Which anti-virus program?

Which anti-virus program is the best for SUSE 11.0 KDE 3.5?

Curious what everyone likes.

John

Not needed if you don’t run Windows (e.g. emulated or virtualised) on your system, or handle Windows files (e.g. fileserver, mailserver) on Linux.

Well, I will have to run wine and photoshop.

Are there photoshop viruses? (I don’t know.)

As long as you don’t read mail or file share in Wine, I think you should be ok.

That’s good to know.

Thanks Ken.

I think the built-in AppArmor is a pretty good approach for protecting Linux itself. I’m not sure signature-based virus detection, as typically used for Windows, is really appropriate for Linux as things are now. That said, for Wine it might help for files that have bee compromised, but only those that get as far as the file system. If you really need safety for Windows running on top of Linux, using VMware or Xen might be better, with a full-blown Windows virus checker running within the hosted Windows. I use VMware Server myself.
Cheers, Tony.

Hi
I use clamav from the CLI, since your running KDE Klamav is a front-end
to it. I ran it yesterday and detected one false-positive and a
phishing email in the spam folder… It’s maybe the second or third
time I had run the program.


Cheers Malcolm °¿° (Linux Counter #276890)
openSUSE 11.0 x86 Kernel 2.6.25.16-0.1-default
up 0:52, 2 users, load average: 0.11, 0.09, 0.08
GPU GeForce 6600 TE/6200 TE - Driver Version: 173.14.12

[quote=malcolmlewis;1879724I ran it yesterday and detected one false-positive and a
phishing email in the spam folder[/quote]
I ran AVG for Linux ones, it detected a positive and I choose to delete it. If was afterwards I found out that the ‘virus’ was my Thunderbird inbox. Good thing it contained mostly rubish mails. Since then I tried ClamAV but gave up. My windows laptop has a good virus scanner and stuff so I don’t bother with one in Linux.

Haven’t figured out AppArmour yet but hear it’s the best Linux security program out there. Must look into it some more.

I hope that windows laptop has a better AV program than Norton on it!

I reinstalled windows XP yesterday on a workstation to get my web back on line and it wasen’t 15 min. after I had everything setup I had an ad server malware running on the dang thing and norton didn’t even pick it up. What a piece of junk!

Their server was pinging the heck out of the SUSE but they couldn’t get in.

ad.adserverplus.com was was sending outgoing packets from the machine. Eventhough I made sure the firewall was locked up they were still able to infiltrate the system32 dir.

I watched the SUSE box real close to see if it got on it, but it didn’t. as soon as I shut down the XP machine all network traffic stopped. Funny thing was all the outgoing packets were going to IP addresses in China or Denmark.

I am sooooo sick of windows! Bill Gates needs to be punished massively!

Hi
I run the old version of sygate (5.2?) as the XP firewall doesn’t block
outbound traffic.

Sounds like your XP install was already compromised if the traffic was
outbound?


Cheers Malcolm °¿° (Linux Counter #276890)
openSUSE 11.0 x86 Kernel 2.6.25.16-0.1-default
up 8:55, 1 user, load average: 0.07, 0.16, 0.24
GPU GeForce 6600 TE/6200 TE - Driver Version: 173.14.12

No, I found out what it was, Dell sent out the original disk with remote admin enabled in the firewall. I can’t think of any other way they could have got in. I run a test on all the machines (tough test) that writes zero’s to everything before I do an install. I’m going to be telneting into the router tonight to see if there has been any file changes.

I’m curious. If I have my email running through Gmail’s IMAP service, should I need an email virus scanner and which one works well with IMAP?

My home network is a mixed environment (Win/Lin) and I use Gmail’s IMAP feature so the person can get their email on whatever system they are using at the time.

For Windows (when I fixe the BSOD) I have Trend Micro’s Internet Suite (firewall, anti-virus, etc.) but nothing on Linux so far.

Im curious as to how your PC became infected.

Seems like you had your modem connected to the XP PC and switched on whilst installing XP that wasnt patched with SP2, so the firewall was off by default?

Are you behind a router?

I’ve run clamav (although I don’t have it installed now) in the past and on one occasion was alerted to a virus. It was an email and would have been a problem only if I’d opened it in Windows. Since I’m using Kapersky AV on my Windows machines, I haven’t found a need to retain clamav in any of my linux machines or OSX for that matter.
If you’re concerned about forwarding email with imbedded malware or viruses to those using Windows, then I suppose it could make sense to use clamav and keep it up to date. Otherwise, in my own personal opinion, it’s currently a waste of time. YMMV!

Bob