LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-23-2007, 11:23 PM   #61
kstan
Member
 
Registered: Sep 2004
Location: Malaysia, Johor
Distribution: Dual boot MacOS X/Ubuntu 9.10
Posts: 851

Rep: Reputation: 31

Sorry to correct my sentences, I shouldn't use guarantee but "best security commitment"
 
Old 09-24-2007, 05:01 AM   #62
slimm609
Member
 
Registered: May 2007
Location: Chas, SC
Distribution: slackware, gentoo, fedora, LFS, sidewinder G2, solaris, FreeBSD, RHEL, SUSE, Backtrack
Posts: 430

Rep: Reputation: 67
i am a secuity engineer for the govt. and trust me the security demands are higher that almost any other but it is easy to satisfy them with clamAV or other open source applications. Plus if you company is already running norton or symantect the both have enterprise AV clients that come with your enterprise license you just have to download it off there site. And it is part of the enterprise license. The linux consultant should be able to assure them that they can take care of the issue. You should not have to fall back on a vendor when there are so many open-source programs. If if they do need a vendor to fall back to then they should not a linux consultant in the first place. companies switch to linux to save money and i dont think they want someone going well switch to linux but you still have to use the same antivirus for 50K a year. if a company had even a slight thought about switching to linux that means that they have done some research on linux and found that AV is good to have on linux but not really as important on linux as it is on windows.
 
Old 09-24-2007, 05:52 PM   #63
AceofSpades19
Senior Member
 
Registered: Feb 2007
Location: Chilliwack,BC.Canada
Distribution: Slackware64 -current
Posts: 2,079

Rep: Reputation: 58
why linux does not get viruses
http://linuxmafia.com/~rick/faq/inde...e=virus#virus2
 
Old 09-24-2007, 06:18 PM   #64
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 379Reputation: 379Reputation: 379Reputation: 379
Quote:
Originally Posted by AceofSpades19 View Post
Hi AceofSpades19. I just read this article you linked, and it does raise some good points. Unfortunately, IMHO, it seems to be almost entirely based on the notion that as long as you don't do stuff as root almost nothing bad can happen to you. As I've stated before, you don't need to be root to install malware. Just as you can install software in your home folder, so can you install malware in it. Articles like this seem to make more sense in the server world, where perhaps the admin doesn't really care what happens inside some user's accounts - the integrity of the system (and hence the entire pool of users) is the priority. But when you are the desktop user, having stuff happen at user-level in your home folder can potentially be much more catastrophic than a root-level compromise, for reasons related to the security of the user himself, and his real-world activities (business, personal life, etc). So basically, IMHO, these articles are a double-edged sword when it comes to educating end-users about information security. Once again, using the root account only for admin purposes is great advice, but it is NOT an excuse to be overconfident or feel invulnerable.

Last edited by win32sux; 09-24-2007 at 06:24 PM.
 
Old 09-24-2007, 06:25 PM   #65
AceofSpades19
Senior Member
 
Registered: Feb 2007
Location: Chilliwack,BC.Canada
Distribution: Slackware64 -current
Posts: 2,079

Rep: Reputation: 58
win32sux, That is why you always have a backup, or don't store confidential stuff in your home directory, common sense, which if you don't have when you use linux, you are going to break your system many other ways before you get a virus

Last edited by AceofSpades19; 09-24-2007 at 06:26 PM.
 
Old 09-24-2007, 06:33 PM   #66
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 379Reputation: 379Reputation: 379Reputation: 379
Quote:
Originally Posted by AceofSpades19 View Post
win32sux, That is why you always have a backup, or don't store confidential stuff in your home directory, common sense
This is beside the point (your "why linux does not get viruses" point).

Last edited by win32sux; 09-24-2007 at 06:45 PM.
 
Old 09-24-2007, 06:41 PM   #67
AceofSpades19
Senior Member
 
Registered: Feb 2007
Location: Chilliwack,BC.Canada
Distribution: Slackware64 -current
Posts: 2,079

Rep: Reputation: 58
That is true, I just posted that for people to get a better idea of why there is a lack of viruses for linux,
 
Old 09-24-2007, 06:43 PM   #68
slimm609
Member
 
Registered: May 2007
Location: Chas, SC
Distribution: slackware, gentoo, fedora, LFS, sidewinder G2, solaris, FreeBSD, RHEL, SUSE, Backtrack
Posts: 430

Rep: Reputation: 67
"Trusted" Linux is the answer =)
 
Old 09-24-2007, 06:47 PM   #69
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 379Reputation: 379Reputation: 379Reputation: 379
BTW, the article's author admits that terrible things can happen if you aren't root.

From the article:
Quote:
To activate these, you must literally decide to run a binary infected with them, e.g., someone mails you a binary file and says "Please run this not-especially-trustworthy binary executable." Doing so would of course be really dumb; the consequence of being dumb in that particular fashion is that some number of Linux executable binaries set to be writable by the user's account would get modified to include a copy of the virus ("infected"). Note that the user is thereby enabled only to shoot at his/her own foot: No regular installed applications could be affected, because those are not writable by regular users: Only binary executables in that specific user's /home/username/bin/ and such could be affected (and seldom do users have any).
The "shoot your own foot" analogy is typical of these type of articles. What I find disturbing is how the author manages to brush this aside so easily, as if the only implication of user-level malware is the infection of binaries. Seriously, the possibilities of what malware can do to you at this point is only limited by the developer's creativity and skill.

Last edited by win32sux; 09-24-2007 at 06:55 PM.
 
Old 10-04-2007, 09:09 PM   #70
okos
Member
 
Registered: May 2007
Location: California
Distribution: Slackware/Ubuntu
Posts: 609

Rep: Reputation: 38
What are some good av and spyware programs?

Hi all,
For microsoft computers, there are lots of good antivirus and antispyware, trojan, rootkit programs. There are even some good free programs. See link for windows boxes: http://www.techsupportalert.com/best..._utilities.htm

However, for Linux, I have no clue.

What are some good av, malware, spyware, rootkit, trojan programs for Linux?

There is chkrootkit, but it seem a bit outdated.

Any suggestions?
 
Old 10-04-2007, 09:25 PM   #71
craigevil
Senior Member
 
Registered: Apr 2005
Location: OZ
Distribution: Debian Sid
Posts: 4,734
Blog Entries: 12

Rep: Reputation: 463Reputation: 463Reputation: 463Reputation: 463Reputation: 463
No need for av, antispyware apps. rkhunter and chkrootkit both work well. You might want to take a look at a couple of the sticky threads in the security forum.
 
Old 10-04-2007, 09:33 PM   #72
GrapefruiTgirl
LQ Guru
 
Registered: Dec 2006
Location: underground
Distribution: Slackware64
Posts: 7,594

Rep: Reputation: 552Reputation: 552Reputation: 552Reputation: 552Reputation: 552Reputation: 552
Currently, just for good measure, I have chkrootkit and rkhunter both run by cron atleast once daily on my Linux desktop machine, even though the likelihood that either will ever find anything are minute..
back in the Windows days, my favourite anti-virus, and IMHO among the *best* antivirus makers was Kaspersky Labs. I made use of both their Antivirus Suite, as well as their Anti-Hacker port blocker, and to date can only say very good things about their software. It is in a word, "impressive".

Where's this leading? Well, I one day came across a linux daemon of some sort, somewhere, for download. I don't know it's purpose, but common sense tells me it was/is some sort of 'protection' mechanism that Kaspersky implemented for Linux machines.

I'd be curious to know whether Kaspersky currently offers Linux AV/Anti-hacker software, and what it does, and how well it does it, and without even having seen it or used it, I would recommend it to someone seeking such software, solely based on my lengthy experience with their Windows software. If you happen to look into this, do tell
 
Old 10-04-2007, 09:44 PM   #73
townie
Member
 
Registered: Oct 2007
Distribution: Ubuntu 8.10 beta and Debian etch
Posts: 75

Rep: Reputation: 15
hi
i only know of one of the top of my head and thats panda anti virus which is freeware

http://www.pandasoftware.com/download/linux/linux.asp

i dont know if its any good but its worth a try
 
Old 10-04-2007, 10:22 PM   #74
rickh
Senior Member
 
Registered: May 2004
Location: Albuquerque, NM USA
Distribution: Debian-Lenny/Sid 32/64 Desktop: Generic AMD64-EVGA 680i Laptop: Generic Intel SIS-AC97
Posts: 4,250

Rep: Reputation: 62
"Whatcha doing?"
"Keeping the elephants away."
"What the heck are you talking about? There aren't any elephants within 1000 miles of here!"
"I'm doing a pretty good job, dontcha think?"
 
Old 10-04-2007, 11:05 PM   #75
GrapefruiTgirl
LQ Guru
 
Registered: Dec 2006
Location: underground
Distribution: Slackware64
Posts: 7,594

Rep: Reputation: 552Reputation: 552Reputation: 552Reputation: 552Reputation: 552Reputation: 552
Quote:
Originally Posted by townie View Post
hi
i only know of one of the top of my head and thats panda anti virus which is freeware

http://www.pandasoftware.com/download/linux/linux.asp

i dont know if its any good but its worth a try
From my experience with that crap, STAY FAR AWAY from Panda, unless you feel like formatting your hard disk to get rid of it.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: GNU/Linux and freedom: non-free software hidden in your GNU/Linux distribution LXer Syndicated Linux News 0 04-02-2010 11:21 PM
Antivirus survey: Do you run an antivirus program on linux? atom Linux - General 29 09-03-2009 03:22 PM
2008 US General Election Megathread XavierP General 205 11-07-2008 12:37 PM
Ubuntu - ALL FINE NOW! - Megathread FreeDoughnut Ubuntu 41 07-24-2006 08:53 AM
Antivirus for Lunix similar Norton Antivirus for Windows Chivozertsev Linux - Software 1 03-31-2005 07:56 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 05:14 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration