Get APLawrence.com by RSSThis article is from a FAQ concerning SCO operating
systems. While some of the information may be applicable to any OS,
or any Unix or Linux OS, it may be specific to SCO Xenix, Open
Desktop or Openserver.
There is lots of Linux, Mac OS X and general Unix info elsewhere on
this site: Search this site is the best
way to find anything.
Unix, Xenix and ODT General FAQ
Are there any antivirus programs for Sco Unix/OpenServer?
Shane Gibson posted the following a while ago:
>>
>> The reason you have not found little to nothing, is that there are no
>> viruses that can attack a Unix box.
>>
>
>Actually, that's not entirely accurate. There are VERY few known
>Unix Viri, but they are so few and so (relatively) harmless, that
>there is essentially, no real threatening viri for Unix.
You can find some antivirus packages (or packages which
'scan' the datastream on an Unix Internet server looking for
known DOS/Widows viruses) here:
Dr Solomon Antivirus for Unix
McAfee (http://www.mcafee.com)
AMAVIS (http://satan.oih.rwth-aachen.de/AMaViS/amavis.html)
Interscan VirusWall (http://www.datatel-systems.com/virus.htm)
(http://www.avertlabs.com/tvdbeta/unix/download.ht)
Sophos AntiVirus (http://www.sophos.com)
DataFellows (http://www.datafellows.com)
You can also check for a boot-sector virus by making use of
the following script, kindly posted by Jeff Liebermann:
:
# @(#) bvchk Ver 1.05 Checks for boot sector virus.
# 03/16/93 by Steve Post (spost@redwood.boulder-creek.ca.us)
# 02/14/93 tweaks and cleanup (jeffl@comix.santa-cruz.ca.us)
#
# Check hard disk boot block against stored image
# Must be root to read raw hard disk
# Boot block is 376 bytes in all versions of Xenix and SCO Unix.
#
if [ ! -r /etc/masterboot ]
then
echo "$0: Error. You must be root to read /etc/masterboot and boot
record."
exit
fi
echo "$0: Now comparing /dev/rhd00 boot record with /etc/masterboot"
if ( dd if=/dev/rhd00 bs=376 count=1 | /bin/cmp - /etc/masterboot )
2>/dev/null
then
echo "$0: Looks OK. You're safe."
else
echo "$0: Boot record has been changed. You probably have a virus"
fi
Roberto Zini
Also see Kevin Smith's scanmail for MMDF
Enter your email address for automatic notification of new posts here
(be sure to whitelist 'feedburner.com' if you use spam filtering)
| Views for this page | ||||
|---|---|---|---|---|
| Today | This Week | This Month | This Year | Overall |
| 2 | 30 | 88 | 1,306 | 3,146 |
/SCOFAQ/FAQ_scotec6antivirusprog.html copyright 1997-2003 (various) All Rights Reserved
Have you tried Searching this site?
Unix/Linux/Mac OS X support by phone, email or on-site: Support Rates
This is a Unix/Linux resource website. It contains technical articles about Unix, Linux and general computing related subjects, opinion, news, help files, how-to's, tutorials and more. We appreciate comments and article submissions.
Your ad here - $48.00 yearly!
http://www.schewanick.com SCO Unix, Solaris, Linx (various), PHP, MySQL, Apache, uniBasic, dL4, Perl, System Administration and more....
http://echo3.net/ Unix/Linux Custom Applications, Web Hosting, C/C++ Programming Courses
http://bcstechnology.net Full service Linux & UNIX systems integrator; Windows to UNIX/Linux Client-Server Specialist; Secure E-Mail & Website Hosting; Thoroughbred Software Developer; Custom Industrial Automation; Hardware & Electronics Experts; In Business Since 1985.
- Nov 21 07:55
@loudmouthman: correct, but how do you prove ANYTHING like that is accurate? You can't. A text file is no better or worse than anything. - Nov 21 07:40
@loudmouthman: well, a digital signature could prove it hadn't been altered. Text is no more insecure than anything else in that sense.
Related Posts
Add your comments