Help!

Virus in F.I.R.E?

  
  
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> Linux Fanatics RSS
Next:  Computer Repair and Tuneup Procedure  
Author Message
profhig



Joined: Sep 06, 2003
Posts: 239

Location: Tamworth, UK
PostPosted: Sun Jul 30, 2006 12:39 am    Post subject: Virus in F.I.R.E?
I have decided to give linux a go and downloaded a few different bootable CD versions to try. I downloaded fire-0.3.5b.iso at http://fire.dmzs.com/?section=main. A BitDefender online scan identified 21 viruses in 52 files in the .iso. A scan at Panda and my own AVG identified nothing, so I am thinking they are false positives. However, I would like this confirmed by experienced users. I am aware that this is a forensic version of Linux, and as such will contain virus identities etc and it is probably these being falsely identified as malware. But I would like somebody who knows and can be trusted to tell me I am right before I let it loose! I have the saved scan results if anybody would like to see them. Thanks in advance.
Back to top
nlinecomputers



Joined: Jul 25, 2003
Posts: 1701

Location: Anywhere but this forum.
PostPosted: Mon Jul 31, 2006 10:35 pm    Post subject: Re: Virus in F.I.R.E? [Login to view extended thread Info.]
Fire is a legit distro. As you said it has virus definitions in it. To confirm that the ISO is legit get the MD5 and run it on the disk.
Back to top
profhig



Joined: Sep 06, 2003
Posts: 239

Location: Tamworth, UK
PostPosted: Tue Aug 01, 2006 5:05 am    Post subject: Re: Virus in F.I.R.E? [Login to view extended thread Info.]
Thanks. Did what you said and the MD5's matched, so presumably all is O.K. Thanks again.
Back to top
goretsky



Joined: Dec 07, 2002
Posts: 8918

Location: Southern California
PostPosted: Thu Aug 03, 2006 2:30 am    Post subject: Re: Virus in F.I.R.E? [Login to view extended thread Info.]
Hello,

I asked one of my employer's malware researchers to take a look at this Linux distribution (the company I work for makes security software) and received a report back that because some of the the forensice tools on it can be used for malicious activity that these were probably being flagged. There probably is a setting in the anti-virus program you tried to look for applications which can be used for legitimate as well as malicious purposes, and this was enabled during those scans.

Regards,

Aryeh Goretsky
Back to top
profhig



Joined: Sep 06, 2003
Posts: 239

Location: Tamworth, UK
PostPosted: Thu Aug 03, 2006 7:44 am    Post subject: Re: Virus in F.I.R.E? [Login to view extended thread Info.]
Thanks, goretsky. I had done several scans, as I usually do after a download, including three online scans and only the BitDefender online scan showed anything. I am pretty happy now that all is well. Thanks again.
Back to top
Display posts from previous:   
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> Linux Fanatics All times are: Eastern Time (US & Canada) (change)
Page 1 of 1

 
 You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum