Re: [Emc-users] OT: Linux Security

2016-04-05 Thread Dave Cole
I have two Windows XP PCs that are on 24x7 and live behind a firewall/router that has NAT. I run Avast Antivirus on both of them. I get a minor infection on each machine about once per year but between Avast and Malwarebytes that is quickly fixed. By far most of the infected items I get are via

Re: [Emc-users] OT: Linux Security

2016-04-05 Thread Nicklas Karlsson
On Tue, 5 Apr 2016 12:09:14 -0400 tom-...@bgp.nu wrote: > > > On Apr 5, 2016, at 11:52 AM, Valerio Bellizzomi wrote: > > > > On Mon, 2016-04-04 at 14:00 -0400, Tom Easterday wrote: > >> Always good to have a local backup as well, but offsite backup is > >> essential if you

Re: [Emc-users] OT: Linux Security

2016-04-05 Thread Valerio Bellizzomi
On Tue, 2016-04-05 at 12:09 -0400, tom-...@bgp.nu wrote: > > On Apr 5, 2016, at 11:52 AM, Valerio Bellizzomi wrote: > > > > On Mon, 2016-04-04 at 14:00 -0400, Tom Easterday wrote: > >> Always good to have a local backup as well, but offsite backup is > >> essential if you

Re: [Emc-users] OT: Linux Security

2016-04-05 Thread tom-emc
> On Apr 5, 2016, at 11:52 AM, Valerio Bellizzomi wrote: > > On Mon, 2016-04-04 at 14:00 -0400, Tom Easterday wrote: >> Always good to have a local backup as well, but offsite backup is essential >> if you really care about the data. With CrashPlan there is an option, I

Re: [Emc-users] OT: Linux Security

2016-04-05 Thread Mark
On 04/05/2016 11:20 AM, Jon Elson wrote: > On 04/05/2016 06:47 AM, Mark wrote: >> On 04/04/2016 12:50 PM, Jon Elson wrote: >>> At least Ubuntu is set up so that root cannot login from the >>> net. Only user accounts can log in via the net, then you can >>> use su or sudo to get the required

Re: [Emc-users] OT: Linux Security

2016-04-05 Thread Jon Elson
On 04/05/2016 06:47 AM, Mark wrote: > On 04/04/2016 12:50 PM, Jon Elson wrote: >> >> At least Ubuntu is set up so that root cannot login from the >> net. Only user accounts can log in via the net, then you can >> use su or sudo to get the required privilege. >> >> Jon > If you really, really,

Re: [Emc-users] OT: Linux Security

2016-04-05 Thread Mark
On 04/04/2016 12:50 PM, Jon Elson wrote: > On 04/04/2016 09:54 AM, Jeff Epler wrote: >> I don't think any of the common web or e-mail threats have payloads that >> work on Linux anyway. But if you have an open ssh port and your root >> password is "root", you will end up with unwanted software

Re: [Emc-users] OT: Linux Security

2016-04-05 Thread Rick Lair
This is all good info, I do know we have a firewall setup on the router, much more than that, I'm not sure, and I don't really mess with that aspect of or system, I'm just responsible for the Linux machines, As for the actual cnc machines, they are internet connected, but the operators do not

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Jack Coats
It isn't that Linux isn't a target. It is. Just not as 'popular' a target. There are antivirus that can be run on Linux, but they tend to focus on PC virus, partly because Linux is used often as storage server, and scanning the users files is a reasonable thing to do. In my experience, Linux

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Tom Easterday
This is the same argument often heard in regards to MacOS in the late 90s and early 00s when Windows was rife with viruses. In fact the reason MacOS was more secure then and Linux is (still) secure has more to do with the CERT and the development model of Unix itself (from whence MacOS 10

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Jack Coats
I have used Linux for a long time. If you don't go 'trolling' un-trusted web sites and using email on the same computer you use for EMC, there is no need to worry. Why? Linux is a 'less valuable' target for hackers than commodity windows and even Apple machines. There are also fewer of them in

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Tom Easterday
Then don't encrypt or select the option to allow the company to hold the key as well... > On Apr 4, 2016, at 2:51 PM, Nicklas Karlsson > wrote: > > On Mon, 4 Apr 2016 14:00:42 -0400 > Tom Easterday wrote: > >> Always good to have a local backup

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Nicklas Karlsson
On Mon, 4 Apr 2016 14:00:42 -0400 Tom Easterday wrote: > Always good to have a local backup as well, but offsite backup is essential > if you really care about the data. With CrashPlan there is an option, I > believe, where they hold the key as well and can therefore decrypt

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Tom Easterday
Always good to have a local backup as well, but offsite backup is essential if you really care about the data. With CrashPlan there is an option, I believe, where they hold the key as well and can therefore decrypt data if you happen to lose the key. However, making sure you don't lose the

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Gene Heskett
On Monday 04 April 2016 10:43:10 Nicklas Karlsson wrote: > A backup of important files stored at other location or other place > not likely to be affected by the same misshap is always good. > > I'll second that. amanda grabs the lcnc related stuff from all of my machines, and all of this

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Gene Heskett
On Monday 04 April 2016 09:55:16 Rick Lair wrote: > Hello Guys, > > Is there any need for any anti-virus/malware/spyware software on my > linux machines, I have never thought about, but last week I switched > my desktop over to Mint from XP, and wasn't sure what security > measures are needed, I

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Chris Albertson
You certainly do not need to BUY any additional software. But you do need to set up the Linux machine reasonably. Mostly this means 1. Never use an admin login account for normal work. Set yourself up as a normal user then use "su" or whatever to do what you need. 2. use good passwords on

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Jon Elson
On 04/04/2016 10:00 AM, Tom Easterday wrote: > For offsite backup I would highly recommend of CrashPlan. It works on Mac, > Win, and Linux. It allows for strong private key encryption of all data > during backup and on the servers. Recovery of files is easy and since you > are downloading

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Jon Elson
On 04/04/2016 09:54 AM, Jeff Epler wrote: > > I don't think any of the common web or e-mail threats have payloads that > work on Linux anyway. But if you have an open ssh port and your root > password is "root", you will end up with unwanted software installed, > such as an IRC server to control

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Jon Elson
On 04/04/2016 09:49 AM, Rick Lair wrote: > So what would you recommend on my desktop PC in my office, that I do > everything on, that I just converted over to Linux Mint? > > Is it behind a firewall? Does it use NAT, so the desktop has no WAN address? That's the best security. Use good

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Jon Elson
On 04/04/2016 08:55 AM, Rick Lair wrote: > Hello Guys, > > Is there any need for any anti-virus/malware/spyware software on my > linux machines, I have never thought about, but last week I switched my > desktop over to Mint from XP, and wasn't sure what security measures are > needed, I wasn't

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Nicklas Karlsson
I would consider lost key quite a serious risk. I have copy of files I worked on the last months on CD/DVD or whatever they name the disks nowaday. If computer break down or does not work for other reason i install the software again. On Mon, 4 Apr 2016 11:00:35 -0400 Tom Easterday

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Tom Easterday
For offsite backup I would highly recommend of CrashPlan. It works on Mac, Win, and Linux. It allows for strong private key encryption of all data during backup and on the servers. Recovery of files is easy and since you are downloading it is usually quite fast assuming you have fast

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Jeff Epler
Here are the security measures I use on my Linux machines: * Have a back-up plan so that you can restore your computer after a problem (not limited to finding malware, but more likely problems such as a failed disk/SSD) * Firewall that allows incoming connections only on specific

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Rick Lair
So what would you recommend on my desktop PC in my office, that I do everything on, that I just converted over to Linux Mint? Rick On 04/04/2016 10:43 AM, Nicklas Karlsson wrote: > A backup of important files stored at other location or other place not > likely to be affected by the same

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Nicklas Karlsson
A backup of important files stored at other location or other place not likely to be affected by the same misshap is always good. On Mon, 4 Apr 2016 07:33:21 -0700 Jerry Scharf wrote: > Rick, > > The family of software you mentioned are there to try to protect you when >

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Jerry Scharf
Rick, The family of software you mentioned are there to try to protect you when you bring new things onto the machine. Anti-virus is for finding bad programs that have been added to the machine. If you stick to only installing things that are downloaded from the debian distro and things you can

Re: [Emc-users] OT: Linux Security

2016-04-04 Thread Nicklas Karlsson
For spyware I guess it depend. If you market the machined parts they could it see them in the broschure or wherever you put them anyway. On Mon, 4 Apr 2016 09:55:16 -0400 Rick Lair wrote: > Hello Guys, > > Is there any need for any anti-virus/malware/spyware software on