Re: Virus Adware & Spyware protection

anahata wrote:

Andy Cap wrote:

What do people recommend are the basic requirements
along with any personal recommendations.

<snip>

There are AV packages for Linux (see clamav), but their main purpose is
to deal with Windows viruses in Linux mail servers that are used by
Windows clients.


I'd go with the CERT Unix/Linux checklist (
http://www.cert.org/tech_tips/usc20_full.html ) You should certainly have a
firewall configured both to restrict access and trap un-expected outgoing
traffic. If you're going to allow remote ssh access to the machine do think
about making it more difficualt for the worms to get in (different port,
port knocking, keypair only logins, no root login, AllowGroups). I'd
strongly recommend running a host based IDS (tripwire, L5 or similar).
You'll be so glad you did if you ever get root-kitted.

If you've got Windows clients using the Linux box as a server you definitely
want to be running AV on any services - mail and Samba are both easily done
with Clamav. Clamav is free, AND its quite good at detecting nasties. I'd
recommend using a different vendor's solution on the clients - in part
because its generally a good idea to have different AV products on
different tiers, but also because (AFAIK) Clamav doesn't do realtime
scanning on MSWin. You can virus scan web access via squid - I've not
looked at this recently though.

HTH

C.
.

Relevant Pages

  • Any Good IRC Server?
    ... I'd like to set up a Linux IRC server for my users to chat on both Linux and ... Windows clients. ... Could you please recommend me a best IRC server on Linux? ...
    (linux.redhat)
  • Any Good IRC Server?
    ... I'd like to set up a Linux IRC server for my users to chat on both Linux and ... Windows clients. ... Could you please recommend me a best IRC server on Linux? ...
    (comp.os.linux)
  • Re: Linux in Forth?
    ... >TOPIC: Linux in Forth? ... >> you recommend something different now? ... >the evaluation packages of commercial Forths ... >don't care if my code has that kind of portability. ...
    (comp.lang.forth)
  • AW: Linux for newbies
    ... I would, however, recommend moving on to another distribution as soon as you ... I personally like gentoo linux from www.gentoo.org a lot. ... PGP data encryption and XML Web Services security to simplify the management ...
    (Security-Basics)
  • Re: How to become a System Administrator?
    ... I would recommend becoming Solaris ... >> greatest number of UNIX and Linux installations respectively. ... > interview with the techie person, certifications don't mean all that ... network setup on my laptop. ...
    (comp.unix.admin)