Samhain is free. People should check it out and run it daily at night. There's no reason not to. You'll never even notice it's there unless something happens.
|
Quote:
|
Quote:
But I guess I can accept the argument that it might be a little overkill. |
I rarely if ever perform a regular scan of the whole system. I do monitor the logs and look for unusual activity. Otherwise, e-mails on the server are the only things that get scanned on a regular basis.
|
Hi,
rkhunter and chkrootkit on a daily base works okay for me. AV software running on my mailservers, but not locally on my workstation. Never found anything not intented by myself to be there. |
Quote:
|
Could audio files (mp3, flac, etc) or video files (avi, mpg, mkv, etc) contain exploits or trojans?
My external backup drives contain mostly media files and ofcourse you cant do a reformat or you lose all your stuff. What is the best practice for protecting external backup drives? |
Quote:
|
Quote:
|
Quote:
|
Quote:
Image example: CVE-2010-1205; Audio example: CVE-2007-6279; Video example: CVE-2009-3389. |
Quote:
|
Quote:
|
It's easy to get way off base here. Install as much security as you can and then back off based on usability and cost limitations. Sometimes extra security does not return anything given what is being protected.
Sometimes "Fort Knox" style is the appropriate path if what you are protecting is worth the investment. I like to see costs (processing, I/O, admin time), barriers (knowledge, time, training, etc.) and investment (research, setup, etc.) be so low that people can't help but be secure and make good choices. I think we are moving closer and closer to that with Linux and options we have today. This forum also contributes to that greater good. |
Define "extra security"?
|
All times are GMT -5. The time now is 06:00 PM. |