KAPERSKY ANTI-VIRUS 5.5 - FOR LOTUS NOTES-DOMINO, User Manual

Share

Page: 15 / 70

background image

CHAPTER 3. KASPERSKY ANTI-

VIRUS INTERNAL
ARCHITECTURE

Let us examine the internal architecture of Kaspersky Anti-Virus for more
thorough understanding of the algorithm used in its operation. In addition, the
section will be useful for detailed analysis of activity reports generated by each of
the application components.

Kaspersky Anti-Virus includes the following modules:

•

Hook

– e-mail messages interception module

•

Kavmailmonitor

– e-mail messages scanning module

•

Kavdbscanner

– database scanning module

•

Kavreplmonitor

– replications scanning module

•

Kavupdater

– application anti-virus database updating module

•

The system detecting virus outbreaks

.

During its operation, the application uses several databases located on the
server hard drive:

•

Configuration database.

•

Quarantine database.

•

Statistical database and the application's run-time log.

The

Kavreplmonitor

,

Kavupdater

,

Kavmailmonitor

and

Kavdbscanner

modules start automatically at the Domino server startup.

After the

Hook

module is started, it intercepts all e-mail messages sent and

received by the Domino server and passes them to the

Kavmailmonitor

module

for anti-virus scanning and processing.

After scanning an object can be recognized as clean, infected, suspicious or as
one unchecked because of a failure or its corruption.

The

Kavmailmonitor

module

scans all received messages for viruses and

processes these messages based on the specified anti-virus protection settings.
For example, the module can attempt to disinfect all infected objects and place

«
...
13
14
15
16
17
...
»

Summary of Contents for ANTI-VIRUS 5.5 - FOR LOTUS NOTES-DOMINO

Page 1: ...KASPERSKY LAB Kaspersky Anti Virus 5 5 for Lotus Notes Domino User sGuide...

Page 2: ...K A S P E R S K Y A N T I V I R U S 5 5 F O R L O T U S N O T E S D O M I N O User s Guide Kaspersky Lab http www kaspersky com Revision date May 2007...

Page 3: ...ation 13 CHAPTER 3 KASPERSKY ANTI VIRUS INTERNAL ARCHITECTURE 15 CHAPTER 4 CONFIGURING THE ANTI VIRUS PROTECTION SYSTEM 17 4 1 General application settings 17 4 2 Updating the anti virus databases 18...

Page 4: ...0 5 4 Working with license keys 42 5 4 1 Renewing your license 42 5 5 Managing the application using command line 44 CHAPTER 6 VERIFYING THE APPLICATON S OPERATION 46 APPENDIX A FREQUENTLY ASKED QUEST...

Page 5: ...you may infect data stored on your computer Software vulnerabilities In most cases hacker attacks are attempted using the so called software security breaches Such vulnerabilities allow hackers to acc...

Page 6: ...fer to viruses Trojan horses and worms A particular type of malware will be mentioned only when it is required 1 2 Kaspersky Anti Virus 5 5 for Lotus Notes Domino Kaspersky Anti Virus TM for Lotus Not...

Page 7: ...Lotus Notes Domino tools It can disrupt the integrity of electronic signatures in messages signed by the sender when adding a scan report to message text or when replacing attached files with disinfec...

Page 8: ...sed on the average size of one message The system requirements for Lotus Domino may differ from the system requirements for Kaspersky Anti Virus 1 4 Distribution kit You can purchase Kaspersky Anti Vi...

Page 9: ...ns of the License Agreement 1 5 Services provided for registered users Kaspersky Lab Ltd offers to all legally registered users an extensive service package enabling them to use Kaspersky Anti Virus m...

Page 10: ...ms windows dialog boxes and their elements etc Note Additional information notes Attention Information requiring special attention 1 Step 1 2 In order to perform Description of the successive user s s...

Page 11: ...Kaspersky Anti Virus on your computer run the executable file on the installation CD included into the distribution package The installation process will be facilitated by the setup wizard Following b...

Page 12: ...tual installation process In order to do that press the Install button in the wizard window Kaspersky Anti Virus will be installed by default to the Drive Program Files Kaspersky Lab Kaspersky Anti Vi...

Page 13: ...hat you have the administrator rights for Lotus Notes Domino Launch Domino Administrator Connect to the server where Kaspersky Anti Virus is installed Switch to the Files tab Select the databases of K...

Page 14: ...for Lotus Notes Domino In order to uninstall Kaspersky Anti Virus Stop the Lotus Server Use Microsoft Windows Control Panel to select Add or Remove Programs Kaspersky Anti Virus for Lotus Notes Domino...

Page 15: ...peration the application uses several databases located on the server hard drive Configuration database Quarantine database Statistical database and the application s run time log The Kavreplmonitor K...

Page 16: ...Kaspersky Anti Virus Local replications performed within a Domino server will not be scanned The detection system provides protection against virus outbreaks Outbreak detection rules and criteria as w...

Page 17: ...ic features of the Anti Virus Groups consist of tasks pertaining to more narrow aspects You can open individual task windows from the Tasks settings and Anti virus kernel groups in the viewing window...

