LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices

Reply
 
Search this Thread
Old 04-09-2010, 05:06 AM   #16
TheStarLion
Member
 
Registered: Nov 2009
Location: UK
Distribution: Gentoo
Posts: 472

Rep: Reputation: 41

Quote:
Originally Posted by Tux Rules View Post
I keep an anti-virus in Linux for my windows partitions. For me Klamav works like a charm, and unlike clamav it has a graphical interface too
The clamtk package has a GTK frontend, though I think it needs an update.
There's also a Nautilus package that integrates an option to scan from the context menu.

And yes, it may be just a frontend - but not everyone likes using the terminal for everything.
 
Old 04-09-2010, 07:03 AM   #17
Tux Rules
Member
 
Registered: Feb 2009
Location: at my place
Distribution: Arch
Posts: 153

Rep: Reputation: 25
Quote:
Originally Posted by TB0ne View Post
You do realize that KlamAV is nothing but a GUI front-end to Clamav, right?
yeah clamtk too, i've just expressed myself in a wrong way, we're not all good english speakers around here.
 
Old 04-09-2010, 06:19 PM   #18
cola
Senior Member
 
Registered: Sep 2007
Location: Dhaka,Bangladesh
Distribution: Debian
Posts: 1,019

Rep: Reputation: 63
Quote:
Originally Posted by ellabella View Post
Hey,
I bought my acer aspire one linux and i'm having trouble finding anti virus software that works. Do any of you have any solutions?

Ellabella
xxx
Anti virus is not needed.
 
Old 04-09-2010, 07:32 PM   #19
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,492
Blog Entries: 54

Rep: Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906
Quote:
Originally Posted by cola View Post
Anti virus is not needed.
While such replies aren't false they do not add anything (except add to your post count) because they don't explain anything.


And to ppl promoting ClamAV (me disregarding the whole GNU/Linux AV yes/no debate): while ClamAV is OSS and OSS is good in the case of AV it doesn't necessarily mean OSS is automagically the best choice in terms of performance and detection. Testing a few free-for-personal-use versions of AV products might show how ClamaV compares in Real Life.
 
Old 04-09-2010, 07:41 PM   #20
Quakeboy02
Senior Member
 
Registered: Nov 2006
Distribution: Debian Squeeze 2.6.32.9 SMP AMD64
Posts: 3,245

Rep: Reputation: 121Reputation: 121
Quote:
Originally Posted by unSpawn View Post
Testing a few free-for-personal-use versions of AV products might show how ClamaV compares in Real Life.
Will they actually see anything of value while running these tests on a Linux desktop-only system? What should they be looking for?
 
Old 04-09-2010, 09:06 PM   #21
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,492
Blog Entries: 54

Rep: Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906
Quote:
Originally Posted by Quakeboy02 View Post
Will they actually see anything of value while running these tests on a Linux desktop-only system? What should they be looking for?
Good question. Definitely differences in scan speed if there's a sizable directory to test on. Actual scan results and success rate depends on AV engine and detection signature versions and the size and contents of their virus slash malware database. Note the following isn't representative for common users as I've ran scans on a tree only containing GNU/Linux-related stuff:

# bdscan --action=ignore --log=~/bdc.log --recursive-level=100 --archive-level=100 --no-list
# clamscan --verbose --remove=no --tempdir=/dev/shm --detect-pua=yes --detect-structured=yes --scan-mail=yes --phishing-scan-urls=yes --heuristic-scan-precedence=yes --algorithmic-detection=yes --scan-pe=yes --scan-elf=yes --scan-ole2=yes --scan-pdf=yes --scan-html=yes --scan-archive=yes --detect-broken=yes --block-encrypted=no --mail-follow-urls=no --log=~/clamav.log
# fpscan --boot --follow --mount --maxdepth=60 --heurlevel=3 --archive=10 --adware --applications --verbose=2 --output=~/f-prot.log
# The tree /hack_evidence/ contains 1334 plain text, binary and archive files and the "test" was run on a machine with enough CPU cycles and RAM.

BitDefender (v7.90123):
Files: 12650
Packed: 2729
Archives: 696
Infected files: 377 <- plusgood
Identified viruses: 265
Files/second: 113
Scan time: 00:01:51

real 2m0.744s
user 1m42.061s
sys 0m6.272s


F-prot (4.4.4.56):
Files: 1335
Skipped files: 336
Objects scanned: 7586
Infected objects: 205 <- nice
Files with errors: 5

Running time: 01:07
real 1m7.887s
user 0m59.665s
sys 0m4.056s


ClamAV (0.96/10721)
Scanned directories: 1
Scanned files: 16
Infected files: 2 <- auch
Data scanned: 50.22 MB
Data read: 8.66 MB (ratio 5.80:1)
Time: 25.716 sec (0 m 25 s)

real 0m25.806s
user 0m23.387s
sys 0m1.099s


So while ClamAV in terms of pure speed would seem to win, and while both my BitDefender and F-prot engines aren't brand new versions, in terms of detection they beat ClamAV. Real hard.

Last edited by unSpawn; 04-09-2010 at 09:07 PM.
 
Old 04-09-2010, 09:13 PM   #22
Quakeboy02
Senior Member
 
Registered: Nov 2006
Distribution: Debian Squeeze 2.6.32.9 SMP AMD64
Posts: 3,245

Rep: Reputation: 121Reputation: 121
Quote:
# The tree /hack_evidence/ contains 1334 plain text, binary and archive files and the "test" was run on a machine with enough CPU cycles and RAM.
It looks like you've run against a directory containing a number of files known to contain malware. I'm more interested in what the desktop user would be up against from the Linux side. I will, up front, concede that these products are all useful in protecting downstream Windows email recipients; unless, like me, you use webmail.
 
Old 04-09-2010, 09:23 PM   #23
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,492
Blog Entries: 54

Rep: Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906
Quote:
Originally Posted by Quakeboy02 View Post
It looks like you've run against a directory containing a number of files known to contain malware.
My point is that ClamAV might seem the "natural choice" for many since it's simply OSS not the best product.



Quote:
Originally Posted by Quakeboy02 View Post
I'm more interested in what the desktop user would be up against from the Linux side.
I'm not at all interested in that as there essentially is no "AV on GNU/Linux" debate. Everyone knows what the real threats to GNU/Linux are and rehashing those shouldn't be necessary.
 
Old 04-09-2010, 09:29 PM   #24
Quakeboy02
Senior Member
 
Registered: Nov 2006
Distribution: Debian Squeeze 2.6.32.9 SMP AMD64
Posts: 3,245

Rep: Reputation: 121Reputation: 121
Quote:
Originally Posted by unSpawn View Post
I'm not at all interested in that as there essentially is no "AV on GNU/Linux" debate. Everyone knows what the real threats to GNU/Linux are and rehashing those shouldn't be necessary.
My point is that this thread is evidence that not everyone does know the real threats to Linux. Have you considered a sticky over on the Security board? Heck, it might even be more appropriate here on the Newbies board, for that matter.
 
Old 04-11-2010, 01:00 PM   #25
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,492
Blog Entries: 54

Rep: Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906
Quote:
Originally Posted by Quakeboy02 View Post
My point is that this thread is evidence that not everyone does know the real threats to Linux. Have you considered a sticky over on the Security board? Heck, it might even be more appropriate here on the Newbies board, for that matter.
The LQ Security references do have a piece about threats, see Post #3 Intrusion detection, integrity checks: IDS, NIDS, HIDS, Antivirus, software. starting down at "Viruses on Linux/GNU, Antivirus software". It's up to the OP to search LQ or be redirected there by fellow LQ members (or in most cases: made aware LQ actually *has* a search function).



Quote:
Originally Posted by Quakeboy02 View Post
My point is
//Minor nit: AFAIK you can't really say "my point is" as I made a point first. So you should first agree or disagree before moving to another point. If you don't then it'll just remain two monologues...
 
Old 04-11-2010, 01:11 PM   #26
Quakeboy02
Senior Member
 
Registered: Nov 2006
Distribution: Debian Squeeze 2.6.32.9 SMP AMD64
Posts: 3,245

Rep: Reputation: 121Reputation: 121
Quote:
Originally Posted by unSpawn View Post
The LQ Security references do have a piece about threats, see Post #3 Intrusion detection, integrity checks: IDS, NIDS, HIDS, Antivirus, software. starting down at "Viruses on Linux/GNU, Antivirus software". It's up to the OP to search LQ or be redirected there by fellow LQ members (or in most cases: made aware LQ actually *has* a search function).
None of which address the issue of whether an A/V scanner is useful for a typical desktop system. And it seems to me that that is the issue for this thread.

Quote:
//Minor nit: AFAIK you can't really say "my point is" as I made a point first. So you should first agree or disagree before moving to another point. If you don't then it'll just remain two monologues...
I think I can say what I like, actually. Of course, you can feel free to chase me around correcting my grammar if you have nothing else to do.

And, since you continually refuse to directly address the issue of A/V on a desktop system, then yes, I think we'll continue to have two separate monologues.
 
Old 04-11-2010, 01:53 PM   #27
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,492
Blog Entries: 54

Rep: Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906Reputation: 2906
Quote:
Originally Posted by Quakeboy02 View Post
None of which address the issue of whether an A/V scanner is useful for a typical desktop system.
Then maybe read again? I clearly wrote
Quote:
As for the "virus" thingie I wish we, as a Linux community, try to "convert" people away from the typical troubles of Pitiful Operating Systems (abbrev.: POS, aka the MICROS~1 Game Platform) and direct them towards what's important to know wrt Linux: user/filesystem permissions, b0rken/suid/sgid software, worms, trojans and rootkits.
and presented some basic measures. The absence of any AV reference in the list could instill the notion that it isn't necessary unless one needs to protect the "lesser" OSes.

As for the rest of your retort you're coming across as a bit too testy which is completely unwarranted. Please remain respectful.
 
  


Reply

Tags
av, dont, found, linux, virus


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
What anti virus software should I get for Linux? waxman80014 Linux - Newbie 4 10-07-2009 09:56 PM
Linux and Anti-Virus Software Haggis Linux - Newbie 3 12-26-2004 06:25 PM
Anti Virus software in Linux? jshaulis Linux - Security 8 08-27-2004 05:23 AM
Boot virus or Anti-Virus? AVG Free Anti-Virus Software problems SparceMatrix Linux - Security 9 08-02-2004 02:35 PM
Anti Virus software for Linux Stevetgn Linux - Newbie 12 06-19-2003 08:59 AM


All times are GMT -5. The time now is 02:01 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration