• No results found

========================================================== ==========================================================

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "========================================================== =========================================================="

Copied!
11
0
0

Loading.... (view fulltext now)

Download now ( 11 Page )

Full text

(1)

Release Notes for McAfee(R) VirusScan(TM) Enterprise for Linux (previously known as LinuxShield) Version 1.6

Copyright (C) 2010 McAfee, Inc. All Rights Reserved

========================================================== - DAT Version: 5932.0000

- Engine Version: 5400.1158

==========================================================

Thank you for using McAfee(R) VirusScan (TM) Enterprise for Linux software (previously known as LinuxShield). This file contains important

information regarding this release. We strongly recommend that you read the entire document. IMPORTANT:

McAfee does not support automatic upgrading of a pre-release version of the software. To upgrade to a later beta release, a release candidate, or a production release of the software, you must first uninstall the existing version of the software.

__________________________________________________________ WHAT'S IN THIS FILE

- Product Features

- Installation & System Requirements - System Requirements

- Standard Installation - Silent Installation

- Running VirusScan Enterprise for Linux - Testing your installation

- Integrating using ePolicy Orchestrator - Uninstallation

- Known Issues - Documentation

- Copyright & Trademark Attributions - License Information

__________________________________________________________ PRODUCT FEATURES

- Scanning

- Comprehensive on-access anti-virus scanning and cleaning using the McAfee scanning engine.

- On-access scanning for local file system, NFS and Samba/CIFS.

- Kernel-level scan cache for improved performance.

- Scheduling of on-demand scans.

- Scheduling of updates for scanning engine and virus definition files.

- Administration

- Remote administration using browser-based user interface.

- Secure browser interface with authentication and HTTPS (SSL) support.

(2)

ePolicy Orchestrator 4.0 or 4.5. - Reporting

- Real-time statistics.

- Detailed database for detected items and system events.

- Ability to query the database by date range or individual field values, for example,

virus name. Results of query can be exported to a CSV file.

- Configurable email notification for detected items, out-of-date virus-definition files, configuration changes, and system events. - Diagnostic report for use when reporting a problem with the product.

- Support for 64-bit AMD64/Intel EM64T operating systems.

- The latest version (5400) of the McAfee anti-virus engine.

- Incremental Virus Signature (DAT) updates. - Mod-versioning for automatic kernel support. - Regular expression based exclusions for On-access scan and On-demand scan from the user interface.

FEATURES NOT SUPPORTED - Support for 2.4 kernels.

__________________________________________________________ INSTALLATION AND SYSTEM REQUIREMENTS

SYSTEM REQUIREMENTS

Supported Operating Systems (32-bit/64-bit): - SuSE Linux Enterprise Server 9.x

- SuSE Linux Enterprise Server/Desktop 10.x - SuSE Linux Enterprise Server/Desktop 11 - Red Hat Enterprise 4.x Advanced Server, Workstation, Enterprise Server, Desktop

- Red Hat Enterprise 5.x Advanced Platform, Desktop - CentOS 4.x

- CentOS 5.x

- Fedora Core 10, 11, and 12

- Ubuntu 8.04, 9.04, and 9.10 (Desktop/Server edition) NOTE:

On-access scanning is not supported for the following file systems:

- SLES 10 SP2 – ext2, isofs - SLES 10 SP3 – ext2, isofs - SLES 11 – ext2, isofs - RHEL 5.x – ext2, isofs - CentOS 5.x – ext2, isofs

- Ubuntu 9.04 – ext2, ext3, ext4, isofs - Ubuntu 9.10 – ext2, ext3, ext4 - Fedora Core 10 – ext3, ext4, isofs - Fedora Core 11 – ext3, ext4, isofs - Fedora Core 12 – ext3, ext4, isofs Supported Processors:

- Intel x86 architecture-based processor - Intel x64 architecture-based processor that supports Intel Extended Memory 64 Technology (Intel EM64T)

(3)

64-bit technology Memory: - Minimum: 256 MB RAM Recommended: 1 GB RAM Disk Space: - Minimum: 500 MB Supported Browsers:

- Microsoft Internet Explorer 5.5, 6.0, 7.0 and 8.0 - Konqueror 3.5.1 and 4.1.3

- Mozilla 0.9.9, 1.0.1, 1.2.1, 1.4, 1.6, 1.7.8, 1.8.x and 1.9.x

- Firefox 1.0, 1.5, 2.0, 3.0, 3.5 and 3.6 Supported McAfee Management software: - McAfee ePolicy Orchestrator 4.0 - McAfee ePolicy Orchestrator 4.5 Supported McAfee Agent software: - McAfee Agent 4.5 Patch 1 (Build 1470)

_______________________________________________________ STANDARD INSTALLATION

PRE-REQUISITE:

Ensure that there is no user named as "nails" or group named as "nailsgroup" on the computer. Ensure that you have root privileges to install McAfee VirusScan Enterprise for Linux, version 1.6.

IMPORTANT:

During installation, you are prompted to supply a password and other information. For most of the questions, you can accept the default value that is offered. To set up email notification for alerts if it is required, you need an MTA (Mail Transfer Agent) configured, and the following information:

- Email address of the VirusScan administrator - Address for the SMTP host

- TCP/IP port number for the SMTP host To install McAfee Runtime:

1. Download the "MFErt.i686.rpm" file. 2. Type the following at the command prompt: rpm -ivh MFErt.i686.rpm

To install McAfee Agent (MA):

3. Download the "MFEcma.i686.rpm" file. 4. Type the following at the command prompt: rpm -ivh MFEcma.i686.rpm

(4)

5. To confirm that the McAfee agent is running correctly, type the following at the command prompt:

/etc/init.d/cma status

To install VirusScan Enterprise for Linux: 6. Download the rpm file.

7. Type the following at the command prompt:

rpm -ivh McAfeeVSEForLinux-1.6.0-<build>.noarch.rpm 8. Answer the questions when prompted. Accept the default values, or type your own.

9. When prompted to start the VirusScan services, select the default option, "Y".

10. To confirm that VirusScan Enterprise for Linux is installed and running correctly, type the following at the command prompt: /etc/init.d/nails status

To install VirusScan Enterprise for Linux on Novel Open Enterprise Server 1 or 2:

1. From the Novell eDirectory server, use iManager and create a user called "nails" and a group called "nailsgroup".

2. Add the user "nails" a member of the

"nailsgroup". Enable the user and group using the Linux User Management.

3. Provide "nails" user with administrative privileges on all the NSS volumes. NOTE:

rights -f /media/nss/<VOL-name> -r s trustee nails.<context>.<tree> You need to provide administrative privileges to

the "nails" user, every time a new NSS volume is created.

4. Download the MFErt.i686.rpm and MFEcma.i686.rpm file.

5. Install McAfee Runtime and McAfee Agent using the following commands:

rpm -ivh MFErt.i686.rpm rpm -ivh MFEcma.i686.rpm

6. Type the following at the command prompt:

rpm -ivh McAfeeVSEForLinux-1.6.0-<build>.noarch.rpm 7. Type "nailsgroup" for the Linux group for

VirusScan administrator.

8. Type "nails" for the VirusScan user.

9. Answer the questions when prompted. Accept the default values, or type your own.

(5)

select the default option, "Y".

To install VirusScan Enterprise for Linux on Ubuntu 8.04, 9.04, and 9.10 (Desktop/Server edition): NOTE:

If you are installing VirusScan Enterprise for Linux on a 64-bit Ubuntu system, ensure that you perform the following steps before

installation:

a. Copy "pam_unix.so" from "/lib/security" of a 32-bit ubuntu system to a temporary directory (/tmp) on the 64-bit ubuntu system.

b. In the root directory, create a folder "pam32lib".

c. Execute the following command to copy "pam_unix32.so" to the "pam32lib" directory: cp /tmp/pam_unix.so /pam32lib/pam_unix32.so

1. Download the MFErt.i686.deb and MFEcma.i686.deb file.

2. Install McAfee Runtime and McAfee Agent using the following commands:

dpkg -i MFErt.i686.deb dpkg -i MFEcma.i686.deb

3. Type the following at the command prompt:

dpkg -i McAfeeVSEForLinux-1.6.0-<build>.noarch.deb 4. Answer the questions when prompted. Accept the default values, or type your own.

5. When prompted to start the VirusScan services, select the default option, "Y".

6. To confirm that VirusScan Enterprise for Linux is installed and running correctly, type the following at the command prompt: /etc/init.d/nails status

SILENT INSTALLATION NOTE:

Before installing McAfee VirusScan Enterprise for Linux, you must have McAfee Runtime and McAfee Agent already installed on the computer. 1. Create a file "nails.options" in the root home directory. For example: SILENT_ACCEPTED_EULA="yes" SILENT_INSTALLDIR="/opt/NAI/LinuxShield" SILENT_RUNTIMEDIR="/var/opt/NAI/LinuxShield" SILENT_ADMIN="[email protected]" SILENT_HTTPHOST="192.168.255.200" SILENT_HTTPPORT="55443"

(6)

SILENT_MONITORPORT="65443" SILENT_SMTPHOST="example.example.com." SILENT_SMTPPORT="25" SILENT_NAILS_USER="nails" SILENT_NAILS_GROUP="nailsgroup" SILENT_CREATE_USER="no" SILENT_CREATE_GROUP="no" SILENT_RUN_WITH_MONITOR="yes" SILENT_QUARANTINEDIR="/quarantine" SILENT_START_PROCESSES="yes" SILENT_CONTINUE_INSTALL_ON_PAM_ERROR="no" NOTE:

Use SILENT_CONTINUE_INSTALL_ON_PAM_ERROR only when 32-bit PAM libraries are not present.

If you set this flag to yes and continue without Pluggable Authentication Module (PAM) libraries, the installation of VirusScan Enterprise for Linux monitor component is skipped, and the web interface will not be available. However, you can still manage the VirusScan Enterprise for Linux host using ePolicy Orchestrator or the web interface of some other VirusScan Enterprise for Linux host. See information about configuring VirusScan Enterprise for Linux in the Product Guide.

2. As root, create a user "nails" as a member of a group "nailsgroup".

NOTE:

Before installing VirusScan Enterprise for Linux, make sure that there is no user as "nails" and no group as "nailsgroup" in the computer.

3. Type the following at the command prompt:

rpm -ivh McAfeeVSEForLinux-1.6.0-<build>.noarch.rpm 4. After performing the installation, use the

command "passwd" to assign a password to the user "nails".

To install VirusScan Enterprise for Linux on Novel Open Enterprise Server 1 or 2 in Silent mode: 1. From the Novell eDirectory server, use iManager and create a user called "nails" and a group called "nailsgroup".

2. Add the user "nails" a member of the

"nailsgroup". Enable the user and group using the Linux User Management.

3. Provide "nails" user with administrative privileges on all the NSS volumes. NOTE:

rights -f /media/nss/<VOL-name> -r s trustee nails.<context>.<tree> You need to provide administrative privileges to

the "nails" user, every time a new NSS volume is created.

4. In the "nails.options" file, check if the following parameters are available:

(7)

SILENT_NAILS_USER="nails"

SILENT_NAILS_GROUP="nailsgroup" 5. Type the following at the command prompt:

rpm -ivh McAfeeVSEForLinux-1.6.0-<build>.noarch.rpm 6. After performing the installation, use the

command "passwd" to assign a password to the user "nails".

To install VirusScan Enterprise for Linux on Ubuntu 8.04, 9.04, and 9.10 (Desktop/Server edition): 1. In the "nails.options" file, check if the following parameters are available: SILENT_NAILS_USER="nails"

SILENT_NAILS_GROUP="nailsgroup" 2. Type the following at the command prompt:

dpkg -i McAfeeVSEForLinux-1.6.0-<build>.noarch.deb 3. After performing the installation, use the

command "passwd" to assign a password to the user "nails".

RUNNING VIRUSSCAN ENTERPRISE FOR LINUX 1. From a supported web-browser, go to:

https://<hostname or IP address>:<port number> Specify the hostname or IP address of the

computer, on which VirusScan Enterprise for Linux is installed. By default, the port number is "55443".

For example:

https://192.168.200.200:55443 (or)

https://server1:55443

2. On the log on page, type the user name "nails" and type the password that you specified during installation.

TESTING YOUR INSTALLATION

You can test the operation of the software by running the EICAR Standard AntiVirus Test File on any computer where you have installed the software. The EICAR Standard AntiVirus Test File is a combined effort by anti-virus vendors throughout the world to implement one standard by which customers can verify their anti-virus installations.

To test your installation:

1. Copy the following line into its own file, making sure you do not include any spaces or line breaks. Save the file with the name

(8)

EICAR.COM.

X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H* The file size will be 68 or 70 bytes.

2. Start your anti-virus software and allow it to scan the directory that contains EICAR.COM. When your software scans this file, it will report finding the EICAR test file.

3. Delete the file when you have finished testing your installation to avoid alarming unsuspecting users.

IMPORTANT:

Please note that this file is NOT A VIRUS.

For more information on the EICAR test file, visit: http://www.eicar.org

INTEGRATING USING EPOLICY ORCHESTRATOR NOTE:

Before deploying VirusScan Enterprise for Linux using ePolicy Orchestrator, remove any previous versions of the LinuxShield software from the client computer.

1. Extract the McAfee VirusScan Enterprise for Linux v1.6 package

(McAfeeVSEForLinux-1.6.0-<build>-release.noarch.tar.gz) on to a temporary directory.

2. Check in the McAfee Agent

(MSA-LNX_4.5.0_Package.ZIP) bundled with this package on to the ePolicy Orchestrator "Master repository".

3. Check in

"McAfeeVSEForLinux-1.6.0-<build>-EPO.ZIP" on to the ePolicy Orchestrator "Master repository". 4. Check in the following extensions on to the ePolicy Orchestrator "Extensions":

- EPOAGENTMETA.ZIP - LYNXSHLD1600.ZIP

- LYNXSHLD1600PARSER.ZIP

5. From the ePolicy Orchestrator server, copy "INSTALL.SH" and "INSTALLDEB.SH" from "C:\Program Files\McAfee\ePolicy

Orchestrator\DB\Software\Current\EPOAGENT3700LYNX\Install\0409" to your Linux client.

6. From the Linux terminal, execute the following command:

sh install.sh –i

Incase of Ubuntu operating system, type: sh installdeb.sh –i

(9)

This will establish a connection between ePolicy Orchestrator and the Linux client computer. 7. Create a Product Deployment Task on ePolicy Orchestrator to deploy McAfee VirusScan Enterprise for Linux, version 1.6.

UNINSTALLATION

1. To uninstall VirusScan Enterprise for Linux, type the following at the command prompt: rpm -e McAfeeVSEForLinux

rpm -e MFEcma rpm -e MFErt

If you want to uninstall from an Ubuntu system, type:

dpkg --purge McAfeeVSEForLinux dpkg --purge MFEcma

dpkg --purge MFErt

2. Reboot the computer to remove the LinuxShield kernel modules.

NOTE:

You do not have to reboot the computer immediately, because the VirusScan Enterprise for Linux kernel modules does not interrupt functioning of any other running service.

__________________________________________________________ KNOWN ISSUES

To view an updated list of issues associated with this release, see KB68789 in the McAfee Support online KnowledgeBase: https://mysupport.mcafee.com.

__________________________________________________________ DOCUMENTATION

This product includes the following documentation set:

- Installation Guide

System requirements and instructions for installing and starting the software. - Product Guide

Introduction to the product and its features; detailed instructions for configuring the

software; information on deployment, recurring tasks, and operating procedures.

- Help

High-level and detailed information accessed from the software application.

- Configuration Guide

For use with ePolicy Orchestrator(R). Procedures for managing McAfee VirusScan Enterprise for Linux through the ePolicy Orchestrator

management software.

(10)

- LICENSE Agreement

The McAfee License Agreement booklet that includes all of the license types you can

purchase for your product. The License Agreement presents general terms and conditions for use of the licensed product.

- CONTACTS

Contact information for McAfee services and resources: technical support, customer service, Security Headquarters (AVERT), beta program, and training. A text file is included with the

software application and on the product CD.

__________________________________________________________ FINDING PRODUCT DOCUMENTATION

McAfee provides the information you need during each phase of product implementation, from installation to daily use and troubleshooting. After a product is released, information about the product is entered into the McAfee online KnowledgeBase.

1. Go to the McAfee Technical Support ServicePortal at http://mysupport.mcafee.com.

2. Under Self Service, access the type of information you need:

For user documentation:

1. Click "Product Documentation." 2. Select a "Product," then select a "Version."

3. Select a product document. For the KnowledgeBase:

- Click "Search the KnowledgeBase" for answers to your product questions. - Click "Browse the KnowledgeBase" for articles listed by product and version.

__________________________________________________________ COPYRIGHT

Copyright (C) 2010 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language in any form or by any means without the written permission of McAfee, Inc., or its suppliers or affiliate

companies.

__________________________________________________________ TRADEMARK ATTRIBUTIONS

AVERT, EPO, EPOLICY ORCHESTRATOR, FOUNDSTONE, GROUPSHIELD, INTRUSHIELD, LINUXSHIELD, MAX (MCAFEE SECURITYALLIANCE EXCHANGE), MCAFEE, NETSHIELD, PORTALSHIELD, PREVENTSYS, SECURITYALLIANCE,

SITEADVISOR, TOTAL PROTECTION, VIRUSSCAN, WEBSHIELD are registered trademarks or trademarks of McAfee,

Inc. and/or its affiliates in the US and/or other countries. McAfee Red in connection with security is distinctive of McAfee brand products. All other registered and unregistered trademarks herein are the sole property of their respective owners.

(11)

__________________________________________________________ LICENSE INFORMATION

LICENSE AGREEMENT

NOTICE TO ALL USERS: CAREFULLY READ THE APPROPRIATE LEGAL AGREEMENT CORRESPONDING TO THE LICENSE YOU PURCHASED, WHICH SETS FORTH THE GENERAL TERMS AND CONDITIONS FOR THE USE OF THE LICENSED SOFTWARE. IF YOU DO NOT KNOW WHICH TYPE OF LICENSE YOU HAVE

ACQUIRED, PLEASE CONSULT THE SALES AND OTHER RELATED LICENSE GRANT OR PURCHASE ORDER DOCUMENTS THAT ACCOMPANY YOUR SOFTWARE PACKAGING OR THAT YOU HAVE RECEIVED SEPARATELY AS PART OF THE PURCHASE (AS A BOOKLET, A FILE ON THE PRODUCT CD, OR A FILE

AVAILABLE ON THE WEBSITE FROM WHICH YOU DOWNLOADED THE SOFTWARE PACKAGE). IF YOU DO NOT AGREE TO ALL OF THE TERMS SET FORTH IN THE AGREEMENT, DO NOT INSTALL THE SOFTWARE. IF APPLICABLE, YOU MAY RETURN THE PRODUCT TO MCAFEE OR THE PLACE OF PURCHASE FOR A FULL REFUND.

References

Download now ( PDF - 11 Page - 21.64 KB )

Related documents

Joye Ann Billow Papers

She joined the South Dakota State University College of Pharmacy faculty in 1972 and served for 30 years until her retirement in 2002.. She was faculty advisor to the SDSU

Nineteenth-century English politeness: Negative politeness, conventional indirect requests and the rise of the individual self

As indicated in section 1, Culpeper and Archer (2008) found no evidence for ability-CIRs involving can you or could you (or their variant forms) in their detailed study of requests

The Art Of Approaching PDF EBook Free Download: How To Meet ANY Women Without Rejection

getting comfortable approaching people and starting up conversations.  But eventually, you’re going to want to start approaching attractive women on a regular basis.  You may

9/13/2011. Shortage of Speech-Language Pathologists???!!! SLP Credential Requirements for Schools. SLP Credential Requirements for Everywhere Else

license Complete an ISBE- approved program OR hold a comparable out- of-state certificate OR complete of 150 clock hours of supervised school experience with a Type 79

A Broader View of the Cathedral: The Significance of the Liability Rule, Correcting a Misapprehension

it seems to me, was that while nonconsensual entitlement shifts might still be properly permitted, in situations like those in Kelo the change in entitlements might—for

Cyber Crime Law in India: Has Law Kept Pace with Emerging Trends? an Empirical Study

The scope of this paper is to highlight some important provisions of the cyber criminal laws in India relating to data protection, privacy, encryption and other

Legal aspects of electronic commerce

Article 6 Commercial Code provides that insurance settlements are not things or trade and are facts of life insurance business for the insurer and the current

Colonial Perspective and Nationalism(s) in Ethiopia in the Context of African Decolonization

Unlike some recent studies which try to depict the Oromo unity and national identity as a historical, centuries- long fact, Wällagga region, just like any other place in what is