Install Kaspersky Anti-Virus for Linux File Server
In recent months, I have been harassed by virus problems on my file servers. That Nod32 blocks subdomains, then Kaspersky enters the site into the black list. It can not please me in any way and I decided to set up some kind of antivirus.
Clam AntiVirus is already installed and configured on all servers. I used it a few years ago, but unfortunately it does not always find viruses of the Trojan-SMS.J2ME class.
After studying the results of Google, I really did not find anything.
')
When I addressed Kaspersky’s support service once again with a request to remove the site from the suspicious list, I came across the kaspersky for linux file server fad . I then decided to test it.
Going to Google for help in installing and configuring this antivirus also failed. All results lead to the support site of Kaspersky.
Did nobody put their distribution on their file servers? Maybe there are some other solutions?
Answers to these questions for me will remain a secret. I settled on the above product and decided to test it.
The test license file is requested on the support site. The answer comes in a few hours.
Oops. We have the same amd64. And there are no other distros with Kaspersky. Google is also not responding.
Rolled :). We try to configure.
Real-time protection doesn't seem to interest me at all. I just need to check the specified file and get the result of the check.
Create a virus test file with the contents
And run the check:
We try on our Trojan-SMS.J2ME
Everything turned out, our virus determines without problems. Of course, I would like to see what kind of virus as a result of the check, but I will write about this as soon as the support service answers me. Unfortunately, I did not find this information in mana.
Antivirus setup and tests were successful. Then I will check all of my file servers and configure online check of new files.
I believe that this article will be useful to owners of sites with mobile content, since it is on such sites you can find a huge number of viruses for mobile devices.
Nowhere on the Internet, and even on the Kaspersky site itself, is it indicated that you cannot install an antivirus if you do not have a key file. It’s strange of course that the installer offers us to continue the installation without it, but in the end it crashes with an error of “database update” without which further installation is impossible.
Clam AntiVirus is already installed and configured on all servers. I used it a few years ago, but unfortunately it does not always find viruses of the Trojan-SMS.J2ME class.
After studying the results of Google, I really did not find anything.
')
When I addressed Kaspersky’s support service once again with a request to remove the site from the suspicious list, I came across the kaspersky for linux file server fad . I then decided to test it.
Going to Google for help in installing and configuring this antivirus also failed. All results lead to the support site of Kaspersky.
Did nobody put their distribution on their file servers? Maybe there are some other solutions?
Answers to these questions for me will remain a secret. I settled on the above product and decided to test it.
The test license file is requested on the support site. The answer comes in a few hours.
Proceed to install
# dpkg -i kav4fs_8.0.1-145_i386.deb dpkg: error processing kav4fs_8.0.1-145_i386.deb (--install): package architecture (i386) does not match system (amd64) Errors were encountered while processing: kav4fs_8.0.1-145_i386.deb Oops. We have the same amd64. And there are no other distros with Kaspersky. Google is also not responding.
#dpkg -i --force-architecture kav4fs_8.0.1-145_i386.deb (Reading database ... 38907 files and directories currently installed.) Unpacking kav4fs (from kav4fs_8.0.1-145_i386.deb) ... Setting up kav4fs (8.0.1-145) ... Starting Kaspersky Lab Framework Supervisor: kav4fs-supervisor. Kaspersky Anti-Virus for Linux File Server has been installed successfully, but it must be properly configured before using. Please run /opt/kaspersky/kav4fs/bin/kav4fs-setup.pl script manually to configure it. Rolled :). We try to configure.
# /opt/kaspersky/kav4fs/bin/kav4fs-setup.pl Kaspersky Anti-Virus for Linux File Server version 8.0.1.145/RELEASE Installing the license The key file (a file with the .key extension) contains information about your license. You need to install it to use the application. To install it now, enter the path to your key file (or enter an empty string to continue without installing the key file): /xxx/xxx.key The license from /xxx/xxx.key has been installed. Configuring the proxy settings to connect to the updates source If you use an HTTP proxy server to access the Internet, you need to specify its address to allow the application to connect to the updates source. Please enter the address of your HTTP proxy server in one of the following formats: proxyIP:port or user:pass@proxyIP:port. If you don't have or need a proxy server to access the Internet, enter 'no' here, or enter 'skip' to use current settings without changes. [no]: Downloading the latest application databases The latest databases are an essential part of your server protection. Would you like to download the latest databases now? (If you answer 'yes', make sure you are connected to the Internet): [yes]: nabling scheduled updates of the application databases Would you like to enable scheduled updates? [N]: Setting up the kernel-level real-time protection Would you like to compile the kernel-level real-time protection module? [yes]: no Would you like to disable the real-time protection? [no]: yes Warning: The real-time protection is DISABLED. Error: The kernel-level real-time protection module is not compiled. To manually recompile the kernel-level real-time protection module, start /opt/kaspersky/kav4fs/bin/kav4fs-setup.pl --build[=PATH]. Setting up the Samba server real-time protection Error: The installer couldn't find a Samba server on your computer. Either it is not installed, or is installed to an unknown location. If the Samba server is installed, specify the server installation details and enter 'yes'. Otherwise, enter 'no' (the Samba server configuration step will be interrupted): [no]: You can configure Samba server protection later by running the initial configuration script again by executing /opt/kaspersky/kav4fs/bin/kav4fs-setup.pl --samba The real-time protection of Samba server was not setup. You can run the initial configuration script again by executing /opt/kaspersky/kav4fs/bin/kav4fs-setup.pl --samba Setting up the Web Management Console Warning: Password file not found, Kaspersky Web Management Console will not be started until correct password is set! Would you like to set password for Kaspersky Web Management Console? [no]: Starting Kaspersky Web Management Console: kav4fs-wmconsole: password file not found! failed! You can change password for Kaspersky Web Management Console by executing /opt/kaspersky/kav4fs/bin/kav4fs-wmconsole-passwd Starting the real-time protection task The task has been started, runtime ID: 1341314367. Real-time protection doesn't seem to interest me at all. I just need to check the specified file and get the result of the check.
Trying a test virus
Create a virus test file with the contents
X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H* And run the check:
# /opt/kaspersky/kav4fs/bin/kav4fs-control --scan-file virus Objects scanned: 1 Threats found: 1 Riskware found: 0 Infected: 1 Suspicious: 0 Cured: 0 Moved to quarantine: 0 Removed: 0 Not cured: 0 Scan errors: 0 Password protected: 0 Corrupted: 0 We try on our Trojan-SMS.J2ME
#/opt/kaspersky/kav4fs/bin/kav4fs-control --scan-file sms.jar Objects scanned: 27 Threats found: 1 Riskware found: 0 Infected: 1 Suspicious: 0 Cured: 0 Moved to quarantine: 0 Removed: 0 Not cured: 0 Scan errors: 0 Password protected: 0 Corrupted: 0 # /opt/kaspersky/kav4fs/bin/kav4fs-control --top-viruses 1 Viruses found: 1 Virus name: Trojan-SMS.J2ME.Boxer.ct Infected objects: 1 Everything turned out, our virus determines without problems. Of course, I would like to see what kind of virus as a result of the check, but I will write about this as soon as the support service answers me. Unfortunately, I did not find this information in mana.
Conclusion
Antivirus setup and tests were successful. Then I will check all of my file servers and configure online check of new files.
I believe that this article will be useful to owners of sites with mobile content, since it is on such sites you can find a huge number of viruses for mobile devices.
Underwater rocks
Nowhere on the Internet, and even on the Kaspersky site itself, is it indicated that you cannot install an antivirus if you do not have a key file. It’s strange of course that the installer offers us to continue the installation without it, but in the end it crashes with an error of “database update” without which further installation is impossible.
Source: https://habr.com/ru/post/151945/
All Articles