Is a Linux anti-virus really necessary?

https://sophos.com/en-us/products/...

I've never actually seen anyone use Antivirus for Linux but I don't see a single reason why it wouldn't be necessary

Yes and no.
The same question can be used on any OS.

Yes: even if you are cautious with what you download, install on your system or introduce files from remote locations, can you actually trust all foreign content is virus/malware free?

No: if your system is a sealed box, with no external connections or access... then you're probably fine.

@12bitfloat clamAV. But I've never seen a Linux system have a detected issue.

@C0D4 exactly, so how important is it then?

@chabad360 it's like a condom.
You can get away without it, but do you want to risk it?

It's a good analogy, but the risk without the condom is much greater than the risk without a Linux av...

Depends on your use case. I had to work with clam av. But it is not as much an antivirus for linux as it is an antivirus that runs on linux.

Look at it this way. If you have a linux server which is used by lots of other devices to exchange files. How do you make sure your server does not become a snakes' pit full of malicious files able to infect all your clients? You install an antivirus. To clean those files for them, so no clients of yours get infected.

As for av for linux [to protect linux] -- it's hardly of any use. Unless ofc you are the dogge who has no idea what he's doing...

No, it is not.

Most applications of "Anti-Virus" on Linux are used to scan files destined for Windows machines.

Also, in general Linux users tend to know what they are doing and usually have a pretty good idea of what something is before executing it.

@netikras even when a guy has no clue what he's doin, is it really that necessary?

BTW I use arch (i.e. I'm not that guy)

Been using windows without av for years and no abnormal behavior came up. The general rule is to read before you install something instead of just mashing yes, and know what you are doing. This applies to every OS, windows, android, MacOS, Linux, etc.

@devTea true, but no av means Windows defender off (just confirming)?

Like previously stated, antivirus is precautionary protection that is designed for users who know no better. It also helps those who do know better when something new comes about or you make a mistake.

@devTea Antivirus is still important. Everybody makes mistakes and you will too one day. I'm very tech and CS savvy and I accidentially ran a fake chrome installer with adware once because it was 3 am and I just needed to install chrome real quick. Shit happens

@chabad360 maybe not...

Though thinking about it, wouldn't it be pretty awesome if each popular distro has a small number of people working on a opensource virus detection tool/scripts?

@chabad360 or on... windows defender has never detected anything, despite other AVs going off their head.

I'm with @C0D4. Currently having ClamAV, but when I will get more money I will totally buy some major company license

@Nanos my tv has a open web server which gives you full control over it 😂

I've some how managed to not break my tv while exploring what it can do.

@C0D4 @Nanos @hubiruchi so I get it about smart TVs, but on a regular Linux Desktop system (say Archlinux, Ubuntu, CentOS, Linux Mint, etc.) is it really necessary? Are there any known viruses for Linux that one should watch out for?

And what about windows viruses on wine?

@C0D4 Windows defender has definitely detected more than something. But personally I just got false positives from some rom hacking program that I used at some point.

@chabad360
Yes, there's quite a lot out there but something that most people fail to realise is, Linux is also vulnerable to ransomware.

https://en.wikipedia.org/wiki/...

You are also updating your OS / programs with repos, these repos could be attacked / poisoned.

For example:
http://nakedsecurity.sophos.com/201...

And I am even more worried about the unknown viruses. They are mostly discovered using some kind of defender program (including the classic "antivirus").

@12bitfloat
@chabad360

Like
@C0D4 and
@netikras state

' can approve we'd use it as a tool to filter others OS 'hick up'.
Been successfully cleaning some 'backups' and mails.

Though its less convenient than the pro, Sophos antivirus free version has proven strong for years.

@chabad360

So as @Nanos and @C0D4 mention,
There are many entry points and vulnerabilities.
Mostly starting being spam and (badly maintained) freeware, then turning rogue by hidden links and post loaded ware and exploits.

@netikras @Nanos @C0D4 @hubiruchi @scor so if I'm understanding correctly, is it really necessary? No. Is it worth getting? Definitely Yes.

The Linux.Encoder.1 virus seems to have been significantly more complicated to actually run than your run of the mill Windows virus. That being said, I believe that would be the case for any other Linux malware. So as long as the virus gets to the lab before it gets to you (considering the rarity of it, that could not be the case), having the anti-virus definitely helps.

@chabad360

Definitely.
And your assumption to have it ready is being supported by the fact that most OS are evolving towards a Unix derivate with custom layouts and UI and stuff.

I couldn't estimate government's involvement or tools on Unix intrusion, cause I lack the knowledge.

@chabad360 yes I’m just going to assume windows defender is a antivirus

@Nanos ok. Got.

The main reason why I don't think Linux anti-virus is necessary, is because there are virtually no known strains of one.

Why should you get one then? Because if one does show up, you'll have protection against it.