I've been using Linux as my primary operating system since 1997 and I have never installed a desktop antivirus solution on any computer.
The only exception to that rule has been when I deploy a Linux mail or file server, where I might add something to scan for suspicious email attachments of malicious code within files.
Also: Sparky Linux is a blazing-fast distro that can keep your older machines running for years.
Being vulnerable on a network and vulnerable to viruses can be viewed as two distinct things.
You could have a desktop computer with Secure Shell running that is out of date and vulnerable to attacks.
A bad actor could get onto your network and access your desktop via port 22 and have at whatever's on that machine.
I'm not going to get too deep into the nuts and bolts of this, because you don't need to know the difference between 0777 and rwx permissions.
What you do need to understand is that on any Linux system, for an application to be installed, you have to give it explicit permission to do so by typing your user password.
Until you do that, the software cannot be installed.
Let's say you receive a malicious shell script as an attachment and you unwittingly save it to your Downloads directory.
When you save that file to your Download directory, it'll have both read and write permissions but it will not have executable permission, which means it can't run.
Just because Linux doesn't need an antivirus solution, doesn't mean you're 100% safe from malicious software.
If you're downloading source code from an unknown source, all bets are off.
Also: Deepin 23 aims to reclaim the title of the most beautiful Linux desktop.
Just like with any operating system, you should only install software from a reputable source.
The other caveat is that you, a proud Linux user, have probably inadvertently received viruses and malware via email attachments.
That is why some people advocate installing a mail scanner like ClamAV. With that solution installed, if you ever receive an attachment you need/want to send to someone else, run a quick scan on the file and, if it checks out, you can safely send it.
Also: My favorite Linux email client flunked spellcheck until I did this.
Remember, nothing is ever 100%. And the second this is published, a bad actor might have figured out a way around Linux security, and my answer is rendered wrong.
I've never once used antivirus software on a desktop Linux installation and I don't imagine that I ever will.
This Cyber News was published on www.zdnet.com. Publication date: Mon, 19 Feb 2024 21:13:04 +0000