Scan Linux from Windows ?

Discussion in 'other anti-virus software' started by FastGame, Aug 23, 2006.

Thread Status:
Not open for further replies.
  1. FastGame

    FastGame Registered Member

    I know Windows AV scanners will scan my Linux partition, what I want to know is if the AV will actualy work right while doing so....unpack, detection, removal.
     
    FastGame, Aug 23, 2006
    #1
  2. TNT

    TNT Registered Member

    Are you sure about this? You need to have ext2fs support in Windows to read the Linux filesystem.
     
    TNT, Aug 23, 2006
    #2
  3. Arin

    Arin Registered Member

    No my friend, you'll need scanners made for linux.
     
    Arin, Aug 23, 2006
    #3
  4. Alphalutra1

    Alphalutra1 Registered Member

    They can't do that unless they have ext2fs mounted as a readable and writable drive, which windows normally can't do. In addition, there aren't really any antiviruses made for detecting linux viruses only. They are usually used in mail servers to scan mail for windows viruses

    Cheers,

    Alphalutra1
     
    Alphalutra1, Aug 23, 2006
    #4
  5. TNT

    TNT Registered Member

    There are third-party drivers for that, but I'm not sure whether the poster knew about it and had them installed or not.

    For sure.
     
    TNT, Aug 23, 2006
    #5
  6. FastGame

    FastGame Registered Member

    Yes, thats why I said "I know Windows AV scanners will scan my Linux partition" I use This Works perfect on my ext3fs partiton. I also have NTFS read & write support in Linux.

    I ran some test, downloaded some known virurs in various Linux folders. While in Win XP I scanned my Linux drive with Avast, AntiVir, Bitdefender and MWAVSCAN. All the AV's found the virus on the Linux drive, they also quarantined (except MWAV) or deleted the virus.

    So the AV's that are for Linux, only detect windows virus ? don't they have any detection for things that might affect Linux ? If the "for Linux AV" does have detection for Linux germs, do the window AV's also include the Linux sigs ?
     
    Last edited: Aug 23, 2006
    FastGame, Aug 23, 2006
    #6
  7. Alphalutra1

    Alphalutra1 Registered Member

    No, they will have signatures to detect multiple os viruses, however there are very very few viruses that currently affect *nix, thus most signatures are used to detect windows viruses. Likewise, windows antiviruses usually contain sigs for linux viruses since they are so few.

    Cheers,

    Alphalutra1
     
    Alphalutra1, Aug 23, 2006
    #7
  8. TNT

    TNT Registered Member

    Not "only", but certainly "mostly".
    There's really not much malware out there for Linux; the most common are probably rootkits, but I'm not sure how good are common AVs at detecting those. Frankly, I wouldn't count on AVs at all to detect malware on Linux. Use Tripwire: http://sourceforge.net/projects/tripwire/
     
    TNT, Aug 23, 2006
    #8
  9. FastGame

    FastGame Registered Member

    Thanks to all :)

    I was mainly interested because even though I have read & write access in Linunx for NTFS, I wasn't able to scan the windows drive with Linux F-Prot but was able to scan Linux from my windows drive.

    TNT, thanks for the "Tripwire" :)
     
    FastGame, Aug 23, 2006
    #9
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice