How to secure Ubuntu from malware/keylogger running on wineSeeing all installed items on server and protecting server from malwareWine: Install Windows Program for Multiple UsersCan I make Apache more secure by removing read access from the others group?Will a Virus or Malware inside a User Account or Guest Account Affect the Entire Ubuntu System?How (in)vulnerable would Ubuntu be to encryption ransomware?Will clearing the write bit on my backup drive protect it from malware?
As "database reporting analyst" I have access to privileged info & the company isn't doing well, how to avoid appearing improper if I leave?
Notation clarity question for a conglomerate of accidentals
Is there an in-universe explanation of how Frodo's arrival in Valinor was recorded in the Red Book?
Parent asking for money after I moved out
Looking for open source 20th century philosophy texts?
Why is music is taught by reading sheet music?
Citing CPLEX 12.9
Writing about real people - not giving offence
What is the Japanese equivalent of 'you're in my heart'?
Is elastic wiring feasable?
Does it require less energy to reach the Sun from Pluto's orbit than from Earth's orbit?
Found a minor bug, affecting 1% of users. What should QA do?
Is right click on tables bad UX
Did the Soviet army intentionally send troops (e.g. penal battalions) running over minefields?
Lighthouse Alternatives
Can Fabled Passage generate two mana with Amulet of Vigor?
Did Joe Biden "stop a prosecution" into his son in Ukraine? And did he brag about stopping the prosecution?
Is it appropriate to "shop" through high-impact journals before sending the paper to more specialized journals?
Looking for circuit board material that can be dissolved
What are one's options when facing religious discrimination at the airport?
Isn't the detector always measuring, and thus always collapsing the state?
What does a textbook look like while you are writing it?
How does case-insensitive collation work?
Why did they use ultrafast diodes in a 50 or 60 Hz bridge?
How to secure Ubuntu from malware/keylogger running on wine
Seeing all installed items on server and protecting server from malwareWine: Install Windows Program for Multiple UsersCan I make Apache more secure by removing read access from the others group?Will a Virus or Malware inside a User Account or Guest Account Affect the Entire Ubuntu System?How (in)vulnerable would Ubuntu be to encryption ransomware?Will clearing the write bit on my backup drive protect it from malware?
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty
margin-bottom:0;
I have Four questions..
A malware might do many things like modifying/encrypting files, taking screenshot, using webcam and microphone, keylogging etc.
1.
The default configuration of mapping Z: to / can permit a malware to modify any file that the user has access to, including doing anything in the home folder. So, I think I can avoid that risk by using a separate non root user account for wine.I will log into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe. Am I right by doing this? Is there any other means of infection?
2.
If a keylogger run inside wine as another non-root user, can that keylogger monitor the keys pressed by the other users? Similarly, can the above mentioned setup protect me from malware taking screenshots or using webcam/microphone?
3.
Will that second non-root user have access to my Firefox profile data in first account? If yes, how can I prevent a wine program from accessing my Firefox profile data?
4.
Do I really need to use playonlinux? Is just wine enough?
wine security webcam malware
add a comment
|
I have Four questions..
A malware might do many things like modifying/encrypting files, taking screenshot, using webcam and microphone, keylogging etc.
1.
The default configuration of mapping Z: to / can permit a malware to modify any file that the user has access to, including doing anything in the home folder. So, I think I can avoid that risk by using a separate non root user account for wine.I will log into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe. Am I right by doing this? Is there any other means of infection?
2.
If a keylogger run inside wine as another non-root user, can that keylogger monitor the keys pressed by the other users? Similarly, can the above mentioned setup protect me from malware taking screenshots or using webcam/microphone?
3.
Will that second non-root user have access to my Firefox profile data in first account? If yes, how can I prevent a wine program from accessing my Firefox profile data?
4.
Do I really need to use playonlinux? Is just wine enough?
wine security webcam malware
add a comment
|
I have Four questions..
A malware might do many things like modifying/encrypting files, taking screenshot, using webcam and microphone, keylogging etc.
1.
The default configuration of mapping Z: to / can permit a malware to modify any file that the user has access to, including doing anything in the home folder. So, I think I can avoid that risk by using a separate non root user account for wine.I will log into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe. Am I right by doing this? Is there any other means of infection?
2.
If a keylogger run inside wine as another non-root user, can that keylogger monitor the keys pressed by the other users? Similarly, can the above mentioned setup protect me from malware taking screenshots or using webcam/microphone?
3.
Will that second non-root user have access to my Firefox profile data in first account? If yes, how can I prevent a wine program from accessing my Firefox profile data?
4.
Do I really need to use playonlinux? Is just wine enough?
wine security webcam malware
I have Four questions..
A malware might do many things like modifying/encrypting files, taking screenshot, using webcam and microphone, keylogging etc.
1.
The default configuration of mapping Z: to / can permit a malware to modify any file that the user has access to, including doing anything in the home folder. So, I think I can avoid that risk by using a separate non root user account for wine.I will log into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe. Am I right by doing this? Is there any other means of infection?
2.
If a keylogger run inside wine as another non-root user, can that keylogger monitor the keys pressed by the other users? Similarly, can the above mentioned setup protect me from malware taking screenshots or using webcam/microphone?
3.
Will that second non-root user have access to my Firefox profile data in first account? If yes, how can I prevent a wine program from accessing my Firefox profile data?
4.
Do I really need to use playonlinux? Is just wine enough?
wine security webcam malware
wine security webcam malware
edited Apr 16 at 8:17
New to Ubuntu
asked Apr 16 at 7:36
New to UbuntuNew to Ubuntu
662 silver badges11 bronze badges
662 silver badges11 bronze badges
add a comment
|
add a comment
|
2 Answers
2
active
oldest
votes
- The default configuration of mapping Z: to / can permit a malware to modify any file that the user has access to, including doing anything in the home folder. So, I think I can avoid that risk by using a separate non root user account for wine. Am I right by doing this? Is there any other means of infection?
No to the 1st. If you want it out of your /home/ you need to compile wine yourself and use ./configure prefix=path_to_install_directory && make
. If you use another user you can not play from your own user unless you change permissions (so basically you are killing the reason why you wanted the different user).
Yes to the 2nd question: any method to infect a Windows system also applies to Wine. Though 1 remark: not a lot of virus writers care about wine so they do not tend to add support for wine in the virus. It will/can infect anything windows related inside wine as the files are windows files.
- If a keylogger run inside wine as another non-root user, can that keylogger monitor the keys pressed by the other users? Similarly, can the above mentioned setup protect me from malware taking screenshots or using webcam/microphone?
A keylogger adds itself to the system (for instance by adding a udev rule) where pressing keys are caught and redirected. Pressing keys is regardless of who is typing where. A keylogger inside wine is difficult to install though. A keylogger inside the users /home/ pretty easy (there is even one in the repositories so just 1 apt install away).
- Will that second non-root user have access to my Firefox profile data? If yes, how can I prevent a wine program from accessing my Firefox profile data?
Generally anyone that can get into the wine directory can get into its own /home/$USER/. But are there wine programs to access your linux firefox profile?
- Do I really need to use playonlinux? Is just wine enough?
No. See it like this: wine is for the experiences user. POL is a set of scripts created by those experienced users to make it easier on the new users of wine.
I would stay away from wine. To me trying to plug security related issues with wine is futile. Impossible to win unless you can change core functionality of wine. Use virtualization: it is sandboxed, does not mess with your /home/ and a better overall experience. Backups are easy and no messing with core functionality of a broken down operating system.
For the 1st question, what I actually meant is logging into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe.
– New to Ubuntu
Apr 16 at 8:15
On question 3, I actually meant whether the windows program running in 2nd account can access the firefox profile data in my 1st account. Sorry, it was poorly worded. I edited it now.
– New to Ubuntu
Apr 16 at 8:19
add a comment
|
Wine is not sandboxing software. It's a compatibility layer between Windows system calls and Linux system calls. It is not meant to protect your system against malware.
The simple advise is that you don't run untrusted or known bad software on a computer containing valuable data.
I know it is not a sandboxing software. My question is whether I can reduce the risks by using a separate non root user account. and about whether keyloggers can function from another account.
– New to Ubuntu
Apr 16 at 7:51
add a comment
|
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "89"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/4.0/"u003ecc by-sa 4.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1134280%2fhow-to-secure-ubuntu-from-malware-keylogger-running-on-wine%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
- The default configuration of mapping Z: to / can permit a malware to modify any file that the user has access to, including doing anything in the home folder. So, I think I can avoid that risk by using a separate non root user account for wine. Am I right by doing this? Is there any other means of infection?
No to the 1st. If you want it out of your /home/ you need to compile wine yourself and use ./configure prefix=path_to_install_directory && make
. If you use another user you can not play from your own user unless you change permissions (so basically you are killing the reason why you wanted the different user).
Yes to the 2nd question: any method to infect a Windows system also applies to Wine. Though 1 remark: not a lot of virus writers care about wine so they do not tend to add support for wine in the virus. It will/can infect anything windows related inside wine as the files are windows files.
- If a keylogger run inside wine as another non-root user, can that keylogger monitor the keys pressed by the other users? Similarly, can the above mentioned setup protect me from malware taking screenshots or using webcam/microphone?
A keylogger adds itself to the system (for instance by adding a udev rule) where pressing keys are caught and redirected. Pressing keys is regardless of who is typing where. A keylogger inside wine is difficult to install though. A keylogger inside the users /home/ pretty easy (there is even one in the repositories so just 1 apt install away).
- Will that second non-root user have access to my Firefox profile data? If yes, how can I prevent a wine program from accessing my Firefox profile data?
Generally anyone that can get into the wine directory can get into its own /home/$USER/. But are there wine programs to access your linux firefox profile?
- Do I really need to use playonlinux? Is just wine enough?
No. See it like this: wine is for the experiences user. POL is a set of scripts created by those experienced users to make it easier on the new users of wine.
I would stay away from wine. To me trying to plug security related issues with wine is futile. Impossible to win unless you can change core functionality of wine. Use virtualization: it is sandboxed, does not mess with your /home/ and a better overall experience. Backups are easy and no messing with core functionality of a broken down operating system.
For the 1st question, what I actually meant is logging into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe.
– New to Ubuntu
Apr 16 at 8:15
On question 3, I actually meant whether the windows program running in 2nd account can access the firefox profile data in my 1st account. Sorry, it was poorly worded. I edited it now.
– New to Ubuntu
Apr 16 at 8:19
add a comment
|
- The default configuration of mapping Z: to / can permit a malware to modify any file that the user has access to, including doing anything in the home folder. So, I think I can avoid that risk by using a separate non root user account for wine. Am I right by doing this? Is there any other means of infection?
No to the 1st. If you want it out of your /home/ you need to compile wine yourself and use ./configure prefix=path_to_install_directory && make
. If you use another user you can not play from your own user unless you change permissions (so basically you are killing the reason why you wanted the different user).
Yes to the 2nd question: any method to infect a Windows system also applies to Wine. Though 1 remark: not a lot of virus writers care about wine so they do not tend to add support for wine in the virus. It will/can infect anything windows related inside wine as the files are windows files.
- If a keylogger run inside wine as another non-root user, can that keylogger monitor the keys pressed by the other users? Similarly, can the above mentioned setup protect me from malware taking screenshots or using webcam/microphone?
A keylogger adds itself to the system (for instance by adding a udev rule) where pressing keys are caught and redirected. Pressing keys is regardless of who is typing where. A keylogger inside wine is difficult to install though. A keylogger inside the users /home/ pretty easy (there is even one in the repositories so just 1 apt install away).
- Will that second non-root user have access to my Firefox profile data? If yes, how can I prevent a wine program from accessing my Firefox profile data?
Generally anyone that can get into the wine directory can get into its own /home/$USER/. But are there wine programs to access your linux firefox profile?
- Do I really need to use playonlinux? Is just wine enough?
No. See it like this: wine is for the experiences user. POL is a set of scripts created by those experienced users to make it easier on the new users of wine.
