Starting assumption: I do want to run A/V. * I get that it may actually INCREASE attack surface.* But I have Windows & Mac stuff going back and forth to Debian 9.8 and just want to check.
* (Clamscan already caught 4 things) a. What does the group suggest running on debian beyond - chkrootkit - rkhunter - ClamAV b. Does the list keep a ~ "pinned" answer for these kinds of questions? Thank you!