4 posts
Posted 07 April 2014 - 05:41 AM
With all these viruses can you get real viruses on your real computer from downloading programs from paste-bin?
(Sorry for being a noob :D/>)
7508 posts
Location
Australia
Posted 07 April 2014 - 06:59 AM
no.
should I expand on that? maybe.
ComputerCraft runs in a sandboxed environment, the scripts cannot be executed outside the computer it is meant to.
515 posts
Location
Australia
Posted 07 April 2014 - 09:16 AM
It is however possible for someone to download a malicious executable file through computercraft, though the server owner needs to be careless enough to run it. I heard that someone trolled a server owner by downloading a real virus that the computer's antivirus picked up, so unless you are extremely careless, it shouldn't be possible.
Edited on 07 April 2014 - 07:17 AM
92 posts
Posted 07 April 2014 - 07:15 PM
It might be possible to get one using php lookups. I don't know how it works but I know people use it to not have a wireless modem on their turtle. So using that way, a script might be downloaded on a computer. But it still needs execution. But then again, I don't know what those guys could and couldn't do using php in computercraft.
500 posts
Posted 07 April 2014 - 07:28 PM
Technically you can, but they'll basically be harmless. i.e. making infinite folders-within-folders.
3790 posts
Location
Lincoln, Nebraska
Posted 07 April 2014 - 07:44 PM
Computercraft can certainly download files in binary mode, enabling people to download malicious software. However, ComputerCraft CANNOT execute those files.
Even if you somehow wrote an environment to execute the malware, you'd still be running it within the ComputerCraft sandbox, where if you tried to exit the sandbox, the server/client would crash.
The end user must be stupid enough to execute the files downloaded outside of the sandbox.
So in short, yes, you can download real-world viruses, but ComputerCraft cannot execute them, nor can they auto-execute.
92 posts
Posted 07 April 2014 - 07:57 PM
Cranium
So in short, yes, you can download real-world viruses, but ComputerCraft cannot execute them, nor can they auto-execute.
but what if you would download an autorun.inf file and wait for a server reboot?
1281 posts
Posted 07 April 2014 - 08:08 PM
but what if you would download an autorun.inf file and wait for a server reboot?
nine times out of ten a server reboot does not mean the computer is rebooting, and regardless your computercraft folder is not the root folder of a volume(hardrive, cd, etc.)
92 posts
Posted 07 April 2014 - 08:16 PM
but what if you would download an autorun.inf file and wait for a server reboot?
nine times out of ten a server reboot does not mean the computer is rebooting, and regardless your computercraft folder is not the root folder of a volume(hardrive, cd, etc.)
And we are thinking way to complicated.
This would probably not happen.
Getting a virus while downloading torrents is more likely.
3790 posts
Location
Lincoln, Nebraska
Posted 07 April 2014 - 08:34 PM
Cranium
So in short, yes, you can download real-world viruses, but ComputerCraft cannot execute them, nor can they auto-execute.
but what if you would download an autorun.inf file and wait for a server reboot?
autorun.inf will not execute on server restart.
4 posts
Posted 08 April 2014 - 02:38 AM
Right, yep, I understand that all, yep. (Not really tho ;)/> )
So no if I don't open any files outside of computer craft that are in the computer craft folder and have anti-virus and a mac? Right?
(Sorry for being a noob :D/>)
3790 posts
Location
Lincoln, Nebraska
Posted 08 April 2014 - 03:06 AM
Well, just be smart. Don't click any files you don't trust, don't browse to internet sites you don't trust, etc.
Smart computer use goes a long way.
7083 posts
Location
Tasmania (AU)
Posted 08 April 2014 - 03:36 AM
Likely more so than any other protection, in fact.
Relying on anything other then your own common sense is plain dangerous. Take the whole "Mac user mentality", for example - the stereotypes not only buy the line that "Macs don't get viruses", they ignore the inconvenient truth that the majority of malware these days doesn't take the form of a virus anyway.
Then they go off and take liberties online and wonder why it ends badly.
With that said, my observations suggest to me that that most common form of malware these days comes in via ad banners. Most web sites don't have direct control over their banners, but rather these are supplied to a centralised provider who in turn gets to display them on a whole bunch of websites (Dan doesn't hand-pick the ads on this site, for eg). If a malicious ad gets through the checking process, then hey presto! That's a whole bunch of web sites distributing that malware, giving a whole lot of incentive to use that method of installation.
Hence I for one consider an ad blocker to be essential security software.
4 posts
Posted 08 April 2014 - 03:56 AM
Well, just be smart. Don't click any files you don't trust, don't browse to internet sites you don't trust, etc.
Smart computer use goes a long way.
So… these forums, youtube (tutorials) and only paste bin would be alright?
Likely more so than any other protection, in fact.
Relying on anything other then your own common sense is plain dangerous. Take the whole "Mac user mentality", for example - the stereotypes not only buy the line that "Macs don't get viruses", they ignore the inconvenient truth that the majority of malware these days doesn't take the form of a virus anyway.
Then they go off and take liberties online and wonder why it ends badly.
With that said, my observations suggest to me that that most common form of malware these days comes in via ad banners. Most web sites don't have direct control over their banners, but rather these are supplied to a centralised provider who in turn gets to display them on a whole bunch of websites (Dan doesn't hand-pick the ads on this site, for eg). If a malicious ad gets through the checking process, then hey presto! That's a whole bunch of web sites distributing that malware, giving a whole lot of incentive to use that method of installation.
Hence I for one consider an ad blocker to be essential security software.
What do you mean by '
Likely more so than any other protection, in fact.'?
And how safe are these programs on the computer craft forums?
Edited on 08 April 2014 - 02:21 AM
7083 posts
Location
Tasmania (AU)
Posted 08 April 2014 - 08:21 AM
What do you mean by 'Likely more so than any other protection, in fact.'?
It follows on from the text directly above it. If in doubt about a given page of writing, read left to right, top to bottom. ;)/>
And how safe are these programs on the computer craft forums?
Oh, most of them will make your computer catch fire.
Seriously though, it would be trivial to come up with a script that asks users to enter login information for eg their MineCraft account for phishing purposes, put it up as a paste, and link to it here - you'd think that a regular forum reader would raise the alarm, but there are obvious methods around this that I won't expand upon for obvious reasons. Suffice to say that no one here (from the newest user to the site owner) is liable for what happens to you if you run anything you find here.
Again, this isn't a problem if you apply your own common sense. Make up your own mind as to the credibility of a given coder, and if in doubt, you can always read a given script before you run it. As a general rule, most people aren't bad, nor do they even want to be.
4 posts
Posted 08 April 2014 - 08:49 AM
Alright thanks.