Thats my attitude. Torrents have risks but so do random Russian streaming sites. By now I have it going with Jellyfin and *arr and I barely have to think about it
Torrents aren’t risky for movies as long as you don’t have “Hide file extensions” turned on. Unless someone’s wasting their zero-day video player exploit on you, which is unlikely, you wont find malware in an mp4 or mkv unless it’s actually an exe in disguise
sry, but that’s just straight up wrong. You can hide malware in video files (both mp4 and mkv are great containers!) and you can disguise your virus as a video.
But malware wrapped as video (or any other doc or media format) still needs to be executed, right? So if you don’t give that file execute permission (which Linux doesn’t give by default) and open it through media player or something, could said potential malware still run? I thought it couldn’t unless the player itself is vulnerable
no, these things would try to exploit the program that read them.
it’s not a likely attack vector, you need both a malware file, and the right program trying to read it. it might not also be transferrable across different os.
Thats my attitude. Torrents have risks but so do random Russian streaming sites. By now I have it going with Jellyfin and *arr and I barely have to think about it
Torrents aren’t risky for movies as long as you don’t have “Hide file extensions” turned on. Unless someone’s wasting their zero-day video player exploit on you, which is unlikely, you wont find malware in an mp4 or mkv unless it’s actually an exe in disguise
sry, but that’s just straight up wrong. You can hide malware in video files (both mp4 and mkv are great containers!) and you can disguise your virus as a video.
That’s like encoding malware in a picture and calling it dangerous
kern.exe.mp4 LOL
and the rest are 0days that sell for millions
But malware wrapped as video (or any other doc or media format) still needs to be executed, right? So if you don’t give that file execute permission (which Linux doesn’t give by default) and open it through media player or something, could said potential malware still run? I thought it couldn’t unless the player itself is vulnerable
no, these things would try to exploit the program that read them.
it’s not a likely attack vector, you need both a malware file, and the right program trying to read it. it might not also be transferrable across different os.
so yes, it needs a media player to attack. https://nvd.nist.gov/vuln/detail/CVE-2021-25801 this one f.ex