Comments

You must log in or register to comment.

6

NEOalquimista wrote

The only one I know for GNU/Linux is ClamAV, but I don't know anyone who uses it. Antivirus software was useful back when the Internet was still rising in popularity and everyone would carelessly click everywhere and install everything.

Nowadays, better security is achieved through the design of the operating system itself, such as privilege control and security patches. This mitigates a large part of the problem, which leaves the vulnerability named "The User". An informed person will not need an antivirus to avoid getting an infected .pdf via email. An informed person will know when something seems suspicious.

2

xxi wrote (edited )

I'm using GNU/Linux but I have found ClamAV helpful a couple of times. I remember downloading some game extensions/manuals or something like that and it happened to be infected. Now it really didn't effect me because it's exploited some Windows issue, but in theory I could've sent that to someone else.

If your home network happen to include some units running Windows it would also be a problem. I've never used Samba but seeing that's it's mentioned a lot of threads and the like I guess it's being used a lot and could present more of a threat.

Of course this could be a "user vulnerability" but I'm just saying that I tend to be semi-paranoid about these things and I made a mistake. I bet someone vastly more experienced than me makes them too. In that case ClamAV can provide some protection against oversights by the user.

2

md_ wrote

I don't follow Windows news much, but from what I gather, Windows Defender, which comes with Windows, and enabling the firewall, go a long way protecting users on that platform nowadays.

But keep installing the updates. The main problem in the Windows culture is that legitimate fixes are coupled with user-malicious changes, which created this culture of avoiding all updates and even staying on unsupported OS versions that are no longer getting security fixes. And that's bad for the user, and everyone else on the same network as the person who insists on running Windows XP SP2 in 2018.

2

zod wrote

I really don't get why anyone uses Windows. It's like letting a nasty corporation live in your head.

3

NEOalquimista wrote

The computers at work are running Windows 7 and missing hundreds of updates. Since it would take many hours to install them, the "computer technician" that does the maintenance disabled updates completely, leaving the system full of holes. They actually do this on the systems they setup around the city. My coworker types their passwords on those machines (face palm). The boss disabled the firewall, UAC and antivirus permanently. They don't care about the implications of this, just want to get shit done.

3

selver wrote

Do Linux viruses exist? I've never gotten one.

4

md_ wrote

Viruses per se are rare on Unix-like OSes, and they don't go far. GNU/Linux and the BSDs are susceptible to other types of malware, like botnets and rootkits.

The danger always exists, but there's a combination of reasons (multiuser/privilege-separation, package managers/efficient patch distribution mechanisms, SELinux/AppArmor, user savviness etc) that mitigate a lot of the risk.

I worry more about the Node.js Package Manager deleting my /boot partition or malicious Javascript code from a web advert stealing my SSH keys, than about viruses. (wow, my fears really revolve around JS in one way or another).

2

dele_ted wrote

Antivirus software is pretty much useless anyways, especially if you have some common sense and/or is on Linux.

About a year ago i spent some time teaching myself about pentesting against Windows systems. I'm definitely not a professional pentester, and even i can make a malicious Windows payload that bypasses every single major antivirus engine, including Avast, AVG, Bitdefender and Avira, in two or three hours.

Then there's phishing, which has become the most common threat. It all comes down to thinking before you act. Don't open that mysterious letter you recieved in your email, don't allow macros in that Word document your classmate handed you, doublecheck the URL before entering any details, and don't enter any details on a site without SSL/TLS.