ransonware postfix

[debigokan]

hello

What do you need to do to prevent ransomware?

[kopper]

There is no magic bullet to stop ransomware. Keep your system up to date, don't open suspicious attachments/e-mails, don't download anything you don't trust, don't this, do that, etc. etc. Same list goes on forever and applies to all malware. There are various techniques to be used to mitigate potential damage, but baseline is that you should really put some effort to plan recovery measures in case of infection. Vectors to get malware are ever evolving and new methods to distribute them are constantly introduced with new vulnerabilities discovered, making it quite hard to try and keep all the holes plugged all the time, forever. I'm not saying it's totally futile, but you should really invest on a lifeboat, or at least a life jacket.

Against ransomware, it's especially useful to have (offline) backups ready and tested. Other than that, "don't do anything stupid" gets you a long way. To get infected with Debian implies more or less poor management and careless behavior. Windows is another story, still same advises apply.

TL;DR Prevent like other malware, have a functioning and TESTED offline backup for recovery (Protip: Backing up is rather useful for other purposes too!)

EDIT: fixed some phrasing

[dasein]

It's especially useful to have (offline) backups ready and tested. Other than that, "don't do anything stupid" gets you a long way.
[snip]
Backing up is rather useful for other purposes too!

+1 with a bullet to both!

@OP: Asking how to "prevent" ransomware is simply the wrong question. You cannot control everything that happens to you, so "preventing" ransomware is impossible, in the same sense that "preventing" hurricanes is impossible. Bad stuff happens.

A better question is "how do I minimize potential damage from <insert threat here>?" And for just about any threat or catastrophic failure you can imagine (fire, earthquake, ransomware, lightning strike, etc.), the answer is always the same: back up your important data regularly on separate media, test that backup when you make it, and ideally store one copy offsite.

The pros rotate multiple generations of backups, and for very good reason.

[Bulkley]

Echo: what the other guys said. Your behaviour is important. For example, keep away from porn sites; the pictures are bait. If your router has a firewall in it, set it to maximum security. (Mine is a simple click.) Don't use sudo or other password cheats; Unix split permissions for a reason! Yes, I know sudo fans will have a cow over this but you want security. If you are really concerned, stay off of Facebook and Twitter. Throw away your smart phone and ipad. Use Startpage or duckduckgo instead of Google search. Don't use gmail, yahoo or hotmail. Arm your browsers with a good ad blocker and cookie killer. If at all possible don't use Flash.

What it adds up to is that you have to access your risk level and adjust your behaviour to match. Perfect security, on or off the Internet, is simply impossible.

[alan stone]

What do you need to do to prevent ransomware?

Chase ransomware makers, those who support and spread ransomware, and lock them up.

Or leave the planet and don't take any electronic equipment with you.

Hmmm... ever received a tax assessment notice?

[debigokan]

Thank you for your valuable answers.

[ruffwoof]

Fundamentally the primary focus for good backups for the average desktop user should be data. Irreplaceable/invaluable family pictures etc. Multiple disconnected and offsite copies of those data provides greater assurance against loss. System software is easily replaced and (in the case of Linux) inexpensive.