20
ESET Gateway Security
5.4.
ESETS
plug-in filter for SafeSquid Proxy Cache
In the previous sections we have described integration of ESET Gateway Security with the
Internet Gateway HTTP and FTP services using
esets_http
and
esets_ftp.
Although the methods
described are applicable for most common user agents including very well known content
filtering internet proxy - SafeSquid (http://www.safesquid.com) the ESET Gateway Security offers
for this special case also an alternative way to protect the Gateway services using
esets_ssfi.so
module developed for this purpose.
5.4.1. Operation principle
The
esets_ssfi.so
module is a plug-in with the purpose to access all objects processed by
SafeSquid proxy cache using special interface developed by SafeSquid people for this purpose.
Once the plug-in accesses the object it is scanned for infiltrations using
ESETS daemon
. If the
object is infected the SafeSquid blocks an appropriate resource and sends predefined template
page instead. Note that
esets_ssfi.so
is supported by SafeSquid Advanced version 4.0.4.2 and
higher.
5.4.2. Installation and configuration
To integrate the module you have to provide links from the SafeSquid modules directory to
the appropriate installation locations of ESET Gateway Security package. In the following we
assume that the SafeSquid is installed on Linux OS in ‘/opt/safesquid‘ directory.
If version of SafeSquid installed is 4.2 or higher, enter the following commands:
ln -s @LIBDIR@/ssfi/esets_ssfi.so /opt/safesquid/modules/esets_ssfi.so
ln -s @LIBDIR@/ssfi/esets_ssfi.xml /opt/safesquid/modules/esets_ssfi.xml
If version of Safesquid installed is lower than 4.2, enter the following commands:
ln -s @LIBDIR@/ssfi/esets_ssfi.so /opt/safesquid/modules/esets_ssfi.gcc295.so
ln -s @LIBDIR@/ssfi/esets_ssfi.xml /opt/safesquid/modules/esets_ssfi.xml
To complete SafeSquid plug-in installation, log in to the SafeSquid Web Administration
Interface, select the ‘Config‘ menu from the main interface page and browse down the sections
in ‘Select a Section to Configure‘ until ‘ESET Gateway Security‘ section found. Next, create the
‘antivirus‘ profile for the ‘ESET Gateway Security‘ section by pressing ‘Add‘ at the bottom of the
‘ESET Gateway Security‘ section and define the following parameters in the list that appears
Comment: ESET Gateway Security
Profiles: antivirus
Once SafeSquid plug-in installed it is ready to work, however, some more fine tunings in
the SafeSquid configuration are needed. In the next we at least configure SafeSquid to use
ESETS predefined blocking templates in case the transferred source object is infected (resp. not
scanned).
Log in to the SafeSquid Web Administration Interface, select the ‘Config‘ menu from the
main interface page and browse down the sections in ‘Select a Section to Configure‘ until ‘ESET
Gateway Security‘ section found. Next, edit the newly created ‘antivirus‘ profile by pressing ‘Edit‘
at the bottom of the ‘ESET Gateway Security‘ section and define the following parameters in the
list that appears
Summary of Contents for GATEWAY SECURITY
Page 1: ...ESET Gateway Security Installation Manual and User s documentation we protect digital worlds ...
Page 3: ...Chapter 1 Introduction ...
Page 5: ...Chapter 2 Terminology and abbreviations ...
Page 8: ......
Page 9: ...Chapter 3 Installation ...
Page 11: ...Chapter 4 Product s Roadmap ...
Page 14: ......
Page 15: ...Chapter 5 Integration with Internet Gateway services ...
Page 22: ......
Page 23: ...Chapter 6 Important ESET Gateway Security mechanisms ...
Page 28: ......
Page 29: ...Chapter 7 ESET Security system update ...
Page 31: ...Chapter 8 Let us know ...
Page 33: ...Appendix A ESETS setup process description ...
Page 36: ......
Page 37: ...Appendix A PHP License ...