• Some users have recently had their accounts hijacked. It seems that the now defunct EVGA forums might have compromised your password there and seems many are using the same PW here. We would suggest you UPDATE YOUR PASSWORD and TURN ON 2FA for your account here to further secure it. None of the compromised accounts had 2FA turned on.
    Once you have enabled 2FA, your account will be updated soon to show a badge, letting other members know that you use 2FA to protect your account. This should be beneficial for everyone that uses FSFT.

linux virus scanner, relevant yet?

C

CoW]8(0)

[H]ard|Gawd
Joined
Jul 25, 2005
Messages
1,427
I know this question has been asked before, but the last time was about 3 years ago. At this point the number of linux systems have grown substantially.

I realize that linux uses the whole permissions scheme separating root from normal users, but that doesn't mean a virus won't be able to wreak havoc on your system as a regular user. Perhaps it won't be able to touch important system files, but I don't see why it wouldn't be able to steal passwords and other personal information.

So what's the [H] community think of antivirus for linux? And what are the recommended scanners out there?
 
AV is useful in Linux...To scan files on Windows partitions and email scanning. That's about it.
Also, OSX will probably be targeted long before Linux will anyway.

As for virus scanners, I like ClamAV.
 
As stated above, ClamAV, and only if it's a server and scans data traffic going through it (such as mail).
 
ClamAV is used on all my Linux servers that pass files from Linux to Windows.
 
Figured I ought to revive this thread rather than start my own.

My office has two separate, physically isolated networks in it... one for internal use, and one for internet access. I'm evaluating switching all of our internet access machines to Ubuntu for security reasons and to cut down on licensing costs for Office and Windows.

I'm going to need a good antivirus program for these machines to scan email attachments and stuff that people are putting on their internal network machines with flash drives. Is ClamAV my best bet, or should I look into something else? I noticed that AVG has a free version for Linux but they specifically state that it's not for commercial use, so that's probably out.
 
Yes, I think ClamAV is your best bet simply because you're going to be running in on the 'Internet' network which will be Linux based and if you need help configuring Linux / ClamAV, you're going to get much more support than if you ran Linux / AVG. I have never seen anyone or heard of anyone use this Linux client. I am not saying it's not good or unsecure but just that ClamAV and Linux have a long secure history together and the ClamAV mailing lists are great help for anything you need. I would think with AVG Free on Linux, you would be on your own...
 
Well i would think there would be one more thing to consider for a Linux desktop implementation. There is a chance (however unlikely) if you run wine that a windows virus would run under it. Of course even if it runs it should not be able to do anything bad to the OS itself...but perhaps something like a keylogger might do its thing.

Btw I have not researched this extensively so it's mostly guesswork
 
I thought Wine emulates the application in Windows but not the entire O.S. so that malware can't be ran on Wine. I think your example is more realistic if you have a Windows virtual machine running under Linux. That virtual O.S. can be infected...
 
sorry for being pedantic but wine does not emulate but rather it adds reverse engineered windows libraries to create compatibility.

Of course it lacks many of windows features such as the registry which makes it quite unlikely that malware will run properly but as wine can run many windows pieces of software ok I don't see why some not overly fussy virus designed run in the userland would not work.

Of course it could not touch the linux kernel or elevate its privileges but something like a keylogger could still be potentially nasty.


Again this is simple supposition from my part.
 
I've honestly never used Wine. I have been Microsoft free for 7 years but it's a good theory and one can never be too safe.
 
At this point there is really "nothing to gain" for authors of viruses and spyware for Linux. The vast majority of people use window of some type which is so full of holes it is easy to attack.
Why bother with a small minority using Linux which is much harder to breach?
 
I think Linux desktop use is still less than 1% but I am sure it's not that accurate.
 
You must log in or register to reply here.
Back
Top