Hi all, Ive just installed Ubuntu into a VM and would like to know what you recommend for a free anti-virus?
Thanks, Monty007.
Full Version: Ubuntu Antivirus
ive never run an AV on linux because obviously most of the virus' you will run into will be windows based and will not effect it, and you are running it in VM so hopefully your windows AV would pick it up
if you really want to try one out, i think http://www.clamav.org has a good one
if you really want to try one out, i think http://www.clamav.org has a good one
There is no need for one , the two linux scanners that I know of by ClamAV and AVG and bot jusrt scan for windows viruses
Thanks for the response. I will be running it soon on my lappy so I was getting ready for it. The VM is just to test a few things for my work. Clam looks a good program, so should I go with that?
No, there is NO need for anti-virus on Linux.
Hi Miljet, why do you say that?
Please do not be fooled. There are viruses for Linux, just not very common.
The main point of AV on Linux is so you do not pass on infections to Windows
users.
AVG will be sufficient for your personal system.
Personally I use BitDefender because I have tested both side by side and AVG missed a few things.
See my post here for more info:
http://www.pclinuxos.com/forum/index.php?t...g13200#msg13200
The main point of AV on Linux is so you do not pass on infections to Windows
users.
AVG will be sufficient for your personal system.
Personally I use BitDefender because I have tested both side by side and AVG missed a few things.
See my post here for more info:
http://www.pclinuxos.com/forum/index.php?t...g13200#msg13200
keep in mind that as raw mentioned, the virus' you will most likely see are for windows, and yes, you need to be concerned about passing them on, but you are running this install in a VM, so you would be passing these files back onto the windows machine your on, which should have its own AV installed. So its a bit of overkill, but if you feel the need, then id use the one mentioned by raw above
Sorry if I sounded a bit harsh before. It just seems to me that after 3 different people informed you that it is a waste of resources to run an anti-virus on a Linux system, you keep insisting on a recommendation of which one to run. It's your system, so install whatever you want.
Yeah -- why burden your filesystem with unnecessary checks on in/out when you don't need to? Moreover, clam and avg are replete with flaws, as are most other anti-virus "solutions".
Most of you might think me crazy, but I didn't even run an anti-virus on my windows machine. What for? They don't do anything (productive) anyway.
I want to agree with raw that there certainly viruses out that can run on Linux - but as far as I recall none have been released into the wild and they were more proof-of-concept than anything else. Viruses as we know them can't really run on Linux and if you are squared away with your permissions, daemons, and common sense -- well, you know the drill.
Don't be scared by propoganda from some company. How is it remotely conceivable that a cottage industry spurned by the (lack of) efforts of Microsoft...well, sorry, that's for another time. But you get the idea.
New users of Linux must stop thinking that it's at all like Windows. It's nothing like Windows. Windows is an electric shaver -- it does a barely passable job, must be maintained continually, uses more resources (electricity) and people "settle" for it. Linux is a regular razor: does the job well, no maintainence (well, barely any) uses far less resources (no electricity) and did I mention that it gets the job done?
If you continually demand that you "protect" yourself with an anti-virus, I have this terrific bridge I can sell you - cheap. I don't mean to belittle your concerns, but they are completly unfounded. I need to reiterate because most people just aren't listening -- Linux is NOT Windows.
Most of you might think me crazy, but I didn't even run an anti-virus on my windows machine. What for? They don't do anything (productive) anyway.
I want to agree with raw that there certainly viruses out that can run on Linux - but as far as I recall none have been released into the wild and they were more proof-of-concept than anything else. Viruses as we know them can't really run on Linux and if you are squared away with your permissions, daemons, and common sense -- well, you know the drill.
Don't be scared by propoganda from some company. How is it remotely conceivable that a cottage industry spurned by the (lack of) efforts of Microsoft...well, sorry, that's for another time. But you get the idea.
New users of Linux must stop thinking that it's at all like Windows. It's nothing like Windows. Windows is an electric shaver -- it does a barely passable job, must be maintained continually, uses more resources (electricity) and people "settle" for it. Linux is a regular razor: does the job well, no maintainence (well, barely any) uses far less resources (no electricity) and did I mention that it gets the job done?