Page 18: ...rsky Lab FTP or HTTP server or a local network folder New anti virus databases on updates servers of Kaspersky Lab are made available every hour Updating of the anti virus database can be configured i...

Page 19: ...all You can uncheck the box if active FTP mode is used Enable the Use proxy server checkbox if you access the Internet via a proxy server Schedule the frequency of updates In order to do this specify...

Page 20: ...re 3 You can enable the Objects to be scanned checkbox to select the types of objects to scan Attached objects scan all files attached to e mail messages Message body scan the body of the message OLE...

Page 21: ...case insensitive Filtering by type The option allows selecting the following file formats Executable files exe or dll files It is not recommended to disable the setting excluding such files from scan...

Page 22: ...a server If scanning does not start for some reason edit the notes ini configuration file as follows To enable anti virus scanning of cluster replications Open the notes ini file containing Domino ser...

Page 23: ...for scanning of outgoing replications is enabled KavMailHookOutgoingReplication 1 for at least one of the servers a conflict of replications will occur during the replication process Therefore enablin...

Page 24: ...E g the abc exe mask will prevent the application from scanning files containing the specified sequence of characters and any symbol following for example abc1 exe However the abc12345 exe file will b...

Page 25: ...server and informing the administrator and other users thereof This feature helps the administrator to react in a timely manner to the emerging threats of virus attacks The settings of the system are...

Page 26: ...f virus activity exceeds the specified threshold the application will send a notification informing about possible threat of a virus outbreak The following macros can be used to generate the notificat...

Page 27: ...must be defined as folder database nsf The Data folder is created on host computer during installation of the Domino server any single character except for the and folder delimiter symbols E g the ab...

Page 28: ...f the Domino server During startup scanning and after scan completion the component adds corresponding records to log E g the line informing about startup will look as follows KavDbScanner database sc...

Page 29: ...user will have to determine which object types will be scanned and to assign certain actions to be performed by Kaspersky Anti Virus in case of detecting objects with certain statuses 4 7 1 General s...

Page 30: ...affect the CPU load and consequently its performance Therefore you are advised to consider your CPU performance selecting the number of kernel instances and to avoid using more than 3 processes simult...

Page 31: ...a known virus Corrupted object is damaged Unit by size object too large to be scanned because of the specified maximum size restriction Not scanned object cannot be scanned e g it is password protecte...

Page 32: ...nable creation of notification messages use the Notification settings to select the addresses where the messages should be sent please see section 4 7 3 on page 33 for details Add statistics record lo...

Page 33: ...message body option If you need to add a notification to a message in MIME format the latter will be converted into Rich Text format Message formatting can be lost in that case The text of notificatio...

Page 34: ...no way to identify unambiguously whether an object is infected or clean The reasons for that are as follows The object being scanned contains the code that resembles a known threat but it is partially...

Page 35: ...ocated in the Quarantine section within the left frame of Kaspersky Anti Virus window see Figure 9 The right frame is formatted as a table that contains the following information Date when an object h...

Page 36: ...it is deleted by the administrator Therefore we recommend that you regularly delete from the Quarantine objects that do not contain valuable information In order to manually delete an object from the...

Page 37: ...re 10 The E mail messages quarantine tab The right frame is formatted as a table that contains the following information Sender address of the sender of the quarantined e mail message object Subject t...

Page 38: ...ntine Select the object you wish to restore in the table displaying the storage content Press the Forward to recipients button Before you send the message a warning message will be displayed with an o...

Page 39: ...anning box in the Replication settings window of the Tasks settings 5 2 Worklog Information about the events occurring during Kaspersky Anti Virus operation is logged in the application s Worklog see...

Page 40: ...of the event 5 3 Reports on application activity The results of anti virus scanning are registered in the application s anti virus statistics log see Figure 12 You can view those reports ordering the...

Page 41: ...e of the module whose activity is logged in the report Description virus name if the scanned object is infected If an object is clean the column will contain its name and status after anti virus scann...

Page 42: ...ks before your license expires provided that the application is running It contains the information about the final key expiry date In order to prevent infection with new viruses you are advised to re...

Page 43: ...g the Kavmailmonitor module In order to install a new key Stop the kavmailmonitor module In order to do that enter in the command line tell kavmailmonitor quit Copy the key file to server Start the li...

Page 44: ...on the server enter the following in the command line tell kavmailmonitor version In order to view the serial number of the installed license key enter the following in the command line tell kavmailm...

Page 45: ...se update process will be launched enter the following in the command line tell kavupdater shownext It is recommended to avoid using the tell kavmailmonitor quit command to stop e mail scanning Execut...

Page 46: ...r use real viruses for testing the operation of an anti virus product You can download the test virus from the official web site of EICAR at http www eicar org anti_virus_test_file htm Upon an attempt...

Page 47: ...ning time This is the price that computer users pay for the security of their data Unlike other anti virus products that speed up scanning by excluding both viruses which are less easily detectable or...

Page 48: ...chieved by installation of an anti virus program followed by rare updates to its anti virus database However recent virus epidemics spread around the world in several hours and anti virus protection w...

Page 49: ...mino does not allow deletion of an entire attached file However if the administrator selected deletion of infected attached objects in the settings of Kaspersky Anti Virus any infected attachment will...

Page 50: ...performed successfully 1 The component is unable to create the folder for storage of updates 2 Insufficient privileges for an operation 3 Disconnection from network 4 Databases require no updates 6 Th...

Page 51: ...minated 30 Exceeded timeout while expecting response from an updates server 31 Error during FTP authorization 32 Error during proxy server authorization 33 Updates source is not found 38 Error while c...

Page 52: ...omprehensive protection from current and future threats Resistance to future attacks is the basic policy implemented in all Kaspersky Lab s products The company s products consistently remain at least...

Page 53: ...be bundled with various integrated solutions offered by Kaspersky Lab Ltd Kaspersky OnLine Scanner This program is a free service provided to the visitors of Kaspersky Lab s corporate website The serv...

Page 54: ...the following features Controls modifications within the file system The program allows users to create a list of applications which it will control on a per component basis It helps protect applicat...

Page 55: ...ess memory preventing dangerous changes to the file system and registry and restores the system after malicious influence Protection against Internet fraud is ensured by recognition of phishing attack...

Page 56: ...nti Virus for File Servers This software package provides reliable protection for file systems on servers running Microsoft Windows Novell NetWare Linux and Samba from all types of malware The suite i...

Page 57: ...g centralized protection information systems and support for remote offices and mobile users The suite includes four programs Kaspersky Work Space Security Kaspersky Business Space Security Kaspersky...

Page 58: ...no Duo technology Remote disinfection capability Intel Active Management Intel vPro Kaspersky Business Space Security provides optimal protection of your company s information resources from today s I...

Page 59: ...il keeping information safe while providing secure access to network resources for users Features and functionality Protection of workstations and file servers from viruses Trojans and worms Protectio...

Page 60: ...to the company s information resources and the Internet and ensures secure e mail communications Features and functionality Comprehensive protection from viruses spyware hacker attacks and spam on al...

Page 61: ...pport for 64 bit operating systems automatic database updates Kaspersky Security for Mail Servers This program is for protecting mail servers and linked servers from malicious programs and spam The pr...

Page 62: ...ates Kaspersky Security for Internet Gateways This program provides secure access to the Internet for all an organization s employees automatically deleting malware and riskware from the data incoming...

Page 63: ...or a dedicated one Kaspersky Anti Spam s high performance is ensured by daily updates to the content filtration database adding samples provided by the Company s linguistic laboratory specialists Data...

Page 64: ...64 Kaspersky Anti Virus 5 5 for Lotus Notes Domino General information WWW http www kaspersky com http www viruslist com E mail info kaspersky com...

Page 65: ...SE THIS SOFTWARE In accordance with the legislation regarding KASPERSKY SOFTWARE intended for individual consumers KASPERSKY ANTI VIRUS PERSONAL KASPERSKY ANTI VIRUS PERSONAL PRO KASPERSKY ANTI HACKER...

Page 66: ...rmanent memory e g hard disk CD ROM or other storage device of that Client Device This license authorizes you to make only as many back up copies of the Software as are necessary for its lawful use an...

Page 67: ...btained This license authorizes you to make or download such copies of the Documentation for each Client Device or seat that is licensed as are necessary for its lawful use provided that each such cop...

Page 68: ...ces means a Daily updates of the anti virus database b Free software updates including version upgrades c Extended technical support via e mail and phone hotline provided by Vendor and or Reseller d V...

Page 69: ...ifications to this Software without the consent of Kaspersky Lab b use the Software in a manner for which it was not intended or c use the Software other than as permitted under this Agreement vi The...

Page 70: ...and any prior understandings undertakings and promises between you and Kaspersky Lab whether oral or in writing which have been given or may be implied from anything written or said in negotiations b...

Reviews:

No comments

Related manuals for ANTI-VIRUS 5.5 - FOR LOTUS NOTES-DOMINO

DEVICE FILTER MAC

Brand: FARONICS Pages: 2

ABBEY ROAD THE KING'S MICROPHONES

Brand: Waves Pages: 16

Brand: Xerox Pages: 100

SENTINEL LOG MANAGER 1.0.0.5 - 03-31-2010

Brand: Novell Pages: 168

Brand: Adobe Pages: 323

Brand: AMX Pages: 54

mvEnterprise 4.1.0 on AIX

Brand: Raining Data Corporation Pages: 64

Brand: ADS Technologies Pages: 2

Toast 6 Titanium

Brand: Roxio Pages: 132

Brand: EverFocus Pages: 44

Brand: Intel Pages: 192

MapCreate Canada 6.3

Brand: LEI Extras Pages: 1

Brand: Genius Pages: 7

Brand: Genius Pages: 11

Brand: FieldServer Pages: 48

Brand: Autodesk Pages: 4

ANTI-VIRUS - FOR FREEBSD-OPENBSD-BSDI MAIL...

Brand: KAPERSKY Pages: 295

ZVM - FOR LINUX V6 RELEASE 1

Brand: IBM Pages: 172

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands