Page 1 of 2 12 LastLast
Results 1 to 10 of 17

Thread: Security software

  1. #1

    Default Security software

    I am growing tired of Windows 7 and thinking of installing openSuSE, question:

    Do I need to install antivirus and/or firewall apps, and, if so, what kind of, free, packages would you recommend?

    Thank you for your advice,

    pe1800

  2. #2
    dd NNTP User

    Default Re: Security software

    > Do I need to install antivirus

    you need no antivirus software to protect openSUSE or any Linux,
    because there are no known Linux viruses in the wild..

    i've used Linux since '98 and never had a reason to run anti-virus
    software.

    > and/or firewall apps


    a default install of openSUSE includes a firewall, which will run
    automatically every time you boot and offers very reasonable
    protection right out of the box..

    all of that above is not to say that as a user there is nothing you
    can do to keep your machine clean....there is much you can do to make
    it harder to crack....and, much you can do to make if far too easy...

    Linux security is more about administrative practices rather than
    paying bucks to try to purchase security..

    i'll leave it to others to explain the security practices we all (who
    know and care) use..

    --
    dd
    openSUSE®, the "German Engineered Automobile" of operating systems!


  3. #3
    Join Date
    Aug 2010
    Location
    Chicago suburbs
    Posts
    12,168
    Blog Entries
    3

    Default Re: Security software

    Quote Originally Posted by pe1800 View Post
    Do I need to install antivirus and/or firewall apps, and, if so, what kind of, free, packages would you recommend?
    There will already be a firewall installed.

    You won't need anti-virus, unless you are downloading files to be used on Windows boxes. In that case, I think "clamav" is in the standard repos.
    openSUSE Leap 15.1; KDE Plasma 5;

  4. #4
    Join Date
    Jun 2008
    Location
    Netherlands
    Posts
    24,721

    Default Re: Security software

    Quote Originally Posted by pe1800 View Post
    ...... and thinking of installing openSuSE, question:
    As you can see all over the place here, it is openSUSE. One reason less for getting RSI by using the shift key to much
    Henk van Velden

  5. #5
    Join Date
    Jun 2008
    Location
    San Diego, Ca, USA
    Posts
    10,803
    Blog Entries
    1

    Default Re: Security software

    Although Linux as a Desktop is relatively ignored as a malware target, it's not totally immune from attacks.

    Example the recent Java vulnerability and resulting recommendation to disable Java in all browsers until patched.

    There are also well-known attacks on software apps like webmin, PHP and Oracle databases all which run more commonly on Linux than other OS.

    Rootkits could potentially compromise Linux boxes, but are relatively difficult to construct today.

    Most malware infections that suggest use of AV and similar consumer use though are installed using email spear-phishing and clicking on advertising and few of any of those are written to compromise any but Windows boxes.

    IMO,
    TSU

  6. #6
    dd NNTP User

    Default Re: Security software

    my different view/opinion:

    > Although Linux as a Desktop is relatively ignored as a malware target,
    > it's not totally immune from attacks.


    it has long been the standard line from Microsoft®, and its
    proponents, that: if Linux had a larger market share then it would be
    just as vulnerable and infected as is Windows®....which is just pure FUD!

    the MS system is less secure because of its design and its operating
    practices, NOT because of its monopolistic market share.


    > Example the recent Java vulnerability and resulting recommendation to
    > disable Java in all browsers until patched.


    the attack vector through java had nothing to do with any virus!

    and there was no (and is no) security software sold by anyone or
    delivered freely which could do, or did do, anything to minimize the
    threat posed by the recent java vulnerability..

    remember this thread is to answer the OP question "what kind of,
    free, packages would you recommend?" and there was and is no free or
    purchasable software solution to the java problem (other than just
    FIX java, of course..)


    > There are also well-known attacks on software apps like webmin, PHP and
    > Oracle databases all which run more commonly on Linux than other OS.


    is not the frailty in the named packages rather than the system they
    operate in?

    and, like the Java example, are there _any_ software packages that
    can be recommended which 'solve' the vulnerabilities in webmin, PHP
    and Oracle db's? (and also the encountered problems of Flash and Acrobat)


    > Rootkits could potentially compromise Linux boxes, but are relatively
    > difficult to construct today.


    rootkits _do_ compromise Linux boxes and they are neither overly
    difficult to construct or install...

    the construction difficulty comes only in the hacking magic needed to
    hide the evil so it can go undetected..

    and, installation is no more difficult than installing any other
    program. (which is one reason that good administrative practices is a
    must)

    there are programs to help find installed rootkits, but the _best_
    defense is to use the correct administrative practices to keep them
    OUT in the first place..

    once in, it is game over.

    format and start a new game.


    > Most malware infections that suggest use of AV and similar consumer use
    > though are installed using email spear-phishing and clicking on
    > advertising and few of any of those are written to compromise any but
    > Windows boxes.


    because Linux users who employ secure administrative practices don't
    read email or click on web site advertising as root, it would be a
    waste of time to write those attacks to run both on Windows® and Linux..

    on the other hand, i was using an Android tablet a few weeks ago and
    its built in browser was hijacked (opening page was set to some rogue
    site selling junk online) by a click somewhere--but that too was a
    program (browser) failure, rather than the system (Android Linux)
    failing, and the system was not in any danger from the attack..

    imo the bottom line remains the same: for openSUSE there is no
    software package which can be bought, received for free, or
    recommended which will increase a default installed system's security
    as much as just using the standard operating practices well known for
    decades..

    [and, if those practices are not followed then the system is not
    quite as insecure as is the typical Windows® system but it is a long
    long way from where it should/could be]

    as usual, ymmv.

    --
    dd
    openSUSE®, the "German Engineered Automobile" of operating systems!

  7. #7

    Default Re: Security software

    Thank you. Very interesting and instructive.

  8. #8

    Default Re: Security software

    Thank you. Exactly what I was looking for.

    Quote Originally Posted by dd View Post
    > Do I need to install antivirus

    you need no antivirus software to protect openSUSE or any Linux,
    because there are no known Linux viruses in the wild..

    i've used Linux since '98 and never had a reason to run anti-virus
    software.

    > and/or firewall apps


    a default install of openSUSE includes a firewall, which will run
    automatically every time you boot and offers very reasonable
    protection right out of the box..

    all of that above is not to say that as a user there is nothing you
    can do to keep your machine clean....there is much you can do to make
    it harder to crack....and, much you can do to make if far too easy...

    Linux security is more about administrative practices rather than
    paying bucks to try to purchase security..

    i'll leave it to others to explain the security practices we all (who
    know and care) use..

    --
    dd
    openSUSE®, the "German Engineered Automobile" of operating systems!

  9. #9

    Default Re: Security software

    Thank you. It answers my question.

    Quote Originally Posted by nrickert View Post
    There will already be a firewall installed.

    You won't need anti-virus, unless you are downloading files to be used on Windows boxes. In that case, I think "clamav" is in the standard repos.

  10. #10

    Default Re: Security software

    Thank you, very useful information.

    Quote Originally Posted by tsu2 View Post
    Although Linux as a Desktop is relatively ignored as a malware target, it's not totally immune from attacks.

    Example the recent Java vulnerability and resulting recommendation to disable Java in all browsers until patched.

    There are also well-known attacks on software apps like webmin, PHP and Oracle databases all which run more commonly on Linux than other OS.

    Rootkits could potentially compromise Linux boxes, but are relatively difficult to construct today.

    Most malware infections that suggest use of AV and similar consumer use though are installed using email spear-phishing and clicking on advertising and few of any of those are written to compromise any but Windows boxes.

    IMO,
    TSU

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •