Linux
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Rules
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
- No misinformation
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0
10-foot pole ---------------- Kaspersky
Kaspersky actually has a good track record of NOT being anything malicious (Except for old times when it seemed to flag pirate software quite often).
However, if the tool is closed-source, this is naturally against Linux ethos and is generally something to avoid, given extensive permissions.
I'm not sure I'd give Russian software root access to my systems.
What about 7zip?
I don't give 7zip admin access to my system.
They actually had a good track record but I think a FSB stooge took a board position and at that point...
Does it find itself?
It just removes itself along with Nvidia, Realtek and Broadcom
Support ClamAV instead of this trash
It isn't terribly good
Yay, let's install Spyware on our Linux computers 👌
Does it scan for Kaspersky?
This is very cool! Is it FOSS though? Kaspersky is doing good stuff, but the concept of an Antivirus is very problematic, and has like all the privileges you can get
No thanks
I HIGHLY doubt that they would detect the XZ backdoor
xz --version
Böhmermann in freier Wildbahn gesichtet
War auch überrascht
Even if it did, what would you do? rm -rf /?
XZ is part of the core system
Why? It's not hard. They typically hash files and look for hits against a database of known vulnerabilities.
Yes and if viruses use something like base64 encoding or other methods, the hashes dont match anymore.
As far as I understood it, it is pretty easy to make your virus permanently un-hashable by just always changing some bits
The xz backdoor was a packaged file distributed with the standard packages though. It would be trivial to find.
This is obviously not about this known file.
It is about "would this scanner detect a system package from the official repos opening an ssh connection"
That doesn't work against polymorphic malware
I think the best way is to monitor calls and behavior. Doing that is a privacy nightmare
Who's talking about polymorphic malware? We were talking about the xz backdoor.
First is it open source, and why do they made a such tool? 😂
So they have made a Linux antivirus?
ClamAV is the OG
AFAIK, clamAV hunts Window viruses, not Linux malware. The linux equivalent I know of is rkhunter.
There are plenty if Linux end point protection tools. However, I think the best protection is security patching.
For personal use I don't think there is any good malware detection tools. I think you just need to harden your browser and not install random packages from online. Best if you stick with distro repos only.
Really? I just found enterprise grade e.g. server security tools. Most sites I found were ourdated, where the Linux EndpointSecurity tools were discontinued (even tho the server tools would probably as good as EndpointSecurity)
I am talking about enterprise grade