I found it mentioned that antivirus exists for linux like clamtk and KlamAV while many inform that linux is secure I see that an approximate because I found who mentioned the installation of malware on server like spam distribution…
What is your experience with antivirus ?
Do you recommend a specific project as antivirus ?
What strategy you recommend to keep fedora safe ?
How to make a live monitoring for dangerous ins or outs traffics ?
There are indeed anti-virus tools available for Fedora, and the one I have used is clamav. In most usage Fedora and Linux based systems are safe from attack, however not impervious. Email programs are one example of potential attack methods that are commonly exploited with malware. In such a case if the malware was targeting Linux systems, then having a mail scanning anti-virus package installed would prove prudent. Having said that, I have never found an infected file on my system in any variant of Fedora I have ran ever since the beginning of Fedora.
In a point of view a user I’ve never use and Antivirus since I start using Fedora 14 and I don’t found any problem at all during this years, most user use antivirus to find out windows virus that come accros into his/her e-mail box
Talking about why linux is so secure?, development in linux the program or project flow for different phases from programming … packing … releasing … etc → too many eyes on it.
Talking about Hardering, you can have action to prevent:
Disk encryption
Keep always the system up to date
Disable un-neccesasry service like ftp, etc
Check Open Ports, don’t expose your box outside
Don’t disable SElinux
Don’t execute Script that you don’t know the procedence
if you use ssh change the default port for something else
I honestly wouldn’t know. I use my computers to program industrial automation mostly, that’s what puts food on the table and a roof over the head for me. My exposure to calmav anti-virus software on Fedora was merely for curiosity sake instead of need.
But if your Fedora/Linux computer is SSH-accessible and directly connected to the Internet, I’d recommend you to install and keep running denyhosts.
Deny Hosts will monitor your SSH port and blocks IPs that fail to login more than 3 times in row as they follow a brute force attack pattern. This is absolutely essential for any server.