Red Hat Knowledgebase

There is not really a need for an anti-virus software at this time for Linux systems. Mainly, this is because there are not many viruses that target Linux systems. However, in the future this topic may need to be revisited.

With that said, Red Hat does provide a high level of security in the operating system and packages that we distribute. As security issues are discovered in various applications, Red Hat provides updated packages in a way which keeps potential risk to a minimum. To view Red Hat's policy on backporting security fixes, visit https://www.redhat.com/advice/speaks_backport.html.

Red Hat Enterprise Linux also includes a set of technologies which can greatly reduce the chance of Linux-specific exploits. One example found in Red Hat Enterprise Linux 3 and higher versions is ExecShield, which helps to eliminate memory buffer overflow exploits . Another example available in Red Hat Enterprise Linux 4 and above is SELinux, which is an implementation of a mandatory access control mechanism.

There are also some good security practices to follow to make sure a system is safe:

• Keep a system updated so all patches and security updates are installed. A subscription to Red Hat Network (RHN) will help keep a system updated.
• Run a local firewall on the system, such as iptables, to block any unused ports.
• Do not login as the root user unless needed. Use sudo and log in as a non-root user.
• Do not execute any untrusted code on the system, especially as the root user.
• Enable Security-enhanced Linux (SELinux). This mechanism is in the Linux kernel, checking for allowed operations after standard Linux discretionary access controls are checked.

If there is a need to use virus protection software, there are third party anti-virus programs available from the Linux community. One example is clamav. Clam AntiVirus is available from http://www.clamav.net/ but is not distributed or support by Red Hat.