LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   free anti virus for ubuntu (https://www.linuxquestions.org/questions/linux-newbie-8/free-anti-virus-for-ubuntu-925146/)

mohsenhs82 01-22-2012 06:20 PM

free anti virus for ubuntu
 
does any body know any good free anti virus & firewall for ubuntu

any help is appreciated,

snowpine 01-22-2012 06:23 PM

https://help.ubuntu.com/community/Antivirus
https://help.ubuntu.com/community/ClamAV
http://ubuntuforums.org/showthread.php?t=510812

John VV 01-22-2012 06:42 PM

a firewall IS built in
It is called IPTables and is part of the OS

as to antivirus
Linux is NOT Microsoft

there is ClamAV but in 5+ years i have NEVER had one install nor do i PERSONALLY know someone why has

wpeckham 01-22-2012 07:28 PM

He may not know, but
 
Where I have web facing production I harden, use selinux and the iptables based firewall, install ClamAV for a daily scan, install RootKitHunter for a daily scan (in case something/someone gets past the other levels), and configure syslog to log to a syslog server that reports with a daily summary and immediate email for suspicious activity.

All of the tools I use are available to anyone without cost. Using them ALL on a server in a secure network would be wasteful, I only recommend using them where the threat is greatest.

If you suspect that you have a real need for antivirus, use ClamAV. Be warned: it is not a windows style resident/intrusive package, it only scans what you tell it to, WHEN you tell it to do so.
-----
I have only handled *nix servers that were hit by a virus 4 times in 20 years. (I would not even attempt to get a count of the windows desktops and servers I have had to clean or reload in the same period.) More common in the *nix world are breakers: criminals who break into the system (weak password or application vulnerability) and install back doors or rootkits that give them total control of your machine.

Protection consists of good backups, good security practice, extra backups, a file/folder change detections (ala tripwire, selinx can do a significant part of that job if configured properly - RootKitHunter detects changes, but also looks for some specific threat characteristics that are easy for other packages to miss), backups, remote logging and log automated log analysis, and verified backups.
Did I mention backups? ;-)

Early in my career I was told that if I could not program myself out of a spot I could call for help, If my machines did not perform adequately I could request bigger iron, but if I could not secure my data from loss I might better go into politics because backup and restore is the survival skill of the sysadmin.
I have seen nothing to make me doubt that lesson.

mohsenhs82 01-23-2012 12:07 AM

thanks all.

your answers were very helpful

mdlinuxwolf 01-23-2012 02:04 AM

Here's a link to AVG free antivirus from Google. Ubuntu should have its own firewall. If not, go to the add remove software tool and type in firewall to see what comes up. Using a hardware firewall, like the one on your router, might be a bit more robust.

http://ubuntuforums.org/showthread.php?t=136064

There are no cases that I know of where Linux viruses have propagated in the wild outside of a lab. Even if they did, you would have to be surfing the net running as root in order to get one because Linux will not automatically execute a program like that with only user rights.

Using encrypted partitions and guarding physical access to the computer itself pay off much better for defending Linux from attack. There are M$ programs that can read and write to Reiser and ext** types of file systems if M$ can mount the drive. An example of this might be removing the hard drive and putting it into an enclosure. Of course, if the bad guys have a Linux box themselves, it is worse for you as well.

Satyaveer Arya 01-23-2012 03:10 AM

These are some of the links for free antiviruses for your Ubuntu:

Or you can go directly in Ubuntu Software Centre --> Get Software --> Avast4workstation

http://www.liberiangeek.net/2010/10/...erick-meerkat/
https://help.ubuntu.com/community/Antivirus/Avg
http://www.debianadmin.com/avast-ant...u-desktop.html

wpeckham 01-24-2012 08:58 AM

Addition
 
I agree with Satyaveer Arya, the best place to begin with security tools is the package list for your distribution.
You should find everything there that you need.

RE: "There are no cases that I know of where Linux viruses have propagated in the wild outside of a lab."
I have seen this comment in several threads now. Do not base your protection on another persons ignorance.

I have been hit by 4 *nix viruses over the years, and seen several more that I managed to avoid. They are FAR less common than Windows viruses, but they do exist.

I have also seen the misinformation that only if someone can break or install using the root account is there a problem. A threat program that is installed under your personal account can do anything you can do, and possibly things that you would never think to try. Those security patches that keep appearing in the repositories close vectors by which such a program could elevate its authority to root, deny you access to your own machine, shut down, cripple, or take over services, or other nasty things that you want NOT to happen on YOUR machine. They can even use your machine as a launchpad to attack other machines.

Unless you store critical information and practice vulnerable operations I would not obsess over security. I would also not allow anyone else prevent you from taking some reasonable precautions.

cynwulf 01-24-2012 09:03 AM

If this is simply a home desktop - then you don't need AV software.

TobiSGD 01-24-2012 10:22 AM

If you need an antivirus software does in no way depend on where the machine stands or which OS is installed on it. It only depends on the use case of that machine. If you download something for a different machine with an insecure OS installed then it may be good advice to scan that software for malware, regardless which OS you have installed on your machine.
For example, sometimes you can get drivers for Windows (especially when it is older hardware) only from somewhat obscure sources. It may be better, just to be on the safe side, to scan those drivers.
Quote:

Originally Posted by JohnVV
as to antivirus
Linux is NOT Microsoft

And you want to say what? That it is a bad idea to run a malware scanner on a file- or mail-server running Linux, just because it isn't Windows?

Quote:

there is ClamAV but in 5+ years i have NEVER had one install nor do i PERSONALLY know someone why has
Same thing here: just because you have not installed it (and you don't know someone who has) doesn't mean that it is a good advice in general not to install it. By the way, why do you have to shout here?

suicidaleggroll 01-24-2012 04:49 PM

The majority of Linux anti-virus programs are simply used to scan for Windows viruses on Linux boxes, to keep you from accidentally spreading a virus around, even if it doesn't affect you directly. If you aren't swapping files back and forth between this system and various Windows boxes via Samba, FTP, etc., then there's not much need for anti-virus software on Linux.

jmc1987 01-24-2012 05:05 PM

ClamAV is what I use. Works great even better than paid products. Not a resource hog at all.

mohsenhs82 01-24-2012 09:33 PM

thanks all, you helped me alot


All times are GMT -5. The time now is 03:07 PM.