antivirus for Linux?

[mantra]

Tripwire is a good product but it's not a antivirus solution.

*nix has seldom virus but as popularity rises more and more threats will be discovered and a good antivirus solution is always a good and wise choice.

What is tripwire?

Tripwire is a tool that checks to see what has changed on your system. The program monitors key attributes of files that should not change, including binary signature, size, expected change of size, etc. The hard part is doing it the right way, balancing security, maintanence, and functionality.

Source: http://www.tripwire.org/qanda/faq.php

[doktorf00bar]

Bear in mind, your best defense against actual *nix viruses is never to run unknown executables as root. Although I've heard of one or two Linux viruses that use exploits to attempt to gain root access, none of them can succeed with current kernels. Following good security practices should prevent any Linux virus from harming anymore then one user's files.

[3vilRick]

Has anybody heard of using a *nix box to read McAfee or Norton's AV DAT's to scan networks for viri (sp)?

[sirrahj]

The McAfee virus scanner for *nix is supposed to work for all flavors, including Linux... if you want to pay for it. Symantec is working on a *nix version as well. So far, the McAfee product scan it's host server only, but testing is still going on to have it work across the network as well. The closest thing to providing any other good information we have seen has been from NESSUS, but we are still getting some false-positives there as well.