Now that Apple has said that Macs do need antivirus software, is it time to get it for Linux machines as well? I've been concerned, but clearly threats are getting ever worse. What do you think? This isn't intended to start a flame war, I'd just like some practical advice. Thanks.

first of all, linux is not mac. our market share is even less than theirs. if you are really paranoid, you can install various available anti virus for linux, but i doubt they'll do any help (other than detect windows viruses if any).

preparing for future virus onslaught when you have no idea, what a linux virus will look like seems overkill. i doubt if any viruses do show up, the heuristics of these anti viruses will be enough. most AVs work best with definition updates, that are added after the viruses are detected.

ps: i am no expert on viruses, so my views could be flawed, please correct them if any :)

Now that Apple has said that Macs do need antivirus software, . . . .

May we have a link to Apple's statement, please?

heh, ran a google search and found these:

first: http://news.cnet.com/8301-1009_3-10110852-83.html

then: http://news.cnet.com/8301-1009_3-10111958-83.html

@ idigchess, if you were referring to this, i guess you should have read the correction, too :D

You should care about security, but installing antivirus will offer you no protection.

For more details, read the security sticky (http://ubuntuforums.org/showthread.php?t=510812).

I worked at Geek squad for 5 years and im now a network admin and on my PC at home i run a quad boot (vista x64, xp pro, ubuntu x64 and windows 7 rc2)

I have seen many pc's in my lifetime ALL kinds of messed up, any hardware issue you can think of i have seen.

I run clam AV and its never caught anything, with linux you have to worry more about intalling something you should not IE, while learning i mismatched my kernel header, messed up my grub, also did that stupid RMRF crap NEVER DO THAT ONE, formats the whole drive...... and then from a install once a guy thought he was funny and made my terminal echo "you got hacked"......

so in short every time linux has had a issue its been my fault honestly.....

I have one on there for peace of mind but it dont do much....

i hope that help at all.....

I have been seeing a few phishing worms going around the social networking sites. In this 'spam' is a link to a site, which pops up saying that the latest version of flash must be installed. Clicking on that... well yeah.

Security is up to the user. Take care and dont do stupid things.

Yeah, social engineering is probably the biggest threat you have to worry about.

And, in Linux, right now it's not even that big... yet.

My experience with Windows systems from 3.0 on, is that anti-virus software has caused far more issues than all the mal-ware combined for users with a minimal clue.

I don't think I've ever encountered a mal-ware corrupted system that wasn't running some kind of anti-virus software that failed to prevent the attack.

Something like ClamAV to scan downloaded files before running them is prudent.

--wally.

I don't think I've ever encountered a mal-ware corrupted system that wasn't running some kind of anti-virus software that failed to prevent the attack. Same here.

Every infected system I've come across has had useless antivirus installed. I've found antivirus to be as effective as a sheepskin condom in preventing infections.

Better to set up a limited user account, install Windows updates regularly, use Firefox with NoScript, avoid social engineering, and not pirate stuff.

You should care about security, but installing antivirus will offer you no protection.

For more details, read the security sticky (http://ubuntuforums.org/showthread.php?t=510812).

True I have an anti-virus on my Linux OS and I will also have a firewall to get extra protection though

True I have an anti-virus on my Linux OS and I will also have a firewall to get extra protection though
See, I don't think of antivirus as "extra protection." I think of it as a placebo. I'd rather have real security than the illusion of security.

By the way, Ubuntu already has a firewall. It's just not configured, and if you have a default installation, you don't really need to configure it, frankly.

i've found antivirus to be as effective as a sheepskin condom in preventing infections.


lololololol

heh, ran a google search and found these:

first: http://news.cnet.com/8301-1009_3-10110852-83.html

then: http://news.cnet.com/8301-1009_3-10111958-83.html

@ idigchess, if you were referring to this, i guess you should have read the correction, too :D

I was referring to this: http://blogs.zdnet.com/security/?p=3575&tag=nl.e019

(towards the bottom)

Same here.

Every infected system I've come across has had useless antivirus installed. I've found antivirus to be as effective as a sheepskin condom in preventing infections.

Better to set up a limited user account, install Windows updates regularly, use Firefox with NoScript, avoid social engineering, and not pirate stuff.

Or at least use pirated stuff from trusted pirates. :p

Now that Apple has said that Macs do need antivirus software, is it time to get it for Linux machines as well? I've been concerned, but clearly threats are getting ever worse. What do you think? This isn't intended to start a flame war, I'd just like some practical advice. Thanks.


No.

The AV companies have been beating the "Linux is doomed to malware" drum for at least 10 years now. Yet, it hasn't happened. Every year they release a new "report" that Linux will be attacked "very soon" with loads of malware. It's all FUD geared to make them more money from the gullible.

Really, malware is becoming irrelevant even on WIndows because M$ has basically copied the Unix security paradigm and even implemented things like ASLR and DEP (done in BSD and Linux first). The one advantage Linux will always have over M$, however, is that it has a package manager. A lot of Windows malware today is intentionally installed by gullible users. Package managers help stop this. However, Linux users have to also be careful about social engineering and installing untrusted packages.

Linux is relatively secure out of the box (especially where Desktop boxes are concerned). If you need or want more security, then you can look into compiling things like PaX into the kernel. Also, look into SELinux or AppArmor. A MAC implementation is FAR more effective at stopping exploits than a silly AV product can ever be. Indeed, the AV paradigm is doomed to failure because the signatures are always one step behind the malware authors. The AV industry is there to make money. Without people being infected, they'd have no business!

Just follow good practices, and you will be secure.

1) Run a firewall that blocks all incoming.
2) Never run as root, and be careful with sudo.
3) Never install packages from outside the repos.
4) Disable all unneeded services/daemons.
5) If you want to go further, look into a MAC (AppArmor).

I was referring to this: http://blogs.zdnet.com/security/?p=3575&tag=nl.e019

(towards the bottom)

That page was referring to this:

http://www.apple.com/macosx/what-is-macosx/security.html

but, here too apple has stated that an anti virus may offer additional protection.

In my experiences working with end users, more often than not (as others have stated previously), most of the time its the end users fault for installing some silly application that promised "FREE" utility's, or some graphics pack.

From my perspective the reason more MAC's are being infected is due to the growing market share of naive users who assume because of something they have heard that they are invulnerable to intrusion and attack, so they let down their guard and don't use best practices to protect themselves.

:popcorn:

I've always felt the following story sums up the 'anti-virus on linux' issue very well. Just do a websearch for 'rootless root' if you want to read more of these.




Master Foo and the Nervous Novice
There was a novice who learned much at the Master's feet, but felt something to be missing. After meditating on his doubts for some time, he found the courage to approach Master Foo about his problem.

“Master Foo,” he asked “why do Unix users not employ antivirus programs? And defragmentors? And malware cleaners?”

Master Foo smiled, and said “When your house is well constructed, there is no need to add pillars to keep the roof in place.”

The novice replied “Would it not be better to use these things anyway, just to be certain?”

Master Foo reached for a nearby ball of string, and began wrapping it around the novice's feet.

“What are you doing?” the novice asked in surprise.

Master Foo replied simply: “Tying your shoes.”

Upon hearing this, the novice was enlightened.

So very profound ... :lolflag: Thanks- that's a good point.

I've always felt the following story sums up the 'anti-virus on linux' issue very well. Just do a websearch for 'rootless root' if you want to read more of these.




Master Foo and the Nervous Novice
There was a novice who learned much at the Master's feet, but felt something to be missing. After meditating on his doubts for some time, he found the courage to approach Master Foo about his problem.

“Master Foo,” he asked “why do Unix users not employ antivirus programs? And defragmentors? And malware cleaners?”

Master Foo smiled, and said “When your house is well constructed, there is no need to add pillars to keep the roof in place.”

The novice replied “Would it not be better to use these things anyway, just to be certain?”

Master Foo reached for a nearby ball of string, and began wrapping it around the novice's feet.

“What are you doing?” the novice asked in surprise.

Master Foo replied simply: “Tying your shoes.”

Upon hearing this, the novice was enlightened.