Baffled as to why my company failed the UK's assessment for not having anti-virus on . It was a hard fail.

Never come across this before - and last year we passed despite explicitly stating no antivirus on linux machines.

Assessors are

Anybody else come across this?

Β· Β· 4 Β· 3 Β· 5

@athairbirb I'm just going to install something as a box-ticking exercise (will check out clamAV); I'm a bit more interested as to why they think linux systems need antivirus in order to be secure. Perhaps I've been naive?!

@davidoclubb @athairbirb @kev perhaps they want you to scan all incoming files via email? This would make sense since malicious software is not exclusive to windows anymore and deppending on the permissions, this needs to be addressed in multi user environment. ClamAv or Sophos to be tested.

Why do you think we should not use av on linux?

@b847c1960 @athairbirb @kev I've never used it before - had always assumed that there was extremely low risk partly due to low market share and partly due to the system controls.

I'm assuming that I *have* been naive!!

@davidoclubb @athairbirb @kev not necessarily, no. Do not be harsh to yourself, maybe they upped the game because ransomwers are everywhere and they would like to proactively target this.

Also, i really do think we should use AV on linux server on demand at least on email servers for all email. But i am dumb, play a bit with this

> extremely low risk partly due to low market share

We have a saying in the industry - "security through obscurity never works" πŸ™‚

Don't rely on things not being widely used - it's a sure fire way of getting popped. Instead, rely on controls that mitigate risk.

@b847c1960 @athairbirb

@davidoclubb @kev @athairbirb i dont, no. I will from today on my local machine, i feel inspired with this thread and it would not hurt to have it to learn stuff. I used clamwin in the past on windows machine so i was familiar a bit with it in the past in terms of engine (not that it matters today).

@davidoclubb @kev @athairbirb please keep us posted, i am curious a bit. Will configure it on fedora in the next couple of days. Thank you for the thread!

@davidoclubb I’d be remiss to say publicly how we protect ourselves. πŸ™‚

@b847c1960 @athairbirb

@kev @davidoclubb @athairbirb you missed the music. Let us try that again

Boom boom pssht psht bim-bim-bim-bim securi-tah for-evaaah

@davidoclubb I don't know all the details, obviously. So this is a best guess, so take it with a pinch of salt.

I can see where they're coming from - Linux isn't impervious to virus' and if you're using Windows in your infra as well, using Linux with no AV could be a potential infection vector for your MS infra.

It's tenuous, but not out of the realms of possibility.



Burocrats cont understand technology

@aral @davidoclubb The real kicker would be if you install anti-virus they fail you for running untrusted anti-virus software.

@davidoclubb Was this for Essentials, or Plus?

Some auditors are seriously brutal. Others will work with you a little and provide you guidance, as opposed to just flat out failing you.

As for the AV, I believe it's more about proving you're protecting against malware where data could be stored.

We're just prepping for our Plus renewal again. It's a bloody nightmare :).

If you're going for Plus, brace yourself for some new rules around BYOD.

@gray just standard thankfully, and the feedback has been useful so hopefully we will pass on our free Secunderabad attempt...😬😱

Sign in to participate in the conversation
TΕ΅t Cymru | Toot Wales

The independent social network for Wales, the Welsh, and everyone else! | Y rhwydwaith gymdeithasol annibynnol i Gymru. TΕ΅t is the social media network that puts YOU in charge. No data mining, no silly ads. Your Wales, your voice, join today! TΕ΅t yw’r rhwydwaith gymdeithasol sy’n rhoi rheolaeth i TI. Dim cloddio data, dim hysbysebion twp. Dy Gymru, dy lais, ymuna heddiw!