Harden Debian by Using Anti-Malware Solution
Anti-malware solution of course is optional on a Linux based OS. However, for Debian OS deployed as a service (e.g. file sharing), anti-malware is important in order to protect Windows users counterpart. This section guides you on how to harden Debian by using Linux anti-malware solution.
Identified Threats
These are the identified threats related to Debian software.
(T-102) OS Is Absent of Linux-based Anti-Malware Purging Solution
By default, Linux does not pack any Linux-based anti-malware purging solutions to scan the system from malware, especially for fileserver.
(T-103) Anti-Malware Purging Solution Execution Must Be Automated
Anti-malware solutions are usually command-driven and are not automated (e.g. periodic scanning).
(T-104) Anti-Malware Purging Solution Monitoring Must Be Automated
Anti-malware solutions are usually not self-monitored for its status.
(T-105) Anti-Malware Purging Solution Analytics Must Be Automated
Anti-malware solutions data are usually not self-analyzed for insights.
Actions Required
Here are the list if actions to counter the issues.
Use An Anti-Malware
For this software, it's better to choose a specialized proprietary anti-malware software to handle such updates-by-minutes tasks. If all else still fails, consider ClamAV or Sophos.
Automate the Scanning Process
File-based scanning must be managed autonomously aside from reactive scanning.
Monitoring, Output, and Analytics All Should be Implemented
The scan results, its log, and its analytics should be autonomously and must report to correct audience autonomously.
That's all for hardening Debian by using anti-malware solution.