Because the of Unix philosophy of "do one thing and do it well", you're going to be hard pressed to find any monolithic program that aggregates all of these functions into one place. The good news is the individual atomized security programs that do exist for Linux are mostly set-and-forget, only notifying when something needs attention.
Do you disallow the execution of javascript in your browser? If you're using something like uBlock Origin, NoScript or uMatrix, it is possible to do while only making exceptions for certain javascript.I don't need real-time protection as I only run trusted code.
Linux is a target and has been for many years, but rather in the server role. But a more attractive target these days is the web browser, since it doesn't matter so much whether the target is running Linux or Windows or Mac. If the browser can be exploited, it is likelier to affect all platforms. This alone makes me consider it worthwhile to have a robust firewall and active malware scanning ( + web blockers like mentioned above), at the very least.it is pretty hard to continue with the line of someone like DistroTube that says Linux is not affected ... Since Linux is slowly growing in adoption, there must be a point where the ramsomware scripters decide to move their attentions to Linux.
That depends on a number of factors. Is the target Linux environment equipped with something like WINE to execute Windows binaries? Is said worm written to attack USB controllers at the firmware level, rather than the OS? Is USB autorun enabled in the desktop environment?even sharing an infected FAT32 or EXFAT USB key can easily get a worm on Linux that was designed to target Windows users. Would that worm be active on Debian?
(Strikethrough mine) There are many awesome security tools packaged for Debian, but you may need to warm up to the idea of terminal programs to get the most out of them. Just have a look through the security tag category in your package manager. Here are some of my recommendations:Can anyone suggest a battle-tested, either paid or open source, GUI-based application or suite that protects against and removes viruses, malware and ransomware.
- rkhunter - In addition to checking for known rootkits, it also takes a state of your installed packages to compare for suspicious changes.
- opensnitch - An outbound application-aware intercepting firewall that denies network traffic from any application unless you authorize it.
- apparmor - Enabled by default since Debian Stretch, although additional application profiles are available through apparmore-profiles. It is also possible to create your own confinement profiles.
- tripwire - File integrity system that alerts you to changes in your file system. Check and update the tripwire database after each apt upgrade, if you decide to use this.
- dnsmasq - Can take blocklist files much like how adblockers do, and is also a cleaner and more efficient way of blocking domains than using the hosts file.
Statistics: Posted by Uptorn — 2024-11-10 04:13 — Replies 1 — Views 44
