A trojan for Skype
Posted Sep 3, 2009 11:24 UTC (Thu) by Tet
Parent article: A trojan for Skype
Since we don't really know what the Skype code does when it isn't infected, it will be difficult to determine if its behavior changes in a malicious way. That should be a little worrisome.
Agreed. That said, a decent SELinux policy can prevent it from doing undesireable things on the local box, even if it's infected. It's hard to stop it sending copies of your calls out over the network, though, because skype needs to send data over the network, and SELinux doesn't have an easy way of working out which are legitimate network connections and which aren't.
to post comments)