Linux doesn't have the same malware problems as you might be used to on other platforms, but issues exist, much...
to Linux admins' chagrin.
What is the best open source software for detecting malware problems on Linux servers?
Identify the possible damage done by these rootkits with a system file checker.
Also consider Advanced Intrusion Detection Environment, which has you create a database that stores checksums of all files. It allows you to perform automated scans periodically to find and report on any changes. Once you define a list of files that need monitoring, most of the work is done -- it simply alerts you if something goes wrong.
You can also do checksum verification on binaries that are installed from the package manager. The
rpm –Va command provides an overview of which files have changed and what changed about them.
If you're looking for a virus scanner like the one on Windows, you won't find it on Linux; they aren't necessary.
About the author: Sander van Vugt is an independent trainer and consultant based in the Netherlands. He is an expert in Linux high availability, virtualization and performance. He has authored many books on Linux topics, including Beginning the Linux Command Line, Beginning Ubuntu LTS Server Administration and Pro Ubuntu Server Administration.
Dig Deeper on Linux servers
Related Q&A from Sander van Vugt
Implementing RHEL in the cloud isn't exactly the same as using cloud technology in the data center, especially when addressing swap and support ... Continue Reading
Linux administrators should use syslog and systemd-journald together for smart log analysis. But there are also open source log management tools to ... Continue Reading
As it is with other cloud platforms, autoscaling in OpenStack is important to meet changing workload demands. Here's how to enable that process with ... Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.