Best anti-virus anti-malware security software for Linux and privacy?

Discussion in 'Linux' started by roga, Sep 9, 2015.

  1. roga

    roga MDL Member

    Aug 12, 2015
    144
    73
    10
    Portable storage devices like thumb drives and external hard drives all use USB. You cannot transfer data to a computer locally without using USB in some way. Most wireless keyboards and mice use USB too. My computer has no DVD drive or other fancies like eSata. I think many people are in my situation. It is not feasible to turn off USB. I wait for a new more secure USB to come along, could never come.
     
  2. Joe C

    Joe C MDL Guru

    Jan 12, 2012
    3,522
    2,093
    120
    #22 Joe C, Sep 11, 2015
    Last edited: Sep 11, 2015
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. roga

    roga MDL Member

    Aug 12, 2015
    144
    73
    10
    You realize Bitdefender for Unices is on demand scanner only? Real time monitoring is required for prime protection.
     
  4. Joe C

    Joe C MDL Guru

    Jan 12, 2012
    3,522
    2,093
    120

    But...but....but you'll get infected from your usb drive!!!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. roga

    roga MDL Member

    Aug 12, 2015
    144
    73
    10
    Yes that why I say "It does not solve the problem"
     
  6. roga

    roga MDL Member

    Aug 12, 2015
    144
    73
    10
    Sharing what I learnt. The best protection from keyloggers and targeted malware is to enable HIPS protection from Apparmor. I installed it and enabled all the protection profiles, not sure if that is wise, we shall see.
     
  7. Mutagen

    Mutagen MDL Addicted

    Feb 18, 2013
    580
    123
    30
    Anyone else have the urge to sing "For What It's Worth" by Buffalo Springfield?
     
  8. roga

    roga MDL Member

    Aug 12, 2015
    144
    73
    10
    Does anyone know how to install GrSecurity easily? It offers the best protection for Linux, it stops any funny business happening in software and background processes. It also stop BadUSB attacks, by disabling USB by default and recognizing USB device only if it is connected at boot time. At boot time, the BadUSB cannot infect when plugged in. I tried to install GrSecurity but the instructions are too hard. It is easy to install on Arch, but Arch itself is too hard to install with the manual text installation steps.
     
  9. ancestor(v)

    ancestor(v) Admin
    Staff Member

    Jun 26, 2007
    2,971
    6,044
    90
    Even big companies with high level security specialists can have security breaches. One logic questions to ask yourself is: cui bono? To whose benefit? Who would go to such lenghts just to gain access to random and average user data?

    I agree that there are some valid security concerns which are very well addressed in this thread.

    Don't get me wrong but the things you mentioned somehow sound a bit far-fetched.

    In the end, you can't. You have to disassemble everything to see if there is truly no security breach. Unless you can't reverse engineer everything you have to trust and rely on other people. Maybe your friends are spying on you? How can you prove they don't write down every conversation afterwards and trying to gather information against you?

    What if the manufacturer of your motherboard has malicious code implemented? You shouldn't trust USB sticks from non-reliable sources etc. You sure know these rules...

    Again: cui bono? Why should this happen to you? Is your system that interesting? Maybe as a company with secret research data or as a military base, you should worry about those scenarios - but estimating you're one of many typical home computer users, who would target your system with more elaborate methods such as firmware injection and so on? Linux is safer than Windows, which is because of it's construction, the privilege management and so on. But of course it's not 100% secure. Nothing is. For me it looks like you're trying to get 100% security. You can't and you never will.
    Will your perfect security software find every hole and breach in all cases? No. There is no such thing as "perfect".
    Is there a perfect anti-virus program which detects everything malicious? No.
    Can you guarantee the shop where you buy your equipment didn't sell you prepared appliances which do "hardware spying"? No.
    Can you be certain your communications provider doesn't do something to your data traffic? No.

    There are many things that can be done about security and it is right to think about all this, but you can't completely exclude every single scenario. With millions of computers around, someone sometime will find a method to breach virtual walls which were thought to be unbreakable until then. You have to take care about the most likely scenarios but keep in mind there is always some residual risk which you will never ever get rid of unless you start using a typewriter in a far away cave in a forest where no one else finds you.

    In your case, the only safe method would be to discard every single piece of hardware and start over from scratch. Completely new equipment that surely hasn't been tampered with. Maybe in the shop or factory? Who knows...
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...