If you continually demand that you "protect" yourself with an anti-virus, I have this terrific bridge I can sell you - cheap. I don't mean to belittle your concerns, but they are completly unfounded. I need to reiterate because most people just aren't listening -- Linux is NOT Windows.
Hi Monty,
I was looking at Mcaffee's website earlier and found http://www.mcafee.com/us/enterprise/produc...inuxshield.html not sure how much use it will be but just thought I'd mention it.
You can get a virus on anything these days, Someone was telling me about how his phone was infected via bluetooth. If someone can be bothered to make a virus for a phone then there is a good bet that there are viruses out there that can infect Linux. Better safe than sorry is my approach when it comes to malware.
I was looking at Mcaffee's website earlier and found http://www.mcafee.com/us/enterprise/produc...inuxshield.html not sure how much use it will be but just thought I'd mention it.
You can get a virus on anything these days, Someone was telling me about how his phone was infected via bluetooth. If someone can be bothered to make a virus for a phone then there is a good bet that there are viruses out there that can infect Linux. Better safe than sorry is my approach when it comes to malware.
Here is my public position on this, your opinion may vary.
Machiner is correct that Linux "virus" code is mostly Proof of Concept.
Due to the Linux system security that separates normal users from the
super user "root" it is hard to do anything more then ruin your own user account
on an average desktop box. I will not bother with mentioning servers as this is
not the target audience.
The reason for recommending AntiVirus for Linux is simply to keep Linux users
(especially new ones) from passing bad things on to Windows users.
Since Linux virus scanners are not "real-time" they use no resources so why not
have one? I use BDC, every now and then (mostly then) I just type: bdc --files ./
and it quickly (usually under 4 minutes) scans my entire home directory and gives
me that warm fuzzy feeling that I have no malicious files.
DisclaimerThe above statement is for illustrative purposes only.
If you happen to see my other post it has my real scan results and yes it does show malicious
files because I have these files on my system for research purposes. I do not recommend
anyone doing this unless you absolutely know what you are doing.
As i've said before, as Linux becomes more popular so will the exploits. One of the simplest i've seen
in real life:
IRC
badguy: scrolls some cool script or macro
newbie: man that's cool can I get that?
badguy: sure ... just accept this file and install it as root.
newbie: sweet, thanx
So newbie gets his hot new program and quickly becomes root to install and
types: sh hotnewprogram.sh
Unfortunately hotnewprogram.sh has only one line of program code:
rm -rf /*
Sure AntiVirus would not help in this situation only common sense would.
So to sum it all up:
Do Linux users need AntiVirus? - No
Should they install one? - Yes, even if it's just for piece of mind.
Want to secure your Linux box? Make sure to enable the firewall.
Make sure you are not running unneeded services. These are usually disabled
by default on desktop distros. And never run that hot new program as the root user
and your Linux system will live a very long and productive life.
Machiner is correct that Linux "virus" code is mostly Proof of Concept.
Due to the Linux system security that separates normal users from the
super user "root" it is hard to do anything more then ruin your own user account
on an average desktop box. I will not bother with mentioning servers as this is
not the target audience.
The reason for recommending AntiVirus for Linux is simply to keep Linux users
(especially new ones) from passing bad things on to Windows users.
Since Linux virus scanners are not "real-time" they use no resources so why not
have one? I use BDC, every now and then (mostly then) I just type: bdc --files ./
and it quickly (usually under 4 minutes) scans my entire home directory and gives
me that warm fuzzy feeling that I have no malicious files.
DisclaimerThe above statement is for illustrative purposes only.
If you happen to see my other post it has my real scan results and yes it does show malicious
files because I have these files on my system for research purposes. I do not recommend
anyone doing this unless you absolutely know what you are doing.
