Hi.
I'm look for an enterprise quality Anti-virus / Malware for my Linux machines . Mostly Ubuntu on the desktop, CentOS and RHEL servers. I must have real time scanning, on demand scanning, and centralized management.
Is there anything out there that can do this ?
GM
On Mon, 13 Aug 2012 16:25:02 +1200 Gregory Machin wrote:
I'm look for an enterprise quality Anti-virus / Malware for my Linux machines . Mostly Ubuntu on the desktop, CentOS and RHEL servers. I must have real time scanning, on demand scanning, and centralized management.
Is there anything out there that can do this ?
What are you planning to scan for? Windows viruses on a mailserver?
On Mon, Aug 13, 2012 at 1:25 AM, Gregory Machin gdm@linuxpro.co.za wrote:
Is there anything out there that can do this ?
for desktops, free http://free.avg.com/us-en/download.prd-alf
for severs, not cheap http://www.avg.com/ww-en/avg-linux-email-server-edition
not sure if any provides what you call "centralized management" - whatever that means...
FC
On 13/08/2012 07:25, Gregory Machin wrote:
Hi.
I'm look for an enterprise quality Anti-virus / Malware for my Linux machines . Mostly Ubuntu on the desktop, CentOS and RHEL servers. I must have real time scanning, on demand scanning, and centralized management.
Is there anything out there that can do this ?
GM _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
I think eset for business is cover all your needs. I use it more than 4 years (mostly on windows, but from 2 years ago on 2 linux machines too). The remote administration is really good. But it's not cheap :)
Levi
Try kaspersky It's best one
——— Ashkan R On Aug 13, 2012 8:55 AM, "Gregory Machin" gdm@linuxpro.co.za wrote:
Hi.
I'm look for an enterprise quality Anti-virus / Malware for my Linux machines . Mostly Ubuntu on the desktop, CentOS and RHEL servers. I must have real time scanning, on demand scanning, and centralized management.
Is there anything out there that can do this ?
GM _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Hi.
Thanks for the feed back.
To clarify , all viruses / Malware no matter to the OS ... A user downloads (Web site, USB , cd rom , etc) an infected file via his Linux machine , the infected file only attacks M$ OS's .... User saves the file to a samba share .. a windows user opens the file bang ... Stop the virus at the entry point.
Centralized management , view the status of all machine that have AV software installed , are they up to date, when did the last run a scan , alerts if they have found a virus etc ...
Thanks
On Mon, Aug 13, 2012 at 9:29 PM, Ashkan Rahmani ashkan82r@gmail.com wrote:
Try kaspersky It's best one
——— Ashkan R On Aug 13, 2012 8:55 AM, "Gregory Machin" gdm@linuxpro.co.za wrote:
Hi.
I'm look for an enterprise quality Anti-virus / Malware for my Linux machines . Mostly Ubuntu on the desktop, CentOS and RHEL servers. I must have real time scanning, on demand scanning, and centralized management.
Is there anything out there that can do this ?
GM _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On 13.08.2012 22:46, Gregory Machin wrote:
Hi.
Thanks for the feed back.
Why not Clamav? It has othe n-access thingy as well. http://www.clamav.net/doc/latest/html/node21.html
On Tue, 2012-08-14 at 07:28 +0100, Nux! wrote:
On 13.08.2012 22:46, Gregory Machin wrote:
Hi. Thanks for the feed back.
Why not Clamav? It has othe n-access thingy as well. http://www.clamav.net/doc/latest/html/node21.html
"you shouldn't run Dazuko on production systems"
But, if your clients are Windows boxes via Samba, you can perform on-demand file access via Samba + CLAMAV using a VFS module. This works very well. Then files detected to contain malware cannot be read or saved, and the administrator can be notified.
I don't think that really helps the LINUX desktop however.
Thanks for the input but will pass "you shouldn't run Dazuko on production systems" .
GM
On Tue, Aug 14, 2012 at 6:28 PM, Nux! nux@li.nux.ro wrote:
On 13.08.2012 22:46, Gregory Machin wrote:
Hi.
Thanks for the feed back.
Why not Clamav? It has othe n-access thingy as well. http://www.clamav.net/doc/latest/html/node21.html
-- Sent from the Delta quadrant using Borg technology!
Nux! www.nux.ro _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On 14/08/2012 00:46, Gregory Machin wrote:
Hi.
Thanks for the feed back.
To clarify , all viruses / Malware no matter to the OS ... A user downloads (Web site, USB , cd rom , etc) an infected file via his Linux machine , the infected file only attacks M$ OS's .... User saves the file to a samba share .. a windows user opens the file bang ... Stop the virus at the entry point.
Centralized management , view the status of all machine that have AV software installed , are they up to date, when did the last run a scan , alerts if they have found a virus etc ...
Thanks
On Mon, Aug 13, 2012 at 9:29 PM, Ashkan Rahmani ashkan82r@gmail.com wrote:
Try kaspersky It's best one
——— Ashkan R On Aug 13, 2012 8:55 AM, "Gregory Machin" gdm@linuxpro.co.za wrote:
Hi.
I'm look for an enterprise quality Anti-virus / Malware for my Linux machines . Mostly Ubuntu on the desktop, CentOS and RHEL servers. I must have real time scanning, on demand scanning, and centralized management.
Is there anything out there that can do this ?
GM _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Exactly .... eset for business cover all ... with remote admin even can remote install, fire scan, statistics and more, more ...
Levi
On 8/13/2012 12:25 AM, Gregory Machin wrote:
Hi.
I'm look for an enterprise quality Anti-virus / Malware for my Linux machines . Mostly Ubuntu on the desktop, CentOS and RHEL servers. I must have real time scanning, on demand scanning, and centralized management.
Is there anything out there that can do this ?
GM _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
I'm not a fan of anti-crud on servers. Put an astaro security gateway in front of your network and let it scan everything before it gets to your internal devices
On 08/14/12 2:02 AM, William Warren wrote:
I'm not a fan of anti-crud on servers. Put an astaro security gateway in front of your network and let it scan everything before it gets to your internal devices
how would that scan malware injected or downloaded from https?
On Tue, Aug 14, 2012 at 9:43 PM, John R Pierce pierce@hogranch.com wrote:
On 08/14/12 2:02 AM, William Warren wrote:
I'm not a fan of anti-crud on servers. Put an astaro security gateway in front of your network and let it scan everything before it gets to your internal devices
how would that scan malware injected or downloaded from https?
-- john r pierce N 37, W 122
hi John.
Once is lands at the browser it's no longer ssl . It can then be blocked from running , or block the infect file from being written to the file system. As is done on windows.
SSL effectively creates a pipe that one cant see into , but the ends are open and data is visible .
GM
On 08/14/12 5:18 PM, Gregory Machin wrote:
Once is lands at the browser it's no longer ssl . It can then be blocked from running , or block the infect file from being written to the file system. As is done on windows.
SSL effectively creates a pipe that one cant see into , but the ends are open and data is visible .
how does the 'astaro security gateway' William Warren mentioned do that? my query was in direct response to the three lines I quoted from William. he was referring to an appliance gateway at the network border.
My bad ..
Good point unless its intercepting the ssl stream. there are ways of doing it http://wiki.squid-cache.org/Features/SslBump but its dodgy ..
On Wed, Aug 15, 2012 at 12:28 PM, John R Pierce pierce@hogranch.com wrote:
On 08/14/12 5:18 PM, Gregory Machin wrote:
Once is lands at the browser it's no longer ssl . It can then be blocked from running , or block the infect file from being written to the file system. As is done on windows.
SSL effectively creates a pipe that one cant see into , but the ends are open and data is visible .
how does the 'astaro security gateway' William Warren mentioned do that? my query was in direct response to the three lines I quoted from William. he was referring to an appliance gateway at the network border.
-- john r pierce N 37, W 122 santa cruz ca mid-left coast
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On 08/14/12 5:38 PM, Gregory Machin wrote:
Good point unless its intercepting the ssl stream. there are ways of doing ithttp://wiki.squid-cache.org/Features/SslBump but its dodgy ..
the only method I know that works consistently is to block all direct web and ssl access and force use of a web proxy, so the SSL is between the remote server and the proxy server, which is your security gateway. users don't like this. the various uPNP type methods of autoconfiguring web proxies are all dodgy. mobile device users frequently have issues.
You might try looking into Symantec Endpoint Protection. It offers everything you've mentioned you're looking for.
Andrew Reis
Microsoft Windows/Networking Support Webmaster DBMS Inc. Toll-Free: (888) 862-0662 ext. 307 Direct: (318) 219-5034 andy@dbmsinc.com http://www.dbmsinc.com
-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of John R Pierce Sent: Tuesday, August 14, 2012 7:53 PM To: centos@centos.org Subject: Re: [CentOS] Good Anti-virus for Linux desktops and servers
On 08/14/12 5:38 PM, Gregory Machin wrote:
Good point unless its intercepting the ssl stream. there are ways of doing ithttp://wiki.squid-cache.org/Features/SslBump but its dodgy ..
the only method I know that works consistently is to block all direct web and ssl access and force use of a web proxy, so the SSL is between the remote server and the proxy server, which is your security gateway. users don't like this. the various uPNP type methods of autoconfiguring web proxies are all dodgy. mobile device users frequently have issues.
Hi.
I tried it. It's very limiting in its support based on Linux kernel. I would have to package create packages for the unsupported kernels on many of our machines. And it was a complete fail when I installed the packages of our media kit.
I don't have time for jumping through hoops.
Thanks
On Wed, Aug 15, 2012 at 2:43 PM, Andrew S Reis andy@dbmsinc.com wrote:
You might try looking into Symantec Endpoint Protection. It offers everything you've mentioned you're looking for.
Andrew Reis
Microsoft Windows/Networking Support Webmaster DBMS Inc. Toll-Free: (888) 862-0662 ext. 307 Direct: (318) 219-5034 andy@dbmsinc.com http://www.dbmsinc.com
-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of John R Pierce Sent: Tuesday, August 14, 2012 7:53 PM To: centos@centos.org Subject: Re: [CentOS] Good Anti-virus for Linux desktops and servers
On 08/14/12 5:38 PM, Gregory Machin wrote:
Good point unless its intercepting the ssl stream. there are ways of doing ithttp://wiki.squid-cache.org/Features/SslBump but its dodgy ..
the only method I know that works consistently is to block all direct web and ssl access and force use of a web proxy, so the SSL is between the remote server and the proxy server, which is your security gateway. users don't like this. the various uPNP type methods of autoconfiguring web proxies are all dodgy. mobile device users frequently have issues.
-- john r pierce N 37, W 122 santa cruz ca mid-left coast
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
the only method I know that works consistently is to block all direct web and ssl access and force use of a web proxy, so the SSL is between the remote server and the proxy server, which is your security gateway.
The way I've handled this in previous places when the requirement has existed is a company CA cert installed on all corporate devices (windows with AD makes this very easy) and man in the middle everything.
There's no browser security errors then and the unencrypted data is visible for security inspection.
Of course if doing this make sure you notify in the AUP for the company employees have to sign and agree to abide by etc etc...
On 8/15/2012 3:40 AM, James Hogarth wrote:
the only method I know that works consistently is to block all direct web and ssl access and force use of a web proxy, so the SSL is between the remote server and the proxy server, which is your security gateway.
The way I've handled this in previous places when the requirement has existed is a company CA cert installed on all corporate devices (windows with AD makes this very easy) and man in the middle everything.
There's no browser security errors then and the unencrypted data is visible for security inspection.
Of course if doing this make sure you notify in the AUP for the company employees have to sign and agree to abide by etc etc... _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
that is how astaro does ssl scanning. Once it has gotten to the endpoint it is too late.
I'm not to keen either. but one cant account for what users may bring in on USB / cdrom or other possible sources. Quite often the users are clueless that they have a virus on their usb flash drive :-( . We have edge devices with all the bells etc.
Thanks
GM
On Tue, Aug 14, 2012 at 9:02 PM, William Warren hescominsoon@emmanuelcomputerconsulting.com wrote:
On 8/13/2012 12:25 AM, Gregory Machin wrote:
Hi.
I'm look for an enterprise quality Anti-virus / Malware for my Linux machines . Mostly Ubuntu on the desktop, CentOS and RHEL servers. I must have real time scanning, on demand scanning, and centralized management.
Is there anything out there that can do this ?
GM _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
I'm not a fan of anti-crud on servers. Put an astaro security gateway in front of your network and let it scan everything before it gets to your internal devices _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
On 8/14/2012 8:21 PM, Gregory Machin wrote:
I'm not to keen either. but one cant account for what users may bring in on USB / cdrom or other possible sources. Quite often the users are clueless that they have a virus on their usb flash drive :-( . We have edge devices with all the bells etc.
Thanks
GM
On Tue, Aug 14, 2012 at 9:02 PM, William Warren hescominsoon@emmanuelcomputerconsulting.com wrote:
On 8/13/2012 12:25 AM, Gregory Machin wrote:
Hi.
I'm look for an enterprise quality Anti-virus / Malware for my Linux machines . Mostly Ubuntu on the desktop, CentOS and RHEL servers. I must have real time scanning, on demand scanning, and centralized management.
Is there anything out there that can do this ?
GM _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
I'm not a fan of anti-crud on servers. Put an astaro security gateway in front of your network and let it scan everything before it gets to your internal devices _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
a/v on endpoints yes..I run a/v on endpoints for clients..:)
-
Adam Tauno Williams -
Andrew S Reis -
Ashkan Rahmani -
Birta Levente -
Fernando Cassia -
Frank Cox -
Gregory Machin -
James Hogarth -
John R Pierce -
Nux! -
William Warren