background image

19

All opened, closed and executed files are scanned by the ESETS daemon for viruses. Based on 

the result of such scans, access to given files is denied or allowed. 

5.3.2. Installation and configuration

The 

libesets_pac.so

 library module is installed using a standard installation mechanism of 

the preloaded libraries. One has just to define the environment  variable  ‘LD_PRELOAD‘  with the 

absolute path to the 

libesets_pac.so

  library. For more information, please refer to the ld.so(8) 

man page.

NOTE: 

It is important that the ‘LD_PRELOAD‘ environment variable is defined only for the network 

server daemon processes (ftp, Samba, etc.) that will be under control of the On-access scanner. 

Generally, preloading LIBC calls for all operating system processes is not recommended, as this 

can dramatically slow the performance of the system or even cause the system to hang. In this 

sense, the  ‘/etc/ld.so.preload‘ file should not be used, nor should the ‘LD_PRELOAD‘ environment 

variable be exported globally. Both would override all relevant LIBC calls, which could lead to 

system hang-up during initialization.

To  ensure  that  only  relevant  file  access  calls  within  a  given  file  system  are  intercepted, 

executable statements can be overridden using the following line:

LD_PRELOAD=/path/to/libesets_pac.so COMMAND COMMAND-ARGUMENTS

        

where  ‘COMMAND  COMMAND-ARGUMENTS‘ is the original executable statement. 

Review and edit the [global] and [pac] sections of the ESETS configuration file (esets.cfg).  In 

order for the On-access scanner to function correctly, you must define the file system objects 

(i.e. directories and files) that are required to be under control of the preload library. This can be  

achieved by defining the parameters of  the ‘ctl_incl‘ and ‘ctl_excl‘ options in the [pac] section 

of the esets.cfg configuration file. After making changes to the esets.cfg file, you can force the 

newly created configuration to be re-read by reloading the ESETS daemon.

5.3.3. Tips

In  order  to  activate  the  On-access  scanner  immediately  after  file  system  start-up,  the  ‘LD_

PRELOAD‘  environment  variable  must  be  defined  within  the  appropriate  network  file  server 

initialization script.

EXAMPLE:  Let‘s assume we want to have the On-access scanner to monitor all file system access 

events  immediately  after  starting  the  Samba  server. Within  the  Samba  daemon  initialization 

script (/etc/init.d/smb), we would replace the statement

    

   

daemon /usr/sbin/smbd $SMBDOPTIONS

        

with the following line:

LD_PRELOAD=/path/to/libesets_pac.so daemon /usr/sbin/smbd $SMBDOPTIONS

        

In this way, selected file system objects controlled by Samba will be scanned at system start-

up.

chapter 5

 

 

  Integration with File System services

Summary of Contents for FILE SECURITY

Page 1: ...ESET File Security Installation Manual and User Guide we protect digital worlds...

Page 2: ...Interface 24 6 5 Remote Administration 24 7 ESET Security system update 25 7 1 ESETS update utility 26 7 2 ESETS update process description 26 7 3 ESETS mirror http daemon 27 8 Let us know 29 Appendi...

Page 3: ...Chapter 1 Introduction...

Page 4: ...run under non privileged user account to enhance security The system supports selective configuration based on the user or client server Multiple logging levels can be configured to get information ab...

Page 5: ...Chapter 2 Terminology and abbreviations...

Page 6: ...ion the primary installation directory is opt eset esets ESETS daemon The main ESETS system control and scanning daemon esets_daemon ESETS base directory The directory where ESETS loadable modules con...

Page 7: ...s directory The SBINDIR value for the following Operating Systems is listed below Linux usr sbin Linux RSR opt eset esets sbin FreeBSD usr local sbin NetBSD usr pkg sbin Solaris opt esets sbin ESETS o...

Page 8: ......

Page 9: ...Chapter 3 Installation...

Page 10: ...ade the product use the following command sh esets i386 ext bin For the Linux RSR variation of the product use the command sh esets rsr i386 rpm bin to display the product s User License Acceptance Ag...

Page 11: ...Chapter 4 Architecture Overview...

Page 12: ...tegrate ESETS with the Linux BSD Solaris Server environment UTILITIES The utility modules provide simple and effective management of the system They are responsible for relevant system tasks such as l...

Page 13: ...le For detailed information on the most effective way to organize this file please refer to the esets cfg 5 and esets_daemon 8 man pages as well as relevant agents man pages ETCDIR certs This director...

Page 14: ......

Page 15: ...Chapter 5 Integration with File System services...

Page 16: ...list of options please see the esets_scan 8 man page 5 2 On access scanner powered by Dazuko The On access scanner is invoked by user s access and or operating system access to file system objects Thi...

Page 17: ...n As mentioned previously the Dazuko kernel module must be compiled and installed within the running kernel before esets_dac can be initialized To compile and install Dazuko please see http www dazuko...

Page 18: ...hould be used See section 5 3 1 below for detailed information Please note that this section is relevant only for Linux OS users and contains information regarding the operation installation and confi...

Page 19: ...g the following line LD_PRELOAD path to libesets_pac so COMMAND COMMAND ARGUMENTS where COMMAND COMMAND ARGUMENTS is the original executable statement Review and edit the global and pac sections of th...

Page 20: ......

Page 21: ...Chapter 6 Important ESET File Security mechanisms...

Page 22: ...has been taken as a result of these three action options the object is accepted Otherwise the object is blocked 6 2 User Specific Configuration The purpose of the User Specific Configuration mechanis...

Page 23: ...m will be processed by the ESET virus laboratory and if necessary added to the ESET virus signature database NOTE ACCORDINGTO OUR LICENSE AGREEMENT BY ENABLING SAMPLE SUBMISSION SYSTEMYOU ARE AGREEING...

Page 24: ...ministrator Manual This manual is located on our web site here http download eset com manuals ESET_ERA_User_Guide_EN pdf The ESETS Remote Administration Client is part of the main ESETS daemon For bas...

Page 25: ...Chapter 7 ESET Security system update...

Page 26: ...TS configuration file The ESETS daemon must be up and running in order to successfully update the virus signature database 7 2 ESETS update process description The update process consists of two stage...

Page 27: ...o yes and the Mirror is enabled Options av_mirror_httpd_port and av_mirror_httpd_addr define the port default 2221 and address default all local tcp addresses where the http server listens The option...

Page 28: ......

Page 29: ...Chapter 8 Let us know...

Page 30: ...ly improve the quality and effectiveness of our documentation If you feel that any sections in this Guide are unclear or incomplete please let us know by contacting Customer Care http www eset com sup...

Page 31: ...Appendix A PHP License...

Page 32: ...ll be given a distinguishing version number Once covered code has been published under a particular version of the license you may always continue to use it under the terms of that version You may als...

Reviews: