Bonum Certa Men Certa

Symantec Lies About GNU/Linux

Kent Hovind mug shot
Symantec: the Kent Hovind of security?
(mug shot of Kent Hovind courtesy of Escambia
County Sheriff's Office after his arrest)



Summary: In order to sell some products, Symantec spreads GNU/Linux fear based on misinformation

EVERY once in a while Symantec aims its FUD pistol at some innocent element of computing which Symantec claims has a problem (and Symantec of course offers a solution to this problem). We have already explained this business strategy (using examples that misuse Free software [1, 2]), which characterises many quacks and pseudo-science. That's why we put Kent Hovind at the top, for those who still wonder.



An issue which we discussed earlier today in IRC is the latest stunt from Symantec, which is probably best deconstructed and explained by Slashdot user "superapecommando" who submits:

The latest MessageLabs Intelligence Report from Symantec Hosted Services is filled with interesting and useful information regarding the current state of malware and e-mail borne threats as well as the trends over time. Of particular interest to me is the assertion in the report that "any given Linux machine is five times more likely to be sending spam than any given Windows machine."

A pretty clear case of sensationalist metrics from a company which wants to sell their hosted security solutions to Linux box admins. But one interesting thing that comes out of the story is that many of the security researchers believe that misconfigured POSTFIX and SENDMAIL installations are cloaking the actual amount of spam coming from infected Windows hosts.


Desktops that unleash vast amounts of SPAM actually run Windows and one in two Windows PCs is believed/estimated to be a zombie (either active or not). GNU/Linux drives many mail servers, so if it obeys a request from a Windows zombie, then it will deliver SPAM. Should GNU/Linux therefore be blamed? Of course not. It's just very good at delivering mail.

“GNU/Linux drives many mail servers, so if it obeys a request from a Windows zombie, then it will deliver SPAM.”Quoting Symantec a little further from its 'report' (which assumes bogus numbers about the market share of GNU/Linux), "by calculating a ratio of spam from a given operating system compared to the market share, we can get a “spam index” which shows relative to its market share, the likelihood that a particular computer is sending spam, based on its operating system. In the current spam climate, this index shows that relative to its market share, any given Linux machine is five times more likely to be sending spam than any given Windows machine..."

Another translation was sent to us by a reader who says: "Despite a total lack of evidence and being unable to detect the source OS of spam, we conclude that Linux machines are sending more SPAM because there are less of them."

As our IRC logs will show later today (fragment posted below), there are even better explanations for that.




Techrights logo

IRC: #boycottnovell @ FreeNode: May 9th, 2010

Join us now at the IRC channel.

tessier__http://www.v3.co.uk/v3/news/2262681/botnets-exploit-linux-ownersMay 10 09:29
tessier__Someone is smoking crack.May 10 09:29
tessier__crapMay 10 09:31
schestowitzWindows is not used much for E-mailMay 10 09:31
tessier__There is something fishy about that websiteMay 10 09:31
schestowitzWhich one?May 10 09:31
schestowitzV3?May 10 09:31
tessier__Not intentionally, no. But that's what the botnets are doing with Windows: sending mailMay 10 09:31
tessier__YeahMay 10 09:31
schestowitzVNUNEt?May 10 09:31
tessier__Have you heard of v3 before?May 10 09:31
tessier__I never have.May 10 09:31
schestowitzYesMay 10 09:31
schestowitzLinux relays spamMay 10 09:32
schestowitzIt runs mail serversMay 10 09:32
schestowitzIt does what it's supposed to doMay 10 09:32
schestowitzWhich is to relay requestsMay 10 09:32
tessier__I cannot post a comment on that site. The captcha does not work. No matter what you put in there it does not accept it.May 10 09:32
tessier__Linux by default is not an open relay.May 10 09:32
schestowitzI wonder what sends those requests thoughMay 10 09:32
tessier__No distro ships their mail servers that way.May 10 09:32
schestowitzIt's spammersMay 10 09:32
tessier__it will deliver the spam to you that someone injected via a Windows box though.May 10 09:33
schestowitzThey use open relaysMay 10 09:33
schestowitzRunning Linux because it's betterMay 10 09:33
tessier__Open relays are hard to find these days.May 10 09:33
schestowitzThey get blacklistedMay 10 09:33
tessier__And spammers don't run open relays either. They don't want other spammers stealing their resources.May 10 09:33
schestowitzWhat was that list that gather IPs of spam relays?May 10 09:33
schestowitzmany services used to look it up and in 2008 it had sustainability issuesMay 10 09:33
tessier__Whenever I have investigated IP addresses that were sending me spam it was Windows boxes.May 10 09:33
tessier__There are lots of DNSBLsMay 10 09:34
tessier__And they operate quite successfullyMay 10 09:34
tessier__SORBS is one of the big ones these daysMay 10 09:34
schestowitzI can't recall the one I think about. Articles about it were widespread 2 years ago.May 10 09:34
*schestowitz creates http://techrights.org/wiki/index.php/FacebookMay 10 09:35
TechrightsTitle: Facebook - Techrights .::. Size~: 12.91 KBMay 10 09:35
tessier__There have been quite a fewMay 10 09:35
-BNtwitter/#boycottnovell-[popey] Mark proposes that 10.10 is released on Sunday 10th October 2010. Where 101010 = 42 = Meaning of Life / Universe / Everything!May 10 09:37
-BNtwitter/#boycottnovell-[nsisodiya] need a student volunteer for modifying C++ book #schoolosMay 10 09:40
*benJIman has quit (Ping timeout: 252 seconds)May 10 09:42
-BNtwitter/#boycottnovell-[popey] There will be no public ISO of #Ubuntu Light with Unity, but will be tailored specifically for OEMs.May 10 09:49
-BNtwitter/#boycottnovell-[davidgerard] From @cracked - 5 Insane File Sharing Panics from Before the Internet - http://tinyurl.com/2ubthnwMay 10 09:53
TechrightsTitle: 5 Insane File Sharing Panics from Before the Internet | Cracked.com .::. Size~: 81.74 KBMay 10 09:53
-BNtwitter/#boycottnovell-[satipera] Liberal Democrat negotiations with Labour look likely if Brown goes quickly.May 10 09:55
*narendra (~79f5e1b0@gateway/web/freenode/x-xaqdkqksysommyyc) has joined #boycottnovellMay 10 10:08
narendrawhere I can upload secrect document anonymousy ? May 10 10:08
narendrawikileaks is not working i think !!May 10 10:08
tessier__http://موقع.وزارة-الاتصالات.مصر/Default.aspxMay 10 10:16
tessier__Awesome.May 10 10:16
*benJIman (~benji@benjiweber.co.uk) has joined #boycottnovellMay 10 10:17
MinceRi'm not so enthusiastic about it.May 10 10:17
*benJIman has quit (Client Quit)May 10 10:17
tessier__Why not?May 10 10:17
*benJIman (~benji@benjiweber.co.uk) has joined #boycottnovellMay 10 10:17
MinceRbecause it allows even more domains that are difficult to type, read and compareMay 10 10:18
MinceRIDN already lets you create identical-looking but distinct domains that can confuse users trying to check whether a certificate really applies to a supposedly secure connection.May 10 10:18
MinceRdomain names used to be easy to handle (as such names should be)May 10 10:19
MinceR7bit US-ASCII should have been enough.May 10 10:19
tessier__SSL CA was broken from the beginning anyway. This doesn't make things any worse.May 10 10:21
tessier__Everyone just clicks ok regardless.May 10 10:21
tessier__Although I am curious to know how you would work that sort of thing into a bind zone file.May 10 10:21
MinceRno, not everyone.May 10 10:26

Comments

Recent Techrights' Posts

Slop Nihilism is Funded by Big Oil
Eventually human civilisation will destroy itself
Professor Eben Moglen Recovering From Open Heart Surgery
From his public pages (this is not secret)
There Are Red Hat (IBM) Layoffs, But Google News is Infested With Slopfarms
It contributes a lot to misinformation and it encourages plagiarism
USA Not a Place for Free Speech
In America, as in the US, the attacks seem more enhanced or advanced these days
 
Gemini Links 17/09/2025: Flashing LineageOS and ROOPHLOCH
Links for the day
Links 17/09/2025: Long COVID Study, "Exposing Pegasus", and Chatbots Exposing Sensitive Data
Links for the day
Links 17/09/2025: Secret Settlement for Internet Archive and Google’s LLM Slop Summaries Attracting Lawsuits
Links for the day
The True Cost of 'Generative Models'
Funded and promoted by the companies that profit from the waste
'Big Slop' Attacks Contemporary Information/Knowledge and Creative Works, 'Big Copyright' (Cartel) Attacks the Old
Someone at IA will hopefully "blow the whistle" on what they actually agreed
Why We Find It Difficult to Trust Rust
A comparison between C/C++ and Rust
Watching the OSI: Our Series Will Carry on Irrespective of the Chief's 'Resignation'
the OSI isn't even the real guardian of the term "Open Source"
Just What LibreOffice Needs? Another Language? (Rust)
what's all this concern about memory safety?
Many Microsoft Managers Are Leaving
"Hey hi" chaff or chaff about "hey hi" cannot eternally distract from the difficulties inside the company
Tomorrow, Microsoft's Tim Anderson's 'The Register MS' Offshoot Will Have Been Inactive for 2 Months (There's Also a Slop Problem)
We've already caught The Register MS using LLM slop for articles
Microsoft's Chief Legal Officer Leaves Microsoft After Nearly 30 Years
And not retiring
Even Windows Users Are Having Problems With "Secure Boot"
When it comes to security - Microsoft strives for the very opposite
Another Competition Crime of Microsoft, Long Facilitated and Advocated by a Bad Actor, Who is Funded by a Third Party to Commit Extortion Against People Who Have Correctly and Repeatedly Warned About It for Over 13 Year
We must always go back to the core issues
3 More Reasons to Replace Mozilla Firefox With LibreWolf
Thankfully there are de-enshittified versions of Firefox
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, September 16, 2025
IRC logs for Tuesday, September 16, 2025
Links 17/09/2025: Google Layoffs in "Hey Hi" (AI), Perplexity Hit With More "Hey Hi" (Plagiarism) Lawsuits
Links for the day
Gemini Links 17/09/2025: Reclaiming Things in a Digital Age and Moon Phases in CGI
Links for the day
Slopwatch: Google News is Slop, Google News is Plagiarism, Google News is Dying
Google is off the rails
Links 16/09/2025: "The Censorship Alarm Is Ringing in the Wrong Direction" and ASRock Does Microsoft E.E.E. on GNU/Linux
Links for the day
Serious "Breach of Confidentiality of Personal Data" in Europe's Second-Largest Institution, the EPO
Yes, the same EPO that routinely uses "data protection" and "GDPR" as a pretext for hiding or covering up its corruption and white-collar crimes (it even uses that as an excuse for refusing to obey courts' orders)
Adrienne Rockenhaus Says Her Husband Was Arrested for Running Tor and Denied Basic Rights in the United States
the US seems to be getting "russified" in its approach towards Tor
This is What Happens When Microsoft Canonical Lets Decisions on Ubuntu be Made by a Youngster From the British Army (Where He Did Mass Surveillance)
"Is Ubuntu Compromised?"
Back Doored Windows Giving GNU/Linux a Hard Time (Under the Guise of 'Security')
Is this complication intentional? Most likely, yes
Links 16/09/2025: Science, Security, and Conflicts
Links for the day
Gemini Links 16/09/2025: Command-line Options in POSIX Shell and Introducing Acre 0.9
Links for the day
Microsoft 'Secure' Boot Versus Dual Boot With GNU/Linux
they're meant to assume everything is OK
Links 16/09/2025: While Oracle Pretends to be Rich It's Firing About 70 MySQL Workers, "Oracle's Revenge" (Faking Demand With "AI")
Links for the day
Microsoft Has Just Published a New Web Page About "Secure Boot Update Process" (Microsoft Also Admits Issues; PCs Can Stop Booting)
Why was this page issued and published only hours ago?
Microsoft Lunduke: I Spread Hate and Then I Receive Hate
Cry us a river, Microsoft Lunduke
"Use Wayland" Isn't a Bugfix for X (X11 is Still Necessary)
They tell us X is "dead" and we must all be herded into Wayland ASAP
"Disable Secure Boot and Fast Boot. Wipe and Start Over."
At least they didn't say, buy a new computer...
The Oracle Ponzi Scheme
Oracle isn't doing well, but it's nowadays fashionable to say "clown" and "hey hi" to prop up one's stock, even based on nothing at all
The New Head of OSI is an "Hey Hi" (AI) Obsessed Person
when Bryant says "AI" that doesn't mean AI
Taking Out the Battery, Opening Up Your Computer, Just Like a "Normie" Would
At this stage, any person who still says "enable Secure Boot" is misguided or persuaded by companies that sell rootkits
Slopwatch: Serial Sloppers and Slopfarms Still Infesting Google News (Fake 'Articles' About "Linux" Spreading FUD)
searching for "Linux" today yields a lot of FUD
"Governments, local authorities, schools and hospitals can lead by example by procuring only Free Software"
Crossposted from Tux Machines
Cindy Cohn Leaving the Electronic Frontier Foundation While Its Co-founder John Gilmore, Whom She Apparently Helped Oust, Will Celebrate 40 Years of the Free Software Foundation, Inc.
EFF has been busy hoarding GAFAM money, whereas the latter is where all the real activism is done
The Reach of Techrights Has Broadened
We nowadays cover a broader range of issues
"Google is Googlebombing KDE's Project Banana"
So is Google googlebombing KDE's Project Banana? You decide.
Complicating Things for No Actual Benefit, Just Added Risk and More Difficulties Adding GNU/Linux and BSDs
Watch what it's like for people who wish to use BSDs
Some Very Large IRC Networks Are Growing
IRC will turn 38 next year
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, September 15, 2025
IRC logs for Monday, September 15, 2025
Links 16/09/2025: Autumn Party, RPG Planet, and Optical ROOPHLOCH
Links for the day
Geminispace Growing at Pace of Over 10% Per Year
Contrary to what some pessimists try to claim
Linux Mint Forums Today: Disable 'Secure Boot', It Doesn't Improve Security, It's Just a Microsoft Obstacle to GNU/Linux Users
They also mention MOK
What Ruben Amorim and Stefano Maffulli Have in Common
Censors Wikipedia and Social Control Media
Microsoft Won't Cooperate in Trying to Tackle EPO Corruption (Microsoft Profits From This Corruption)
Use something like BigBlueButton, Jami, Ring, and Jitsi instead
Solved Less Than an Hour Ago: Trying to Escape Windows, 'Secure Boot' Gets in the Way
'Secure Boot' wasn't meant to even exist in the first place
Stefano Maffulli, Executive Director of the Open Source Initiative, Resigns or Gets Removed (We'll Continue Covering OSI Scandals)
A dozen mentions of "AI", not much about "Open Source"
Andy Has Just Nailed It (Regarding Complexity and Failure, a la UEFI)
The users no longer own or control what they buy
Compatibility Support Module (CSM) Versus GNU/Linux Simplicity
what Andy recently called "solutionism"
Links 15/09/2025: "Postal Traffic to US Down by Over 80%" and 'Smart' Spinozacampus Laundry Room Goes AWOL
Links for the day
Gemini Links 15/09/2025: Dungeon Hustle and Deleting Oneself From the Net
Links for the day
Breach of EPO's Duty of Care or Cigna Reimbursement Issues
This is the sort of thing that motivated Luigi Mangione to assassinate a CEO
Ask Ubuntu About "Secure Boot" Violation and Laptops That Don't Boot GNU/Linux
Does anyone still believe that "Secure Boot" has anything at all to do with security?
We Are Sad to Hear the Story of Jonathan Riddell, Champion of KDE and GNU/Linux on Desktops/Laptops
I have enormous respect for Jonathan and everything he has done
Talking About the Problem vs Talking to the Problem
Wanting an audience is never a good excuse for compromising one's values and principles
Focusing on Patents
The reason we cover the EPO so much is that it's close to home
"Secure Boot Violation": The 'Joys' of Fake Security Gone Wrong
Not everyone reboots every day
Links 15/09/2025: Russia Invades Romanian Airspace, Penske Media Sues Google Over LLM Slop
Links for the day
Links 15/09/2025: Bitcoin ATMs Scam and "Conservative Cryptography" (Backdoors Fantasies)
Links for the day
EPO Imitates Microsoft: "Three Days or More Per Week" Inside the Office to Get a Desk to Work on; "the Office Breaches Its Promise Towards Staff and Acts in Breach of Its Duty of Care"
The EPO serves no actual function in Europe
Links 15/09/2025: Political Affairs, Censorship, and Copyrights
Links for the day
Gemini Links 15/09/2025: Music Genres, Invisible Networks, and Akademy 2025
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, September 14, 2025
IRC logs for Sunday, September 14, 2025