Page 2 of 4 FirstFirst 1234 LastLast
Results 11 to 20 of 35

Thread: Virus protection Clamav HOWTO

  1. #11
    Join Date
    Jun 2008
    Location
    Netherlands
    Posts
    25,126

    Default Re: Virus protection Clamav HOWTO

    Nice hobby then that running of AV!
    Henk van Velden

  2. #12
    Join Date
    Jun 2008
    Location
    UTC+10
    Posts
    9,686
    Blog Entries
    4

    Default Re: Virus protection Clamav HOWTO

    I guess it's time again to post that Unix/Linux virus:

    Code:
    From: bad guy
    To: gullible user
    Subject: Unix/Linux honor system virus
    
    Dear user,
    
    Please delete 10 files at random from your directories and forward this email to 10 of your friends.
    
    Thank you

  3. #13
    Join Date
    Jun 2008
    Location
    Netherlands
    Posts
    25,126

    Default Re: Virus protection Clamav HOWTO

    Dear otto_oz,

    Now we have talked enough about the unusefullness of installing Clamav at all, I like to return to the technical side of your thread.

    In my openSUSE 11.2 system the package clamav is in the OSS repo. I have no doubt that it will draw in all dependancies it might need when I would try to install it.

    Can you explain why you decided for going somewhere else and install it "the hard way" instead of the "simple" openSUSE way? Isn't it in openSUSE 11.3 or what?
    A Howto should at least explain to the noob and guru alike why one should not install a package as usual and revert to the way you point to.
    Henk van Velden

  4. #14
    Join Date
    Jun 2008
    Location
    Earth - Denmark
    Posts
    10,730

    Default Re: Virus protection Clamav HOWTO

    ken yap wrote:
    > Please delete 10 files at random from your directories and forward this email to 10 of your friends.


    oh man!
    you are mean and sneaky!!
    your virus just killed my system!
    i didn't do anything but now i can't control it..
    it keeps sending emails to all my friends telling them to buy some
    pills to make something grow!

    oh woe is me!

    i guess it is high time i installed ClamAV Professional Super Delux
    Ultimate Enterprise 2010

    --
    DenverD
    CAVEAT: http://is.gd/bpoMD [posted via NNTP w/openSUSE 10.3]

  5. #15

    Default Re: Virus protection Clamav HOWTO

    From time to time the scan finds a virus in a downloaded Windows files and once long ago in tar.gz or something, but never in Linux file.
    Unimportant files, like try_me_win_app.iso or try_win_app.zip, not corrected are deleted.
    Last, windows files are rescanned by A-V utilities from Windows before use.
    Box 1: OpenSuse 11.1/Win7 | Linux 2.6.27 Gnome | AMD 64 X2 6000+ | nVidia 8600GT | 2GB RAM
    Box 2: OpenSuse 11.2 | Linux 2.6.31 Gnome | AMD 64 3000+ | ATI X800 Pro | 1GB RAM
    Box 3: Win7 Premium Home | Intel P4 3.0Gz | ATI AIW 2006 | 2GB RAM

  6. #16
    Join Date
    May 2009
    Location
    Australia
    Posts
    326

    Default Re: Virus protection Clamav HOWTO

    Hallo Henk

    I used this repository because it had the more recent version of clamav-db
    "http://download.opensuse.org/repositories/security/SLE_10/"
    So if you install what is in your current repositories including KDE3 Klam and the firefox addon ...it should all work.
    Still check the runlevels in yast to ensure that the daemons will start at boot.

    I added the perl repository to see what Clamtk looks like and to give options what to use for scanning.

    Also you may want to update to 11.3

    Just a comment to the replies above. I installed clamav after I got rid of chromium and found the trojan in chromium cache.
    URL for Clamav Clam AntiVirus

    Whilst I think Linux is by far saver re viruses than windows, that will not last forever. I did not write this HOWTO to scare people, just to make them aware.

