LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-14-2005, 10:31 AM   #1
mgrumiaux
LQ Newbie
 
Registered: Oct 2005
Location: north carolina
Posts: 2

Rep: Reputation: 0
virus scans


I am relatively new to linux and was wondering what was a good virus scan to run on my pc.
thanks for any info.
 
Old 10-14-2005, 01:20 PM   #2
koyi
Member
 
Registered: Jul 2003
Location: Osaka, Japan
Distribution: Arch, Ubuntu
Posts: 421

Rep: Reputation: 31
I don't think you need a virus scanner if linux is the only OS you run. However, if the linux box handles files that will eventually get to other windows boxes, then you can try "clamav" to scan them before distributing them.
 
Old 10-14-2005, 05:46 PM   #3
rino.caldelli
Member
 
Registered: Apr 2005
Location: perugia
Distribution: ubuntu
Posts: 181

Rep: Reputation: 31
your linux system needs no antivirus to slow it down like windows...

:-)
 
Old 10-14-2005, 06:38 PM   #4
mgrumiaux
LQ Newbie
 
Registered: Oct 2005
Location: north carolina
Posts: 2

Original Poster
Rep: Reputation: 0
thanks for your replies
 
Old 11-09-2005, 10:42 PM   #5
usaf_sp
Member
 
Registered: Jul 2005
Location: Tennessee
Distribution: openSUSE
Posts: 419

Rep: Reputation: 30
The claim that Linux does not need an Anti-Virus Scanner is FALSE!

1. Although Linux Viruses that attack the Linux OS are rare, they do exist. Granted the damage to the system is not as severe, it still can be a pain in the butt if it messes up a file you need.

2. Alot of people have home or corporate networks that mix both Linux and Microsoft OSes. If you have file sharing and those files are accessed by Windows, the possibility for Windows based viruses definately is a danger.

My file server is LINUX and it has gotten all sorts of win32 viruses that are infecting my Windows files, especially *.exe. *EDIT* I thought my files were read only, but they were not and changed by the Windows machines.*EDIT*.

The OS is not infected, just my *.EXE files.

My advise: Get a virus scanner. It can not hurt to be safe.

Last edited by usaf_sp; 02-11-2006 at 05:29 AM.
 
Old 11-10-2005, 03:06 AM   #6
primo
Member
 
Registered: Jun 2005
Posts: 542

Rep: Reputation: 34
Are you using any other Windows machines?

You don't really need to run an antivirus from Linux. Run Kaspersky on any of your Windows boxes, but antivirus aren't needed on Linux. There are better software for integrity protection (search tripwire, samhain, aide, fcheck, osiris, integrit, etc). NEVER USE CLAMAV. It's filled with security bugs that are discovered almost each week.
 
Old 02-11-2006, 02:43 AM   #7
usaf_sp
Member
 
Registered: Jul 2005
Location: Tennessee
Distribution: openSUSE
Posts: 419

Rep: Reputation: 30
I am hosting various windows files on my Linux box that I use on Windows computer through a network. For some reason the Linux box was allowing these Windows files to be corrupted with a virus and destroyed several files.

I probably was at fault by allowing to many permissions on these files, but AntiVir appears to stop these viruses and disabling Java in my browser helps too.
 
Old 02-11-2006, 04:00 AM   #8
unSpawn
Moderator
 
Registered: May 2001
Posts: 27,558
Blog Entries: 54

Rep: Reputation: 2925Reputation: 2925Reputation: 2925Reputation: 2925Reputation: 2925Reputation: 2925Reputation: 2925Reputation: 2925Reputation: 2925Reputation: 2925Reputation: 2925
IMO Primo's answer deserves the points for pointing to using filesystem integrity checkers instead onf only saying "no AV needed". When talking to Wintendo newbies we need to look beyond how Wintendo cripples things and look at what could hurt a Linux box. Properly hardening the box is a prerequisite and should be mentioned as is using "simple" auditing tools like Chkrootkit and Rootkit Hunter in tandem with any filesystem integrity checker. Check out the LQ FAQ: Security references.


@usaf_sp: "The claim that Linux does not need an Anti-Virus Scanner is FALSE!" / "For some reason the Linux box was allowing these Windows files to be corrupted with a virus and destroyed several files.".
Even though I do not think you can substantiate this claim of yours, I'm always interested learning new stuff.
So, I'd like to ask you to set up a separate thread, explain what's happened and post your evidence there if you can.
If you can't or won't you should remove your claim as we do not like FUD.

TIA.
 
Old 02-11-2006, 05:25 AM   #9
usaf_sp
Member
 
Registered: Jul 2005
Location: Tennessee
Distribution: openSUSE
Posts: 419

Rep: Reputation: 30
If you have a file server that allows clients to change files and some of those clients are microsoft machines, then the Linux box that shares those files really should have an on access virus scanner to protect these files. A linux box without an on access virus scanner will not stop clients from replacing good files with viruses.

To fix my problem I have followed industry standards with concern to File Servers and have installed an on access scanner and tightened the permissions of those shares since these files really have to be accessed and changed by the client.

It may be true that stand alone, non networked Linux machines do not need a virus scanner, but as the demand for even simple home networks grows the necessity to protect your files from Microsoft clients grows as well. If this were not true, then Sun Microsystems would not have outsourced virus detection to Trend Micro and Novell would not couple AntiVir with its OpenSuse distro.

If you have a file server as I have in previous posts pointed out, then YES you definately need a way to protect your files.

BTW- I do not control all machines hooked up to my network. I have to protect these files myself.

Sorry, but you are right I should have been more careful in what I had written. I was new to linux last year, but I have had much much more experience since then.

Last edited by usaf_sp; 02-11-2006 at 05:41 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Boot virus or Anti-Virus? AVG Free Anti-Virus Software problems SparceMatrix Linux - Security 9 08-02-2004 03:35 PM
Linux Virus Scans and Spyware Detectors snutz411 Linux - Newbie 2 06-24-2004 07:35 PM
trend chipway virus detected boot virus rafc Linux - Security 1 05-13-2004 02:44 AM
Port scans KevStA Linux - Networking 2 05-27-2002 06:38 PM
Security scans LinuzRulz Linux - Security 6 01-15-2002 06:14 PM


All times are GMT -5. The time now is 07:51 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration