background image

Graphical User Interface (GUI)

76

Avira AntiVir UNIX Server

Avira GmbH

Basic Mode - Guard Archive Settings

Archive

If you want the Guard to scan in archives:

Activate the option 

Search archives

.

Basic Mode - Guard Heuristic Settings

Macrovirus-

heuristic

Select 

Macrovirusheuristic

 in order to activate 

heuristic methods when scanning 

your

 documents for macro viruses.

Summary of Contents for ANTIVIR SERVER UNIX

Page 1: ...More Than Security www avira com User Manual UNIX Server...

Page 2: ...3 7 Installing AntiVir UNIX Server Using the Graphical Installation Routine 23 3 8 Integrating Third Party Products 30 4 Configuration 31 4 1 Overview 31 4 2 Configuration Files 31 4 3 Configuration...

Page 3: ...2 Avira AntiVir UNIX Server Avira GmbH...

Page 4: ...The manual of your AntiVir software consists of a number of Chapters providing you with the following information Chapter Contents 1 About this Manual The structure of the manual signs and symbols 2...

Page 5: ...ction shown before a warning if there is a danger of critical data loss or hardware damage shown before a note containing particularly important information e g on the steps to be followed shown befor...

Page 6: ...reviation Meaning FAQ Frequently Asked Question FQDN Fully Qualified Domain Name GPL General Public License GUI Graphical User Interface MIME Multipurpose Internet Mail Extensions MTA Mail Transport A...

Page 7: ...About this Manual 6 Avira AntiVir UNIX Server Avira GmbH...

Page 8: ...UNIX e g Office documents and email attachments So viruses can access a server through a Windows Client and freely cause damage Avira AntiVir UNIX Server is a comprehensive and flexible tool for conf...

Page 9: ...ctly at all times Optional user friendly graphical user interface GUI for operating and configuring Avira AntiVir UNIX Server 2 2 Licensing Concept You must have a license to use Avira AntiVir UNIX Se...

Page 10: ...delivery Newsletter service printed regular mail delivery 2 3 Modules and Operating Mode of Avira AntiVir UNIX Server The Avira AntiVir UNIX Server security software consists of the following program...

Page 11: ...canner Linux kernel 2 2 2 4 or 2 6 optionally with RSBAC FreeBSD 4 5 or 6 SunOS 5 7 5 8 5 9 or 5 10 Sparc or 5 9 i386 to use the AntiVir Samba Scanner Samba version with support for VFS Mechanism vers...

Page 12: ...iles Downloading the Installation Files from the Internet Download the current version file from our website http www avira com to your local computer The file name is antivir server prof version tar...

Page 13: ...line Shop for details visit http www avira com Copying the License File Copy the license file hbedv key to the installation directory on your system tmp antivir server prof version 3 3 Installing the...

Page 14: ...l using exactly these sources Go to the temporary directory where you unpacked Dazuko for example cd tmp antivir server prof version contrib dazuko dazuko version Check the configuration of your compu...

Page 15: ...needed for compiling sources gcc make etc This might be the case for standard UNIX installations If necessary install the program packs You can find more information in the documentation of your UNIX...

Page 16: ...hich applies to samba vscan 0 3 5 and integrates AntiVir Backend Apply the patch starting with samba vscan version 0 3 6 this step is no longer needed because AntiVir Backend is already included gunzi...

Page 17: ...following steps must be taken for the initial installation Preparing Installation Page 16 If Dazuko has not been compiled Installing AntiVir without AntiVir Guard Page 16 If Dazuko has been compiled...

Page 18: ...ying vdf antivir2 vdf to usr lib AntiVir done copying vdf antivir3 vdf to usr lib AntiVir done Enter the path to your key file hbedv key copying hbedv key to usr lib AntiVir hbedv key done copying scr...

Page 19: ...al time scanning of files This provides There are several ways in which you can install AvGuard module Dazuko will be loaded by the avguard script kernel Dazuko is always loaded and should not be load...

Page 20: ...otection This can be done by running antivir update Be sure to read the README file for additional information Thank you for your interest in AntiVir for UNIX Server Do you agree to the license terms...

Page 21: ...ver prof version contrib dazuko dazuko version you should type tmp antivir server prof version contrib dazuko dazuko version dazuko ko Would you like to install the internet update daemon n y copying...

Page 22: ...tiVir Guard immediately if already activated during the installation AntiVir Guard starts automatically on start up detecting kernel version linux26 2 6 5 7 97 smp creating usr lib AntiVir linux26 2 6...

Page 23: ...ll you have to make sure that AntiVir Guard is stopped usr lib AntiVir avguard stop Open the temporary directory where you unpacked AntiVir cd tmp antivir server prof version Type install The installa...

Page 24: ...scribed in Getting the Installation Files Page 11 3 Unpack the program into the following directory tmp antivir server linux gui_installer Type install The welcome page appears with a program descript...

Page 25: ...ustom setup The program is installed according to the user s options GUI only Only the GUI is installed in usr lib AntiVir Express setup The program is installed with the following basic settings Anti...

Page 26: ...talled Custom setup You can install the program with user defined settings Select Custom setup and click Next The following window asks if you want to install AntiVir Guard You can handle AntiVir Guar...

Page 27: ...conf Select Yes or No and click Next Then you can install the Internet Update Daemon If you want to install the Internet Update Daemon Select Yes and click Next in this case an additional question app...

Page 28: ...lation Avira GmbH Avira AntiVir UNIX Server 27 Follow the instructions and click Next The following question refers to the automatic start of AntiVir Guard on system start up Select Yes or No and clic...

Page 29: ...lick Next Finally a window with the summary of your settings and further information is displayed Click Install The program is installed GUI only Choose this option if you wish to install only the GUI...

Page 30: ...tallation According to the installation type you selected a window will list the performed installation steps Click Next You will see the following window If you want to start the GUI directly Activat...

Page 31: ...during AMaViS installation using the option enable all or enable hbedv for the command configure Please note that AMaViS uses the Command line scanner and runs it as a separate process for every messa...

Page 32: ...ted programs avupdater conf defines the automatic updates and the logfiles of the software vscan antivir conf and avsamba conf define the behavior of AntiVir Samba Scanner Configuration Script You can...

Page 33: ...when closed the value has to be 3 This is the default value AccessMask 3 Repair Concerning Files Repairing files AntiVir Guard is able to repair files immediately after access If this fails access is...

Page 34: ...rectories AntiVir Guard can exclude certain folders when scanning For example a folder containing temporary files of AntiVir components There is no default setting You can specify only one folder in a...

Page 35: ...rchiveMaxCount 0 Detect Detection of other types of unwanted programs Besides viruses there are other types of harmful or unwanted software You can activate their detection using the following options...

Page 36: ...external program Thus the data can be treated differently and adjusted to the local conditions The following table shows the supported macros and their significance In order to use the following prog...

Page 37: ...iority or higher The possible priority levels in ascending order are Notice Information Warning Error and Alert By default all notifications are sent SuppressNotificationBelow Scanner Notice LogFile L...

Page 38: ...se messages Default is SyslogFacility user SyslogPriority notice These values apply even if the option is not active AutoUpdate Update scheduler The security software can check regularly for updates o...

Page 39: ...ivated by default UpdateAction Setting the type of update actions Using this option you can specify how you want to handle other software modules mailgate or webgate disregard them completely only sea...

Page 40: ...n script which is able to intercept possible invalid entries and restart the necessary processes The procedure for using the script is very easy If you want to configure the Internet Updater Type usr...

Page 41: ...fication of a configuration file is optional The new entries to be made are for example myshare vfs object vscan antivir vscan antivir config file usr local samba lib vscan antivir conf Your distribut...

Page 42: ...ogging file access samba vscan can report every file access in a log if this option is set to yes or it can report only the access to files in which it detects a virus or unwanted program no The defau...

Page 43: ...e 5 exclude file types Excluding files from scanning samba vscan can exclude certain file types from scanning classifying the files by the MIME type You should use this option with great care By defau...

Page 44: ...ating This is why AntiVir offers the possibility to download current updates via HTTP from the AntiVir webservers and even to schedule them automatically at regular intervals These updates ensure that...

Page 45: ...you are asked for the username and password Enter the username and password The configuration script displays the configuration summary and asks for confirmation to write the configuration file The I...

Page 46: ...have installed AntiVir UNIX Server with Update Daemon as described in Installing AntiVir Page 16 Otherwise you have to run the installation script again see Reinstalling AntiVir Page 22 AutoUpdateEve...

Page 47: ...u can use cron daemon to perform automatic AntiVir updates Cron daemon is used to run regular recurring system processes For more details refer to your UNIX documentation Using cron for updates you ha...

Page 48: ...port the AntiVir public PGP key to your key ring gpg import antivir gpg OR Import the AntiVir public key directly from the key server gpg keyserver wwwkeys pgp net recv keys 0F821C2E Display the finge...

Page 49: ...Try to access the file for example by copying it cp eicar com eicar com txt According to the AntiVir configuration and eicar version AntiVir Guard will immediately block access and take any necessary...

Page 50: ...e examples of working with the Command line scanner Reaction to Detecting Viruses Unwanted Programs Page 56 gives you some hints on how to react when AntiVir has done its work 5 1 Overview of AntiVir...

Page 51: ...e the file ren to rename the file moveto to move the file to Quarantine directory if it could not be repaired exclude name Does not scan the specified directory or file It does not support wildcards b...

Page 52: ...iet AntiVir suppresses all messages r1 Only viruses unwanted programs and warnings are logged r2 In addition to r1 all scanned paths are logged r3 All scanned files are logged r4 Detailed messages are...

Page 53: ...r You can use this option more than once The option alltypes activates the detection of all types without type Deactivates the detection of certain types of malware see above z Corresponds to scan in...

Page 54: ...rt Performing Complete Scan After installation it is important to perform a complete scan of the system The following parameters should be used 202 The specified response file contains another rsp dir...

Page 55: ...or unwanted programs Optionally AntiVir can first try to repair these files The program will first overwrite the files and then delete them i e repairing tools will not recover them You can use the fo...

Page 56: ...pting the scanning process Thus it ensures that all files are scanned If AntiVir is not started as root during updating it will not have the necessary permissions for restarting AntiVir daemons Conseq...

Page 57: ...the virus unwanted program infiltrated your system Perform targeted scanning on the data storage supports you used Inform your team superiors or partners Inform your system administrator and security...

Page 58: ...bin groups Starting Start the GUI antivir gui If this command does not detect the Java installation Create a soft link in usr bin as root ln s PATH TO JAVA INSTALLATION bin java usr bin Communi cation...

Page 59: ...ailable on the computer 6 2 AntiVir Scanner 6 2 1 Operating AntiVir Scanner Using the GUI You can conveniently configure and perform scanning processes using the AntiVir for UNIX Framework Starting Sc...

Page 60: ...es not stop AntiVir UNIX Server Tools Configuration to open the configuration window Report Display report to display the report file in a window avscanner log Report settings to open the configuratio...

Page 61: ...ew by clicking the corresponding check box Click the magnifying glass icon AntiVir starts scanning displaying the scan process window The Scanner searches through the selected directories using the cu...

Page 62: ...uption in Scanner Configuration Search is not active Press the Stop button The scanning process ends Displaying Scanner History Select the menu option History Display history The History window appear...

Page 63: ...istory entries are deleted 6 2 2 Configuring AntiVir Scanner Using the GUI Click the Configuration button in the Scanner main window OR Select the menu option Tools Configuration The Configuration win...

