You don't usually here that phrase spoken "Linux anti-virus". But it does exist. One of the more popular Linux anti-virus tools is ClamAV. But to most users (especially new users) ClamAV is a bit challenging to use. That is where KlamAV comes in. KlamAV does an outstanding job of making ClamAV a user-friendly tool.
Unlike ClamAV, KlamAV is a GUI tool. So there's no need for opening up a terminal window and learning commands in order to scan either KMail or Evolution for viruses. And KlamAV is full of user-friendly features. Let's take a look at how this gui tool can give you and your users even more of a security edge than they already have thanks to the Linux operating system.
Getting and installing
More than likely KlamAV and its requisite ClamAV are in your distributions repositories. So if you open up your Add/Remove Applications tool you can install KlamAV using the following steps:
When the install completes, you are ready for your first KlamAV run.
When you run KlamAV for the first time you have to walk through an easy-to-use setup wizard. This wizard will have you locate your signature database and quarantine locations (the defaults will work) and that's it. When the wizard completes you will more than likely be told your installation (or signatures) is out of date.
As soon as KlamAV is running for the first time you will see the Update tab of the KlamAV window (see Figure 1). Automatically a new virus definition will begin downloading. Once that is finished you are ready to start scanning.
The first thing you want to do is go to the Email Protection tab and select your email client. As stated earlier, KlamAV can protect both Kmail and Evolution. If you use Kmail KlamAV can set it up automatically. If you use Evolution you have to set up a filter in Evolution to pipe incoming and outgoing mail through klammail. Once that filter is set up you have to create a second filter to send any email with "virus-found" in the header to a quarantine folder.
If you click on the Scan tab you will notice a directory tree. From here you can scan files with the help of the kernel module Dazuko. So you can manually scan your directories for viruses.
You can also set KlamAV to automatically update your virus database (definitions). To do this go to the Update tab and then click on the "Update Virus Database Automatically" and then select how often you want it to be automatically updated. You can also manually update the database by clicking the Update Now button.
You may be asking yourself "why employ a virus scanner on Linux when the vast majority of viruses can't harm my machine?" That is true, but those viruses can harm all of those people you might forward an email to who use Windows. To protect them why not scan all of your outgoing email. Better safe than sorry in that regard.
Even if you are running the Linux operating system, you would do well to employ some form of anti-virus, even if only to protect users you forward email to. And if you do look for a Linux anti-virus, KlamAV is one of the best.Advertisement
Ghacks is a technology news blog that was founded in 2005 by Martin Brinkmann. It has since then become one of the most popular tech news sites on the Internet with five authors and regular contributions from freelance writers.