I found there's also a GUI for clamav called 'ClamTK'. That's better for me, as I'm a pretty-much-total-Linux-n00b. But anyway, thanks for all the info, Joe. I really appreciate what you do. And yes, Firewall was already there when I installed Mint 18.
Great informative video BTW ClamAV is good for scanning email to avoid being a Vector, passing along a virus to a Windows User ClamAV also has a Windows & Mac OS version
Hi Joe, relating to security, have you heard of "firejail"? It's a sandboxing application for various processes. I've just recently discovered this myself and would be interested in your thoughts.
Hi Joe! I like all your Linux stuff. Been an Ubuntu user since 2006; but am still learning. My question is about something you mentioned in the video about GUFW and your router firewall. I have a Linksys Smart Wifi router and so far give it a B+ for various reasons. I'd like to know if you know whether there's a firmware firewall that I could install on that router that would help me protect my home network, overall? At any given time, I have 8 to 10 devices running using my network: One Windows Vista, two Windows 7 and one Windows 8.1, along with two Ubuntu 14.04 LTS (both 4.4.0-45 kernel), and multiple "smart phones" Android and iPhone. I know this is sort of off topic; but I'm hoping that you may have a video already out that addresses the Router firewall, as a side note for Linux users. I used to be a Web Designer & Developer and I worked for IBM for 28 years as a Electrical and Optical Test Engineer for manufacturing of Main Frame circuit boards; such as 4381 and the 3090. I got introduced to Aix (IBM's version of Unix), and then in the 1980's we had to learn IBM PC's to make them run machines on the mfg. floor. Then came all the Windows junk from 3.1 to, Win95, WinNT and WinXp. Yuck! I got tired of Windows 'swiss cheese' construction, but I didn't get introduced to Linux until 2006, 4 years after I retired from IBM. Anyway, I DO appreciate all your videos and continue to look forward to more. :-) BTW...I've used GUFW and ClamTK for some time. Both good enough for me. Thank you very much, Rick White
I don't know anything about that router so I suggest you get a hold of the manual and also do some searches to see what others have done with it. Most routers already run a firewall and al you have to do is configure it. :)
Thank you Joe. I thought you were talking about an additional firewall to the router, in your video. I'll look into it, thanks. I do enjoy your videos. Good work.
I'd argue with your assessment of the inherent security of windows vs linux-based systems, given the recent disastrous IoT based DDoS attacks on the likes of DynDNS. Most IoT devices use a linux-based OS, because it's free and lightweight. Many have very clear vulnerabilities that're being actively exploited. Both Linux based systems and windows based systems can be either well or badly configured security-wise, but windows is a significantly more secure system than it used to be, and Linux has more and more vulnerabilities being both uncovered and exploited on a regular basis. Both are highly complex systems, both have holes, both need constant patching and maintenance, and anti-malware software on both is a good idea. That said, excellent vid for those who run Linux desktops and need to secure their systems properly.
I think this video is about home computers. If you have linux on your computer, and update it frequently, you re very secure. It is very rare even if you browse suspicious web sites to run into a linux virus, so even a completely noob user can not be infected as easily as on windows.
I have to respectfully disagree. Browser-based attacks are as effective on Linux as they are on Windows, simply because they operate above the level of any kernel protections that may be in place, and can be as devastating on both platforms. Lower level attacks can be performed on both platforms if they're incorrectly configured and/or patched. Windows security has advanced significantly over the years while Linux has remained largely stagnant - relying on Unix's security model and correct system configuration. Advances such as selinux and the various flavours of linux firewall are at best present but not configured on the vast majority of linux machines (in the case of selinux, this is perhaps unsurprising). Although they clearly have an agena to push, Sophos have a (to my mind) fair summary of the linux threat environment (as well as useful links to your favourite vendor's security pages at blogs.sophos.com/2015/03/26/dont-believe-these-four-myths-about-linux-security/ . Both systems are vulnerable, and neither have a security-aware user base - which is why both systems are vulnerable.
I think the issue with IOT is more down to the manufactures taking shortcuts, ie having hard-coded admin login/password, having ports like telnet open by default, regarding desktops while Windows 10 is more secure than previous iterations the average Windows user is still not as technically aware as a Linux user, a lot of infections come from users installing software from some random web-page and trusting the developer that the software doesn't contain any malicious components, it is far less likely for the same to occur on Linux.
Unquestionably the questionable practices of many IoT manufacturers are responsible for the lack of security in that class of product. However, that in itself just illustrates the point that Linux is not in and of itself more secure than Windows, and can be just as open to exploit. While many Linux users may be marginally more technically aware than many Windows users, all the marketing for Linux desktops (such as there is) - including Joe's own EzeLinuz program, is aimed squarely at people who are definitely not in the classic "Linux geek" category. These are people who have the technical proficiency of an average Windows user, and who neither know nor care if an SSH or a telnet or an SMTP or any other port is open on their desktop, router, or light bulb. And it is the myth that Linux is inherently more secure that these people will (a) believe and 9b) be bitten by far more so than an average Windows user who at least accepts the need for anti-malware and some semblance of a security profile....
*given the recent disastrous IoT based DDoS attacks on the likes of DynDNS. Most IoT devices use a linux-based OS,* Those devices are never updated because they are so inexpensive. It's a form of planned obsolescence
FWIW, I installed and ran Comodo's Linux anti-virus just because I was bored and wanted something new to play with. It turned out, after running it, that I had 16 malware and trojans in my Ubuntu downloads. The cool thing was that they couldn't activate since it wasn't a Windows system, so they were just sitting there. It was cool that Comodo found them.
Udemy is full of paid courses that don't explain more than 10% of what you cover in your TH-cam videos. Thanks so much. I've been suffering from the Curse of the 3-5 minute tutorial. You've really helped this novice transition from the bum ride that was Windows to the gloriousness of the Linux world.
GUFW on Arch: Fixed it all my myself. People who want to install it must install the unlisted 'net-tools' package from the core repository. It works fine then. Sorry Joe for taking up so much space.
GUFW is the graphical interface for UFW. Why not show the ClamTK GUI which simplifies ClamAV for newer users? I use ClamAV and rkhunter religiously to ensure I don't help spead windows viruses/trojans/rootkits etc to windows users.
Flash is nowadays not that necesery (html5)..sure there are some sites that need that but if you want to use them should everyone decide for himself. For the Javascript issue there is a solution in form of an Addon called "NoScript" for the Firefox. For Opera and Chrome there is something similar (No Script Suite Lite (?) and a few others) but they are not that easy to use like NoScript (for Firefox).
awesome videos,i have an old dell optiplex 790 with a 500gb hdd and an older i5.so far no issues with linux .runs great so far and it seems like a great o/s
Good not just to protect you from holes in security but also when people target others with airmon-ng and responder to initiate a Mitm attack and then use Jack the ripper for md5 hash cracking to login to a machine and then remote control a machine through Armitage.
I found the best protection against viruses. I use a Virtual Machine for my bank and paypall web sites, its firewall blocks all inbound traffic. It is only "powered on" for in total 1 or 2 hours per week and the browser is only used for this purpose. I use another VM for Email, torrents and normal browsing and yet another one to try out new apps.
hello joe. first i must thank you, i decided to switch to linux thanks to your great vids. this one in particular, convinced me to let windows down. a question for you: once i close the gufw window, does the firewall work in spite of closing its window? thank you for everything!
Probably if you execute bad code on linux it will be a thing like get root in someway and install a rootkit not a virus. Once a rootkit is installed it can hide everything, files and network connections, execute other things instead of the command you give so checksum checking is also useless etc etc. Also linux firewall is only at network level not application level so if a thing want go out it will go, and thats why hackers use reverse connections to get a shell on your system. So basically dont run things coming from unknows sources and dont run servers on your machine if it is accessible from internet. Also dont use old sofware that connect to strange networks becouse attacks are also client side not only server side. To really be secure you need to monitor real time your files and what is being executed. Becouse things have to be modified for malware to be persistent. From this point of view Windows is more secure then Linux with a good security program.
Except for so many windows apps and programs that only appear to be functional... It happens more often than you'd like to think. The GUI shows you "work in progress" so you "feel good and safe"... It even puts icons in the sys-tray. In the back-end... It's just a counter. There's also a lot of pseudo-apps that appear to be the thing you're looking for, but aren't. Most recently (with windows) that I ran into was Comodo... I found every version of komodo's and comodo's and similar... but not the Comodo I was looking for. I had to get my brother on the phone to tell me where his version came from letter by letter to get it right... So... there's an example... It really comes down to using sensibility and being security conscious. Good judgment (and you almost always know the difference) means a clean machine and avoiding suspicious crap on the web. If you're going to err (and we all face moments we're not sure) take a minute to think about which error would be an inconvenient and which would be a disaster. Then make the (easier to recover from) call. Security isn't particularly difficult or complicated... discipline is tough. :o)
Ran ClamAV... it flagged macros all over in various libreoffice apps... I run Linux in a virtual box.... I deleted libreoffice, just in case. I don't really use it in my Virtual Box Linux. ClamAV also flagged the window .exe's in the mounted Guest CD ... - Thank You for mentioning how it will flag all Windows programs as false positives.... Your video has been a great help.
@@FeedScrn I pretty much said the same thing in the video... ClamAV is only good for scanning databases on servers that deal with Windows clients all the time. Totally useless for a Linux Desktop.
I run clamav on my firewall, not only does it scan files but in combination with the software firewall it will scan for malicious code on websites and block them, I've never thought of running it locally
Hello! I am very new to Linux and I can already see why my friend says it's amazing. I am planning to install linux on my computer but I don't know which distribution to choose. I would like something not very graphic (like ubuntu) but not vey difficult (like kali). Can someone recommend me something?
You can give upgrading a shot and see how it goes but make a good backup so you can re-install if you have to. I usually re-install for a major upgrade. :)
This TH-cam channel is mostly for people who have already changed to Linux, or are thinking of doing so, so I may be preaching to the converted. I was simply echoing what Joe said. And typing commands is a mind-set thing. I like to think it's analogous to very young children indicating what they want by pointing. When they master language, they can describe it in words.
I'm actually going to install clamav. Might be time to run a scan. For firewall, I just use straight up iptables. Drop anything coming in with special exceptions, allow anything going out. Special special case is SSH, which requires a port knocking sequence to open. (Yay, security by obscurity. Of course, I also have root and password login disabled)
Gufu is supported for Arch in the AUR on the official gufu page however there seems to be major dependency issues as least with the latest version. Anyone running Arch or flavours actually running gufu. No answers on the Arch forum just for frustrated users. The CLI ufw installs and runs it just means a little but of reading in the docs to set it up.
Joe, is there anyway to search out duplicate files and folders? I have many photos that I have shared between folders and would like to clean up a little without going through a manual search.
Joe, I just downloaded Mint 18.1 yesterday. I used clamav and it showed me 8 viruses. How do I delete them? I'm a complete newbie to this and I can't find any videos on what the sequence or code to delete them is. Thanks...
They aren't viruses... They're most likely false positives. Do a search on Google to see what they really are and if anything comes up as being truly dangerous then go in and delete it. :)
I f clamav does find any malicious infected files, how do you get rid of them or does it get rid of them automatically? thanks for this informative video man!
The way I use it, it just shows you the files. You have to figure out whether you want to delete them or not. You can tell it to nuke anything that it finds but that might kill your system so it's better not to do that. :)
The gufw program Joe was showing is a graphical overlay onto the ufw (Uncomplicated Fire Wall) command. The firewalld is an alternative to ufw - more comprehensive with more fine grained features. Usually what you'd use in a server if you want to fine tune who can get to what resource or even how much of that resource they can use. The last one is likely overkill for a user desktop. All you want is to protect yourself from being accessed by some outside connection. Not to mention, the gufw graphical interface makes it really easy for a newbie to setup and not need to learn some command line stuff. UFW is itself actually a wrapper over the kernel's iptables firewall - which just stops certain ports and certain IP addresses from being paths into your system - making using the iptables command easier. There are alternatives like IPCop and ShoreWall doing similar (though I think ShoreWall uses the kernel netfilter command instead). For other more comprehensive stuff you may want to look at pfSense, SmoothWall, Endian and ConfigServer. It's one of th things about Linux. There's usually multiple alternatives, each just a slight bit different - meant for different users from the "I just want to set and forget" guy through to the "I want to manage and know everything" guy.
That file is NOT a threat and you should leave it alone. ClamAV is notorious for false positives... You can always do a Google search for something like that to see what it is. I this case, it is part of the OpenOffice system. :)
Joe Collins Thanks I thought it was some type of spyware code. Coming from Windows I sense as if free programs means they are spying on us or something, sorry.
I installed it in ubuntu 16.04 and the program crashed twice during installation. I don't trust crashing anti-virus software, besides it is too complex to use.
You set rules for applications that need to listen for something on the network. No rules just means EVERYTHING will be blocked unless you ask for it. :)
I don't think you quite understand what a fire wall does... It denies traffic coming into your system from the outside world. It does not block your browser or e-mail or anything like that. You ask for that data when you click on something. A firewall blocks things that you didn't ask for. The rules allow you to run some kind of server and if someone from the internet or on your local network tries to access it the firewall will let it through. If you're not running any servers on your machine, you don't need to set any rules for them. :)
Joe, any pointer here, installed Clamav as directed, no issue (cinnamon 18) went to sudo freshclam, got this: rob@Latitude-E6420 ~ $ sudo freshclam ERROR: /var/log/clamav/freshclam.log is locked by another process ERROR: Problem with internal logger (UpdateLogFile = /var/log/clamav/freshclam.log). Tried uninstall, reinstall, same...?? Thanks
Mint cinnamon 18, and I think you are correct, as it seemed pre installed, also was there a driving factor for you sticking with 17.3, I myself found my way back to Mint over UB Mate, just seems to work with out hassle
Joe, could i ask you a gaming question..My son has an ATI Caicos XT HD 7470 video card, he is currently running Mint 18 Cinn, wondering if he would get more bang for the buck out of the video card if he were actually back on 17.3, being as the whole ATI not supported on 18 yet. Appreciate any help, gaming is not my thing (may not be yours either), he is only 8, so most games are no issue but we have run into some problems with more graphic intense stuff, i.e. War thunder for example. Thanks as always brother..have a great Sunday!!
The only way to find out if the driver is better in 17.3 would be to try it. AMD vid cards suck on Linux, though. I have found the proprietary drivers to be worse than the open sources ones most of the time. You're probably getting the best you can get out of that card already. :)
Those files contain raw source doe and are often called "tar balls" by developers. Each one installs differently depending on how the developer set it up. It is much safer for a user to use an approved package ready made for the distro than to install from source. Downloading raw source code is dangerous if you don't know what's in them and if you don't know exactly what you're doing. You could get a virus or trash the system. I always advise new users to just stay away from them. :)
Joe Collins hello have another question , I’m not a expert . My WhatsApp client in Linux mint 18.3, doesn’t allow me to copy paste for example a link , what can I do ? Thanks
ufw won't detect anything... It's a fire wall. Clam might find one but the chances of you getting one are about as good as getting struck by lightning on a desktop Linux system. :)
( I already use Linux) Joe just ignore the first bit in the brackets, I love your vblogs, Camodo Anti-Virus for Linux Mint 17.3(Rosa) 64bit might work well, it might be worth getting a new machine running 4 AMD RYZEN 48 core processors and 16TB of GDDR4 RAM and it might make for a system that you can run demo's on but might be a bit loud but using Noctua fans will make for a very quiet system.
I'm not sure but you won;t need it if you keep your system up to date. The only reason you might need A/V is if you're interacting with Windows and want to protect other Windows machines. In that case, ClamAV is really the best choice. :)
Joe Collins Ah, Thank you , and Thank you for replying. I'm thinking of trying out Obuntu Mate. Never used Linux before, that in can remember. Maybe when I was younger
Lol ... IMO it then did its job! ... but yeah, I would definitely take note of Joe's recommendation not to have it quarantine or delete files. E.g. don't add the -move or -remove options to the clamscan command if you on't want it to automatically get rid of files it deems infected.
you are at risk if you download any programs associated with google. android studio has two viruses attached to .gif images. i downloaded it several times each time i found viruses. chromium is known to have malware.
Your firewall really needs an ASK setting, if your a gamer you won't be able to play a thing and use this it will either miss everything or stop it all.. very bad!
Make game in C/C++ are hurd, beginner advanced, like learn fpc(pascal) to make remakes of games spectrum and atari ste. Ummm programmer and graphic designer. Know security not all, rkhunter and chkrootkit, was use iptables talk of nftables.
Install a resource hungry antivirus. Then it will have false positives and then I would be picking myself from those false positives. "Lists all the exe files as malware !" Ha How satisfyingly cool? Nice way Open source is going.
![ILLSLICK - WINTER IS COMING [Official Video]](http://i.ytimg.com/vi/dwTMeM1zIhQ/mqdefault.jpg)
I found there's also a GUI for clamav called 'ClamTK'. That's better for me, as I'm a pretty-much-total-Linux-n00b. But anyway, thanks for all the info, Joe. I really appreciate what you do.
And yes, Firewall was already there when I installed Mint 18.
great video! Just installed Linux so I'm learning. Video very informative, and clear! Great work!
Great informative video
BTW ClamAV is good for scanning email to avoid being
a Vector, passing along a virus to a Windows User
ClamAV also has a Windows &
Mac OS version
Hi Joe, relating to security, have you heard of "firejail"? It's a sandboxing application for various processes. I've just recently discovered this myself and would be interested in your thoughts.
Hi Joe!
I like all your Linux stuff. Been an Ubuntu user since 2006; but am still learning.
My question is about something you mentioned in the video about GUFW and your router firewall. I have a Linksys Smart Wifi router and so far give it a B+ for various reasons.
I'd like to know if you know whether there's a firmware firewall that I could install on that router that would help me protect my home network, overall?
At any given time, I have 8 to 10 devices running using my network:
One Windows Vista, two Windows 7 and one Windows 8.1, along with two Ubuntu 14.04 LTS (both 4.4.0-45 kernel), and multiple "smart phones" Android and iPhone.
I know this is sort of off topic; but I'm hoping that you may have a video already out that addresses the Router firewall, as a side note for Linux users.
I used to be a Web Designer & Developer and I worked for IBM for 28 years as a Electrical and Optical Test Engineer for manufacturing of Main Frame circuit boards; such as 4381 and the 3090.
I got introduced to Aix (IBM's version of Unix), and then in the 1980's we had to learn IBM PC's to make them run machines on the mfg. floor.
Then came all the Windows junk from 3.1 to, Win95, WinNT and WinXp. Yuck!
I got tired of Windows 'swiss cheese' construction, but I didn't get introduced to Linux
until 2006, 4 years after I retired from IBM.
Anyway, I DO appreciate all your videos and continue to look forward to more. :-)
BTW...I've used GUFW and ClamTK for some time. Both good enough for me.
Thank you very much,
Rick White
I don't know anything about that router so I suggest you get a hold of the manual and also do some searches to see what others have done with it. Most routers already run a firewall and al you have to do is configure it. :)
Thank you Joe.
I thought you were talking about an additional firewall to the router, in your video. I'll look into it, thanks. I do enjoy your videos. Good work.
I'd argue with your assessment of the inherent security of windows vs linux-based systems, given the recent disastrous IoT based DDoS attacks on the likes of DynDNS. Most IoT devices use a linux-based OS, because it's free and lightweight. Many have very clear vulnerabilities that're being actively exploited.
Both Linux based systems and windows based systems can be either well or badly configured security-wise, but windows is a significantly more secure system than it used to be, and Linux has more and more vulnerabilities being both uncovered and exploited on a regular basis. Both are highly complex systems, both have holes, both need constant patching and maintenance, and anti-malware software on both is a good idea.
That said, excellent vid for those who run Linux desktops and need to secure their systems properly.
I think this video is about home computers. If you have linux on your computer, and update it frequently, you re very secure. It is very rare even if you browse suspicious web sites to run into a linux virus, so even a completely noob user can not be infected as easily as on windows.
I have to respectfully disagree. Browser-based attacks are as effective on Linux as they are on Windows, simply because they operate above the level of any kernel protections that may be in place, and can be as devastating on both platforms. Lower level attacks can be performed on both platforms if they're incorrectly configured and/or patched.
Windows security has advanced significantly over the years while Linux has remained largely stagnant - relying on Unix's security model and correct system configuration. Advances such as selinux and the various flavours of linux firewall are at best present but not configured on the vast majority of linux machines (in the case of selinux, this is perhaps unsurprising).
Although they clearly have an agena to push, Sophos have a (to my mind) fair summary of the linux threat environment (as well as useful links to your favourite vendor's security pages at blogs.sophos.com/2015/03/26/dont-believe-these-four-myths-about-linux-security/ .
Both systems are vulnerable, and neither have a security-aware user base - which is why both systems are vulnerable.
I think the issue with IOT is more down to the manufactures taking shortcuts, ie having hard-coded admin login/password, having ports like telnet open by default, regarding desktops while Windows 10 is more secure than previous iterations the average Windows user is still not as technically aware as a Linux user, a lot of infections come from users installing software from some random web-page and trusting the developer that the software doesn't contain any malicious components, it is far less likely for the same to occur on Linux.
Unquestionably the questionable practices of many IoT manufacturers are responsible for the lack of security in that class of product. However, that in itself just illustrates the point that Linux is not in and of itself more secure than Windows, and can be just as open to exploit.
While many Linux users may be marginally more technically aware than many Windows users, all the marketing for Linux desktops (such as there is) - including Joe's own EzeLinuz program, is aimed squarely at people who are definitely not in the classic "Linux geek" category. These are people who have the technical proficiency of an average Windows user, and who neither know nor care if an SSH or a telnet or an SMTP or any other port is open on their desktop, router, or light bulb. And it is the myth that Linux is inherently more secure that these people will (a) believe and 9b) be bitten by far more so than an average Windows user who at least accepts the need for anti-malware and some semblance of a security profile....
*given the recent disastrous IoT based DDoS attacks on the likes of DynDNS. Most IoT devices use a linux-based OS,*
Those devices are never updated because they are so inexpensive. It's a form of planned obsolescence
FWIW, I installed and ran Comodo's Linux anti-virus just because I was bored and wanted something new to play with. It turned out, after running it, that I had 16 malware and trojans in my Ubuntu downloads. The cool thing was that they couldn't activate since it wasn't a Windows system, so they were just sitting there. It was cool that Comodo found them.
Udemy is full of paid courses that don't explain more than 10% of what you cover in your TH-cam videos. Thanks so much. I've been suffering from the Curse of the 3-5 minute tutorial. You've really helped this novice transition from the bum ride that was Windows to the gloriousness of the Linux world.
I found this to be very informative and helpful. I think that this video explains things pretty clearly and was not over complicated. Thanx Joe
GUFW on Arch: Fixed it all my myself. People who want to install it must install the unlisted 'net-tools' package from the core repository. It works fine then. Sorry Joe for taking up so much space.
GUFW is the graphical interface for UFW. Why not show the ClamTK GUI which simplifies ClamAV for newer users? I use ClamAV and rkhunter religiously to ensure I don't help spead windows viruses/trojans/rootkits etc to windows users.
Flash is nowadays not that necesery (html5)..sure there are some sites that need that but if you want to use them should everyone decide for himself. For the Javascript issue there is a solution in form of an Addon called "NoScript" for the Firefox. For Opera and Chrome there is something similar (No Script Suite Lite (?) and a few others) but they are not that easy to use like NoScript (for Firefox).
awesome videos,i have an old dell optiplex 790 with a 500gb hdd and an older i5.so far no issues with linux .runs great so far and it seems like a great o/s
Good not just to protect you from holes in security but also when people target others with airmon-ng and responder to initiate a Mitm attack and then use Jack the ripper for md5 hash cracking to login to a machine and then remote control a machine through Armitage.
I found the best protection against viruses. I use a Virtual Machine for my bank and paypall web sites, its firewall blocks all inbound traffic. It is only "powered on" for in total 1 or 2 hours per week and the browser is only used for this purpose. I use another VM for Email, torrents and normal browsing and yet another one to try out new apps.
hello joe. first i must thank you, i decided to switch to linux thanks to your great vids. this one in particular, convinced me to let windows down.
a question for you: once i close the gufw window, does the firewall work in spite of closing its window?
thank you for everything!
@bluefandango yes
Joe, I think you can tweak this ssh vulnerability by allowing access to users only from your local network in the rules.
Done. SSH only works on my local network and does not listen on the Internet. :)
Probably if you execute bad code on linux it will be a thing like get root in someway and install a rootkit not a virus. Once a rootkit is installed it can hide everything, files and network connections, execute other things instead of the command you give so checksum checking is also useless etc etc. Also linux firewall is only at network level not application level so if a thing want go out it will go, and thats why hackers use reverse connections to get a shell on your system. So basically dont run things coming from unknows sources and dont run servers on your machine if it is accessible from internet. Also dont use old sofware that connect to strange networks becouse attacks are also client side not only server side. To really be secure you need to monitor real time your files and what is being executed. Becouse things have to be modified for malware to be persistent. From this point of view Windows is more secure then Linux with a good security program.
Except for so many windows apps and programs that only appear to be functional... It happens more often than you'd like to think. The GUI shows you "work in progress" so you "feel good and safe"... It even puts icons in the sys-tray. In the back-end... It's just a counter.
There's also a lot of pseudo-apps that appear to be the thing you're looking for, but aren't. Most recently (with windows) that I ran into was Comodo... I found every version of komodo's and comodo's and similar... but not the Comodo I was looking for. I had to get my brother on the phone to tell me where his version came from letter by letter to get it right... So... there's an example...
It really comes down to using sensibility and being security conscious. Good judgment (and you almost always know the difference) means a clean machine and avoiding suspicious crap on the web. If you're going to err (and we all face moments we're not sure) take a minute to think about which error would be an inconvenient and which would be a disaster. Then make the (easier to recover from) call. Security isn't particularly difficult or complicated... discipline is tough. :o)
Ran ClamAV... it flagged macros all over in various libreoffice apps... I run Linux in a virtual box.... I deleted libreoffice, just in case. I don't really use it in my Virtual Box Linux. ClamAV also flagged the window .exe's in the mounted Guest CD ...
- Thank You for mentioning how it will flag all Windows programs as false positives.... Your video has been a great help.
That was a a waste of your time... ClamAV is useless. There's nothing wrong with LibreOffice's macros at all.
@@EzeeLinux - Thanks. Do you know if this happened to anybody else by chance?
@@FeedScrn I pretty much said the same thing in the video... ClamAV is only good for scanning databases on servers that deal with Windows clients all the time. Totally useless for a Linux Desktop.
Great. You made my day. I hope that these software is super trust-able to install it on a daylydiver distro!
I run clamav on my firewall, not only does it scan files but in combination with the software firewall it will scan for malicious code on websites and block them, I've never thought of running it locally
Can I install clamav on kali linux 2.0 while using tor or the two programs (Tor& Clamav) are not compatible to run together. thank uuuuu
Hello! I am very new to Linux and I can already see why my friend says it's amazing. I am planning to install linux on my computer but I don't know which distribution to choose. I would like something not very graphic (like ubuntu) but not vey difficult (like kali). Can someone recommend me something?
The question really is though how effective is ClamAV vs commercial antivirus programs?
I really enjoy your videos... Keep it up. I am interested in your thoughts of updating v fresh install to new versions of Linux distributions..
You can give upgrading a shot and see how it goes but make a good backup so you can re-install if you have to. I usually re-install for a major upgrade. :)
"It's just as easy to type a command and make it work" -- yay! It's a pity more people don't realise that.
This TH-cam channel is mostly for people who have already changed to Linux, or are thinking of doing so, so I may be preaching to the converted. I was simply echoing what Joe said.
And typing commands is a mind-set thing. I like to think it's analogous to very young children indicating what they want by pointing. When they master language, they can describe it in words.
I'm actually going to install clamav. Might be time to run a scan.
For firewall, I just use straight up iptables. Drop anything coming in with special exceptions, allow anything going out.
Special special case is SSH, which requires a port knocking sequence to open. (Yay, security by obscurity. Of course, I also have root and password login disabled)
Great info, I use ClamTK myself
Also, what do you think of ‘online linux - xlinux console & terminal 2.1.8’ its an extension in Firefox? What are it’s uses?
Really good review for a newbie like me thanks Joe.
Is my tinfoil viking helmet safe enough, Joe?
Gufu is supported for Arch in the AUR on the official gufu page however there seems to be major dependency issues as least with the latest version. Anyone running Arch or flavours actually running gufu. No answers on the Arch forum just for frustrated users. The CLI ufw installs and runs it just means a little but of reading in the docs to set it up.
Out of curiosity, what distro do you use as your host?
I think if you have priceless information on your Linux box, then extra security is worth it.
Every video you make does me good and I thank you for that!
I've got those icons from ravefinity, they're the nicest icons ive seen in a while
Isn't gufw just a graphical frontend to ufw?
Joe, is there anyway to search out duplicate files and folders? I have many photos that I have shared between folders and would like to clean up a little without going through a manual search.
Photo editors like Shotwell and Gthumb have tools to search out duplicates. :)
Try Ardis icons, Joe ! you'll love them !
Joe, I just downloaded Mint 18.1 yesterday. I used clamav and it showed me 8 viruses. How do I delete them? I'm a complete newbie to this and I can't find any videos on what the sequence or code to delete them is. Thanks...
They aren't viruses... They're most likely false positives. Do a search on Google to see what they really are and if anything comes up as being truly dangerous then go in and delete it. :)
The Antivirus and Firewall will make my linux pc more slower?
No. They don't run in the background like crappy Windy AV tools do. The iptables firewall is already running and CLamAV is just scanner. :)
@@EzeeLinux And a scanner is working with cpu actions powered from heaven?? Give me a number for speedloss in Win vs Linux.
@@cantkeepitin ClamAV is an on demand scanner it only runs when you start it it doesnt run in the background so its not slowing down your machine.
Thank you Joe. Nice background by the way.
Thx Joe, really nice and fun in moments to watch this movie! Keep like that mate
BTW. I had to reboot before i could update definitions. (run freshclam)
I'm using openSUSE Leap 42.2, I see there is a default firewall on my system, what your suggestion, should I use gufw or default one ?
I've seen the Open SUSE firewall in action and it's just like Gufw. No need to break what is working. :)
Is the firewall that comes on Linux mint 18.x and 19.x good enough or worth getting gufw for just a normal home computer?
Mint ships with gufw... It works great. :)
I f clamav does find any malicious infected files, how do you get rid of them or does it get rid of them automatically? thanks for this informative video man!
The way I use it, it just shows you the files. You have to figure out whether you want to delete them or not. You can tell it to nuke anything that it finds but that might kill your system so it's better not to do that. :)
Will this firewall conflict with my the firewall I activate when open my VPN??
That's a question for your VPN provider. It don't think it does, though.
Thanks Joe that is very much appreciated.
I am so used to windows host based 🔥 wall. I have no idea how firewall works on Linux. I heard about firewalld. Is that good for Linux?
The gufw program Joe was showing is a graphical overlay onto the ufw (Uncomplicated Fire Wall) command. The firewalld is an alternative to ufw - more comprehensive with more fine grained features. Usually what you'd use in a server if you want to fine tune who can get to what resource or even how much of that resource they can use.
The last one is likely overkill for a user desktop. All you want is to protect yourself from being accessed by some outside connection. Not to mention, the gufw graphical interface makes it really easy for a newbie to setup and not need to learn some command line stuff.
UFW is itself actually a wrapper over the kernel's iptables firewall - which just stops certain ports and certain IP addresses from being paths into your system - making using the iptables command easier. There are alternatives like IPCop and ShoreWall doing similar (though I think ShoreWall uses the kernel netfilter command instead).
For other more comprehensive stuff you may want to look at pfSense, SmoothWall, Endian and ConfigServer. It's one of th things about Linux. There's usually multiple alternatives, each just a slight bit different - meant for different users from the "I just want to set and forget" guy through to the "I want to manage and know everything" guy.
Hello,
The file Module1.xba from OpenOffice is labeled as a threat by ClamAV.
Should I quarantine and remove it?
Is the file important?
That file is NOT a threat and you should leave it alone. ClamAV is notorious for false positives... You can always do a Google search for something like that to see what it is. I this case, it is part of the OpenOffice system. :)
Joe Collins
Thanks
I thought it was some type of spyware code. Coming from Windows I sense as if free programs means they are spying on us or something, sorry.
I installed it in ubuntu 16.04 and the program crashed twice during installation. I don't trust crashing anti-virus software, besides it is too complex to use.
Does the firewall run in the background or do I need to run for every startup?
You only have to set it up once. :)
@@EzeeLinux Excellent, thanks buddy!
Sir i have installed gufw. But i don't know which rules should i add. If i only turn on firewall will it work? Or is it mandatory to add some rule?
You set rules for applications that need to listen for something on the network. No rules just means EVERYTHING will be blocked unless you ask for it. :)
Everything will be blocked means..? I didn't get it. Will you please explain it? If everything has blocked then will it be a big problem for me?
I don't think you quite understand what a fire wall does... It denies traffic coming into your system from the outside world. It does not block your browser or e-mail or anything like that. You ask for that data when you click on something. A firewall blocks things that you didn't ask for. The rules allow you to run some kind of server and if someone from the internet or on your local network tries to access it the firewall will let it through. If you're not running any servers on your machine, you don't need to set any rules for them. :)
Nice D.E.. What is it?
Joe, any pointer here, installed Clamav as directed, no issue (cinnamon 18) went to sudo freshclam, got this:
rob@Latitude-E6420 ~ $ sudo freshclam
ERROR: /var/log/clamav/freshclam.log is locked by another process
ERROR: Problem with internal logger (UpdateLogFile = /var/log/clamav/freshclam.log).
Tried uninstall, reinstall, same...??
Thanks
What distro are you on? Some do the updates automatically. No need to issues that command. Just wait for it to update and you're good to go. :)
Mint cinnamon 18, and I think you are correct, as it seemed pre installed, also was there a driving factor for you sticking with 17.3, I myself found my way back to Mint over UB Mate, just seems to work with out hassle
17.3 is more stable and runs on my old hardware well. :)
Joe, could i ask you a gaming question..My son has an ATI Caicos XT HD 7470 video card, he is currently running Mint 18 Cinn, wondering if he would get more bang for the buck out of the video card if he were actually back on 17.3, being as the whole ATI not supported on 18 yet. Appreciate any help, gaming is not my thing (may not be yours either), he is only 8, so most games are no issue but we have run into some problems with more graphic intense stuff, i.e. War thunder for example.
