I am planning to increase security of my system by installing antiviruseson fedora silverblue however I am unsure about the best antivirus because most of them need root access.
I already have clamav . what other steps can i take to make it more secure. Is there any step I can take to make my system more secure like installing open source antiviruses like clam av , chrootkit, and fedora secureblue
Have you checked this thread for opinions and options - Does Fedora user needs an antivirus? ?
You should be fine without any anti-virus tools. Thereās a chance of malware on Flathub, but thereās no confirmed cases of it happening (yet), and Flatpaks are usually pretty well sandboxed. Just use common sense. If you want, you could also restrict Flatpak permissions with Flatseal, if you know what youāre doing.
Hi, thank you for the information. I completely agree thst with selinux on fedora silverblue antivirus is not needed however i have bit of ocd hence to be onnsafe side i would love to install linux malware detect, rkhunter chkrootkit and clamtk. Somrone please help me indtall these.
I did not find info regarding the same in docs for all the above
Hi,
I disagree with what has been said before, even if selinux is not impacted, you might transmit dangerous things to other systems.
So, I would recommend to scan your files before moving/transmitting them.
Clamscan (ClamAV) is free on Linux and very easy to use.
If you are a professional, your organization/company should be able to provide a decent protection.
Many āenterprise gradeā antivirus propose Linux versions these days.
I have installed linux malware detect using the below commands on terminal in fedora silverblue.i hope that is fine
aleeshsuresheyyani@fedora:~$ wget http://www.rfxn.com/downloads/maldetect-current.tar.gz
maldetect-current.ta 100% [=============================>] 1.57M 1.25MB/s
[Files: 1 Bytes: 1.57M [863.13]
saleeshsuresheyyani@fedora:~$ git clone GitHub - rfxn/linux-malware-detect: Linux Malware Detection (LMD)
Cloning into ālinux-malware-detectāā¦
remote: Enumerating objects: 2253, done.
remote: Counting objects: 100% (226/226), done.
remote: Compressing objects: 100% (89/89), done.
remote: Total 2253 (delta 161), reused 171 (delta 137), pack-reused 2027 (from 1)
Receiving objects: 100% (2253/2253), 1.87 MiB | 1.62 MiB/s, done.
Resolving deltas: 100% (1647/1647), done.
saleeshsuresheyyani@fedora:~$ cd linux-malware-detect
sudo ./install.sh
[sudo] password for saleeshsuresheyyani:
cp: cannot create regular file ā/usr/lib/systemd/system/maldet.serviceā: Read-only file system
Failed to enable unit: Unit file maldet.service does not exist.
Linux Malware Detect v1.6.5
(C) 2002-2023, R-fx Networks proj@r-fx.org
(C) 2023, Ryan MacDonald ryan@r-fx.org
This program may be freely redistributed under the terms of the GNU GPL
installation completed to /usr/local/maldetect
config file: /usr/local/maldetect/conf.maldet
exec file: /usr/local/maldetect/maldet
exec link: /usr/local/sbin/maldet
exec link: /usr/local/sbin/lmd
cron.daily: /etc/cron.daily/maldet
maldet(9161): {sigup} performing signature update checkā¦
maldet(9161): {sigup} could not determine signature version
maldet(9161): {sigup} signature files missing or corrupted, forcing updateā¦
maldet(9161): {sigup} new signature set 20241001551621 available
maldet(9161): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
maldet(9161): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
maldet(9161): {sigup} verified md5sum of maldet-sigpack.tgz
maldet(9161): {sigup} unpacked and installed maldet-sigpack.tgz
maldet(9161): {sigup} verified md5sum of maldet-clean.tgz
maldet(9161): {sigup} unpacked and installed maldet-clean.tgz
maldet(9161): {sigup} signature set update completed
below is the installation method used
maldet(9161): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER)
saleeshsuresheyyani@fedora:~/linux-malware-detect$ tar -xvf maldetect-current.tar.gz
tar: maldetect-current.tar.gz: Cannot open: No such file or directory
tar: Error is not recoverable: exiting now
saleeshsuresheyyani@fedora:~/linux-malware-detect$ cd maldetect-*
bash: cd: maldetect-*: No such file or directory
saleeshsuresheyyani@fedora:~/linux-malware-detect$ sudo ./install.sh
cp: cannot create regular file ā/usr/lib/systemd/system/maldet.serviceā: Read-only file system
Failed to enable unit: Unit file maldet.service does not exist.
Linux Malware Detect v1.6.5
(C) 2002-2023, R-fx Networks proj@r-fx.org
(C) 2023, Ryan MacDonald ryan@r-fx.org
This program may be freely redistributed under the terms of the GNU GPL
installation completed to /usr/local/maldetect
config file: /usr/local/maldetect/conf.maldet
exec file: /usr/local/maldetect/maldet
exec link: /usr/local/sbin/maldet
exec link: /usr/local/sbin/lmd
cron.daily: /etc/cron.daily/maldet
imported config options from /usr/local/maldetect.last/conf.maldet
maldet(9732): {sigup} performing signature update checkā¦
maldet(9732): {sigup} could not determine signature version
maldet(9732): {sigup} signature files missing or corrupted, forcing updateā¦
maldet(9732): {sigup} new signature set 20241001551621 available
maldet(9732): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
maldet(9732): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
maldet(9732): {sigup} verified md5sum of maldet-sigpack.tgz
maldet(9732): {sigup} unpacked and installed maldet-sigpack.tgz
maldet(9732): {sigup} verified md5sum of maldet-clean.tgz
maldet(9732): {sigup} unpacked and installed maldet-clean.tgz
maldet(9732): {sigup} signature set update completed
maldet(9732): {sigup} 17638 signatures (14801 MD5 | 2054 HEX | 783 YARA | 0 USER)
saleeshsuresheyyani@fedora:~/linux-malware-detect$ toolbox create
toolbox enter
sudo dnf install git
git clone GitHub - rfxn/linux-malware-detect: Linux Malware Detection (LMD)
cd linux-malware-detect
sudo ./install.sh
Image required to create toolbox container.
Download registry.fedoraproject.org/fedora-toolbox:40 ( ā¦ MB)? [y/N]: y
Created container: fedora-toolbox-40
Enter with: toolbox enter
Welcome to the Toolbox; a container where you can install and run
all your tools.
- Use DNF in the usual manner to install command line tools.
- To create a new tools container, run ātoolbox createā.
For more information, see the documentation.
ā¬¢[saleeshsuresheyyani@toolbox linux-malware-detect]$ sudo /usr/local/sbin/maldet -a /path/to/scan
sudo: /usr/local/sbin/maldet: command not found
ā¬¢[saleeshsuresheyyani@toolbox linux-malware-detect]$
aleeshsuresheyyani@fedora:~$ wget http://www.rfxn.com/downloads/maldetect-current.tar.gz
maldetect-current.ta 100% [=============================>] 1.57M 1.25MB/s
[Files: 1 Bytes: 1.57M [863.13]
saleeshsuresheyyani@fedora:~$ git clone GitHub - rfxn/linux-malware-detect: Linux Malware Detection (LMD)
Cloning into ālinux-malware-detectāā¦
remote: Enumerating objects: 2253, done.
remote: Counting objects: 100% (226/226), done.
remote: Compressing objects: 100% (89/89), done.
remote: Total 2253 (delta 161), reused 171 (delta 137), pack-reused 2027 (from 1)
Receiving objects: 100% (2253/2253), 1.87 MiB | 1.62 MiB/s, done.
Resolving deltas: 100% (1647/1647), done.
saleeshsuresheyyani@fedora:~$ cd linux-malware-detect
sudo ./install.sh
[sudo] password for saleeshsuresheyyani:
cp: cannot create regular file ā/usr/lib/systemd/system/maldet.serviceā: Read-only file system
Failed to enable unit: Unit file maldet.service does not exist.
Linux Malware Detect v1.6.5
(C) 2002-2023, R-fx Networks proj@r-fx.org
(C) 2023, Ryan MacDonald ryan@r-fx.org
This program may be freely redistributed under the terms of the GNU GPL
installation completed to /usr/local/maldetect
config file: /usr/local/maldetect/conf.maldet
exec file: /usr/local/maldetect/maldet
exec link: /usr/local/sbin/maldet
exec link: /usr/local/sbin/lmd
cron.daily: /etc/cron.daily/maldet
maldet(9161): {sigup} performing signature update checkā¦
maldet(9161): {sigup} could not determine signature version
maldet(9161): {sigup} signature files missing or corrupted, forcing updateā¦
maldet(9161): {sigup} new signature set 20241001551621 available
maldet(9161): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-sigpack.tgz
maldet(9161): {sigup} downloading https://cdn.rfxn.com/downloads/maldet-cleanv2.tgz
maldet(9161): {sigup} verified md5sum of maldet-sigpack.tgz
maldet(9161): {sigup} unpacked and installed maldet-sigpack.tgz
maldet(9161): {sigup} verified md5sum of maldet-clean.tgz
maldet(9161): {sigup} unpacked and installed maldet-clean.tgz
maldet(9161): {sigup} signature set update completed
please let me know if you find any chance of vulnerabilites in the above installation method
Hi Nicky , how about i settle with lynis as my final antivirus so that i do not transmit infectedf files to other system. I need to make sure that i do not transmit infected files to other systems. that is my only motto
Hi Saleesh,
If I remember well, lynis is not an antivirus, it checks all settings on your system and tells you what needs to be fixed. It is an auditing system.
May be I must dive back to it and check
could u help me lock root on my silverblue as a security measure as commercial antivirused need root access which if used by antivirus can cause issues.
Also i think kaspersky has free malware detectiom tool for home users
Yes u are right when i chevked i can see lynis is sn auditing tool
kaspsersky has free malware scannkng tools for linux users. but it needs exceute permission
Two things:
- Root is locked on Fedora by default iirc
- Kaspersky recently got the boot from the US Federal government. (this one might not affect you)
I am confused whether to use it or not . I stay in India and it is widely used here. the US government has banned Kaspersky .does this mean the tool is not safe to use.
I cant use windows because i need to install many programs like sql python java and windows 11 even on a 16gb ram gets stuck when there are too many programs
If youāre in India, then that part doesnāt apply to you. Personally, I doubt thereās anything seriously wrong with Kaspersky.
Just make sure you know what youāre running and use your head and youāll be fine.
sure