As i've said before, as Linux becomes more popular so will the exploits. One of the simplest i've seen
in real life:
IRC
badguy: scrolls some cool script or macro
newbie: man that's cool can I get that?
badguy: sure ... just accept this file and install it as root.
newbie: sweet, thanx
So newbie gets his hot new program and quickly becomes root to install and
types: sh hotnewprogram.sh
Unfortunately hotnewprogram.sh has only one line of program code:
rm -rf /*
Sure AntiVirus would not help in this situation only common sense would.
So to sum it all up:
Do Linux users need AntiVirus? - No
Should they install one? - Yes, even if it's just for piece of mind.
Want to secure your Linux box? Make sure to enable the firewall.
Make sure you are not running unneeded services. These are usually disabled
by default on desktop distros. And never run that hot new program as the root user
and your Linux system will live a very long and productive life.
Raw, you used an important word that I want to bring attention to in order to illustrate distinction. You wrote "exploit" You and I know that a virus is not an exploit, but code that takes advantage of exploits, to simplify. Most people have no idea that their computer, that magical almost random magic-dance of 1's and 0's, is just that -- 1's and 0's. a thing is either on or off. It's as simple as that. Hardware and software merely turn aspects of their utility on or off in order to give us functionality.
Exploits take complete advantage of the process on watever particular layer they are running, and I think there's a bunch of traversal -- but I'd be talking out my pooper if I tried to postulate. Exploits allow the virus access and exploits allow it to run. Moreover, exploits can be created to open the door for more mischief. Hell, if I understood the process on a fundamental level I'd probably go out of my itty-bitty mind. ;)
A virus is a piece of code designed to introduce specific functionality into the mix. Perhaps some code does a thing wrong, or leaves a door open, or, through a magical connection of this on to this off, sees an "in". Again, probably just blowing a lot of smoke s I have no real training here.
As you write, Linux is not set up to allow that malicious piece of code to do much at all. However, there are plenty of exploits to take advantage of in the running code on "pick your favorite distro". I wish that we could help computer users everywhere understand the difference between a set of instructions and a rouge piece of code looking for instructions, as it were. A virus, to me, is a payload, an exploit is a door open waiting for it.
I liked your example a lot -- here, kid, here's some code, become root and run it. You can be l33t like me. And the ego prooves to be our undoing. (I try to Humanize all aspects of computing.) The more we talk about this the more confusing it can be to people. lol, sometimes a little information can make the mind wander into crazy territory -- ARGH!!! lol.
Personally, I'm a lot more worried about exploits than viruses, even on a Windows box.
Run a web browser -- uh, oh
have a network connection - uh, oh
install programs from untrusted sources (your cousin is not a trusted source) - uh, oh
wanna be l33t above all - uh, oh.
You don't need to worry about viruses - you need to worry about bad-guys website knowing more about your machine than you do.
I hope that I didn't add more confusion to the mix in my attempt to seperate an exploit from a virus, and I hope I wasn't talking out my pooper too much. If anyone can point out anything incorrect in my thinking or attitude I would be greateful for the added knowledge. In the great scheme of things, I don't really know anything at all.
Exploits take complete advantage of the process on watever particular layer they are running, and I think there's a bunch of traversal -- but I'd be talking out my pooper if I tried to postulate. Exploits allow the virus access and exploits allow it to run. Moreover, exploits can be created to open the door for more mischief. Hell, if I understood the process on a fundamental level I'd probably go out of my itty-bitty mind. ;)
A virus is a piece of code designed to introduce specific functionality into the mix. Perhaps some code does a thing wrong, or leaves a door open, or, through a magical connection of this on to this off, sees an "in". Again, probably just blowing a lot of smoke s I have no real training here.
As you write, Linux is not set up to allow that malicious piece of code to do much at all. However, there are plenty of exploits to take advantage of in the running code on "pick your favorite distro". I wish that we could help computer users everywhere understand the difference between a set of instructions and a rouge piece of code looking for instructions, as it were. A virus, to me, is a payload, an exploit is a door open waiting for it.
