manualshive.com logo in svg

KAPERSKY ANTI-VIRUS 5.7 - FOR LINUX FILE SERVER, Administrator'S Manual

Get comprehensive protection for your Linux file server with Kapersky Anti-Virus 5.7 - designed to keep your data safe from cyber threats. Easily manage the software with the Administrator's Manual, available for free download from manualshive.com. Keep your server secure and running smoothly with this essential manual.

Share
Download
background image

 

CHAPTER 4.

 

USING KASPERSKY 

ANTI-VIRUS 

Kaspersky  Anti-Virus  allows  you  to  specify  the  anti-virus  protection  system  of 
your computer, at the level either of individual files or of the entire file system. 

The application‟s functionality can be packaged into tasks that the administrator 
can  perform  using  the  application.  Tasks  implemented  using  Kaspersky  Anti-
Virus can be divided into the following groups: 

  Updating the anti-virus database, which is used for detecting viruses and 

disinfecting infected objects (see 4.1 on p. 20). 

  Anti-virus protection of the computer‟s file system, using scheduled and/or 

on-demand scans (see 4.2 on p. 25). 

  Real-time anti-virus protection (see 4.3 on p. 31). 

This  chapter  describes  these  typical  tasks.  Within  the  context  of  a  specific 
company‟s network, the administrator may combine these tasks and make them 
more appropriate to business needs.  

4.1.

 

Updating the anti-virus database 

Updating  the  anti-virus  database  is  performed  by  the 

keepup2date

 component, 

and  is  an  integral  factor  in  full-fledged  anti-virus  protection.  The  default  source 
used  for  updating  the  anti-virus  database  is  Kaspersky  Lab‟s  updates  servers. 
The list of these servers includes: 

http://downloads1.kaspersky-labs.com/ 

http://downloads2.kaspersky-labs.com/ 

ftp://downloads1.kaspersky-labs.com/

, etc.  

The list of URL‟s from which you can download the updates is contained in the 

updcfg.xml 

file,  included  in  the  application‟s  distribution  kit.  To  view  the  list  of 

update servers, enter the following in the command line: 

# /opt/kaspersky/kav4ws/bin/kav4ws-keepup2date -s 

During the update process, the 

keepup2date 

component selects the first address 

from this list and attempts to download the anti-virus database from the server. 
The current computer location (as the two-lettered code of the country according 

to the ISO 3166-1 standard) can be specified via the 

RegionSettings

 parameter 

Summary of Contents for ANTI-VIRUS 5.7 - FOR LINUX FILE SERVER

Page 1: ...KASPERSKY LAB KasperskyAnti Virus 5 7 for Linux Workstation ADMINISTRATOR SGUIDE...

Page 2: ...K AS P ER SKY AN T I VIR U S 5 7 F OR L IN U X W OR K ST AT ION Administrator s Guide Kaspersky Lab Ltd http www kaspersky com Revision date September 2008...

Page 3: ...n procedure 14 3 3 Post install configuration 15 3 4 Installing Network Agent 16 3 5 Configuring Network Agent 16 3 6 Updating the application to version 5 7 17 3 7 Locating the application files 17 3...

Page 4: ...ation settings 42 CHAPTER 6 ADMINISTERING THE PROGRAM WITH KASPERSKY ADMINISTRATION KIT 45 6 1 Administering the application 47 6 1 1 Configuring application settings 48 6 1 1 1 Settings tab Real time...

Page 5: ...codes of the kavscanner component 76 A 4 Command line parameters for component kavmonitor 77 A 5 Command line parameters for component licensemanager 77 A 6 Return codes of the licensemanager compone...

Page 6: ...contain viruses or mail worms When you open an e mail message or save an attached file to your hard drive you may infect data stored in your computer Software vulnerabilities In most cases hackers att...

Page 7: ...For instance depending on the particular conditions they can erase information on hard drives freeze the system or steal confidential information In the strict sense Trojan Horses are not viruses sinc...

Page 8: ...from a local directory Control and configure Kaspersky Anti Virus using the application configu ration file the web based interface of Webmin or the Kaspersky Adminis tration Kit 1 3 What s new in ver...

Page 9: ...ystems for 64 bit platforms o Red Hat Enterprise Linux 5 2 Desktop o Fedora 9 o SUSE Linux Enterprise Desktop 10 SP2 o openSUSE Linux 11 Webmin program www webmin com for remote administration of Kas...

Page 10: ...the terms of the License Agreement you can return Kaspersky Anti Virus to your dealer for a full refund 1 6 2 Services for registered users Kaspersky Lab Ltd offers all legally registered users an ex...

Page 11: ...s dialog boxes and their elements etc Note Additional information notes Attention Information requiring special attention In order to perform 1 Step 1 2 Description of the user s steps and possible ac...

Page 12: ...omponent The component operates as follows 1 When any application on your computer attempts to access a file system object whether to open run or close the file the call is intercepted by kavmonitor s...

Page 13: ...Infected the object is infected Cured infected object has been successfully disinfected CureFailed the infected object could not be disinfected Warning object code resembles the code of a known virus...

Page 14: ...following format rpm for systems that support RPM Package Manager deb for Debian based OS distributions To start the installation of Kaspersky Anti Virus from a rpm package type the following at the...

Page 15: ...net in the following format http IP of the proxy server port or http user_name password IP of the proxy serv er port depending upon authorization necessity for the proxy The updating component of the...

Page 16: ...twork Agent After installation the Network Agent has to be configured for its proper interaction with Kaspersky Administration Kit To start configuration run the postinstall pl script located in the o...

Page 17: ...letion of the upgrade procedure the configuration file of product version 5 5 will be replaced with its counterpart for version 5 7 Add necessary modifications to the configuration file manually 3 7 L...

Page 18: ...disinfecting archives opt kaspersky kav4ws share doc LICENSE license agreement opt kaspersky kav4ws share man directory containing manual files var opt kaspersky kav4ws bases directory containing the...

Page 19: ...twork Agent bin setup directory containing configuration scripts for Network Agent share man directory containing manual files sbin directory containing the executable file of the Network Agent servic...

Page 20: ...ore appropriate to business needs 4 1 Updating the anti virus database Updating the anti virus database is performed by the keepup2date component and is an integral factor in full fledged anti virus p...

Page 21: ...ommand automatically reloads the anti virus database If an invalid change is made to this setting the application may fail to use the updated database or will function improperly All settings of the k...

Page 22: ...figure the downloading of anti virus database updates from Kaspersky Lab s updates servers to automatically select the URL of the updates server from the list included in the keepup2date component Sol...

Page 23: ...any time To do that type the following command opt kaspersky kav4ws bin kav4ws keepup2date Task start the update of the anti virus database and record the results in the file tmp updatesreport log So...

Page 24: ...ile structure as Kaspersky Lab s updates servers Provided below is a detailed discussion of this task Task create a network directory from which anti virus database up dates can be copied to local com...

Page 25: ...etting of the updater options section is missing or is assigned value Yes 4 2 Anti virus protection of file systems The kavscanner component provides anti virus protection of the computer s file syste...

Page 26: ...nt directory To scan all file systems of the computer you have to switch to the root directory or specify the scan scope at the command line as You can redefine the scan path by the following methods...

Page 27: ...lt behaviour is to scan objects and to notify about detected viruses and other suspicious or corrupted files by printing messages to the screen and in the report see 5 6 on p 42 As a result of an anti...

Page 28: ...s discriminates between simple objects files and container objects consisting of several objects for example an archive Actions performed with such objects are also discriminated in the configuration...

Page 29: ...scan of the tmp directory with automatic disinfection of all infected objects detected Delete all objects that cannot be disinfected Create the files infected lst suspicion lst corrupted lst and warn...

Page 30: ...x commands and script files Using these tools experienced administrators can define actions to be performed on objects of different statuses and thus expand the functionality of Kaspersky Anti Virus 4...

Page 31: ...pecified in the kav4ws conf configuration file Enable resolving of the symbolic links to the checked objects Solution to perform this task do the following Enter these rules for processing simple obje...

Page 32: ...he target object is excluded from protection If a symbolic link is added to the IncludeDirs list then it will not be re solved by the kavmonitor component Based on the scan results anti virus object p...

Page 33: ...ate and details of the dealer In addition to the right to use the application during the license period you obtain 24 7 technical support new updates of the anti virus database on an hourly basis appl...

Page 34: ...Copyright C Lan Crypto License file 0003D3EA key serial 0038 000419 0003D3EA Kaspersky Anti Virus for Unix expires 04 07 2003 in 28 days License file 0003E3E8 key serial 011E 000413 0003E3E8 Kaspersky...

Page 35: ...ersky Labs by sending a request directly to our Sales Department sales kaspersky com or filling out a form at our website http www kaspersky com section eStore Re newal Upon receipt of your payment we...

Page 36: ...x Workstation To remove a license key Enter at the command line opt kaspersky kav4ws bin kav4ws licensemanager da to remove the active license key or opt kaspersky kav4ws bin kav4ws licensemanager dr...

Page 37: ...ed remotely using the Webmin program are saved in the default configuration file of the application To create an alternative configuration file using Webmin you must 1 Copy data from the existing conf...

Page 38: ...wo levels The first level stores information about clean files that are accessed relatively of ten This cache is located in the kernel module which considerably re duces the time needed to access it I...

Page 39: ...increased while it continues to perform other tasks Therefore it is desirable to have a tool that pauses the anti virus scan once a specified load threshold has been exceeded Kaspersky Anti Virus has...

Page 40: ...e tmp download lst for viruses and move any infected objects detected with the full paths to these ob jects to the directory tmp infected Print information about infected suspicious and corrupted obje...

Page 41: ...s the ability to copy files to backup storage Before the attempt to disinfect or delete an object a copy of the object will be automatically created in the backup directory section monitor path settin...

Page 42: ...tting in format year month day and month day year respectively 5 6 Kaspersky Anti Virus report generation settings Results of the operation of all components of Kaspersky Anti Virus are logged in repo...

Page 43: ...se the application to close for example information about insufficient free disk space or license key expiration Such messages are marked with W symbol in the log file 3 Info Notice Important informat...

Page 44: ...ed for the on demand scan or up date tasks launched via the Kaspersky Administration Kit Specify the report detail level and report storage directory via the Re portLevel and ReportsDir parameters in...

Page 45: ...istration Server in the network and install Administration Console on the administrator s workstation For details see the Adminis trator s Guide for implementing Kaspersky Administration Kit deploy th...

Page 46: ...otection settings and protection scope settings A task is a specific action performed by the application Tasks for Kaspersky Anti Virus are of several types including on demand scan tasks anti virus d...

Page 47: ...tion settings 1 Select the group that contains the target client computer in the list of Groups see Figure 1 2 In the result pane select the client computer for which you need to modify application se...

Page 48: ...ent computer on the Applications tab see Figure 2 2 Select Kaspersky Anti Virus 5 7 for Linux Workstation and File Server Click the Properties button to open the application settings window All the ta...

Page 49: ...the Settings tab you can configure general protection settings and protection scope settings The following sections describe this process in more detail 6 1 1 1 Settings tab Real time protection gener...

Page 50: ...ing and configuring tasks for Kaspersky Anti Virus Centralized administration with Kaspersky Administration Kit allows you to create and use the following tasks on demand scan task anti virus database...

Page 51: ...of a single network group global tasks configured for a selected subset of all client computers from all network groups You can modify task settings monitor their performance copy and move tasks from...

Page 52: ...When you press the Add button a task creation wizard will start up The wizard provides a series of windows which can be navigated using the Back and Next buttons You can finish the wizard by pressing...

Page 53: ...source to download updates from You can use the update servers of Kaspersky Lab or specify a user defined source whether passive FTP mode is required the connection timeout in seconds You can enable...

Page 54: ...reation wizard will start similar to the local task creation wi zard for more see 6 2 1 1 on pg 52 The only difference is in selecting the networked client computers to which the task will apply 3 Sel...

Page 55: ...eneral view general information about a task about starting the task or pausing it Schedule create a schedule for running tasks Notifications configure notifications on the results of tasks for more d...

Page 56: ...e FTP mode is required the connection timeout in seconds You can enable disable using a proxy server and configure its settings in the dialog that opens after clicking the Configure proxy server 6 2 3...

Page 57: ...ck and Next buttons You can finish the wizard by pressing Finish The Cancel button will stop the Wizard at any point The following sections describe how to create a task using the wizard During each s...

Page 58: ...ject types to be protected The lists of directories and object masks are colon delimited Step 4 Finishing creating a policy The final window of the wizard tells you that you have successfully created...

Page 59: ...he policies created for the group 3 Select the policy to edit from the list of policies for Kaspersky Anti Virus 5 7 for Linux Workstation and File Server the application name is specified in the Appl...

Page 60: ...application or task properties 6 3 2 1 Configuring the protection scope You can use the Protection scope and objects types section of the Settings tab to define the trusted area directories to be excl...

Page 61: ...he Protection general settings section of the Settings tab to enable disable disinfection of objects affected by malware enable disable real time protection enable disable the heuristic analyzer enabl...

Page 62: ...t the application installation process you will have to stop the kavmonitor component To do that type the following in the command line etc init d kav4ws stop Then you will have to uninstall the appli...

Page 63: ...his test virus from the official website of the EICAR organization at http www eicar org anti_virus_test_file htm The file downloaded from the EICAR website or created as described above contains the...

Page 64: ...lly deleted The first table column lists the prefixes to be added at the beginning of the string of the standard test virus for example CORR X5O P AP 4 PZX54 P 7CC 7 EICAR STANDARD ANTIVIRUS TEST FILE...

Page 65: ...file settings default values will be indicated if such default values are provided Section path includes settings that define paths to the most important files without which the application will not...

Page 66: ...scan mode To disable this mode assign value no to this setting If the archive scan mode is enabled Archives yes then self extracting archives will be scanned even if SelfExtArchives is assigned the va...

Page 67: ...icious file is detected The file contains code which resembles a virus but one not known yet to Kaspersky Lab OnWarning action actions to be performed in case of a detection of a file containing code...

Page 68: ...scanning the server s file systems Archives yes archives scan mode To disable this mode assign value no to this setting Cure no mode for disinfecting infected objects In order to enable this mode assi...

Page 69: ...ile In or der to disable this mode assign value no to this setting ReportFileName a name of the report file into which results of the compo nent operation will be logged If the syslog value is specifi...

Page 70: ...performed on simple objects of certain types during the anti virus protection of workstations OnCorrupted action actions to be performed in case of a detection of a corrupted file OnInfected action ac...

Page 71: ...function BackupPath path full path to the backup storage directory for backup copies of objects being scanned by the component Section updater path includes settings that define paths to the files req...

Page 72: ...lue no then in case of an unsuccess ful update of the anti virus database from address UpdateServerUrl another address from the list of the updates servers will be used UpdateServerUrl no http url ftp...

Page 73: ...files A 2 Command line parameters for component kavscanner Settings of the configuration file can be overridden from the command line at application startup using command line parameters A detailed d...

Page 74: ...he screen o name Specify the filename for the file into which report about the operation of the component will be logged if the filename is not specified the report will not be generated Information a...

Page 75: ...out scan of a sim ple object Short extended format for messages about scan of an archive N n Enable Disable printing messages about clean files to the report file File options p option file_name Save...

Page 76: ...ected object if disinfection is not possible and if the object is simple object then delete it if the infected object is located in the container then delete the entire container i4 Delete infected ob...

Page 77: ...cified in the configuration file 66 Invalid configuration file option 65 Unable to load configuration file 70 The kavscanner component has been corrupted 75 The kavscanner component has been corrupted...

Page 78: ..._to_file Install the license key path_to_key_file d path_to_file Remove license key A 6 Return codes of the licensemanager component During its operation the licensemanager component may return the fo...

Page 79: ...Cmd command after the anti virus database update has been successfully completed q The mode of the component operation during which no system messages will be printed to the screen e The mode of the c...

Page 80: ...elp information about the command line parameters supported by the component and close the component 0 The anti virus database does not need to be updated 1 The anti virus database has been updated su...

Page 81: ...e a considerable load on the pro cessor The process of virus detection is a computational mathematical task that involves analysis of structures checksum calculation and mathe matical data transformat...

Page 82: ...will be blocked Question What happens when my Kaspersky Anti Virus license ex pires After the expiration of the license Kaspersky Anti Virus will continue op erating but anti virus bases updating feat...

Page 83: ...buted via floppy disks and at that time it was sufficient to install an anti virus program and update the anti virus database from time to time to ensure adequate computer protection Yet recent virus...

Page 84: ...ted to an overloaded server while another server is idle The use of key black lists This allows preventing updates to be performed by those users who do not have license for using Kaspersky Anti Virus...

Page 85: ...of the application s configuration file and de termines the number of files processed at the same time Therefore the number of monitor processes always exceeds 1 by default 20 processes will be start...

Page 86: ...ask via the Kaspersky Administration Kit Logging of the application activity launched via Administration Kit is dis abled by default Make the following changes to the application s configuration file...

Page 87: ...omprehensive protection from current and future threats Resistance to future attacks is the basic policy implemented in all Kaspersky Lab s products The company s products consistently remain at least...

Page 88: ...olutions offered by Kaspersky Lab Ltd Kaspersky OnLine Scanner This program is a free service provided to the visitors of Kaspersky Lab s corporate website The service delivers an efficient online ant...

Page 89: ...a per component basis It helps protect application integrity against the influence of mali cious software Monitors processes in random access memory Kaspersky Anti Virus 6 0 in a timely manner notifie...

Page 90: ...s to paid phone services and blocks such activity Kaspersky Internet Security 6 0 registers attempts to scan the ports of your computer which frequently precede network attacks and successfully defend...

Page 91: ...s server file systems in real time All server files are scanned when opened or saved on the server Prevents virus outbreaks On demand scans of the entire file system or individual files and folders Us...

Page 92: ...nd outside of corporate networks from all of today s Internet threats viruses spyware hacker attacks and spam Features and functionality Comprehensive protection from viruses spyware hacker attacks an...

Page 93: ...for users Features and functionality Remote administration of the software package including centralized in stallation configuration and administration Support for Cisco NAC Network Admission Control...

Page 94: ...otection from phishing attacks and junk mail preventing mass mailings and virus outbreaks scalability of the software package within the scope of system resources available Remote administration of th...

Page 95: ...local area network in real time scalability of the software package within the scope of system resources available Blocking access from infected workstations Prevents virus outbreaks Centralized repor...

Page 96: ...Virus for Lotus Notes Domino Kaspersky Anti Virus for Microsoft Exchange Kaspersky Anti Virus for Linux Mail Server Its features include Reliable protection from malicious or potentially dangerous pro...

Page 97: ...am operation Support for hardware proxy servers Scalability of the software package within the scope of system resources available Automatic database updates Kaspersky Anti Spam Kaspersky Anti Spam is...

Page 98: ...Web The program is a plug in and scans for viruses and processes inbound and outbound e mail traffic in real time C 2 Contact Us If you have any questions comments or suggestions please refer them to...

Page 99: ...CD s SLEEVE DOWNLOAD INSTALL OR USE THIS SOFTWARE In accordance with the legislation regarding KASPERSKY SOFTWARE intended for individual consumers KASPERSKY ANTI VIRUS PERSONAL KASPERSKY ANTI VIRUS...

Page 100: ...on 1 1 1 The Software is in use on a Client Device when it is loaded into the temporary memory i e random access memory or RAM or installed into the permanent memory e g hard disk CD ROM or other stor...

Page 101: ...obtained then you must have a reasonable mechanism in place to ensure that your use of the Software does not exceed the use limits specified for the license you have obtained This license authorizes...

Page 102: ...ly consent to the transfer of data to other countries outside your own as set out in the Privacy Policy iv Support Services means a Daily updates of the anti virus database b Free software updates inc...

Page 103: ...The warranty in i shall not apply if you a make or cause to be made any modifications to this Software without the consent of Kaspersky Lab b use the Software in a manner for which it was not intende...

Page 104: ...sedes all and any prior understandings undertakings and promises between you and Kaspersky Lab whether oral or in writing which have been given or may be implied from anything written or said in negot...

Reviews:

No comments

Related manuals for ANTI-VIRUS 5.7 - FOR LINUX FILE SERVER

Barco NioWatch Installation & User Manual preview
NioWatch
Brand: Barco Pages: 22
Campbell PC400 User Manual preview
PC400
Brand: Campbell Pages: 250
Dell External OEMR 2800 Deployment Manual preview
External OEMR 2800
Brand: Dell Pages: 32
Dell Encryption Key Manager Setup Manual preview
Encryption Key Manager
Brand: Dell Pages: 66
Dell External OEMR 2950 Deployment Manual preview
External OEMR 2950
Brand: Dell Pages: 22
Dell Jog Shuttle Manual preview
Jog Shuttle
Brand: Dell Pages: 10
Dell DVS Simplified Appliance Reference preview
DVS Simplified Appliance
Brand: Dell Pages: 73
Dell Latitude E6540 Owner'S Manual preview
Latitude E6540
Brand: Dell Pages: 75
Dell External OEMR 850 User Manual preview
External OEMR 850
Brand: Dell Pages: 162
Dell External OEMR 2850 User Manual preview
External OEMR 2850
Brand: Dell Pages: 176
Sharp REACH User Manual preview
REACH
Brand: Sharp Pages: 16
Sharp AR-P17 Software setupg guide Software Setup Manual preview
AR-P17 Software setupg guide
Brand: Sharp Pages: 22
Sharp Qtopia Desktop Operation Manual preview
Qtopia Desktop
Brand: Sharp Pages: 39
Sharp FO-NS2 Operation Manual preview
FO-NS2
Brand: Sharp Pages: 43
Sharp AR-NB2A Online Manual preview
AR-NB2A
Brand: Sharp Pages: 48
Sharp MXUSX5 - Desk - PC User Manual preview
MXUSX5 - Desk - PC
Brand: Sharp Pages: 91
Sharp e-Copy ShareScan OP 3.0 Configuration Manual preview
e-Copy ShareScan OP 3.0
Brand: Sharp Pages: 144
Sharp PenCell IQ-9B01 Operation Manual preview
PenCell IQ-9B01
Brand: Sharp Pages: 247

Brands by name

Popular brands

Load more brands