Linux Antivirus is a very specific niche. It’s mostly there to scan for Windows viruses and malware. So your Linux mailserver for example (or storage system) filters those out before they appear on your employee’s computers.

What you’d instead do in Linux is harden your webserver and services, keep the webservices you host up to date and have some monitoring so you detect known rootkits or if your DNS server gets abused for a DDoS attack. And keep an eye on supply chain attacks if you’re a developer. Because that’s how attacks against Linux work. I’ve been scolded for saying this on Lemmy, but to this date, desktop computer malware isn’t really a thing with Linux. Attacks almost exclusively target webservers and Internet of Things devices, routers and so on.

So an Antivirus on a desktop computer isn’t going to do much, due to the lack of malware which works that way. And you’d still be vulnerable if someone hands you a malicious bash script to delete your home directory. It could however do something if you run Proton or Wine and run Windows programs in Linux.

If you want to do something for security, learn not to copy-paste stuff into the command line. Don’t run executables from random places of the internet. Try to rely on your distribution’s package repository. Do automatic updates, and generally do timely updates, especially with the webbrowser and stuff that’s reachable from outside. Set strong passwords. And don’t neglect your backups. Your harddisk is bound to fail anyway, eventually. I think that’s going to get you 99% of the way. Installing an antivirus is only the next 0.2%.

There’s another community for this: !localllama@sh.itjust.works
Though we mostly discuss the news and specific questions there, beginner questions are a bit more rare.

I think you already got a lot of good answers here, LMStudio, OpenWebUI, LocalAI…
I’d like to add KoboldCpp that’s kind of made for gaming/dialogue, but it can do everything. And from my experience it’s very easy to set up and bundles everything into one program.

I think they want you to add something like

guest ok = yes  

Isn’t there some example config installed along with samba, which you can modify or copy-paste? I think that’s more likely to be laid out correctly than a random internet tutorial which might be outdated or for another distro or another use-case…

Indeed, the story is funny and weird. Though he used to share lots of interesting and funny perspectives. And these days the Youtube comments underneath are way more funny and on point than all his content.

Idk, I can’t find that supposed Bluesky and Mastodon discussions, I think he made that up. And he fails to mention the email address is just a text field, people can put anything in there. And while highlighting it, he also completely fails to spot the timezone which is right next to it. And that’s set to UTC-4 so America east coast. And as a blogger/influencer he could at least have sent a mail and see if it bounces before reporting on it… And then he invents what the reviewer’s thought process was according to him, while the real next joke is their nationality, but he doesn’t spot that either. So I don’t know what to make of this. Sure he has a community and reach, and brings attention to niche things. But his own take on it tends to be wrong(?) and not in an inspiring way… In the old days he used to play devil’s advocate and I think that was extremely on point. But you can’t really fabricate “facts” and argue against that, because it turns it from a sarcastic, Socratic dialogue into just framing, spiked with misinformation and the next 15 minutes are just rambling and bullshit… And I think that’s a bit sad because we know he’s able to do more than that. And there’s no shortage of people rambling and talking bullshit, so there is no need for him to jump on it as well. It turns him from the troll he used to be into just your average anti-woke nut without any originality, just a Linux theme slapped on top…

Did Lunduke now entirely jump on that bandwagon? Seems he now does 3 videos a week “calling out” wokeness and “extreme” leftists and it’s become quite monothematic.

I don’t think OP’s dad will host a misconfigured cloud service on their computer or set an insecure password, enable ssh and then also open a port in the router. Most attacks on that list are specific to how internet servers are set up. And well, insecure old embedded devices. And we in fact have those systems targeted regularly. My servers gets bombarded with malicious traffic trying to get in.

Can I get some list or a reference to educate myself? As far as I know it still holds true. There’s rootkits, a lot of old stuff and exploits of webservers or embedded devices, supply chain attacks towards developers and the one day the Mint ISO file got compromised. But I’m completely unaware of desktop computer malware with high risk or actually spreading?! And the list on Wikipedia seems to confirm what i said…

I think most Linux distros will be fine. As of today desktop marketshare is still small, the governments mostly work within custom business applications. And to this date Linux malware and viruses for the desktop are practically unheard of. The common attacks are against the browsers, not the underlying operating system (so do timely updates and install an adblocker) or we’d expect phishing or phone scams and that’s against the human in front of the computer, again not the operating system. That makes me say they’re about all alright. Of course they’re not all equal. Immutable distros and sandboxing will help here. But the real deal is other countermeasures, like be aware how phishing works and try not to mix online banking and pirating games from shady websites. That belongs on separate user accounts or even installed operating systems. And use password managers, 2 factor authentication and these things. (And don’t use Edge, or some browser from some random third-party repository.)

Thanks for your insight. Reading these stories always makes me feel data should stay on own premises with extra security measures. And yes, on my VPS, imaging the storage is one click and I believe it’s done online without any interruption of service. Not that I do a lot of illegal stuff on the internet. But with the current situation in the US and the general overboarding surveillance, I think i’d like to keep their government and agencies out of my emails and personal stuff… (And maybe even what I do publicly and within legal limits.)

Though I didn’t ask about privacy here, but anonymity. And I guess selfhosting stuff at home isn’t an option either. Everyone can tell my ISP and location to like 30km with that. And link the IP to other activities.

Btw, this is a very old article. PieFed is lightyears ahead from where it was one and a half years ago. KBin ceased to exist. (Edit: And is continued with MBin now.) And I didn’t follow Lemmy’s development so I can make any statement there.