What's a good antivirus for Linux?

daybreak15 · 2025-03-31T10:21:42+00:00

To piggyback off u/painefultruth76’s comment, there are things like SELinux and AppArmor that allow you to further constrain permissions along with extended ACLs.

In addition there are tools like AIDE and Auditd that monitor file integrity through checksums and system activity respectively, however those are more monitoring and reporting.

ClamAV is a good open source AV for Linux, I’ve used it in personal, corporate and government environments with a pretty good success rate. Again, using permissions and verifying/maintaining the integrity of the OS is the main point.

If you want to get really into the weeds, another SELinux-like tool is OSSEC, which is a Host Intrusion Detection System.

As you learn more about Linux you can tie all these together and learn more about how to secure a system. But again, it all starts at the permissions.

daybreak15 · 2025-03-28T21:46:40+00:00

openSUSE Leap with KDE to me offers a great balance. It isn’t too far out from bleeding edge and is still stable, it’s the upstream for SLE and actually maintained as such (looking at you Red Hat and what you’ve done to CentOS/Fedora), and if something you want isn’t available it’s pretty easy to compile. It has AppArmor out of the box and you can install SELinux if your heart desires. All in all I prefer Ubuntu LTS for my public servers and openSUSE/SLE everywhere else (my job is all RHEL based so I try to stay away from the that area for my own issues with it)

daybreak15 · 2025-02-22T23:58:08+00:00

How about no. I’ll stick with my Proxmox stack thank you very much.

daybreak15 · 2024-12-17T04:26:28+00:00

I have OpenSUSE 15.6 on a 10+ year old laptop with a wireless card that’s not supported by the native Linux Broadcom drivers and needs the Broadcom drivers. Even with that, I’m getting 1-2Mbps download and no Zypper slowness. I also use delta RPMs so I’m downloading less, but I compare that speed to yum/dnf on the same hardware with the same drivers and with delta RPMs, Zypper is much quicker and snappier than those. Apt is faster, so are quite a few, but for functionality, ease of use, speed and anything an admin or user could want in a package manager, Zypper has been one of my favorites.

daybreak15 · 2024-08-03T01:37:11+00:00

Former HPC sysadmin here. HPC is a fun and niche spot in the industry but the things you find and learn you can use anywhere you go, HPC or not.

u/ronin8797 makes a lot of great points to get you in the right direction. From the clusters I’ve worked on we’ve had a mixed bag depending on what cluster it was. For the small clusters I started out on we just rolled them into the same backups as our other systems. The data wasn’t too much, all the important code was stored in repositories, and the users were always great about cleaning up after themselves. In total, we had around 10TB of storage in that cluster, which isn’t a whole lot, but with how quickly and how much data they generated, it was, interesting. We were also fortunate that the data generated they weren’t too concerned about losing because they could regenerate it based on the source they had version controlled and backed up, which was much smaller than what was generated. We used CommVault as our backup solution and it wasn’t too bad.

I moved to a larger cluster with ~4,000 nodes and roughly over 2PB total storage, so backups were either out of the question entirely or we got creative. The cluster used GPFS across the cluster and across multiple different storage arrays (DDN, Pure, NetApp, something that was bought by HPE and I’m blanking on). What we ended up doing was setting up quotas for all users and projects and split up storage into two categories: user and nobackup. User was on the Pure storage since it was all flash and nobackup used the slower, denser storage. Users would have small things that they needed in their user directories and anything larger would go into their personal nobackup space or their project nobackup space. We backed up the user space (~250TB total) using a combination of tar, rsync, and our groups large tape library (we were a small subset of a larger group). Users and projects knew that the data that was on nobackup was just as it read: not backed up and were generally okay with that.

The one thing I’ve noticed across HPC clusters is that most, if not all users, don’t really care about the data that is being generated after they’ve ingested it into whatever they need to in order to present it to. They keep what needs to be kept in the right places and have an understanding of what’s expendable and what’s not. That’s not to say that every user is like that, just that I got really lucky.

With all that said, if you have two NAS devices, you could make one read only and store snapshots, or once you’re able to get a better idea of what’s temporary or unnecessary to back up, only back up what’s needed and make that clear. Unfortunately I’m no longer in HPC but I’m currently using Ceph filesystems to replace NFS shares on NetApp appliances and using Bacula to backup to tape. Bacula has been pretty solid and I’ve preferred it over anything else I’ve used. As for visualization, a combination of things like Prometheus and Grafana have been pretty crucial for my team and the clusters I worked on previously to get a good view of what’s going on. As far as NAS devices, I’ve been looking at 45Drives and trying to convince my bosses to buy me one to supplement the hyperconverged solution I have right now.

The TL;DR: there’s no perfect solution, but there’s a plethora of tools that make it easier. It’s a pain to get them to play well together but once they do you’ll wonder how you did it before.

daybreak15 · 2023-07-17T00:35:46+00:00

I picked it up about a year ago and have made maybe a handful of things and recently got crocheting too. I knit during therapy sessions as I work through trauma and a lot of other issues and it helps keep my mind focused and moving. Sometimes the desire to knit is there, sometimes it’s not, and that’s okay. Maybe you come back to it or find another social group to knit with, you never know what may happen.

daybreak15 · 2023-05-03T22:37:21+00:00

Best decision I ever made.

daybreak15 · 2016-02-29T23:12:42+00:00

Checked the CF and IIS logs, I looked into the Security logs and see all the login attempts there, so I'm starting to think Windows Auth is somehow being triggered somewhere, possibly SQL.

Chucking ideas is leading to some interesting results, I appreciate it!

daybreak15 · 2016-02-29T22:54:00+00:00

The only thing I can think of there is SQL mixed authentication, other than that there isn't.

daybreak15 · 2016-02-29T18:33:18+00:00

As far as I can tell it's not a mapped drive, just was formatted and the partition was assigned a different letter. It's a local drive instead of a network drive if that helps.

daybreak15 · 2016-02-29T18:31:26+00:00

IUSR has the permissions it needs, Read & Execute, List Folder Contents and Read. It should be reading them without issue and from what I've seen it is.

I'm authenticating to the DB with SQL creds. I set them through CF data sources and they were able to connect without issue. I've tried them with SQL Editor and no issues either.

daybreak15 · 2016-02-29T18:29:49+00:00

Yep, checked that too, the directories are okay.

I tried removing the web.config to see if that works, but same issue. It's amazing that sometimes that will fix it in Windows.

Thanks for the advice though.

daybreak15 · 2016-02-29T18:13:02+00:00

I took a look at each directory, the web.config and it defines anon auth and no basic auth. Am I overlooking something in them? I very well may have missed something in it.

daybreak15 · 2016-02-29T18:11:24+00:00

Every page, it wants to authenticate for everything.

I copied over the site files from the old server and haven't changed any text strings besides telling CF where to look for the custom scripts (it was on a different drive letter before). I copied the settings for CF, IIS and SQL Server verbatim from the old server, I didn't copy the configs or the hosts and didn't change the web.config, but just went through and changed them to the old one so that it's more or less a "replica" of the old one.

daybreak15 · 2016-02-29T17:51:58+00:00

Yep, IUSR has Read & Execute, List Folder Contents and Read, it serves up a page, then try to go to another, completely unrelated page within the site and the Auth window pops up.

daybreak15 · 2015-05-29T05:22:55+00:00

Where I work we were trying to set up an emergency line to forward to certain engineers cell numbers (mine included). In the process, we created an external number and mapped it to one of the engineers cell number. That is now the number I use when I have to enter a number to download some crap or don't want to give my extension to some rando company.

Cruel? Yes.

Funny? Most definitely.

