background image

23

special configuration filename where the individual scanning rules will be stored. In  the example 

shown here, the special configuration file is called ‘esets_dac_spec.cfg’ and is located within the 

ESETS configuration directory (This directory is based on your operating system. Please see page 

6).

  

   

[dac]

   

agent_enabled = yes

   

event_mask = ”open”

   

ctl_incl = ”/home”

   

action_av = ”scan”

   

user_config = ”esets_dac_spec.cfg”

Once the 'user_config' file parameter is specified within the [dac] section, the ‘esets_dac_spec.

cfg’ file must be created in the ESETS configuration directory. Finally, add the desired scanning 

rules.

  

   

[

username

]

   

action_av = ”reject”

At the top of the special section, enter the username to which the individual rules will be 

applied.  This  configuration  will  allow  all  other  users  attempting  to  access  the  file-system  to 

be processed normally. i.e., all file system objects accessed by other users will be scanned for 

infiltrations, except for the user ‘username’, whose access will be rejected (blocked).

6.3. Samples Submission System

The Samples submission system is an intelligent ThreatSense.NET technology that collects 

infected  objects  which  have  been  detected  by  advanced  heuristics  and  delivers  them  to  the 

samples submission system server. All virus samples collected by the sample submission system 

will be processed by the ESET virus laboratory and if necessary, added to the ESET virus signature 

database.

NOTE: ACCORDING TO OUR LICENSE AGREEMENT, BY ENABLING SAMPLE SUBMISSION SYSTEM YOU ARE AGREEING TO ALLOW 

THE COMPUTER AND/OR PLATFORM ON WHICH THE 

ESETS_DAEMON

 IS INSTALLED TO COLLECT DATA (WHICH MAY INCLUDE 

PERSONAL INFORMATION ABOUT YOU AND/OR THE USER OF THE COMPUTER) AND SAMPLES OF NEWLY DETECTED VIRUSES OR 
OTHER THREATS AND SEND THEM TO OUR VIRUS LAB. THIS FEATURE IS TURNED OFF BY DEFAULT. ALL INFORMATION COLLECTED 
WILL BE USED ONLY TO ANALYZE NEW THREATS AND WILL NOT BE USED FOR ANY OTHER PURPOSE.

In order to activate the Samples Submission System, the samples submission system cache 

must be initialized. This can be achieved by enabling the ‘samples_enabled’ option in the [global] 

section of the ESETS configuration file. To allow for the actual delivery of samples to the ESET 

virus laboratory servers, the parameter ‘samples_send_period’ must also be specified in the same 

section.

In addition, users can choose to provide the ESET virus laboratory team with supplementary 

information using the ‘samples_provider_mail’ and/or ‘samples_provider_country’ configuration 

options. The information collected using these options will assist in providing the ESET team with 

an overview about a given infiltration which may be spreading over the Internet.

For more information on the Samples Submission System, refer to the esets_daemon (8) man 

page.

chapter 6

 

 

  Important ESET File Security mechanisms

Summary of Contents for FILE SECURITY

Page 1: ...ESET File Security Installation Manual and User Guide we protect digital worlds...

Page 2: ...Interface 24 6 5 Remote Administration 24 7 ESET Security system update 25 7 1 ESETS update utility 26 7 2 ESETS update process description 26 7 3 ESETS mirror http daemon 27 8 Let us know 29 Appendi...

Page 3: ...Chapter 1 Introduction...

Page 4: ...run under non privileged user account to enhance security The system supports selective configuration based on the user or client server Multiple logging levels can be configured to get information ab...

Page 5: ...Chapter 2 Terminology and abbreviations...

Page 6: ...ion the primary installation directory is opt eset esets ESETS daemon The main ESETS system control and scanning daemon esets_daemon ESETS base directory The directory where ESETS loadable modules con...

Page 7: ...s directory The SBINDIR value for the following Operating Systems is listed below Linux usr sbin Linux RSR opt eset esets sbin FreeBSD usr local sbin NetBSD usr pkg sbin Solaris opt esets sbin ESETS o...

Page 8: ......

Page 9: ...Chapter 3 Installation...

Page 10: ...ade the product use the following command sh esets i386 ext bin For the Linux RSR variation of the product use the command sh esets rsr i386 rpm bin to display the product s User License Acceptance Ag...

Page 11: ...Chapter 4 Architecture Overview...

Page 12: ...tegrate ESETS with the Linux BSD Solaris Server environment UTILITIES The utility modules provide simple and effective management of the system They are responsible for relevant system tasks such as l...

Page 13: ...le For detailed information on the most effective way to organize this file please refer to the esets cfg 5 and esets_daemon 8 man pages as well as relevant agents man pages ETCDIR certs This director...

Page 14: ......

Page 15: ...Chapter 5 Integration with File System services...

Page 16: ...list of options please see the esets_scan 8 man page 5 2 On access scanner powered by Dazuko The On access scanner is invoked by user s access and or operating system access to file system objects Thi...

Page 17: ...n As mentioned previously the Dazuko kernel module must be compiled and installed within the running kernel before esets_dac can be initialized To compile and install Dazuko please see http www dazuko...

Page 18: ...hould be used See section 5 3 1 below for detailed information Please note that this section is relevant only for Linux OS users and contains information regarding the operation installation and confi...

Page 19: ...g the following line LD_PRELOAD path to libesets_pac so COMMAND COMMAND ARGUMENTS where COMMAND COMMAND ARGUMENTS is the original executable statement Review and edit the global and pac sections of th...

Page 20: ......

Page 21: ...Chapter 6 Important ESET File Security mechanisms...

Page 22: ...has been taken as a result of these three action options the object is accepted Otherwise the object is blocked 6 2 User Specific Configuration The purpose of the User Specific Configuration mechanis...

Page 23: ...m will be processed by the ESET virus laboratory and if necessary added to the ESET virus signature database NOTE ACCORDINGTO OUR LICENSE AGREEMENT BY ENABLING SAMPLE SUBMISSION SYSTEMYOU ARE AGREEING...

Page 24: ...ministrator Manual This manual is located on our web site here http download eset com manuals ESET_ERA_User_Guide_EN pdf The ESETS Remote Administration Client is part of the main ESETS daemon For bas...

Page 25: ...Chapter 7 ESET Security system update...

Page 26: ...TS configuration file The ESETS daemon must be up and running in order to successfully update the virus signature database 7 2 ESETS update process description The update process consists of two stage...

Page 27: ...o yes and the Mirror is enabled Options av_mirror_httpd_port and av_mirror_httpd_addr define the port default 2221 and address default all local tcp addresses where the http server listens The option...

Page 28: ......

Page 29: ...Chapter 8 Let us know...

Page 30: ...ly improve the quality and effectiveness of our documentation If you feel that any sections in this Guide are unclear or incomplete please let us know by contacting Customer Care http www eset com sup...

Page 31: ...Appendix A PHP License...

Page 32: ...ll be given a distinguishing version number Once covered code has been published under a particular version of the license you may always continue to use it under the terms of that version You may als...

Reviews: