What protection?

paradisiac · 20 May 2011 at 16:44

what do you guys use for virus protection on linux?

craptakular · 20 May 2011 at 16:50

None. Linux doesn't need it.

paradisiac · 20 May 2011 at 16:51

so linux cannot get a virus at all?

Showboat · 20 May 2011 at 16:54

My first ever training in Linux, the guy teaching stood up and said....

"Linux is the best operating system, through the years all the holes have been plugged up"

What a legend

I now delete any e-mails i get warning me of any vulnerabilities. :-p

Huw · 20 May 2011 at 16:58

Theoretically viruses for Linux are possible. I think some "proof of concept" viruses have been written. As far as I'm aware, though, absolutely nothing has ever been seen in the wild.

You're more likely to be hit by browser exploits or something along those lines, but as long as you always grab security updates as they become available you'll be fine.

In short - don't worry.

paradisiac · 20 May 2011 at 17:00

thats alright then

russ0r · 20 May 2011 at 18:29

chkrootkit.
It's not really necessary unless you're running an internet-facing web server but I do it anyway just for peace of mind.

Don't need anything else.

PermaBanned · 20 May 2011 at 18:40

Isn't the idea that even if somebody went through all the trouble of making a virus for such a small target as linux users, it would be patched in next to no time?

deadite66 · 20 May 2011 at 18:41

rkhunter and lynis are quite good.
http://www.rootkit.nl

Huw · 20 May 2011 at 18:42

Superewza said:
Isn't the idea that even if somebody went through all the trouble of making a virus for such a small target as linux users, it would be patched in next to no time?

Yeah I guess so, depending on the nature of the virus of course. In all honesty, even though Linux is inherently very secure, I think the main reason there are no viruses is the small market share. What's the point of writing a virus for a difficult-to-penetrate OS that is used by comparitively few, when you could just attack a relatively weaker OS that's used by the majority of the world?

russ0r · 20 May 2011 at 18:58

Superewza said:
Isn't the idea that even if somebody went through all the trouble of making a virus for such a small target as linux users, it would be patched in next to no time?

Well, yes. But hackers/crackers are wise to this and write stuff that is fairly hard to detect, hence rootkits.
It's actually a bigger problem than you'd think in the Linux server share. I read on reg a while back about a hacking group that had their rootkit running on a good hundred or so compromised servers. Nobody noticed until somebody tried to work out why some web servers were trying to exploit some of their visitors. I seem to recall the rootkits had been on some of the servers for a good few months.
But for desktop use, it's really not worth worrying about. As Huw said, why would they bother?

GaryH-21 · 21 May 2011 at 22:21

ClamAV

With:
IP-Tables firewall :cool:

inSilica · 24 May 2011 at 23:00

don't bother with an antivirus in linux, its going to cramp your style and hog up resources for no reason. There free, Avast, ClamAV and kaspersky, hmmm wonder why. The only justification for having an antivirus in Linux is if you dual boot Windows, that way you can scan windows from inside Linux :-)

and remove any STD's!! from surfing pron!

Firewall wise, there was FireStarter but thats no longer maintained. IP-tables would do, not hard to configure, just bloody annoying to reload list after every edit. Though recently redhat announced new dynamic firewall on fedora (http://linux.slashdot.org/story/11/05/21/204207/Linux-Gets-Dynamic-Firewalls-In-Fedora-15) no more annoying reloads..., would love to port that to an ebuild for gentoo

Huw · 25 May 2011 at 21:13

I always thought Guarddog was pretty good as a firewall front-end...years ago, when I used to care! With pretty much everyone having a router these days, do we even need to worry about software firewalls?

VeNT · 25 May 2011 at 23:07

tbh CLAMAV is the only one to bother with.

HumbleCoder · 26 May 2011 at 08:01

Showboat said:
My first ever training in Linux, the guy teaching stood up and said....

"Linux is the best operating system, through the years all the holes have been plugged up"

What a legend
I now delete any e-mails i get warning me of any vulnerabilities.

Hmmm....I can't detect any sarcasm in that but I so hope it was meant sarcastically because it's quite possible the stupidest thing I've ever heard in relation to Linux security.

If a 'trainer' had said that to me once I'd stopped literally ROFLing I would have walked out.

That would be true is Linux was "completed" and the code for the kernel and all the libs had not been touched in years but it ignores the near constant code churn that goes on.

quackers · 26 May 2011 at 17:45

I'd install no script as well on Firefox to stop any nasty scripts running

tronath · 27 May 2011 at 13:25

I don't use any either.. I'd eat my hat if I got a virus

Al Vallario · 27 May 2011 at 15:22

Superewza said:
Isn't the idea that even if somebody went through all the trouble of making a virus for such a small target as linux users, it would be patched in next to no time?

Two things:

a) Linux is by no means a "small target"; a majority of web servers run linux;

b) As far as speed of patching is concerned, there's no reason to believe linux being open source would necessarily mean quicker patching. If a vulnerability were exposed in Windows, for example, Microsoft have far more resources and centralised expertise to throw at the problem.

One could just as easily argue that linux being open source in the first instance presents a significant security risk.

Huw · 27 May 2011 at 15:46

What would be your explanation for lack of viruses on Linux then?