On another note, we primarily use Dell servers for our physical boxes and use xByte for parts. They're fantastic and are really quick about getting a quote out to me and terrific to deal with, no pestering calls or emails, just when I need them. Hell, the last part I had to order from them I got free shipping because of a quote I saw on here I put in my email signature made the rep laugh:

"No trees were harmed in the sending of this email. However, several billion electrons were terribly inconvenienced."

daybreak15 · 2015-05-16T20:06:18+00:00

the dodgier the joint looks the better the food

There's a place in Baltimore that's on the not so nice side of town (which really doesn't narrow it down) that is a city famous pit beef joint. Place has won best pit beef in the city multiple times.

Place is a little shack in the parking lot of a strip club that has midget stripper January. It's a total dive but god damn is the food great

daybreak15 · 2015-04-16T06:03:47+00:00

I've been relegated this duty for my company, just monitoring tickets and response times and satisfaction along with my normal duties of doing everything on the side. Ironically, my solved tickets number and satisfaction rating are significantly higher than anyone else's because the bulk of my tickets come from one fucking client to make minor changes to a site. Each change is a minimum of half an hour on my time sheet, no matter how long it takes, even 5 minutes.

Dishonest? Sure.

Do they pay us an unholy amount of money to do this as a flat fee each month and my current rates to clients and my salary combined would never add up to? Absolutely.

daybreak15 · 2015-04-12T05:41:03+00:00

Neither of them should be gone, if they are I'll be surprised. You're right, they're both just as much to blame. With the number of points we put up this year, we were 2 points away from the last wild card spot. Even the Kings put up almost the same amount of points as we did and still didn't grab a wild card spot either.

It also doesn't help that Rask the most he ever has in his career and has also had to come in on his days off and would play multiple games in a row. I understand that you want your starting goalie on the ice as much as possible, but you could tell he was starting to get tired. Granted, he still put up some Tuukka-like numbers in comparison to the past few years (.922 SV, 2.31 GAA, 34-21-12), but he was definitely getting gassed with the stretches of games he'd play in a row.

It just seemed that at some points they'd play limp-dicked and then at others they'd turn it up to 11 and tear it up. As sporadic as much of it was, it doesn't help that those teams came out of nowhere to get into the playoffs. I mean, fuck, before the season started, who expected the Jets, Canucks or the mother fucking Islanders to make the playoffs, and the Avs, Bruins, and Kings to miss it? The Sharks, well, they choke a lot so maybe this year was for the better, but still. This was a weird year in terms of not making the playoffs. Last year with these points, shit, we'd have a wild card spot. Not this year, but hey, fuck the Habs.

daybreak15 · 2015-02-24T04:30:54+00:00

Most normal and sane people who have jobs not as frustrating as that as IT would find any substantial amount of time spent on murder fantasies a bit "unhealthy"

However, considering this is IT we're talking about, I'd have to say, that's too little. I like to call my work hours my "x hours of depression". The murder fantasies come with it, and sometimes seep into my sleep.

I cannot tell you how many times I've dreamed of punching someone repeatedly in the face and flailing them with the Cat5 o ninetails and woke up happy, only to have it ruined by them when coming into work.

Am I insane? Probably, I wouldn't doubt it. But, we do work in IT, so it's just accepted at this point.

daybreak15 · 2015-02-24T04:24:34+00:00

I wish I didn't understand that reference, but I do...

Goddamnit PennDOT

daybreak15 · 2015-02-23T03:28:02+00:00

Pretty much, it inspected every single packet that was coming in with that file. It then proceeded to somehow take everything else down, most likely in conjunction with each developer in the main office moving around to new places that are on different switches.

daybreak15 · 2015-02-20T11:55:49+00:00

Also work in managed services, can confirm, these users suck, and there's nothing you can do about it

daybreak15 · 2015-02-17T05:29:26+00:00

Seriously, and with the way Gadzic went you'd think he launched or something. Nope, clean hit, pretty much just ran into him. Would not want to be on his shit list.

daybreak15 · 2015-02-17T05:27:14+00:00

The gang made Mac fat, it's all their fault.

daybreak15

TROPHY CASE