security

[dbrown4200]

I'm real new to Linux and i would like to know just how secure my computer is. should i get any security features? are there any that someone can recommend?

[willie42]

As far as me speaking personally Linux is the safest OS. With a few common sense rules you are pretty safe.

1. dont give out your Private information on line.

2. If you are wireless then make sure you have a strong Wep

3. Any commonsense rules you would use anywhere else.

you might want to scan emails for viruses not to keep you from getting infected but to keep from infecting any of your Friends/Family using Windows.

[jesica]

well it depens

And mostly yes, that would be ideal

what do you use your system for, and where do you use, what system do you use, with this I mean what internet, wireless, wire

[willie42]

I used Wired and I have a cable modem. I use Linux Mint 9 Gnome. I use Linux/Unix at home and work both. What makes Windows Dangerous is the excutable files.

[Spalding]

This is a very interesting question. Keeping up with updates is probably the #1 thing to do. I did hear about some flaw in a new 64 bit Linux system that was pretty bad, so I guess there is always that potential.

There is an Avast! Antivirus for Linux that I did install on my last system but I haven't done on Mint since it just doesn't seem necessary. I'm sure there must be a good article out there somewhere on this whole subject of Linux security.

[jesica]

yes install all the updates,

if you dont have wireless at home that sort out a problem aswell

next you would like to install a good firewall

firewallbuilder is very good that I like

maybe get a 4 gig usb, download slax, it is very fast and get the firewallbuilder module their, test it and see how it works, then install in later on Mint

their is no real need to get a virus program,

you can also switch over to the LMDE edition, it is more stable, before you install it make sure you read how to partition your drive

here is a nice site for reading on linux security

[Elisa]

...
2. If you are wireless then make sure you have a strong Wep
...

kiddin' right ?
Even 'WPA 2' has been cracked

WEP - forget wep, wpa 3 is still not on, therefore use 'wpa 2' but kinda frequently do change keys, passwords etc.

[willie42]

...
2. If you are wireless then make sure you have a strong Wep
...

kiddin' right ?
Even 'WPA 2' has been cracked

WEP - forget wep, wpa 3 is still not on, therefore use 'wpa 2' but kinda frequently do change keys, passwords etc.

hmmmm learn something new everyday. I dont use wireless so I guess I need to go back to reading

[vincent]

Read this first: http://forums.linuxmint.com/viewtopic.php?f=90&t=31723

[ronandiver]

Anyone got thoughts on Clamav ?

As it's in the software manager,i run it perioically anyway........tho' i'm quite disappointed i still haven't managed to pick up a virus....used to get lots of them with windows !!

[vincent]

If you want to catch a few viruses deliberately (and in a safe manner), install the "clamav-testfiles" package, e.g.

Code: Select all

sudo apt-get install clamav-testfiles

It's a package that contains some "test" viruses, i.e. not real ones, but contains code that should trigger any half-decent AV program out there. When you're satisfied, you can just remove the package.

[ronandiver]

Vincent

Did what you said & installed the test viruses.....still came back as no viruses found...is this correct ?

[vincent]

Uhhh...no. Try the following terminal commands:

Code: Select all

sudo apt-get install clamav-testfiles

(Installs the "clamav-testfiles" package)

Code: Select all

sudo freshclam

(Updates ClamAV's virus definitions)

Code: Select all

clamscan -r /usr/share/clamav-testfiles/

(Recursively scans the /usr/share/clamav-testfiles directory, i.e. scan the folder and everything contained inside)

The output of the above command should look like this:

Code: Select all

vincent@vincent-laptop:~$ clamscan -r /usr/share/clamav-testfiles/
/usr/share/clamav-testfiles/clam.arj: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.mail: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-pespin.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.zip: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-upack.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.tar.gz: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.bin-le.cpio: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.cab: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-v3.rar: OK
/usr/share/clamav-testfiles/clam.ppt: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-petite.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.tnef: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.newc.cpio: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.pdf: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.bz2.zip: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.ea06.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-mew.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-yc.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-aspack.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.exe.szdd: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.chm: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-wwpack.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.impl.zip: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam_ISmsi_ext.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.exe.binhex: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam_ISmsi_int.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam_cache_emax.tgz: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam_IScab_int.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.exe.bz2: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.d64.zip: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.exe.rtf: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-v2.rar: OK
/usr/share/clamav-testfiles/clam.exe.html: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.7z: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.odc.cpio: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.ole.doc: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.exe.mbox.base64: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.bin-be.cpio: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-nsis.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam_IScab_ext.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-fsg.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.exe.mbox.uu: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam-upx.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.sis: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.ea05.exe: ClamAV-Test-File FOUND
/usr/share/clamav-testfiles/clam.exe: ClamAV-Test-File FOUND

----------- SCAN SUMMARY -----------
Known viruses: 837446
Engine version: 0.96.1
Scanned directories: 1
Scanned files: 46
Infected files: 44
Data scanned: 12.47 MB
Data read: 6.21 MB (ratio 2.01:1)
Time: 7.330 sec (0 m 7 s)

Once you're done, remove the clamav-testfiles package, i.e.

Code: Select all

sudo apt-get purge clamav-testfiles

[ronandiver]

Vincent

Thanks...worked a treat....however when i ran the testfiles scan through my own installed software manager Clamav,no viruses were found.

Why would this be ?

And sorry to be such a pain........in update manager.levels 1 to 3 are recommended.....what are levels 4 & 5 for,and why would anyone want to install them if they can harm the system ??

[vincent]

Unless you install the "clamtk" package, you'll notice that ClamAV has no GUI interface...so I wonder, how did you go about scanning the testfiles? Keep in mind that ClamAV is an on-demand virus scanner, meaning that you have to specifically tell it to scan something before it'll scan it; it was originally designed for scanning mail servers anyways, not as a traditional desktop AV (for the most part, bloatware) sold on the market nowadays. If you did everything properly, you would've been able to successfully detect the testfiles viruses on your own...if not, then it's likely user error. Outline the exact process you went by, in your attempt to scan for viruses, and I'll tell you what you may have done wrong.

mintUpdate's lvl-rating system is unique, in that no other program labels upstream updates as "unsafe" or "dangerous". apt-get, Synaptic, Ubuntu's update-manager will not give you any warnings of the sort. In a nutshell, lvl 4 and lvl 5 updates tend to be updates to lower-level components of your system, e.g. hal, the X server, or the Linux kernel itself. Updates to low-level components are inherently risky, but do realise that these updates are released from Ubuntu themselves, and for the most part, address various security flaws and release-critical bugs that are found from time to time in various components of the system. Clem prioritizes stability over anything else, which is why mintUpdate discourages people from applying these updates (even though, as stated above, many are security patches). If you want to make an informed decision, keep up-to-date with Ubuntu's security notices (http://www.ubuntu.com/usn) and update the packages you want as you see fit; updates are always tested, but Ubuntu has been known to release updates causing regressions. Most of the time though, the updates are safe.

And yes, I realise that the above information I've given you sounds a bit contradictory. Does stability and security have to be mutually exclusive, you may be wondering? They can, at times; thus mintUpdate chooses to err on the safe side. I disagree with this, but I like living on the cutting-edge and I know how to fix things if they break; many Mint users may not be able to say the same.

[ronandiver]

Vincent

Following your instructions,everything happened as you said it would.
What i tried after this was installing the test files and then running a full recursive scan through my own ClamTK programme.The scan ran ok but picked up no viruses.

I did this on terminal:

1.CODE: SELECT ALL
sudo apt-get install clamav-testfiles

(Installs the "clamav-testfiles" package)

2.CODE: SELECT ALL
sudo freshclam

(Updates ClamAV's virus definitions)

Then i ran my own Clamtk package.....why no viruses ??
Would it just be easier to run a recursive scan through the terminal ?
What instruction would i give the terminal ?

On the updates...i'm a coward...i'll err on the side of caution !

BTW...where in the world r u from ,Vincent ?

Thanks

Ronan

[vincent]

If you want to use Clamtk, then make sure you select the right directory, and ensure that you're also using a recursive scan in /usr/share/clamav-testfiles. If you did that, I'm not sure what you did wrong...you could always just work through the terminal though. "clamscan -r /path/to/directory" is the command to scan a directory recursively.

[ronandiver]

Vincent

I'll leave you alone now....thanks for all your help !!


Ronan