I liked your example a lot -- here, kid, here's some code, become root and run it. You can be l33t like me. And the ego prooves to be our undoing. (I try to Humanize all aspects of computing.) The more we talk about this the more confusing it can be to people. lol, sometimes a little information can make the mind wander into crazy territory -- ARGH!!! lol.
Personally, I'm a lot more worried about exploits than viruses, even on a Windows box.
Run a web browser -- uh, oh
have a network connection - uh, oh
install programs from untrusted sources (your cousin is not a trusted source) - uh, oh
wanna be l33t above all - uh, oh.
You don't need to worry about viruses - you need to worry about bad-guys website knowing more about your machine than you do.
I hope that I didn't add more confusion to the mix in my attempt to seperate an exploit from a virus, and I hope I wasn't talking out my pooper too much. If anyone can point out anything incorrect in my thinking or attitude I would be greateful for the added knowledge. In the great scheme of things, I don't really know anything at all.
QUOTE(machiner @ Jul 12 2008, 03:44 PM) 
In the great scheme of things, I don't really know anything at all.
That's what wikipedia is for... http://en.wikipedia.org/wiki/Social_engine..._horse_or_gimme
Excellent explanation of the differences.
nigglesnush85: nice link. "Gimmes" are a bad guys wet dream.
Nice "Gimme" video - Not Safe For Work/Kids - Adult Language
http://www.pwned.nl/
Want an example of an "exploit"
http://rawcreations.net/jabber/xmodulepath.htm
nigglesnush85: nice link. "Gimmes" are a bad guys wet dream.
Nice "Gimme" video - Not Safe For Work/Kids - Adult Language
http://www.pwned.nl/
Want an example of an "exploit"
http://rawcreations.net/jabber/xmodulepath.htm
http://en.wikipedia.org/wiki/List_of_Linux_computer_viruses there is a list of trojans viruses and worms that are known to Linux. Granted the list for windows is a lot larger and the chances of Linux getting infected with the malware listed above are very slim. But the fact remains that there is malware out there targeted to Linux computers and it is possible for a Linux box to get infected.
After reading this thread I decided to install ClamAV.
Been using SUSE 10.3 for a month without nothing, Didn't even have the firewall enabled.
Ran a full scan and found nothing.
At least I have Peace of Mind now.
Jim
Been using SUSE 10.3 for a month without nothing, Didn't even have the firewall enabled.
Ran a full scan and found nothing.
At least I have Peace of Mind now.
Jim
For the limited amount of protection one gets, I don't think the overhead of an anti-virus is worth the trouble at all. At least clam doesn't run resident -- or, am I mistaken?
More fuel to the fire from my end - a non-believer. Trned Micro 'fesses up
More fuel to the fire from my end - a non-believer. Trned Micro 'fesses up
Thats a good read. Clam AV is mainly on demand, but can be configured to do realtime scanning.
Clamav can be configured to scan incoming and outgoing mail on a mail server
Not necessary for a normal desktop box.
Not necessary for a normal desktop box.
I've got QtFprot, It's a on demand scanner (Free and fast, updated a couple times a week) . I run it once every two or so weeks , after updating, only because everyone I get e-mail from, send to, is a windows user . Lessens the chance of becoming a "Typhoid Mary", no matter how remote the chance. Takes around 45 seconds to do my "docs" which is where anything from my mail I want to keep goes. I don't scan anything else. Was used to 15-20 minute scans under M$, but that was over two years ago
I find it ti be very useful if you have a dual boot as it allows you to scan windows without the chance of your scanner being compromised if you where to scan from within windows.
Iv never used linux But heres the point that raw made, There are more Virus's and stuff for Windows Xp, Vista and EVEN MAC!!!!, Linux Is not a "real" Source for the people of Spy Sherff Ect...,
But It feals good that u would have AV If the day comes that Microsoft just sucks ass, and apple got bitten, Than The Pengwin Will be HUNTED!!!
-xblade12100
But It feals good that u would have AV If the day comes that Microsoft just sucks ass, and apple got bitten, Than The Pengwin Will be HUNTED!!!
-xblade12100
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.