    Anyway........cheers Otto
    Desktop: CPU: AMD Ryzan 4 core, RAM: 32 GB, SSD 120 GB OS, SSD 480 GB Raid, HD 500 GB , OS: 15.1
    Laptop: Toshiba, AMD 4 core, 8 GB RAM, SSD 500 GB, OS 15.1
    Printer: Brother Color laser , Scanner Epson V370. Main application: Ardour, Jack

  7. #17
    Carlos E. R. NNTP User

    Default Re: Virus protection Clamav HOWTO

    On 2010-07-26 23:36, otto oz wrote:
    >
    > Hallo Henk
    >
    > I used this repository because it had the more recent version of
    > clamav-db
    > "http://download.opensuse.org/repositories/security/SLE_10/"


    That's absurd.

    Just install clamav from the oss repo, and make sure the "freshclam" service is enabled. This will
    periodically download and update the database to the latest.

    And the engine itself is updated via the standard update method (zypper patch, YOU...).


    > Just a comment to the replies above. I installed clamav after I got
    > rid of chromium and found the trojan in chromium cache.


    You have already been told that this is false. It is a false positive on chromium itself.

    >
    > Whilst I think Linux is by far saver re viruses than windows, that will
    > not last forever. I did not write this HOWTO to scare people, just to
    > make them aware.


    Then use the correct info.

    --
    Cheers / Saludos,

    Carlos E. R.
    (from 11.2 x86_64 "Emerald" GM (Elessar))

  8. #18
    Join Date
    May 2009
    Location
    Australia
    Posts
    326

    Default Re: Virus protection Clamav HOWTO

    Carlos

    thanks for the hint re "freshclam" I was not aware of it.

    As to the trojan: ?!?? gone !!!
    Desktop: CPU: AMD Ryzan 4 core, RAM: 32 GB, SSD 120 GB OS, SSD 480 GB Raid, HD 500 GB , OS: 15.1
    Laptop: Toshiba, AMD 4 core, 8 GB RAM, SSD 500 GB, OS 15.1
    Printer: Brother Color laser , Scanner Epson V370. Main application: Ardour, Jack

  9. #19

    Default Re: Virus protection Clamav HOWTO

    Quote Originally Posted by DenverD View Post
    . . . i'd be VERY interested in seeing that list...because i've been using
    Linux since 1998 or so and so far i've never seen the name of ONE,
    much less a _list_ of viruses which attack Linux systems
    . . .
    there are no known Linux viruses....sure there are root kits readily
    available--but as far as i know ClamAV has no idea how to look for
    those!! for the non-windows user ClamAV is nothing more than a cpu
    cycle waster. . .
    Ok, then - check this page for a start. Linux malware - Wikipedia, the free encyclopedia
    or Linux vs. Windows Viruses (a little old, and the numbers are now way low, but still valid)
    and https://help.ubuntu.com/community/Linuxvirus.



    Lots of references there. Henk is right when he says that Linux is an AV environment by itself - but it is not immune. For those of us who believe that it is "better safe than sorry", and who don't mind wasting a few cpu cycles, ClamAV is a reputable product. I do like your point about rootkits, as they have been more "successful" on the Linux platform (or at least, I think they have been). There are plenty of examples of rights escalation by web page scripts now - even on Linux - that we should all keep this in mind. Having some software to "look over my shoulder" is welcome in my office.

    Best Regards;
    spokesinger
    Last edited by spokesinger; 03-Aug-2010 at 08:58. Reason: correction
    "Good judgment comes from experience, and a lot of that comes from bad judgment." - Will Rogers

    Learn from the mistakes of others. You cant live long enough to make them all yourself. - Eleanor Roosevelt

  10. #20
    Join Date
    Jun 2008
    Location
    Earth - Denmark
    Posts
    10,730

    Default Re: Virus protection Clamav HOWTO

    well, i must admit you opened my eyes..

    so, i will install ClamAV tonight......or, tomorrow... or ...

    check back with me in a couple of years and ask if i've installed it
    yet...

    in all fairness, i am the only user of this machine, i exercise pretty
    good physical control and am more than a little careful with the
    security 'thing'...

    i'm thinking someday i might decide to install an AV program, but this
    is not that day.

    --
    DenverD
    CAVEAT: http://is.gd/bpoMD [posted via NNTP w/openSUSE 10.3]

Page 2 of 4 FirstFirst 1234 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •