Linux, Possible Viruses?
 

Stupid question, but does linux gets any viruses? I mean all os's get some kinda viruses? But am I going to need some kind of virus scanner? Also, when I had windows I needed to cleen registry afer i uninstalled something, will I need to do this with linux?

Both questions are all already ask and answered several times.
So Please search this forum

Viruses are usually not a worry with Linux if you have your machine set up with users and root (administrator) and don't go online or do foolish things as root. Most Linux viruses I have read about are proof of concept done in labs but it is possible. There is no registry like you have in windows and installing/uninstalling should be done with the package manager with whatever distribution you are using. There are anti-virus programs for Linux, google it.

Yes, from time to time, it's not immune :)

Of course, it wouldn't be fun otherwise ;)

Not as imperative as in windows but you can install one if you want, clamav its a common choice

No, there's not such a thing as the windows registry in linux

Linux, in a sense, is more like win9x and those .ini files to deal with configuration settings but instead of being all sparse they are kept in /etc easy to find/customize :)

Thanx for the answer quick response.

I'd like to point out that GNU/Linux may not be immune to viruses but due to differences in architecture and operation, distribution differences and the "usual" approaches to subverting a GNU/Linux machine, most viruses have remained in the Proof of Concept stage. Saying "from time to time" is not correct and not a clear answer. If you still think it is, please supply some stats.


If one operates a GNU/Linux machine that in any way shares documents with Pitiful Operating Systems (abbrev.: POS) then installing AV may help stop propagation. And ClamAV may be promoted as "common choice" but that does not automagically mean it is the best choice in terms of signature coverage, performance or heuristics engine.


Please don't compare GNU/Linux with certain commercial, proprietary, standard-breaking products.

well, one might come up with a list like this one, and surely most of those listed will be POCs, however, a more recent attack (psyb0t) was more than a POC and even when it was designed to attack a very specific platform I see it as an example of "from time to time" regarding virus attacking linux OS.


Indeed

Maybe I should refrained as "linux's software/hardware/profiles configuration scheme is more like..."?

The most recent attack was designed to attack very specific targets:
which is different from the desktop boxes. And the wikipedia list of Linux viruses has nothing newer than 2 years ago, this is pretty much backed up by a search on the MacAfee site.

So, if you are running a system that was last patched in late 2007 or are running a MIPS router that is set to enable brute force attacks, then you are vulnerable.

To return to Unspawn's note, if you serve files to one of the less secure OSes that originate in or around Redmond, then you should run a virus scanner to protect those people.

Indeed but surely qualifies as "time to time" doesn't it? so saying it isn't incorrect (to my point of view that is) :)

Absolutely, my post served as a qualifier. I also forgot to add in: just because you are safe today does not mean that you will be safe tomorrow. So keep up with security updates for your distro and have a working iptables setup at the minimum.

Checking the list there's not much after 2007 and I doubt all are viruses. Commercial AV vendors will throw anything on the "Linux virus" heap to increase market s(c|h)are. Of the three I checked two are ELF infectors (Podloso, Alaeda), the other collateral of the Badbunny worm, a script infector. Psybot is not a virus but a worm.

If you have been reading up on what security problems plagued GNU/Linux the past five years then the list (in decreasing order of severity and spread) could read something like: kernel vulnerabilities (that hurts no matter what), shitty PHP coding (mass webfarm compromises, botting, RFI and injection fun), SSH and SSL vulnerabilities, other software vulnerabilities, lack of discipline or knowledge (open dirs, open proxies, no updating, misconfiguration), rootkits. What I have encountered in the past years is ninetynine point nine percent PHP-related and point one percent rootkit incidents. For virus infections there's no place on that list. We've got more urgent threaths to deal with.

Gypsy pants Yancek and Acron Gave you the best answer to your question Disregard the rest as they are in a power play of who knows the most. they Forget we want answers not debates that,s why I gave up and haven,t been back for long time. Simple questions Need simple answers Good luck
Bob_P

Too right. The simplest answer to this question is this:

On a desktop machine: No, you don't have to worry about viruses.

On a server: If you're competent enough to set up a server, you should be able to find the answer. It will vary, depending upon what type of services you need to be running.

Amen...