JAN
24
2006

KlamAV: Bringing The Power of ClamAV To The KDE Desktop

Linux and BSD forum Linux Gangster has published a guide to Bringing The Power of ClamAV To The KDE Desktop explaining how you can use KlamAV to keep viruses off your system. "While it's true that very few of the viruses out there can do much damage to a Linux system... you certainly don't want to run the risk of passing them on to your Windows-using friends and family."

Comments

http://www.free-av.com/antivirus/allinonen.html

http://free-av.com/personal/en/unix/antivir-workstation-pers.tar.gz

Linux / FreeBSD / Solaris - AntiVir PersonalEdition Classic

The private, non-commercial use of AntiVir Workstation for Linux / FreeBSD / Solaris is free

A registration of the AntiVir PersonalEdition Calssic Workstation for Linux is not necessary any more.
The licence file is now included in the download tar file.

NEW!
The scope of services of the cost-free AntiVir PersonalEdition Classic for Linux - FreeBSD/Solaris was adapted to the cost-free AntiVir PersonalEdition Classic Windows by the recent release change:

new graphic user interface (GUI)
no registration is necessary
the functions Mailgate and Milter can be ordered as amenities by the H+BEDV Datentechnik GmbH

Name Program-Release Date File size
Workstation 2.1.5 12-06-2005 17,968 MB

I find free av quite good to get rid of windows viruses from other partitions.


By Asif Ali Rizwaan at Tue, 2006/01/24 - 6:00am

I'm sure it's an alright product but this is about clamav and klamav. Besides I can use clam/klam in any fashion I want, ie, personal, business, one user or 100 users and it's still free. Plus I don't have to worry about registering under any circumstances. And the bonus is GPL.


By klaxon at Tue, 2006/01/24 - 6:00am

GPL is a bonus!?

OMGWTFBBQ!


By simmel at Tue, 2006/01/24 - 6:00am

GPL is a huge bonus.


By Yes at Tue, 2006/01/24 - 6:00am

It might not cost anything but it aint Free!


By Vlad Blanton at Tue, 2006/01/24 - 6:00am

Trolls even here...

Some idiots to try to sabotage anti-virus tools. Which is almost exclusively a window problem.


By Steve at Wed, 2006/01/25 - 6:00am

Who is a troll, how is he sabotaging anti-virus tools and what has the last sentence to do with anything?

Huh?


By T. Roll at Wed, 2006/01/25 - 6:00am

It is indeed free, but on a differant note, its not that good I used it a few years back and I got infected with a few viruses while using it as there Anti-Virus updates do not include some of the more newer viruses. Perhaps it does offer better protection if you pay for it but I'm afraid I don't know on that score.

Your far better off with something like Clam if you have Linux or an Apple Mac and don't want to pay through the nose for anti-virus software.

I have never used and never will use Nortons or McAfee simply because I don't agree with there making you pay for an update every year or so to stay protected.

I have also heard the number one voted best anti-virus of 2006-2007 is NOD 32 from http://www.eset.co.uk


By enigma at Thu, 2007/06/21 - 5:00am

Since when do we tolerate such blatant advertising of competing products on Dot? Non-"libre" even?!?

See www.gnu.org for definition of free software


By another nickname at Wed, 2006/01/25 - 6:00am

klik://klamav ...

....is the fastest way to give this nifty little program a spin.... (and this klik package recipe is one of the most popular ones in our repository).

(The klamav klik recipe includes clamav-0.88; it uses Mandrake-RPMs fetched from ftp://ftp.uni-bayreuth.de/pub/linux/Mandrakelinux/devel/cooker/i586/medi... and converts them "on the fly", on the klik client side, to form a platform independent single *.cmg file from the ingredient RPMS. It is known to work well on SUSE-9.3, SUSE-10.0, $Debian, $Knoppix, Kanotix and $Ubuntu. If you are new to klik, see

--> http://klik.atekon.de/wiki/index.php/User%27s_FAQ <--

for an initial kickoff about how to install the 20 kByte klik client)


By Kurt Pfeifle at Tue, 2006/01/24 - 6:00am

This is rather funny timing, since just a couple days ago I installed KlamAV to scan my windows partition! KlamAV is pretty nice, but I honestly don't think antivirus is very important (I don't even have one in windows, and uninstalled McAfee from my laptop the day I got it even before I installed Linux over it).

I'm kinda wondering, has anyone ever found a virus on linux with ClamAV (or any other linux antivirus)? Downloading some viruses just for it to find doesn't count! I wanna know if anyone ever found a virus on their linux machine with clamav that they didn't already know about (windows partitions don't count)?


By Corbin at Tue, 2006/01/24 - 6:00am

I did found a virus on my box 1 year ago..but it was a stupid virus, i removed it manually, but i did use antivirus to see what kind of virus it was...
I forgot his name, and i got infected cuz of stupid habits..i used the root account a lot, and kept running all binary files i found...forgot what i was looking for. Now i don't use the root that much :)

I still have BitDefender for linux installed on my box for scanning windows partitions from time to time.


By Quamis at Tue, 2006/01/24 - 6:00am

>I wanna know if anyone ever found a virus on their linux machine

I have found several, in my in-box. They were much more numerous before ISPs and mail providers started to spam/virus filter. And my personal spam filter catches most of them now. As a rule I try not to forward them to my windows using contacts.

But I did not find them by using any antivirus software, although they probably would have found them had I bothered to run any. Using a combination of common sense and comparing suspicious mails to the recent warnings of the latest 'popular' virus is often more than adequate.

Mails containing files like some_famous_female_nude.mpeg.exe are usually a dead giveaway:-) Other 'funny' files are archives(which fail in Ark) and other non executables containing stuff like "This program must be run under Win32" or "This program cannot be run in DOS mode". Easily seen near the start of the file if opened in KWrite/Kate.


By Morty at Tue, 2006/01/24 - 6:00am

AFAIK scanning for virusses on a Linux computer is only neccesary if you use linux in a windows-network and want to avoid infecting the Windows machines by accident, of using the linux-box as SMB-server and want to make sure that the files that the Windows clients put on the box don't contain any virusses.

I recieve a lot of virusses, and don't really care about them :)
When I was using a dual boot with WindowsME, I got in trouble because of this.
I saved some files on a FAT-partition, one containing a virus..
When booting in Windows, I clicked on the file to open it and got (of course :o) infected.

So, if you are communicating a lot with Windows computers, it may be a good idea to make sure that you don't pass virusses by accident to the Windows-users.
But on the other hand, running Windows without anti virus protection is not a good idea, so any virus you might pass will be detected anyway ;)


By ac at Wed, 2006/01/25 - 6:00am

I just use clamav with kmail. I like to see how many are tagged as phishing scams. So far over the past 4 months I get at least 3 a week.... all to date has been paypal.


By klaxon at Wed, 2006/01/25 - 6:00am

Well, you can recognise those mails without a virus scanner as wel :)
I get scam mails from eBay, several English banks, PayPal....


By ac at Wed, 2006/01/25 - 6:00am

I don't have any active scanning AV software in windows because I only ever boot into windows to play City of Villains (doesn't work in Wine yet). Though I do run an application level firewall so if I was infected by most of the viruses that are spread around these days I would notice 'ijsfoe98444.jpg.exe' trying to access the internet (or open), since I don't even let most programs that come with windows access the internet (like windows media player, IE, and the smb stuff in windows).


By Corbin at Thu, 2006/01/26 - 6:00am

Hi guys!

I'm planning to setup a Samba file server at work as a replacement for the current w2k server (we use windows only clients). I already have an option in using Sophos to keep the SMB shares clean, but after reading the previous posts, im not sure
what i should use.
I have a choice of Sophos, ClamAV or BitDefender. Currently i have Sophos for windows installed on each of the workstations, and it has proven to be very stable and picks up everything i throw at it (i test it with random viruses once a week).

My question is, what do you guys use to protect your files on a SMB share? Which one is the best to use (meaning which one has the highest detection rate)?


By tika at Tue, 2006/01/31 - 6:00am

Do you know which risks one might be curring by associating .exe files with wine and accidentally clicking on an infected one? Are others Windows .exe files infected? If the virus stays in memory will its execution be interrupted by closing wine? etc.


By Mario at Wed, 2006/01/25 - 6:00am

Some people tried to run several virusses with wine.
Reports about that can be found on the internet.
All of them concluded that you can run some virusses with wine, but because wine is not Windows, all virusses could not do any harm. They expected an environment that is not present onder Linux, nor in Wine...


By ac at Wed, 2006/01/25 - 6:00am

Oh damn... That's exactly what happened to me. I was once trying to open an attachment with wine. It came as a self-unpackaging exe file. I got the file inside, but did not notice that the senders zip-tool (whatever) had put some bonus-malware to it. After the unpacking window was gone, the virus stayed in another process. You could easily see that wine was still running using ps... but if you don't suspect it...

After finishing work several hours later I accidentally stumbled across a file in my home-dir named "Britney ... whatever.mpeg.exe" ... WTF?
This was at work in the office! I was getting vewy nervous as I had already forgotten the wine-attachment. Logging in on a different machine using nmap I found my machine infected with several open ports... O.k. unplug the network cable and try to find that rootkit... As ps is useless here I did not even try to use it ;-)

Some hours later I gave up and did a simple reboot... and it was gone... Only than I realized that it was no rootkit and the windows-exe came back to my mind and I quickly discovered that it is indeed possible to get infected with windows-virri using wine ...only if you are stupid enough...


By thomas at Wed, 2006/01/25 - 6:00am

serveral open ports?
you don't use a firewall??


By ac at Wed, 2006/01/25 - 6:00am

Unless you use an application level firewall or have IPTables defaulting to dropping all outgoing connections a firewall won't help you, and on a desktop machine defaulting to dropping all outgoing connections will just waste your time.


By Corbin at Thu, 2006/01/26 - 6:00am

Hi guys!

I'm planning to setup a Samba file server at work as a replacement for the current w2k server (we use windows only clients). I already have an option in using Sophos to keep the SMB shares clean, but after reading the previous posts, im not sure
what i should use.
I have a choice of Sophos, ClamAV or BitDefender. Currently i have Sophos for windows installed on each of the workstations, and it has proven to be very stable and picks up everything i throw at it (i test it with random viruses once a week).

My question is, what do you guys use to protect your files on a SMB share? Which one is the best to use (meaning which one has the highest detection rate in a Linux enviroment)?


By tika at Tue, 2006/01/31 - 6:00am