ClamAV on openSuse

ClamAV is a good antivirus software for Linux. Do you need it? Linux is a very safe operating system, but sometimes it’s good to check if everything is OK.

You can find ClamAV in your operating system repository. On openSuse, I just use Apper that is software for managing packages. Click Security, and you have all packages. Search clamav. Click to install it on your system if it has not been installed so far.

The most important command is clamscan. To see the version, just write on the console:

poganin@linux-7tpy:~> clamscan -V
ClamAV 0.98

But when you wish to scan the system and use clamscan (you must be a root!), you will get:

poganin@linux-7tpy:~> sudo clamscan

Ufamy, że lokalny administrator udzielił odpowiedniego szkolenia.
Zwykle sprowadza się ono do tych trzech rzeczy:

    1) należy respektować prywatność innych,
    2) należy myśleć przed pisaniem,
    3) z dużą władzą wiąże się duża odpowiedzialność.

root’s password:
LibClamAV Error: cli_loaddb(): No supported database files found in /var/lib/clamav
ERROR: Can’t open file or directory

———– SCAN SUMMARY ———–
Known viruses: 0
Engine version: 0.98
Scanned directories: 0
Scanned files: 0
Infected files: 0
Data scanned: 0.00 MB
Data read: 0.00 MB (ratio 0.00:1)
Time: 0.004 sec (0 m 0 s)

In other words, it doesn’t work. You must update the virus database by running

poganin@linux-7tpy:~> sudo freshclam

as a root. Then, wait for the end of updating. You will see something like that:

ClamAV update process started at Wed Dec 25 13:37:10 2013
Downloading main.cvd [100%]
main.cvd updated (version: 55, sigs: 2424225, f-level: 60, builder: neo)                                                
Downloading daily.cvd [100%]                                                                                            
daily.cvd updated (version: 18284, sigs: 621876, f-level: 63, builder: neo)
Downloading bytecode.cvd [100%]
bytecode.cvd updated (version: 235, sigs: 44, f-level: 63, builder: dgoddard)
Database updated (3046145 signatures) from database.clamav.net (IP: 195.30.97.3)

The databases are in the files:

/var/lib/clamav/daily.cvd
/var/lib/clamav/main.cvd

ClamAV use these files to check if there’s no malware on your operating system.

Now run clamscan again:

clamscan /path/to/the/directory

And all files in the directory will be scanned. Look at the example:

linux-7tpy:/ # clamscan /home/poganin/worksSpring/Mirek/src/main/java/com/linaittech/Mirek
/home/poganin/worksSpring/Mirek/src/main/java/com/linaittech/Mirek/HomeController.java: OK

———– SCAN SUMMARY ———–
Known viruses: 3040793
Engine version: 0.98
Scanned directories: 1
Scanned files: 1
Infected files: 0
Data scanned: 0.00 MB
Data read: 0.00 MB (ratio 0.00:1)
Time: 11.261 sec (0 m 11 s)

There’s one file in the Mirek directory. It’s status is OK so it’s not infected. At the end of scanning, you see the stats.

To get help and more options, just run the command:

linux-7tpy:/ # clamscan –help

You see that ClamAV is a very useful tool. However, you will be using the most often:

linux-7tpy:/ # clamscan -r –bell -i /

for scanning all files in your system.

-r  – Scan subdirectories recursively
–bell – Sound bell on virus detection
-i – Only print infected files

To remove an infected file, just run:

linux-7tpy:/ # clamscan -r –remove /home/poganin

It will remove all the infected files ClamAV has just found on your operating system. Be careful – the files are gone for good. Instead, better use this command:

linux-7tpy:/ # clamscan -r –move=/home/wirusy /home/poganin

–move=/home/wirusy – Move infected files into the /home/wirusy directory

With this option, all infected files will be moved to the directory during scanning. Then, you can check the infected files again and make a decision what to do with them.

I hope it’s clear.

Konfiguracja Wi-Fi na openSUSE/Wi-Fi Configuration on openSUSE

– instalujemy sterowniki do karty sieciowej (nie ma domyślnie w systemie, bo problemy z licencją): szukać w Internecie

– system wykrywa kartę sieciową i obecność routera/modemu (być może trzeba zrestartować system)

– idziemy do konfiguracji routera/modemu: w przeglądarce wpisujemy po prostu 192.168.1.1 -> okno logowania -> wpisujemy użytkownik: admin i hasło: admin -> jesteśmy w w naszym routerze/modemie -> zakładka Interfejs -> podzakładka Wi-Fi -> patrzymy typ uwierzytelnienia -> jeśli WPA-PSK, szukamy klucza (np. EA8… itd.)

– kopiujemy klucz i wklejamy w do Network Managera w systemie operacyjnym. Najpierw  klikamy połączenie bezprzewodowe -> Dodaj -> w zakładce Bezprzewodowe musi być Nazwa połączenia i SSID oraz zaznaczone Połącz automatycznie -> w zakładce Zabezpieczenie bezprzewodowe -> Zabezpieczenie: WPA/WPA2 Personal (to samo co WPA-PSK) i wklejamy nasz klucz tj. nasz EA8… itd przy polu Hasło.

– Klikamy OK. Powinno działać. U mnie działa (bezprzewodowy i przewodowy na laptopie).

 

 

– install required drivers for your Wi-Fi adapter

– the system detects the Wi-Fi network adapter and your router/modem (you may be forced to restart the system)

– go to your router/modem configuration: you should write 192.168.1.1 in your browser -> log in (user: admin and password: admin) -> we are in our router/modem -> go  to Interface tab -> go to Wi-Fi sub-tab -> seek the authorization type -> if WPA-PSK, seek the key, for example EA8… etc.).

– copy the key and then paste into Network Manager in your operating system : Click your Wi-Fi connection -> Under security settings, choose WPA/WPA2 Personal (your WPA-PSK) and paste your key that is EA8.. etc. near Password.

– OK. It should works.

CUTe ARP Protector

CUTe ARP Protector is the best free software that protect you from ARP spoofing. It’s hard to detect ARP spoofing in your computers. But thanks to this software, you will see all attacks. It’s important that this program prevent from attacking on a low level. I’m using that all the time. This software should start with your system to protect you from the beginning.

SuperAntiSpyware

SuperAntiSpyware is the best free solution for your computers. It can cooperate with the anti-virus software you have on your computers.  I’ve checked it on my laptop, and I recommend you. It’s safe, light, quick and can find all junk and malware in memory, registry, and in files.