hi.

I know that malware in linux is rare, but its possible to get infected.

So which of you guys has a firewall and anti virus installed? Do you know any cases of infected computers with Ubuntu installed?


thanx!

have no anti-virus, I have all my ports stealthed except for some that are used by services. I have had no first hand experience with malware or virusses in ubuntu (but I only look after 12 machines)

hi.

I know that malware in linux is rare, but its possible to get infected.

Correction: Malware in Linux has not even been seen for years. The old malware doesn't work on modern Linux systems. It's not possible to get infected with anything around today.

So which of you guys has a firewall and anti virus installed?

I have a firewall installed, if by "installed" you mean "sitting between my computer and the internet". It's built-in to my ADSL router, and protects my whole home network. I don't run a personal firewall on any machines as I trust my own network traffic.

Anti-virus: No point for me, I don't exchange files with Windows machines and there is no working Linux malware. Some people run anti-virus software to prevent the accidental transmission of Windows viruses.

There is a firewall installed by default in Ubuntu.
https://help.ubuntu.com/community/IptablesHowTo

I haven't configured it from default and I too rely on my router's firewall.
See also.
https://help.ubuntu.com/community/Uncomplicated_Firewall_ufw

Although some people prefer firestarter.
https://help.ubuntu.com/community/Firestarter

Here's actually a nice list of viruses:
https://help.ubuntu.com/community/Linuxvirus

If you want antivirus software, even after reading that, there's Clam AV. I've never used antivirus before, and I've never gotten a virus. I do, however, use a firewall which block everything I don't normally use (like SSH). Or at least I think I am. If you ever hack my computer, please, do tell me. I'd love to hear how you did it. :) Just leave a little text document on my desktop or something. :)

hi.

I know that malware in linux is rare, but its possible to get infected.

So which of you guys has a firewall and anti virus installed? Do you know any cases of infected computers with Ubuntu installed?


thanx!

I configured my IPtables to reject all unrequested traffic to my computer, even with my password. iptables is installed by default, but not configured. I also have a router in between my computer and the Internet, that has a firewall built in. That way, I don`t have to worry about security as much after every install. :)

Anti-virus: No point for me, I don't exchange files with Windows machines and there is no working Linux malware. Some people run anti-virus software to prevent the accidental transmission of Windows viruses

This means that ubuntu anti-virus can detect windows malware?

It's not possible to get infected with anything around today.

You are being overly optimistic. It's very possible to be the victim of an exploit. There are several around. It's not technically malware, but unpatched systems *are* host to a range of vulnerabilities that can allow an attacker to get root access, and then plant malware. This is why we have a *-security repository.

If nothing else, install an SSH server, keep it on the default port and tell me if no one tried to brute force their way into your system. Of course, they probably won't succeed unless you're using an obvious password.

To the OP: there are vulnerabilities being discovered from time to time, but if you keep your system up to date, you should not need anything else since fixes are typically available the next day (or sooner). Otherwise, 3rdalbum is correct : if you have a router you're safe, if you don't have a router but don't change the network configuration too much you're reasonably safe, and use an anti-virus only if you need to protect Windows machines on the same network.

I had this happen to me and it infected my windows pc's but nothing happen to the Ubuntu boxes so I think you're safe:
http://ubuntuforums.org/showthread.php?t=976477

Thanks JordyD, interesting read about linux viruses.

Try Clam Win Anti virus its a community maintained software i suppose. You may get that in Add/Remove menu.

Here's actually a nice list of viruses:
https://help.ubuntu.com/community/Linuxvirus

IIf you ever hack my computer, please, do tell me. I'd love to hear how you did it. :) Just leave a little text document on my desktop or something. :)
Lol
ok! if i ever do that i will leave a message! ;)

This means that ubuntu anti-virus can detect windows malware?

As far as I'm aware, linux anti-virus checks for windows viruses ONLY.

You may check the list of viruses supported

easy way to check for open ports provided by Steve Gibson at his website:

https://www.grc.com/x/ne.dll?bh0bkyd2

hi.

I know that malware in linux is rare, but its possible to get infected.

So which of you guys has a firewall and anti virus installed? Do you know any cases of infected computers with Ubuntu installed?


thanx!

i do not use anything other than safe secure passwords.
i never install anything from other source than the official sources or things found in synaptic.
i do not trust anything i can not have the source for to compile on my own but i will use it if it is drivers. i will try as hard i can to avoid it however. i do not use compiz and the restricted drivers as example. only on one machine i use as media center where the program elisa neeeds these to work.

Thanks for the help! :)

No AV currently, default firewall and router firewall. Also, no file sharing between linux computers and windows computers on my network.

You are being overly optimistic. It's very possible to be the victim of an exploit.

Yes, true. I'm sorry, I was referring to the OP's main concern (malware) and not to other sorts of threats such as security flaws in software and compromised repositories.

Keep your system up-to-date from the Update Manager and don't install all-and-sundry from third-party repositories; try to stick to the well-known repositories.

I'm too scared to allow Internet access to SSH running on my home server :-) So I won't try your little test! But I know that the default Ubuntu configuration for SSH is fairly safe, as long as your password is good.

If you have a concern about an occasional file being infected, you can upload the suspected file to VirusTotal for an online scan to check. They run it through most of th major AV vendors' scanners for multiple checks.
http://www.virustotal.com/

Saves from having to run AV on my personal system and wasting resources.

hi.

I know that malware in linux is rare, but its possible to get infected.

So which of you guys has a firewall and anti virus installed? Do you know any cases of infected computers with Ubuntu installed?


thanx!

Ubuntu comes with iptables configured correctly for home users.

Malware can't hit the system unless you execute it yourself, so that would make it a trojan.

Trojans can be found on every OS that is and will ever be created.

Ubuntu comes with iptables configured correctly for home users.



what are iptables? some kind of rules aplied to a firewall?

how can i edit them?

There certainly is both malware and exploits for linux , lol.

I suggest you start by looking at the security sticky :

Ubuntu Security - Ubuntu Forums (http://ubuntuforums.org/showthread.php?t=510812)

Security in Linux is different then security in Windows and to be honest most "exploits" come down to weak passwords and installing servers (ssh , ftp, and vnc) without securing them.

The use of antivirus and a firewall on Linux is controversial and you should make an informed decision after reading the security sticky.

IMO, assuming you have a default installation and are behind a router, you do not need either.

Thanks for the suggestion!