Security software

[Tony]

Perry Mason was a long, long, time ago, but I believe it was a good show. So good that even to this day people are trying to immitate it's success. 

Alfred Hitchcock belongs in here somewhere. "The case of the broken Windows",... 

[The Chief]

pe1800,

I will say that in the 6+ years that I've been using Linux exclusively, I've never ran antivirus software -- and have never experienced even a hint of a problem. There's a LOT to be said for the peace of mind knowing that, as a Linux user, you are no longer a target -- like you were when you ran Windows (the most insecure OS ever devised).

So ... my advice ... dig in! You won't regret it!

parnote

DITTO!!!  I've been running PCLOS for about 6 years now, with no anti-virus protection of any kind, no firewall beyond the one in my router, and have had zero problems.   Most Windows users think we're fabricating when we say things like this, but it's the truth. 

pe1800: We, the blessed few, invite you jump into the pool - you'll love  it!....

[johnmart]

pe1800,

I will say that in the 6+ years that I've been using Linux exclusively, I've never ran antivirus software -- and have never experienced even a hint of a problem. There's a LOT to be said for the peace of mind knowing that, as a Linux user, you are no longer a target -- like you were when you ran Windows (the most insecure OS ever devised).

So ... my advice ... dig in! You won't regret it!

parnote

DITTO!!!  I've been running PCLOS for about 6 years now, with no anti-virus protection of any kind, no firewall beyond the one in my router, and have had zero problems.   Most Windows users think we're fabricating when we say things like this, but it's the truth. 

pe1800: We, the blessed few, invite you jump into the pool - you'll love  it!....

My experience too. 
But Linux is about choice.
If you want to install & maintain & run anti-malware, that is your choice.
Of course, if you want to walk down the street muttering to people who aren't there, that is your choice too.     

[Old-Polack]

pe1800,

I will say that in the 6+ years that I've been using Linux exclusively, I've never ran antivirus software -- and have never experienced even a hint of a problem. There's a LOT to be said for the peace of mind knowing that, as a Linux user, you are no longer a target -- like you were when you ran Windows (the most insecure OS ever devised).

So ... my advice ... dig in! You won't regret it!

parnote

DITTO!!!  I've been running PCLOS for about 6 years now, with no anti-virus protection of any kind, no firewall beyond the one in my router, and have had zero problems.   Most Windows users think we're fabricating when we say things like this, but it's the truth. 

pe1800: We, the blessed few, invite you jump into the pool - you'll love  it!....

I've got you both beat... 14 years, and never installed any anti virus. At one time, when I was hired to clean a bunch of infected AutoCad floppy disks for an engineering firm here, I didn't need an anti virus app, as the malware files were clearly visible, but non executable, in Linux, and were easy to delete from the command line.

[JALU]

As I understand it there are currently no viruses in the wild for linux at this time.

As I understand, there are currently no viruses in the wild for linux.
As I understand, there are no viruses in the wild for linux at this time.
As I understand it there are currently no viruses in the wild for linux at this time, none, nada, not any, nothing, that's now, at the present moment.
But but I risk repeating myself...     

[parnote]

As I understand it there are currently no viruses in the wild for linux at this time.

As I understand, there are currently no viruses in the wild for linux.
As I understand, there are no viruses in the wild for linux at this time.
As I understand it there are currently no viruses in the wild for linux at this time, none, nada, not any, nothing, that's now, at the present moment.
But but I risk repeating myself...     

... and as your punishment, logged in, you must write this on the board 10,000 times. 

[JALU]

 

[Yankee]

I know there are several layers of security in Linux, particularly
when dealing with websites that could try to hypothetically
steal a password file, add some code related to the kernel
to deliver passwords secretly or whatever.

Could someone with a flowchart program illustrate how this
basically works ?    Outside packets trying to get in, user account
security, internal system security prevention,  the brick-and-mortar
diagram of why those things don't get in.    Can't hurt cause the
security there is foolproof.

A regular academic flowchart to see what is what then, perhaps
put it in a dropbox link to view in a graphic viewer.    Just one page
should do.

THX

Yankee

[kjpetrie]

No flowchart software needed. It's something like:

  (Internet)
        |
        v
  (Firewall)
        |
        v
(Permissions)
        |
        v
 (Monitoring)
        |
        v
  (Logging)


The Linux kernel is, among other things, a router with advanced packet selection and routing capabilities. That's probably why it's the basis of most hardware routers - because you don't need a routing application on top. It's controlled by a program called iptables. This means nothing need be allowed into the machine that isn't expected and then it can be sent only to the correct interface within it or out to another machine. That means an invading packet needs to be a good mimic of something expected and most can't or won't be.

Secondly, when the packet has reached the intended socket to the intended program, it is limited in what it can do, even if it manages to break out of that program, by the program's user's permissions. It could still install something somewhere, but it probably couldn't make it executable, which stops it being run without the user doing something specific to run it (send it to an interpreter or set its execute permission) That makes installing malware difficult.

Thirdly, critical parts of the system are monitored for suspicious activity (by msec, for instance), changes in file inodes, changes in packet routing rules, changes in file permissions (you can set msec to change permissions back again to what it thinks they should be every hour - it used to be that way by default which caused huge consternation when people tried to change a particular file's permissions, only to find they'd changed back later in the day)!

Finally, most errors are logged (exploits rarely succeed at the first attempt) which gives the user a chance to spot activity before the damage is done. Again, msec can pop up notices about these things if they're particularly suspicious.

So, you see, many of the security functions which in Windows are provided by external programs are already there in Linux straight away. That's why extra software isn't really needed.

Of course, nothing is foolproof (or determined evil genius proof), but add in the fact no two Linux computers are likely to be exactly the same (500+ distributions) and it gets difficult to automate break ins beyond trying a few obvious tricks. (Open your SSH port and watch the failed log-in attempts fill up your logs as robots try to guess your user name and password - no don't, unless it's a throwaway machine you don't mind losing.)

So the answer to why doesn't Linux need security software is - it already has it built in.

[Yankee]

No flowchart software needed. It's something like:

  (Internet)
        |
        v
  (Firewall)
        |
        v
(Permissions)
        |
        v
 (Monitoring)
        |
        v
  (Logging)

Great verbal explanation.   Still looking for the flowchart, tho.

I used to do flowchart diagrams for corporate systems/admin/computer controls/
computer systems/project admin/project acceptance/etc/etc/etc.   

So when I see the great flowchart I'll grab it.   The ones I found searching tonight
were kinda sketchy.   If I could put your words into a great picture, that kind of thing.

A picture is worth a thousand words, you know.     A flowchart artist for Linux Security
wanted.

thanks for your response.

Yankee

[Tony]

Anyone can be HACKED !!!  

Bugger running an AV for Windows Viruses.     

Keep all your orifices tightly closed,...
The Art of Linux is dependant on using its simple sensible design.  

kjpetriesaid so well:

"...That means an invading packet needs to be a good mimic of something expected and most can't or won't be."

[johnmart]

So the main security threat to linux systems is this guy. 

[Tony]

Bit of Trivia johnmart: Queenslanders fell for that old scam more than any other place in Aus, and the World.  

[NoIBnds]

I say start with a fresh perspective.
As other posters said viruses inhabit the windows system.
Why carry that baggage over to your Linux experience?
1. Download an iso of your choice:
http://ftp.heanet.ie/pub/pclinuxos/pclinuxos/live-cd/
2. Burn a cd or dvd depending on iso size.
3. Set your bios to boot from optic drive.
4. Boot it & check it out.
Forget viruses - enjoy!
Having fun now?
Then do an HD install or dual boot or in a virtual environment.  
btw....Welcome

I use to be the Windows guy that everyone at work and friends came to when their Windows machine came to "fix" when it was full of spyware/viruses and such. This was about 10-15 yrs ago. I had one friend that was computer illiterate, that thought computers were good for 2 things looking up guns (competition shooter) and free porn. So I was "fixing" his computer every couple of months, no matter how I made it secure. So I started on a path to look for something secure. That led me to linux, but it also had to be easy and simple, gui based for novices. That lead me to PCLOS, and I put it on his machine and he has been using it for more then 10yrs, still looking at free porn without any anti-virus and in that time I have never had to clean or fix his machine, just keep it up to date. A couple of re-installs as that was required for code base changes, and when he bought new machines (but home and all files saved and moved), and no infections. If you are looking for something safe and easy to use, look no further.    

[Tony]

PCLOS has been a revelation as far as running a dozen programs to keep out nasties on a Windows box. That's my favourite feature, more time to actually partake in my interests of the Web. At least 60% more time.

Let us not forget, it is Windows that gets Viruses, not Linux. Linux needs no extras, just a knowledge of how to use it correctly, you'd really have to try, to leave yourself in a vulnerable situation, although it's possible.

You can run a Virus free Windows System, it's a matter of how much time you have to invest in a lot of study, at the right places, from the right people. I was late to Computing, (2000) was also lucky to have studied Elec/Comp Engineering when I had plenty of time on my hands, plus willing to devote at least 9 hours a day to study. I've never had a Virus, in over a decade of Windows use. I've seen plenty though.

The most careful Windows user can inadvertently just 'Mouse Over' an infected script on a Website page and simply pickup a Virus. That is why I don't have any time for Windows, and why most people shouldn't support M$. M$ create Vulnerabilities, ...

I could secure an M$ System from such an event happening with 'Third Party Software', but isn't that a ridiculous situation ?
Initially I certainly felt I was, 'Surfing in the Nude' when I crossed to using Linux, however that isn't the case when you get into the nuts and bolts of it's construction.

pe1800, as I've said before, "Microsoft is a huge Business, Linux is an Academic Endeavour."
More time to browse the Web securely is the choice of the wise.