Page 64: ...e contents of your mailbox Activate Scan mailboxes Path for AntiVir This field contains the path to the AntiVir program Usually the file is installed in usr lib AntiVir antivir Scan process If you wan...

Page 65: ...Append new report Activate the required option Data to be logged You can also choose the information type logged by the Scanner Alerts Include all paths All scanned files Activate the required option...

Page 66: ...Scanner offers a useful history of scanning results You may adjust this list in the History settings Short report If you want the Scanner to create short reports Activate the option Generate short rep...

Page 67: ...e Scanner Archive Settings In Expertmode you can also make settings for Recursion depth If you have activated the archive scanning but you want to scan only those nested archives which do not exceed a...

Page 68: ...acrovirusheuristic in order to activate heuristic methods when scanning your documents for macro viruses Heuristic Select Heuristic in order to activate Win32 file heuristics for detecting even unknow...

Page 69: ...contains details about every category The list may change after updates 6 3 AntiVir Guard 6 3 1 Operating AntiVir Guard Using the GUI The AntiVir for UNIX Framework supports the resident guard and you...

Page 70: ...lick to view the Guard Logfile Click to open the Configuration window Menus System Network browser to select another computer in the network on which AntiVir GUI runs Certificate management to manage...

Page 71: ...rent configuration Start Guard to start AntiVir Guard Stop Guard to stop AntiVir Guard Realtime Guard Status See the figure in Starting GUI Page 68 The Realtime Guard Status displays the current file...

Page 72: ...ce of date to view selecting the time interval for the logfile entries to be displayed Default complete logfile Show the following log levels selecting the log levels to be displayed Default All Rows...

Page 73: ...th the basic Search settings The configuration settings are grouped in two categories Basic and Expert settings For access to the second category you have to activate the Expertmode option Click the d...

Page 74: ...olders by typing the command for every one Example home log and home tmp This option sets the ExcludePath parameter in avguard conf Click Add The New path window appears Enter the path to the desired...

Page 75: ...or if repair is not possible access to the files is blocked and the action is logged The following three options define further actions of AntiVir Guard Log only no further action Rename rename the f...

Page 76: ...ple var log avguard log All important AntiVir operations are logged via a syslog daemon Type the full path and file name Number of Daemons The number of simultaneous AntiVir Guard daemons can be set b...

Page 77: ...Guard Archive Settings Archive If you want the Guard to scan in archives Activate the option Search archives Basic Mode Guard Heuristic Settings Macrovirus heuristic Select Macrovirusheuristic in ord...

Page 78: ...rms trojans etc You can set the intensity of this method Detection level low Detection level medium Detection level high Expert Mode Guard Archive Settings The Expertmode enables the following configu...

Page 79: ...rt Mode Extended threat categories Selection of extended threat categories You can configure AntiVir Guard to scan for so called Extended threat categories Activate the required categories The tooltip...

Page 80: ...ommend that you also purchase our AntiVir Classic Support with which you can contact and obtain advice from our experts during business hours when technical problems are encountered The annual fee for...

Page 81: ...ses quickly and safely The Online Shop guides you step by step through the order menu A multi lingual Customer Care Center explains the order process payment transactions and delivery Resellers can or...

Page 82: ...uristic The systematic process of solving a problem using general and specific rules drawn from previous experience However solution is not guaranteed AntiVir uses a heuristic process to detect unknow...

Page 83: ...email transmission on the Internet syslog daemon A daemon used by programs for logging various information These reports are written in different logfiles The syslog daemon configuration is in etc sy...

Page 84: ...unpacking and during installation If there are other users connected to your computer you should set the following rules for protection against viruses Use a test computer for controlling downloads o...

Page 85: ...contents cannot be excluded The reproduction of this publication or parts thereof in any form is prohibited without previous written consent from Avira GmbH Errors and technical subject to change Issu...

Reviews: