New worm shakes up Linux community

The first Linux worm to appear outside a computer lab is a wake-up call to users complacent about security, say experts.

The Ramen worm exploits security flaws in versions 6.2 and 7.0 of Red Hat's Linux operating system, replacing website front pages with the proclamation: "RameN Crew Hackers loooooove noodles". Sites affected include NASA and Texas A&M University, despite Red Hat releasing the relevant security patches in June 2000.

Red Hat is keen to dispel worries about Linux security, emphasising that it is inherently more secure than traditional desktop environments. But experts say this may be the root of the problem.

"Ramen is a big issue. Linux users have been complacent about security issues because of the Unix background," said IDC research manager Charles Kolodgy.

"Users of Linux may be so self-confident they are using the most secure operating system that they don't install patches," said Denis Zenkin, spokesman for security software firm Kaspersky Lab.

"Users don't pay attention to securing their systems. One of the main rules of computer hygiene is to install security patches as soon as they're released," he added.

In October 2000 Red Hat launched the Red Hat Network, an automated service to provide users with information about security patches and updates.

"The Red Hat developers are doing it the right way," said Zenkin. "Users may be too passive to check the website to find out about updates. A mailing list notifying users is active support and is very important."

Some analysts see the Ramen worm as a dose of reality for the Linux world. "This demonstrates that Linux is as vulnerable to viruses as any other operating system and shuts up the people claiming it is pretty well virus-free," said Gartner research director Andy Butler.