similar to: Ransomware?

On Sun, May 15, 2016 at 7:07 AM, Helmut Hullen <Hullen at t-online.de> wrote: > Hallo, ToddAndMargo, > > Du meintest am 15.05.16: > >> Is there anything in Samba that will help protect >> against ransomware? > > The linux principle is "one job - one tool". Antivirus software exists. > It doesn't help against really new malware, it doesn't

Would something like this help? I put a bunch of junk pictures and other files in a samba share that everyone has access to. If I modify them in any way, I get warned. I was thinking it might warn me so I could prevent it spreading to backups. #!/bin/sh $MY_EMAIL="some at email.com" $MY_DIR=/home/shared_to_everyone_via_samba/pictures_for_test_sub_folder while inotifywait -qre

Am 16.05.2016 um 07:32 schrieb ToddAndMargo: > May I surmise that all the encrypted file now have > an extra extension of ".crypt"? So it is easy to > see who got clobbered. how do you come to that conclusion and even if some malware acts that way what makes you sure you can rely on that? IMHO it would only be so when the developer of the ransomware is a fool! why should he

Am 17.05.2016 um 09:47 schrieb Fabian Cenedese: > >> Am 16.05.2016 um 07:32 schrieb ToddAndMargo: >>> May I surmise that all the encrypted file now have >>> an extra extension of ".crypt"? So it is easy to >>> see who got clobbered. >> >> how do you come to that conclusion and even if some malware acts that way what makes you sure you can

I had to deal with ransomware at the end of April. One of the PCs on my customer's network was infected by opening a realistic looking email apparently from a genuine supplier to the company and personally addressed. The infection occurred on Wednesday, but encryption of the server only took place late on Friday afternoon, presumably having obtained encryption keys from the criminals. The

On 05/15/2016 01:00 PM, Andrew Bartlett wrote: > On Sat, 2016-05-14 at 22:42 -0700, ToddAndMargo wrote: >> Hi All, >> >> Is there anything in Samba that will help protect >> against ransomware? > > I've not had to look into this properly, but I would suggest that > regular and genuinely offline backups and regular Read Only snapshots. > > Andrew

On 05/17/2016 01:54 AM, Reindl Harald wrote: > > > Am 17.05.2016 um 03:13 schrieb ToddAndMargo: >> On 05/15/2016 01:00 PM, Andrew Bartlett wrote: >>> On Sat, 2016-05-14 at 22:42 -0700, ToddAndMargo wrote: >>>> Hi All, >>>> >>>> Is there anything in Samba that will help protect >>>> against ransomware? >>> >>>

I'm not aware of the last, but in previous versions, ransomware encrypt all files and after this he delete original files. If you have a trash/recycle configured, you can recover these files. Em 17/05/2016 8:26 AM, "barış tombul" <bbtombul at gmail.com> escreveu: > Ransomware Overview: > >

On 05/19/2016 11:09 AM, Helmut Hullen wrote: > Hallo, ToddAndMargo, > > Du meintest am 19.05.16: > >>>>>> Is there anything in Samba that will help protect >>>>>> against ransomware? > > [...] > >>> months ago there where ransomware which discovered shares without a >>> drive letter assigend > >> yes, I just read

On Wed, Jun 28, 2017 at 8:42 AM, David Disseldorp via samba <samba at lists.samba.org> wrote: > Hi, > > On Wed, 28 Jun 2017 11:08:11 +0200, mj via samba wrote: > >> Hi all, >> >> Just out of curiosity: is there anything we can do, on the samba side, >> to counter the recent ransomware attacks? (or limit the damage done) >> >> I'm thinking

ToddAndMargo <ToddAndMargo at zoho.com> writes: > On 05/20/2016 06:31 AM, Nico Kadel-Garcia wrote: >> Those can also >> often be made accessible by Samba as read-only CIFS shares, for people >> to recover their own files. It's invaluable for people not to have to >> bother their local sysadmin to get last night's copy of the files they >> just

Am 16.05.2016 um 01:05 schrieb jacek burghardt: > Iscsi cant be encrypted. what has this to do with samba and who has iSCSI (SAN) on the normal network instead a seperated storage network or in case of a small VMware cluster with 2 hosts even not just 2 network cables from each to the SAN-storage with no switch at all? > On Sun, May 15, 2016 at 3:30 PM, peter lawrie < >

I'm jumping in here late. There's been a lot of good suggestions already. Something I haven't seen mentioned is rsnapshot. The solution to ransomware like this is a good solid backup regimen and rsnapshot can be part of that. rsnapshot is opensource and based on rsync .. it requires a unix filesystem that supports hardlinks. It works on making a complete snapshot of the file system

Or is it some sort of inside joke? http://www.hughesjr.com/ If it's a bona fide hack, I'd be curious to know how the culprit got in. The the distro's maintainer has gotten burgled one would think that a lot of other systems are at risk. Cheers,

Hi all, Just out of curiosity: is there anything we can do, on the samba side, to counter the recent ransomware attacks? (or limit the damage done) I'm thinking like: limit the number of files per second a client (workstation) is allowed to edit, or some other smart tricks..? It would be nice if samba could be an extra layer of defense. Something perhaps a vfs module could help with..?

On 09/30/2017 12:58 AM, Rowland Penny via samba wrote: > I understand that you have to use XP, but you don't have to use NTLM, > haven't you heard of 'wanacry' ? > Go here and read it:http://www.imss.caltech.edu/node/396 WannaCry did not infect XP or for that matter, Windows Nein, oops, Ten. Doesn't mean it couldn't if altered to do so: Reference:

Ransomware Overview: https://docs.google.com/spreadsheets/d/1q_VSJoSwTv2L29HXouXm-muVfYtzX-VeAuzJUgICIUs/pubhtml .mp3 even got inside. ( I used fail2ban.) best regards 2016-05-17 12:01 GMT+03:00 Reindl Harald <h.reindl at thelounge.net>: > > > Am 17.05.2016 um 09:47 schrieb Fabian Cenedese: > >> >> Am 16.05.2016 um 07:32 schrieb ToddAndMargo: >>>

Iscsi cant be encrypted. Join my framily E02705708hn 3032 last name BURGHARDT state is co Cheapest sprint service only 25 a month. On Sun, May 15, 2016 at 3:30 PM, peter lawrie < peter.lawrie at glendiscovery.co.uk> wrote: > I had to deal with ransomware at the end of April. One of the PCs on my > customer's network was infected by opening a realistic looking email >

>> On Sat, 2016-05-14 at 22:42 -0700, ToddAndMargo wrote: >>> Hi All, >>> >>> Is there anything in Samba that will help protect >>> against ransomware? >> >> I've not had to look into this properly, but I would suggest that >> regular and genuinely offline backups and regular Read Only snapshots. >> >> Andrew

Hi all, I'm new to wine (and pretty new to Linux), and have just built and fiddled a bit with a Xandros distribution. This is based on Debian woody, and comes with Crossover Office 1.3.0-2. I installed Visio 2000 which went right "out of the box" including a VB runtime update and 2 virtual reboots - awesome. Next I tried to install an antenna simulation programme called EZNEC3