Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Idem. I am running ClamAV and Antivir nightly to check all files changed in the last 30 days (not only the ones on the Samba shares).
Antivir is no longer available for Linux so next year I will have to look for a different solution or be satisfied running only ClamAV.
ClamAV, not because its actually needed but because of local network policy. I even humour them and have it running as a daemon - probably wouldn't be much fun on a low spec machine though.
Are you looking for anti-virus software to put on a server that has Windows clients? The answer to that question will determine the advice received. If no, you do not need anti-virus software. If yes, I leave it to those familiar with such software to advise you.
BS. Lots of websites are vulnerable. Does not mean the underlying OS is vulnerable.
So you don't believe that Linux or software that runs on it has vulnerabilities that can be exploited by malware? Do you ever install security updates to Linux or software that runs on it?
Linux is vulnerable. Just not so vulnerable as Windows.
I do believe Linux is vulnerable. However, there are hardened versions of Linux that are near to impossible to penetrate. And there is no need to hack into Linux, either. Because you can achieve desired result by injecting malicious code to the web site running on secure platform. Your comparison with Windows is completely off line. MS Windows has thousands of security holes. This the very reason why there are over 4 millions of Windows viruses (my information may be outdated, it may be more than 5, 6, 7 millions as of today).
Back to web sites running on Linux. While the underlying OS is secure there are lots of vulnerabilities of PHP code written by incompetent web admins that make these sites insecure. Blaming GNU/Linux for that does not make sense, yet exposes your lack of knowledge on this matter.
If you serve files it doesn't matter at all how secure the underlying OS is (by the way, a properly configured Windows machines is not more insecure than a properly configured Linux machine), checking the served files is the only sane thing to do. I use ClamAV for that.
I do believe Linux is vulnerable. However, there are hardened versions of Linux that are near to impossible to penetrate. And there is no need to hack into Linux, either. Because you can achieve desired result by injecting malicious code to the web site running on secure platform. Your comparison with Windows is completely off line. MS Windows has thousands of security holes. This the very reason why there are over 4 millions of Windows viruses (my information may be outdated, it may be more than 5, 6, 7 millions as of today).
Back to web sites running on Linux. While the underlying OS is secure there are lots of vulnerabilities of PHP code written by incompetent web admins that make these sites insecure. Blaming GNU/Linux for that does not make sense, yet exposes your lack of knowledge on this matter.
You're reading a lot into what I said. I haven't said enough for you to assess my level of knowledge. Perhaps you might read my two brief posts again and try to separate your assumptions from what you can plainly read.
No, that does not necessarily imply that it needs AV software. Or that AV software will be helpful. Or that AV software won't be harmful. (Same goes for Windows and OSX as it happens.)
Security is a complex problem. Taking action is tempting, but sometimes there is nothing you can reasonably do, and doing nothing is probably better than doing something that doesn't work.
Edit: BTW, for an example of AVs possibly being harmful sometimes, look around for a research paper by Tavis Ormandy called "Sophail".
Last edited by Gullible Jones; 03-19-2014 at 03:25 PM.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.