan risk
Jan 07, 2002, 19:30 (11 Talkback[s])
(Other stories by Wendy McAuliffe)
"A Remote Shell Trojan (RST) is making its way around
the Linux community, but security experts say it should not pose a
risk if users are vigilant with the programs they run.
The Trojan is a more complex variant of an earlier RST that hit
Linux systems last October. In order to propagate, RST.b requires a
user to run an infected binary, which then opens up a remote shell
and allows an attacker to access the machine
Linux distributor Red Hat is categorizing RST.b as a low risk.
The variant requires a root user to download the malformed binary
in order for the Trojan to run, which is less likely to happen on
Linux machines as it products are designed to keep partitions on
what users can do."