So, the obvious question to ask, would be: What should I do to prevent java-related attacks?

To elaborate a little on possible answers, a respondent may say that I should not enable java on my system, or worse, that I should turn off my computer, or that I should not use the internet. However, these are not solutions because the internet has become an indispensable resource without which one will be at a great disadvantage. Moreover, many businesses, assume that one has access to the internet. Therefore, refraining from using the internet, is not an answer.

I would add NoScript and HTTPS Everywhere and call it good, keep in mind Quantum on forums.debian.net is known for being almost as paranoid as Alhaz(sp?) was.

I use ufw with the default 'deny' profile.
# ufw status verbose
Status: active
Logging: off
Default: deny (incoming), allow (outgoing)

I use 3 lists with Adblock Plus; Easy, Easy Privacy, Antisocial.

On Chrome I have AdblockPlus, Flashblock, and HTTPS Everywhere, with the same adblocking lists.

Most so called 'malware' on Linux needs to be either installed or like the Java exploit in the thread at fdn needs user approval to run. You really can't stop the average user from doing stupid things. All I can say is in the eight years I have ran Debian not once have apps like rkhunter, chkrootkit, lynis, tiger, tripwire, clamav, debsums, ever found anything that didn't turn out to be a false positive.

The answer to the question is: It is as protected as you make it.

Is it possible to find some software which monitors remote connection attempts and unauthorised local programs sending information to a remote location?

I have all ports closed.

I tried ufw and arno-iptables-firewall but both of them are failing to block pings from the outside. I would like to have my machine refusing to reply to pings. I used dpkg-reconfigure for both ufw and arno-iptables-firewall.

I have ran the scan at grc.com on my laptop from numerous locations and every time it passes with Stealth. I do not mess with manually closing or opening ports, I just use the Default Deny setting on ufw.

I never get stealth on Linux and I used to get it all the time on Windows. It doesn't bother me anyway, if my ports are closed I'm not worried.

I reinstalled arno-iptables-firewall and chose to close all ports.

This thread had drifted from the proper argument of viral and malware infections although there is an overlap with security.

Is a running antivirus daemon a must nowadays?
 

Since multiplatform viruses/scumware are designed to work on any OS, and I use a Web-browser (iceweasel) everday I turn on my computer, I would like to know whether these days it is a must to run an antivirus daemon like Windows users do.

Systems Used:
Debian (Squeeze)
Debian (Wheezy)

Hey Edbarx.

In answer to your question my answer, others may and probably do think differently to me, would say a resounding NO. You are much better off being a wise surfer/user of the net than to add something that most of the time looks for Windows malware. Yes you can get infected, I don't think anyone who is serious would say it is impossible, but if you follow some simple safe practises then the chance is extremely slim. I think we have been through this before haven't we? If you are worried then just install ClamAv or something similar, or follow the suggestions in the other thread, and be done with it, the peace of mind you will get just from this simple installation must be worthwhile.

For what it's worth I tend to run tiger and take a look at the email it sends me to make sure I'm not running any servers I don't know about. I have to admit that that's partly to ensure I've not accidentally installed httpd or something as well as looking for compromises -- in other words it's more for awareness than any sense of worry.
Other than that it's AdBlock No-Script and all the other safe surfing advice.

I have run my home systems exclusively on Linux for over 7 years with no anti-bad-stuff SW. Our only issue is that my wife excels at getting herself on junk-mail lists.....;)

A daemon that scans for suspicious java script would probably offer enough protection.

Generally speaking, you will be more than adequately protected if you observe three things:

(1) Ensure that you do not run with elevated privileges of any kind.

(2) Keep your system up-to-date, especially with regard to security related updates.

(3) Use and maintain current backups. (Use a tool that takes backups automatically and continuously to an externally-attached disk device.)

Run-of-the-mill Windows installations suffer from malware attacks because, for some inexplicable reason, they are set up to run as password-less Administrator users. Always remember that the computer is merely a machine, and that it knows exactly two things: "Yes (1)" and "No (0)." Despite the clever marketing campaigns run by the snake-oil people, this is not the world of biology, in which any properly-configured strand of RNA could introduce itself into your cells unless it is constantly and vigilantly defended-against by your immune system.

nope.

disable any unneeded services/processes.
keep your system updated
keep your browser updated
use AdblockPlus and NoScript in Firefox/Iceweasel
I would also suggest using QuickJava to be able to enable/disable plugins, so you only enable them when you need them.
QuickJava

At one time I had a ton of security apps installed, but in eight years of running Debian not once have they ever found anything.

These days all I have is tripwire and rkhunter.

The only real reason for an AV is to keep from sending malware to Windows.

Thanks for your replies. Maybe the post below is only serving the purpose to make Linux users feel uncomfortable with their system.
Thanks