What's with these regular "I was hacked"? threads?
LQ Suggestions & FeedbackDo you have a suggestion for this site or an idea that will make the site better? This forum is for you.
PLEASE READ THIS FORUM - Information and status updates will also be posted here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
So there's no need for antivirus software. I'm new to Linux. I read that no such protection was necessary, that viral attacks on Linux were rare. I haven't looked into any kind of viral shield so far, and I'd prefer not to have to do this. Is there any kind of safeguard I should be taking. I'd prefer to spend my time learning more about Linux than worrying about hackers. Thanks for the post. I suspect you're right on.
I think the consensus is that you need antivirus if you have Windows machines on your local network or if you regularly share files with Windows users. Viruses written for Windows don't directly affect Linux boxes but they can still be stored and passed on.
If you are running a server, you need a good firewall.
Regarding back doors: there used a few years ago (pre-pandemic) to be a TV ad for some kind of Windows software that allowed you to remotely get files off one machine while working on another. This was presented as a useful thing to be able to do, for example when giving a presentation away from the office. I remember thinking at the time that it sounded like a very dangerous back door.
I remember the "X Files" in the 90's, though I wasn't a fan, and trying to convince a former colleague that it wasn't based on any facts or leaked files...
This is the tragedy of the 21st century, it seems to be getting worse, not better.
Quote:
Originally Posted by Tuka2
So there's no need for antivirus software. I'm new to Linux. I read that no such protection was necessary, that viral attacks on Linux were rare. I haven't looked into any kind of viral shield so far, and I'd prefer not to have to do this. Is there any kind of safeguard I should be taking. I'd prefer to spend my time learning more about Linux than worrying about hackers. Thanks for the post. I suspect you're right on.
Please don't put out simple statements & ask us to confirm them.
There's no simple answer.
What you are asking is best answered proactively, forming your own opinion with web searches instead of asking for other people's opinions.
Also, have you read ALL of this thread?
I do not run protection on laptops. I reload laptops regularly and it would seem wasted effort.
In general: I run antivirus and rootkit detection on servers to protect the services and so that I do NOT need to reload servers! (Servers also get backed up, I only back up settings and data for critical applications on laptops.) Specific server cases may differ form those general rules, depending upon risk factors and analysis.
I have DECADES of experience in the business doing such risk analysis. When I started out there was far less threat, but we still took a more conservative approach because so much less was KNOWN about the threats! We NOW know how appropriate those precautions were!
90% of the encryption malware, no matter how it is spread, attacks storage. If remote storage is not mounted in a way that malware can use to encrypt the data, you avoid some of the likely attack vectors and limit likely damage of a successful exploit to single nodes rather than server data.
It is important to consider HOW you operate as part of your risk assessment, and make such changes as to support your operation while reducing the risk. That is AT LEAST as important as any anti-malware software.
It is also one of the most important things to teach a rookie! New users have no experience basis to decide "this means I have a hardware failure" or "that means that application is acting bad and must be replaced". They see something going wrong that did not go wrong yesterday and H"AVE to jump to a conclusion to move forward. If they are lucky they then bring the symptoms to someplace where they can get good advice, diagnostic steps, revisions of their original conclusion, and ways to get to the right answers. LQ is at its best when it is that place!
It is not at its best when the only answer they get is "you should know better". If they knew better they would not come to us.
Perhaps it is a script that is being run. I noticed that with many old phpbb style forum
sites where accounts write strange things, then other accounts "reply" to the strange
thing (usually via a hyperlink to get people to click on it) - these are evidently written
by some script "tag-teaming". But a simpler explanation may perhaps be some strange setting
that induces people to assume they "were hacked"? Hard to say, IMO. May require more
specific examples to be shown.
> This is the tragedy of the 21st century, it seems to be getting worse, not better.
I think this is a general trend. Other sites take away traffic ... probably StackOverflow,
facebook, discord/discourse/whatsApp and so forth. Anyone remembers the old doom9 forum
back in the days? Now it's more deserted compared to, say 15 years ago ... damn nostalgia
kicking in here. I am old as Grandpa Simpsons ...
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.