HPE Community
Operating System - HP-UX
1826499 Members
1723 Online
109692 Solutions
New Discussion

virus protection on Unix

 
vaibhav_1
Occasional Advisor

‎10-11-2001 08:52 AM

‎10-11-2001 08:52 AM

virus protection on Unix

Does anybody know about virus threat for unix.
Is there anti-virus software available for Unix .
vaibhav
0 Kudos
Reply
9 REPLIES 9
Sridhar Bhaskarla
Honored Contributor

‎10-11-2001 08:59 AM

‎10-11-2001 08:59 AM

Re: virus protection on Unix

Vaibhav,

There is nothing like virus on Unix so far.However, check the following thread for more opinions. I do believe that programs like Trojen Horses, unnecessary suids etc are cousins of viruses. But there are no standard viruses on Unix like we have on Windows.

http://forums.itrc.hp.com/cm/QuestionAnswer/1,11866,0x3c72abe92dabd5118ff10090279cd0f9,00.html

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
0 Kudos
Reply
harry d brown jr
Honored Contributor

‎10-11-2001 09:06 AM

‎10-11-2001 09:06 AM

Re: virus protection on Unix

virus's as in the microsoftie world don't exist in the unix world.
Live Free or Die
0 Kudos
Reply
linuxfan
Honored Contributor

‎10-11-2001 09:17 AM

‎10-11-2001 09:17 AM

Re: virus protection on Unix

Hi Vaibhav,


As others have already said, virus'es do not affect the unix servers directly. However, sometimes virus checking is necessary if your

1. Unix machines are acting as servers for non-Unix client workstations (windoz)

2. Unix machines are being used as mail servers and can check email for worms and infected attachments before they reach the desktop.

There are both free and commercial anti-virus software available.

-HTH
Ramesh
They think they know but don't. At least I know I don't know - Socrates
0 Kudos
Reply
Mark Vollmers
Esteemed Contributor

‎10-11-2001 09:43 AM

‎10-11-2001 09:43 AM

Re: virus protection on Unix

Hi-

McAffe has a virus protector for Unix, but it is designed to run on a UNIX platform and search for windows virus' (for a web server or something). As the others have said, it really isn't a concern. Just be sure that your system is secure and try to make sure that there are no holes (permissions set right, etc) and you should be fine.

Mark
"We apologize for the inconvience" -God's last message to all creation, from Douglas Adams "So Long and Thanks for all the Fish"
0 Kudos
Reply
G. Vrijhoeven
Honored Contributor

‎10-11-2001 09:57 AM

‎10-11-2001 09:57 AM

Re: virus protection on Unix

there is anti virus software build in to the shell just type virus at you promt.....:) sorry but if you fix the holes like others have mentioned you should be fine.


0 Kudos
Reply
John Bolene
Honored Contributor

‎10-11-2001 10:07 AM

‎10-11-2001 10:07 AM

Re: virus protection on Unix

As others have said, no viruses for HPUX yet.

You might be interested in the following though:

The IDS/9000 intrusion detection software will now be bundled with HP-UX, HP's flavor of the Unix operating system, said Mark Crosbie, security architect at HP, speaking at the RAID 2001 conference here at the University of California at Davis. HP will also put
out version 2.0 of the product in "a few weeks" and is considering making the software available for other operating systems, Crosbie said. IDS/9000 is already available as a free download from HP.


I have been unable to find the download link.
It is always a good day when you are launching rockets! http://tripolioklahoma.org, Mostly Missiles http://mostlymissiles.com
0 Kudos
Reply
John Bolene
Honored Contributor

‎10-11-2001 10:15 AM

‎10-11-2001 10:15 AM

Re: virus protection on Unix

Found it finally.


http://www.hp.com/security/products/ids/papers/brief/
It is always a good day when you are launching rockets! http://tripolioklahoma.org, Mostly Missiles http://mostlymissiles.com
0 Kudos
Reply
Mark Crosbie
New Member

‎11-02-2001 02:47 PM

‎11-02-2001 02:47 PM

Re: virus protection on Unix

Now that my fame has preceded me.... :-)

IDS/9000 will detect exploitation of common UNIX vulnerabilities: creating setuid root files, modifying files, creating world-writeable files, race condition exploits.

Nowhere in that list was "virus detection" because there is no such thing for UNIX. In reality a virus has to make some sort of modification to the system (either binaries, libraries or config files) and that modification attempt is detected and reported by IDS/9000.

*But* if the filesystem is NFS exported and the NFS client makes a change to it locally, IDs/9000 won't detect the change - we don't do file signature checking.

You can thank marketing for the "virus detection" stuff in the product brief :-)

Regards,
Mark
--
Mark Crosbie IDS/9000 Product Architect
http://www.hp.com/security/products/ids
0 Kudos
Reply
harry d brown jr
Honored Contributor

‎11-02-2001 05:21 PM

‎11-02-2001 05:21 PM

Re: virus protection on Unix

This thread clearly shows the only potential virus in unix:

http://forums.itrc.hp.com/cm/QuestionAnswer/1,11866,0xfdcacf38d6bdd5118ff10090279cd0f9,00.html

live free or die
harry
Live Free or Die
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.