Thanks as always brother..have a great Sunday!!
The only way to find out if the driver is better in 17.3 would be to try it. AMD vid cards suck on Linux, though. I have found the proprietary drivers to be worse than the open sources ones most of the time. You're probably getting the best you can get out of that card already. :)
great essential stuff!
Good video but I got a head of you and ran clamscan on the whole system. Now I am waiting to it to be done looking at all the files saying OK
Excellent advice. Much thanks! :)
invaluable tools, thank you
Can you upload a video explaining what .tar.gz files are and how to install them?...
Those files contain raw source doe and are often called "tar balls" by developers. Each one installs differently depending on how the developer set it up. It is much safer for a user to use an approved package ready made for the distro than to install from source. Downloading raw source code is dangerous if you don't know what's in them and if you don't know exactly what you're doing. You could get a virus or trash the system. I always advise new users to just stay away from them. :)
Joe Collins oh nice advice, I didn't know about that, thanks mate :)
Most of the servers of the world run linux without av ... The openness of linux make it safe
Clam av is part of the kernel ?
No, Iptables is a part of the kernel and the Gufw program works with iptables. :)
Joe Collins thanks
Joe Collins hello have another question , I’m not a expert . My WhatsApp client in Linux mint 18.3, doesn’t allow me to copy paste for example a link , what can I do ? Thanks
Good stuff. Thanks Joe.
Thank you. Useful for me.
Will Clam and ufw detect key-loggers?
ufw won't detect anything... It's a fire wall. Clam might find one but the chances of you getting one are about as good as getting struck by lightning on a desktop Linux system. :)
@@EzeeLinux just shredded my ssd to rid myself of key-logger - the arsehole had my root psw. You have taught me heaps = thanks for that
While scan the windows drive, the clam av showing winrar.exe is the trojan. Thanks for this informative video sir. love from india.
bummer mine installed but then it said it was locked I'll have to figure out what went wrong
try askubuntu.com/questions/909273/clamav-error-var-log-clamav-freshclam-log-is-locked-by-another-process
When I tried to update Clamav it reject it
Know little firewall in debian. Have freebsd Unix, freebsd are bigger, have Mac os.
Great Video as always!
THANK YOU Joe
very informative. thank you!
( I already use Linux) Joe just ignore the first bit in the brackets, I love your vblogs, Camodo Anti-Virus for Linux Mint 17.3(Rosa) 64bit might work well, it might be worth getting a new machine running 4 AMD RYZEN 48 core processors and 16TB of GDDR4 RAM and it might make for a system that you can run demo's on but might be a bit loud but using Noctua fans will make for a very quiet system.
does it show anything while it is scanning I noticed you did not enter a password
It just scans and shows a report when it's done. :)
Can I use an Eset Security product on Ubuntu distro?
I'm not sure but you won;t need it if you keep your system up to date. The only reason you might need A/V is if you're interacting with Windows and want to protect other Windows machines. In that case, ClamAV is really the best choice. :)
Joe Collins Ah, Thank you , and Thank you for replying. I'm thinking of trying out Obuntu Mate. Never used Linux before, that in can remember. Maybe when I was younger
should i run ssh in my gufw im using hacking distro linux please answer me ?
Don't understand the question... Can you be more specific?
@@EzeeLinux should i run ssh in my linux hacking distro system is it necessary
@@punchgamer4854 Only if you need to communicate with other machines...
whats the difference between gufw and ufw
g = Graphic. :)
What if ClamAV deletes Windows 10 from a client's computer >:D?
Lol ... IMO it then did its job!
... but yeah, I would definitely take note of Joe's recommendation not to have it quarantine or delete files. E.g. don't add the -move or -remove options to the clamscan command if you on't want it to automatically get rid of files it deems infected.
I'd rather install "clamav-daemon" because it will install "clamav" and the daemon to monitor the whole system
Thanks Joe !!!
you are at risk if you download any programs associated with google. android studio has two viruses attached to .gif images. i downloaded it several times each time i found viruses. chromium is known to have malware.
SSH is a port often attacked
Keep up to date-- subscribe to
CVE/ be mindful of new vulnerabilities & Patch
i didnt know how to use the built in fire wall so yep. thats that.
Thanks for good contents ....
prey anti theft is a good secretary slauson as well
Thank you
Your firewall really needs an ASK setting, if your a gamer you won't be able to play a thing and use this it will either miss everything or stop it all.. very bad!
love it
Thanks
I'm gonna figure the way around it. :D
Bro you are beast
I take it clamAV is not a good idea if your running Kali :P
thx
"Hello Joe" XD
Make game in C/C++ are hurd, beginner advanced, like learn fpc(pascal) to make remakes of games spectrum and atari ste.
Ummm programmer and graphic designer.
Know security not all, rkhunter and chkrootkit, was use iptables talk of nftables.
Windows is like a sieve :D Agree :D
Install a resource hungry antivirus. Then it will have false positives and then I would be picking myself from those false positives.
"Lists all the exe files as malware !"
Ha
How satisfyingly cool?
Nice way Open source is going.
I can't find any Linux joke's. What you guys are doing ??