I would stay away from wine. To me trying to plug security related issues with wine is futile. Impossible to win unless you can change core functionality of wine. Use virtualization: it is sandboxed, does not mess with your /home/ and a better overall experience. Backups are easy and no messing with core functionality of a broken down operating system.
For the 1st question, what I actually meant is logging into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe.
– New to Ubuntu
Apr 16 at 8:15
On question 3, I actually meant whether the windows program running in 2nd account can access the firefox profile data in my 1st account. Sorry, it was poorly worded. I edited it now.
– New to Ubuntu
Apr 16 at 8:19
add a comment
|
- The default configuration of mapping Z: to / can permit a malware to modify any file that the user has access to, including doing anything in the home folder. So, I think I can avoid that risk by using a separate non root user account for wine. Am I right by doing this? Is there any other means of infection?
No to the 1st. If you want it out of your /home/ you need to compile wine yourself and use ./configure prefix=path_to_install_directory && make
. If you use another user you can not play from your own user unless you change permissions (so basically you are killing the reason why you wanted the different user).
Yes to the 2nd question: any method to infect a Windows system also applies to Wine. Though 1 remark: not a lot of virus writers care about wine so they do not tend to add support for wine in the virus. It will/can infect anything windows related inside wine as the files are windows files.
- If a keylogger run inside wine as another non-root user, can that keylogger monitor the keys pressed by the other users? Similarly, can the above mentioned setup protect me from malware taking screenshots or using webcam/microphone?
A keylogger adds itself to the system (for instance by adding a udev rule) where pressing keys are caught and redirected. Pressing keys is regardless of who is typing where. A keylogger inside wine is difficult to install though. A keylogger inside the users /home/ pretty easy (there is even one in the repositories so just 1 apt install away).
- Will that second non-root user have access to my Firefox profile data? If yes, how can I prevent a wine program from accessing my Firefox profile data?
Generally anyone that can get into the wine directory can get into its own /home/$USER/. But are there wine programs to access your linux firefox profile?
- Do I really need to use playonlinux? Is just wine enough?
No. See it like this: wine is for the experiences user. POL is a set of scripts created by those experienced users to make it easier on the new users of wine.
I would stay away from wine. To me trying to plug security related issues with wine is futile. Impossible to win unless you can change core functionality of wine. Use virtualization: it is sandboxed, does not mess with your /home/ and a better overall experience. Backups are easy and no messing with core functionality of a broken down operating system.
- The default configuration of mapping Z: to / can permit a malware to modify any file that the user has access to, including doing anything in the home folder. So, I think I can avoid that risk by using a separate non root user account for wine. Am I right by doing this? Is there any other means of infection?
No to the 1st. If you want it out of your /home/ you need to compile wine yourself and use ./configure prefix=path_to_install_directory && make
. If you use another user you can not play from your own user unless you change permissions (so basically you are killing the reason why you wanted the different user).
Yes to the 2nd question: any method to infect a Windows system also applies to Wine. Though 1 remark: not a lot of virus writers care about wine so they do not tend to add support for wine in the virus. It will/can infect anything windows related inside wine as the files are windows files.
- If a keylogger run inside wine as another non-root user, can that keylogger monitor the keys pressed by the other users? Similarly, can the above mentioned setup protect me from malware taking screenshots or using webcam/microphone?
A keylogger adds itself to the system (for instance by adding a udev rule) where pressing keys are caught and redirected. Pressing keys is regardless of who is typing where. A keylogger inside wine is difficult to install though. A keylogger inside the users /home/ pretty easy (there is even one in the repositories so just 1 apt install away).
- Will that second non-root user have access to my Firefox profile data? If yes, how can I prevent a wine program from accessing my Firefox profile data?
Generally anyone that can get into the wine directory can get into its own /home/$USER/. But are there wine programs to access your linux firefox profile?
- Do I really need to use playonlinux? Is just wine enough?
No. See it like this: wine is for the experiences user. POL is a set of scripts created by those experienced users to make it easier on the new users of wine.
