Manualshelf

Installation manual

ManualsBrandsESET ManualsComputer equipmentNOD32 ANTIVIRUS - FOR LINUX-BSD MAIL SERVER
11121314151617181920
12
This chapter describes process of conguration of NOD32LFS/NOD32BFS system in order to provide an ecient
protection from virus and worm infections of the le systems by using ondemand and on-access scanning techniques.
The NOD32 for Linux/BSD File Server is composed from the so-called on-demand scanner ‘nod32‘ and so-called on-
access scanner ’nod32dac’. The Linux version of the products implements also additional on-access scanner technique
using preload library module ’libnod32pac.so. All concerned components are described in the following sections.
4.1. On-demand scanner
On-demand scanner is scanner that can be invoked by privileged user (usually system administrator) using
command line interface or by operating systemusing periodic command scheduler. This is also an explanation of the
term ’on-demand’ that the le system objects are scanned on user and/or system demand.
Concerning NOD32 on-demand scanner there are not special requirements for its operation. After proper installation
of theNOD32LFS/NOD32BFS package and after valid license has been provided within the license keys directory feel free
to run on-demand scanner by using command line interface or scheduler tool.
In order to run on-demand scanner from command line the following syntax is expected
/usr/sbin/nod32 [option(s)] INCL_SCAN_DIR -- -EXCL_SCAN_MASK
Note that in Linux RedHat Ready and Novell (SuSE) Ready variation of the product an appropriate command will
look as follows.
/opt/eset/nod32/sbin/nod32 [option(s)] INCL_SCAN_DIR -- -EXCL_SCAN_MASK
where INCL_SCAN_DIR (resp. EXCL_SCAN_MASK) is list of directories and/or les to be scanned (resp. excluded
from scanning).
Multiple command line options are implemented within NOD32 on-demand scanner. To get full list of them, please,
read appropriate manual page for NOD32 on-demand scanner nod32(8).
Tip: As indicated already it is good idea to use on-demand scanner on the regular basis to protect operating system.
Next example shows how to set periodic command scheduler ’cron’ for running on-demand scanner each day at 3AM. In
order to do so one has to enter the following line into the ’cron table (use statement ’crontab -e’ for this purpose):
0 3 * * * /usr/sbin/nod32 [option(s)] INCL_SCAN_DIR -- -EXCL_SCAN_DIR
Note that in Linux RedHat Ready and Novell (SuSE) Ready variation of the product an appropriate command line
will look as follows.
0 3 * * * /opt/eset/nod32/sbin/nod32 [option(s)] INCL_SCAN_DIR \
-- -EXCL_SCAN_DIR
Please note that there is no conguration le interface supported for this module.
4.2. On-access scanner
On-access scanner is scanner invoked by predened triggered access of user(s) and/or operating systemto the le
systemobjects. This also explains the term on-access‘; the scanner is started on attempt to access selected le system
object.
TheNOD32LFS/NOD32BFS technique based on kernel calls interception is powered by Dazuko (read da-tzu-ko)
kernelmodule. Dazuko project is a Free software, by means that it is distributed as a free source code, in order to allow
users compilation of the kernelmodule for their own custom kernels. Note that the Dazuko kernel module is not a part
NOD32 for Linux/BSD File Server