rawandnet
asked on
Best Antivrus for Redhat running Apache server
What is a good antivirus system installed on RedHat server that is running Apache web server and hosts Moodle?
As you know Moodle is open to students to attached file and upload. This may contain Viruses and other kinds of attack.
If you know any Antivirus system with all other detection capabilities for Redhat RHEL6 or 7 please share the name with me.
Thank you
As you know Moodle is open to students to attached file and upload. This may contain Viruses and other kinds of attack.
If you know any Antivirus system with all other detection capabilities for Redhat RHEL6 or 7 please share the name with me.
Thank you
The answer to your question is what dkfe suggested - clam.
And...
The primary way any Malware infects a LAMP Stack machine comes through...
1) Old Kernels, which contain zero day exploits.
2) Old PHP versions.
3) Old CMS versions, like WordPress.
4) Clear text passwords - CMS or FTP logins.
Fix: Keep all your software updated + wrap all sites in SSL + only use SFTP (not FTP) + always use unique/strong passwords for every login.
And...
The primary way any Malware infects a LAMP Stack machine comes through...
1) Old Kernels, which contain zero day exploits.
2) Old PHP versions.
3) Old CMS versions, like WordPress.
4) Clear text passwords - CMS or FTP logins.
Fix: Keep all your software updated + wrap all sites in SSL + only use SFTP (not FTP) + always use unique/strong passwords for every login.
With Clam you will need to set up a cron job to scan the students file upload areas at a regular schedule since clam isn't really set up as a real time virus scanner...
Hi,
Just set 'ScanOnAccess yes' in clamd.conf
Cheers
Just set 'ScanOnAccess yes' in clamd.conf
Cheers
Red Hat does not provide anti-virus software. Please check Red Hat for the updates regards.
Red Hat does not provide clamav packages. It's not supported by Red Hat. But clamav is available via EPEL.
https://access.redhat.com/solutions/9203
https://access.redhat.com/support/offerings/production/soc
As per Red Hat:
" Keep a system updated so all patches and security updates are installed.
A subscription to Red Hat Subscription Management (RHN) will help keep a system updated.
Run a local firewall on the system, such as iptables, to block any unused ports. "
Red Hat does not provide clamav packages. It's not supported by Red Hat. But clamav is available via EPEL.
https://access.redhat.com/solutions/9203
https://access.redhat.com/support/offerings/production/soc
As per Red Hat:
" Keep a system updated so all patches and security updates are installed.
A subscription to Red Hat Subscription Management (RHN) will help keep a system updated.
Run a local firewall on the system, such as iptables, to block any unused ports. "
Another big problem on websites is where and how to allow uploads.
clamav is a good proposition, others do have Unix based tooling sometimes on request.
clamav is a good proposition, others do have Unix based tooling sometimes on request.
Hi,
For one lacking a good Windows Antivirus is the main reason files get infected in the first place.
So the bottom line is to cover your own Windows environment with a good Antivirus/Antimalware product, preferably an Enterprise gateway appliance, and you will be just fine with CLAMAV as an extra pre-coution.
Further more patching the OS and blocking ports sounds nice as a quote but won't help you one bit if your goal is to keep infected windows files from being placed on a linux server.
Cheers
For one lacking a good Windows Antivirus is the main reason files get infected in the first place.
So the bottom line is to cover your own Windows environment with a good Antivirus/Antimalware product, preferably an Enterprise gateway appliance, and you will be just fine with CLAMAV as an extra pre-coution.
Further more patching the OS and blocking ports sounds nice as a quote but won't help you one bit if your goal is to keep infected windows files from being placed on a linux server.
Cheers
Many gateway appliances use clamav as their antivirus means.
There is a big name behind clamav: Cisco.
ClamAV will in fact check all signatures(it has, from Unix, Windows, Android etc.), also windows signatures (it will even run on windows if you want it...).
I have a rootkit for my phone stored on a NAS with clamav, and it will tell me that it contains a virus....
Well it does contain a program for hacking the phone in a specific way... not a virus as such.
There is a big name behind clamav: Cisco.
ClamAV will in fact check all signatures(it has, from Unix, Windows, Android etc.), also windows signatures (it will even run on windows if you want it...).
I have a rootkit for my phone stored on a NAS with clamav, and it will tell me that it contains a virus....
Well it does contain a program for hacking the phone in a specific way... not a virus as such.
Hardening is most effective as a preventative measure. The following are some examples:
• Deactivate unnecessary components.
• Disable unused user accounts.
• Implement patch management software that will allow you to test software updates.
• Restrict host access.
• Restrict shell commands per user or per host for least privilege purposes.
• Deactivate unnecessary components.
• Disable unused user accounts.
• Implement patch management software that will allow you to test software updates.
• Restrict host access.
• Restrict shell commands per user or per host for least privilege purposes.
This question needs an answer!
Become an EE member today
7 DAY FREE TRIALMembers can start a 7-Day Free trial then enjoy unlimited access to the platform.
View membership options
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
you can use CLAMAV:
Open in new window
Cheers