I would stay away from wine. To me trying to plug security related issues with wine is futile. Impossible to win unless you can change core functionality of wine. Use virtualization: it is sandboxed, does not mess with your /home/ and a better overall experience. Backups are easy and no messing with core functionality of a broken down operating system.
answered Apr 16 at 8:01
RinzwindRinzwind
223k29 gold badges430 silver badges573 bronze badges
223k29 gold badges430 silver badges573 bronze badges
For the 1st question, what I actually meant is logging into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe.
– New to Ubuntu
Apr 16 at 8:15
On question 3, I actually meant whether the windows program running in 2nd account can access the firefox profile data in my 1st account. Sorry, it was poorly worded. I edited it now.
– New to Ubuntu
Apr 16 at 8:19
add a comment
|
For the 1st question, what I actually meant is logging into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe.
– New to Ubuntu
Apr 16 at 8:15
On question 3, I actually meant whether the windows program running in 2nd account can access the firefox profile data in my 1st account. Sorry, it was poorly worded. I edited it now.
– New to Ubuntu
Apr 16 at 8:19
For the 1st question, what I actually meant is logging into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe.
– New to Ubuntu
Apr 16 at 8:15
For the 1st question, what I actually meant is logging into the 2nd user every time I run a windows program, So that my data in the 1st user's home directory is safe.
– New to Ubuntu
Apr 16 at 8:15
On question 3, I actually meant whether the windows program running in 2nd account can access the firefox profile data in my 1st account. Sorry, it was poorly worded. I edited it now.
– New to Ubuntu
Apr 16 at 8:19
On question 3, I actually meant whether the windows program running in 2nd account can access the firefox profile data in my 1st account. Sorry, it was poorly worded. I edited it now.
– New to Ubuntu
Apr 16 at 8:19
add a comment
|
Wine is not sandboxing software. It's a compatibility layer between Windows system calls and Linux system calls. It is not meant to protect your system against malware.
The simple advise is that you don't run untrusted or known bad software on a computer containing valuable data.
I know it is not a sandboxing software. My question is whether I can reduce the risks by using a separate non root user account. and about whether keyloggers can function from another account.
– New to Ubuntu
Apr 16 at 7:51
add a comment
|
Wine is not sandboxing software. It's a compatibility layer between Windows system calls and Linux system calls. It is not meant to protect your system against malware.
The simple advise is that you don't run untrusted or known bad software on a computer containing valuable data.
I know it is not a sandboxing software. My question is whether I can reduce the risks by using a separate non root user account. and about whether keyloggers can function from another account.
– New to Ubuntu
Apr 16 at 7:51
add a comment
|
Wine is not sandboxing software. It's a compatibility layer between Windows system calls and Linux system calls. It is not meant to protect your system against malware.
The simple advise is that you don't run untrusted or known bad software on a computer containing valuable data.
Wine is not sandboxing software. It's a compatibility layer between Windows system calls and Linux system calls. It is not meant to protect your system against malware.
The simple advise is that you don't run untrusted or known bad software on a computer containing valuable data.
answered Apr 16 at 7:44
vidarlovidarlo
13.3k6 gold badges33 silver badges59 bronze badges
13.3k6 gold badges33 silver badges59 bronze badges
I know it is not a sandboxing software. My question is whether I can reduce the risks by using a separate non root user account. and about whether keyloggers can function from another account.
– New to Ubuntu
Apr 16 at 7:51
add a comment
|
I know it is not a sandboxing software. My question is whether I can reduce the risks by using a separate non root user account. and about whether keyloggers can function from another account.
– New to Ubuntu
Apr 16 at 7:51
I know it is not a sandboxing software. My question is whether I can reduce the risks by using a separate non root user account. and about whether keyloggers can function from another account.
– New to Ubuntu
Apr 16 at 7:51
I know it is not a sandboxing software. My question is whether I can reduce the risks by using a separate non root user account. and about whether keyloggers can function from another account.
– New to Ubuntu
Apr 16 at 7:51
add a comment
|
Thanks for contributing an answer to Ask Ubuntu!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1134280%2fhow-to-secure-ubuntu-from-malware-keylogger-running-on-wine%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown