Re: [clamav-users] Which anti-virus do you prefer on Linux desktop?
On Jan 1, 2015, at 4:16 PM, andreisa...@live.ie mailto:andreisa...@live.ie wrote: Date: Thu, 1 Jan 2015 18:27:00 + From: cla...@jubileegroup.co.uk mailto:cla...@jubileegroup.co.uk To: clamav-users@lists.clamav.net mailto:clamav-users@lists.clamav.net Subject: Re: [clamav-users] Which anti-virus do you prefer on Linux desktop? If you find any useful statistics on Linux viruses, do share them. Here are some stats. Not exactly Linux viruses, but Linux AVs . https://www.virusbtn.com/vb100/archive/platforms#linux https://www.virusbtn.com/vb100/archive/platforms#linux The VB100 certification is the standard for most of the AV products. Except you have to pay to submit your engine to the test. Which is why our engine is not on there. We prefer to spend our money in different areas. Not saying we’d be number one, either. -- Joel Esler Open Source Manager Threat Intelligence Team Lead Talos smime.p7s Description: S/MIME cryptographic signature ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [clamav-users] Which anti-virus do you prefer on Linux desktop?
On Jan 1, 2015, at 1:27 PM, G.W. Haywood cla...@jubileegroup.co.uk mailto:cla...@jubileegroup.co.uk wrote: I copied a result of 'Day0 Summary' from shadowserver.org http://shadowserver.org/ ... and unqualified statistics are worthless. Another thing to remember is that shadowserver’s feed is not 100% malicious. So keep that in mind. -- Joel Esler Open Source Manager Threat Intelligence Team Lead Talos smime.p7s Description: S/MIME cryptographic signature ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [clamav-users] Which anti-virus do you prefer on Linux desktop?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Thanks a lot. It's very useful. Frank On 01/02/2015 05:16 AM, andreisa...@live.ie wrote: Date: Thu, 1 Jan 2015 18:27:00 + From: cla...@jubileegroup.co.uk To: clamav-users@lists.clamav.net Subject: Re: [clamav-users] Which anti-virus do you prefer on Linux desktop? If you find any useful statistics on Linux viruses, do share them. Here are some stats. Not exactly Linux viruses, but Linux AVs . https://www.virusbtn.com/vb100/archive/platforms#linux The VB100 certification is the standard for most of the AV products. Regards, Andrei ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml - -- Skype: touch21st, Gtalk: touch21st, Yahoo/MSN:franklinwan...@yahoo.com Xing/Linkedin: Franklin Wang -BEGIN PGP SIGNATURE- Version: GnuPG v2 iF4EAREIAAYFAlSnGKkACgkQHNPJJKP5NjabpwD/SvcmPbsAUQ9tuX1pGMztSEqH 9KaibwqoGAGC5AE4c9gA/0xHB0ccqkga74raiyYwEE8z4V4UMIcGbAdp+vskuDl7 =MQNG -END PGP SIGNATURE- ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [clamav-users] Which anti-virus do you prefer on Linux desktop?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Of course, it's wonderful to know more friends with the same hobby. But I wonder to know the answer about it for long. The virus db of clamav may be the same on the several types of platforms, but the commercial softwares maybe not. I copied a result of 'Day0 Summary' from shadowserver.org a few days ago, as following: vendor detected total percent Avira (Windows) 164,659 185,034 88.9885 Comodo (Windows) 115,889 136,109 85.1443 Eset (Windows) 153,248 182,528 83.9586 K7 (Windows) 153,676 185,244 82.9587 Avast (Windows) 147,266 185,226 79.5061 Avast (Linux) 135,715 170,938 79.3943 Symantec (Windows) 141,871 182,075 77.9190 Sunbelt (Windows) 144,019 185,080 77.8145 Eset (Linux) 142,373 183,664 77.5182 BitDefender (Linux) 136,308 179,849 75.7902 BitDefender (Windows) 136,844 184,910 74.0057 AVG (Windows) 125,048 170,394 73.3876 Authentium (Windows) 133,643 185,109 72.1969 Kaspersky (Windows) 104,849 145,413 72.1043 Avira (Linux) 124,587 177,928 70.0210 Authentium (Linux) 121,364 179,559 67.5900 FProt (Windows) 123,574 183,055 67.5065 Ikarus (Windows) 109,977 164,330 66.9245 Ikarus (Linux) 110,824 179,525 61.7318 FProt (Linux) 110,122 180,409 61.0402 Fortinet (Windows) 102,059 172,655 59.1115 Clam (Linux) 104,644 179,285 58.3674 Clam (Windows) 77,253 137,575 56.1534 McAfee (Windows) 100,531 180,003 55.8496 Norman (Windows) 91,194 163,996 55.6075 Lionic (Windows) 93,746 185,134 50.6368 QuickHeal (Windows) 84,592 168,558 50.1857 McAfee (Linux) 73,338 146,264 50.1408 FSecure (Windows) 89,352 181,299 49.2843 AVG (Linux) 89,843 183,814 48.8771 QuickHeal (Linux) 84,423 175,364 48.1416 Sophos (Linux) 66,169 138,320 47.8376 Microsoft (Windows) 76,974 169,284 45.4703 GData (Windows) 80,961 184,597 43.8582 TrendMicro (Windows) 77,177 179,421 43.0145 Sophos (Windows) 69,207 171,143 40.4381 TrendMicro (Linux) 49,049 128,919 38.0464 AhnLab (Windows) 59,945 176,238 34.0137 Panda (Linux) 35,155 117,398 29.9451 Norman (Linux) 26,108 128,670 20.2907 FSecure (Linux) 37,175 184,466 20.1528 On 01/01/2015 05:21 PM, Dennis Peterson wrote: On 12/31/14 11:22 PM, Franklin Wang wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I've tried nod32, Dr. Web, AVG, clamav(the only open source one?), comodo, F-prot on the desktop(x86_64). Why can't I find reviews for them? There're many reviews for Windows platform, but few for Linux desktop, not server. Any suggestions? I'm using openSUSE now, with rkhunter, AIDE, gpg installed. The signatures are what do the work. What OS the tool is compiled for is not so important. ClamAV probably is not significantly different on OS X, Windows, Linux, or Solaris because the signatures are the same everywhere. The binaries, no matter the OS, just run. Rather well, in fact. dp ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml - -- Skype: touch21st, Gtalk: touch21st, Yahoo/MSN:franklinwan...@yahoo.com Xing/Linkedin: Franklin Wang -BEGIN PGP SIGNATURE- Version: GnuPG v2 iF4EAREIAAYFAlSlR9sACgkQHNPJJKP5NjaHFwEAh9SAq1pahMQKHxjpjP+oQVH5 /XeU1U+9sua4+vQm2z4BAIQRXDBmhdOEVpbLg0vpMwnkrugAf3BDTRvFRCfO9XLu =gFr5 -END PGP SIGNATURE- ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [clamav-users] Which anti-virus do you prefer on Linux desktop?
Hi there, On Wed, 31 Dec 2014, Franklin Wang wrote: Why can't I find reviews ... Any suggestions? Look harder. I'm using openSUSE now, with rkhunter, AIDE, gpg installed. It is not clear to me what your list is intended to convey. Gnu Privacy Guard has nothing to do with detecting viruses and AIDE is more like tripwire than ClamAV. On Thu, 1 Jan 2015, Franklin Wang wrote: Of course, it's wonderful to know more friends with the same hobby. For many of us it's work, not a hobby. ... The virus db of clamav may be the same on the several types of platforms, but the commercial softwares maybe not. Speculation isn't much help to anyone, I copied a result of 'Day0 Summary' from shadowserver.org ... and unqualified statistics are worthless. To answer the question in your subject line (which doesn't seem to be the real thrust of your messages) I have no particular preference for anti-virus on Linux since I do not routinely scan Linux machines for malicious software. Yesterday I scanned one because I discovered that the system logging daemon was not running but it turned out that I was to blame for the problem. As far as I can remember that was the first time in several years that I have scanned a Linux machine. It is not, in my opinion, worth the effort. The main that reason I use ClamAV is to gain access to the third-party spam and phishing databases, to clean mail. After processing our mail with filters other than ClamAV, the spam and phishing messages vastly outnumber those (if any) which contain malicious software. In October last year I put some statistics here on the ClamAV list: http://marc.info/?l=clamav-usersm=141245133506824w=2 A second reason is that I have customers and suppliers who do insist on using Windows machines. When one of them sends mail with a virus in it, I prefer that we will not copy it to the others. The fact that there may be a virus in mail which is to be read by my staff is not of itself a great concern, since it will be a Windows virus and our Linux boxes will be immune to it. I've been using Linux for around twenty years. Of the hundreds of Linux machines which I have worked with in that time, I have never had contact with an infected one - although I'm told that they do exist. If you find any useful statistics on Linux viruses, do share them. -- 73, Ged. ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [clamav-users] Which anti-virus do you prefer on Linux desktop?
I think the answer you are going to get from the ClamAV list is ClamAV. -- Joel Esler Open Source Manager Threat Intelligence Team Lead Talos On Jan 1, 2015, at 2:22 AM, Franklin Wang franklin2...@y7mail.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I've tried nod32, Dr. Web, AVG, clamav(the only open source one?), comodo, F-prot on the desktop(x86_64). Why can't I find reviews for them? There're many reviews for Windows platform, but few for Linux desktop, not server. Any suggestions? I'm using openSUSE now, with rkhunter, AIDE, gpg installed. Regards, Franklin Wang - -- Skype: touch21st, Gtalk: touch21st, Yahoo/MSN:franklinwan...@yahoo.com Xing/Linkedin: Franklin Wang -BEGIN PGP SIGNATURE- Version: GnuPG v2 iF0EAREIAAYFAlSk9bsACgkQHNPJJKP5Njac6QD3WkjNe9gY8dQepD4zhqpu2X7m EURVm8z3PWbwB7bUSwD/dMnyGiGX06uMXn3rcI+ZJK/LnWQKqx7h3CKGdLvqoiw= =kt50 -END PGP SIGNATURE- ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml smime.p7s Description: S/MIME cryptographic signature ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [clamav-users] Which anti-virus do you prefer on Linux desktop?
On 12/31/14 11:22 PM, Franklin Wang wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I've tried nod32, Dr. Web, AVG, clamav(the only open source one?), comodo, F-prot on the desktop(x86_64). Why can't I find reviews for them? There're many reviews for Windows platform, but few for Linux desktop, not server. Any suggestions? I'm using openSUSE now, with rkhunter, AIDE, gpg installed. The signatures are what do the work. What OS the tool is compiled for is not so important. ClamAV probably is not significantly different on OS X, Windows, Linux, or Solaris because the signatures are the same everywhere. The binaries, no matter the OS, just run. Rather well, in fact. dp ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [clamav-users] Which anti-virus do you prefer on Linux desktop?
On 1/1/15 10:26 AM, Joel Esler (jesler) wrote: I think the answer you are going to get from the ClamAV list is ClamAV. -- Joel Esler Open Source Manager Threat Intelligence Team Lead Talos It is also worth pointing out to n00bs and old timers alike this tag line from the ClamAV home page: The Standard ClamAV is the open source standard for mail gateway scanning software. One needs to keep this in mind when doing comparisons with other software packages and when comparing ClamAV in usages other than mail gateway scanning else you may be comparing apples and ducks. Statistics without test methods are useless. Statistics that don't reveal false positives are dodgy. Statistics that don't indicate signature vs heuristics matching are not particularly helpful. I'm never impressed with products that detect viruses at the desktop level anyway because it means the firewall has failed. I like that ClamAV also finds spam and other non-malware content in real time at the mail gateway. How do the other ducks compare at that feature? dp ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
Re: [clamav-users] Which anti-virus do you prefer on Linux desktop?
Date: Thu, 1 Jan 2015 18:27:00 + From: cla...@jubileegroup.co.uk To: clamav-users@lists.clamav.net Subject: Re: [clamav-users] Which anti-virus do you prefer on Linux desktop? If you find any useful statistics on Linux viruses, do share them. Here are some stats. Not exactly Linux viruses, but Linux AVs . https://www.virusbtn.com/vb100/archive/platforms#linux The VB100 certification is the standard for most of the AV products. Regards, Andrei ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml
[clamav-users] Which anti-virus do you prefer on Linux desktop?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I've tried nod32, Dr. Web, AVG, clamav(the only open source one?), comodo, F-prot on the desktop(x86_64). Why can't I find reviews for them? There're many reviews for Windows platform, but few for Linux desktop, not server. Any suggestions? I'm using openSUSE now, with rkhunter, AIDE, gpg installed. Regards, Franklin Wang - -- Skype: touch21st, Gtalk: touch21st, Yahoo/MSN:franklinwan...@yahoo.com Xing/Linkedin: Franklin Wang -BEGIN PGP SIGNATURE- Version: GnuPG v2 iF0EAREIAAYFAlSk9bsACgkQHNPJJKP5Njac6QD3WkjNe9gY8dQepD4zhqpu2X7m EURVm8z3PWbwB7bUSwD/dMnyGiGX06uMXn3rcI+ZJK/LnWQKqx7h3CKGdLvqoiw= =kt50 -END PGP SIGNATURE- ___ Help us build a comprehensive ClamAV guide: https://github.com/vrtadmin/clamav-faq http://www.clamav.net/contact.html#ml