Kaspersky Anti-Virus 5.5 for Linux, FreeBSD and OpenBSD Mail Servers 5.5.10...1 (MP2) RELEASE NOTES

Aus Wiki.csoft.at


wget ftp://dnl-eu2.kaspersky-labs.com/products/release/english/businessoptimal/email_gateways/kavsendmailqmailpostfixexim/kavlinux/kav4mailservers-linux-5.5-10.i386.rpm


What's new?

  • Support for the DSN, 8bit-MIME, X-Forward extensions and SMTP as an incoming transfer protocol has been added.
  • The application now features an opportunity to append additional information about the results of anti-virus scanning and processing to the headers of scanned messages.

Product Overview

Kaspersky Anti-Virus 5.5 for Linux, FreeBSD, and OpenBSD Mail Servers (hereinafter referred to as Kaspersky Anti-Virus or the application) provides anti-virus processing of mail traffic and file systems of servers running the Linux, FreeBSD, or OpenBSD operating systems, and using the Sendmail, Postfix, Qmail, or Exim mail programs.

This software application allows the user to:

  • Check for viruses all mounted file systems, as well as incoming and outgoing mail messages, as part of the servers SMTP traffic.
  • Detect infected, suspicious, corrupted, and password-protected files, as well as files that cannot be scanned.
  • Disinfect infected objects in file systems and mail messages;
  • Quarantine all infected, suspicious, and corrupted objects of the server file system and its mail traffic. For the latter, password-protected files can also be quarantined, as well as files that cannot be scanned
  • Process mail traffic according to rules preset for groups of senders and recipients.
  • Provide secondary filtering of mail traffic by name and type of attached files, and use individual processing rules for the filtered objects.
  • Notify the sender, recipient, and group administrator about mail messages that contain infected, suspicious, and other objects.
  • Update the anti-virus databases, either using a schedule or on demand, by downloading update files from Kaspersky Labs update servers.
  • Configure Kaspersky Anti-Virus via the web based interface provided by the Webmin program and the application configuration file.

System Requirements

Hardware requirements:

  • Intel Pentium-class processor
  • 32 Mb of RAM or more
  • 100 Mb or more of available hard disk space.

Software requirements:

  • One of the following operating systems:
    • RedHat Linux versions 9.0, Fedora Core 3, Enterprise Linux Advanced Server 3, SuSE Linux (Enterprise Server 9.0 or Professional 9.2), Mandrake Linux version 10.1, Debian GNU/Linux version 3.0 updated (r4)
    • FreeBSD versions 4.10 or 5.3
    • OpenBSD version 3.6
  • One of the following mail systems: Sendmail 8.x, Qmail 1.03, Postfix version snapshot_20000529 or higher, Exim 4.0
  • The which utility
  • The Webmin program (http://www.webmin.com) for remote administration of Kaspersky Anti-Virus.
  • Perl version 5.0 or higher (http://www.perl.org) for Kaspersky Anti-Virus installation using install.sh

Product Installation & Upgrade

Kaspersky Anti-Virus 5.5 during installation does not overwrite or upgrade to version 5.5 the existing versions of Kaspersky Anti-Virus. It changes only files essential for operation of version 5.5; in particular, the installer removes the settings of earlier (5.0) versions from mail server configuration. The installer also replaces startup scripts to avoid conflict between aveserver versions. The setup procedure allows import of settings from previous versions into version 5.5.

General Issues & Workarounds

* Automatic removal of Kaspersky Anti-Virus with restoration of the original 
  configuration will be impossible in cases when the product is installed 
  together with Kaspersky Anti-Spam 2.0 and the latter has been installed 
  after Kaspersky Anti-Virus.
* Proxy Server parameters are not imported in cases, when import of settings 
  from an earlier version has been selected during installation.
* In cases when the product is installed together with Kaspersky Anti-Spam 2.0
  and integrated with postfix, their interaction requires that the kas-pipe 
  and smtpscanner processes must be started by the kluser user. To do so, 
  change the mailft user to kluser in the master.cf configuration file after 
  installation and configuration of the products.
  E.g., replace the line: inet n  n       n       -       20      spawn
  user=mailflt argv=/usr/local/ap-mailfilter/bin/kas-pipe -c /usr/local/ap-mailfilter/etc/kas-pipe-postfix.conf

  with the following line: inet n  n       n       -       20      spawn
  user=kluser argv=/usr/local/ap-mailfilter/bin/kas-pipe -c /usr/local/ap-mailfilter/etc/kas-pipe-postfix.conf
* If a Mandrake 10.1 system uses security level value higher than normal, 
  you will have to change manually the owner of the directory specified 
  for recording of the log files running the following command after 

           chown kluser:klusers /var/log/kav/5.5/
* In some distributions Exim is by default supplied without LMTP support.
  Since the number of these modifications is very large and constantly 
  increasing, the operation of Kaspersky Anti-Virus is guaranteed only with 
  the stable official Exim version built using the TRANSPORT_LMTP=yes options
  in Local/Makefile.
* In case of integration with Exim in systems based on RHEL-3, you will have
  to add to the "kav_lmtp_transport" section of the /etc/exim/exim4.conf.listen
  file the following line after installation:

           home_directory = /var/db/kav
* In case of integration with Exim in systems based on RHEL-3, after 
  installation you will have to modify manually the parameters necessary 
  for Exim server start in the  /opt/kav/5.5/kav4mailservers/init.d/kavexim.sh 
  Namely, the following line:

           $exim_bin -bd -C "${exim_listen_conf}"

  must be replaced, for example, with the line below:

           $exim_bin -q10m -C "${exim_listen_conf}"

  Here the -q (-q10m) parameter value must match the QUEUE parameter value 
  from the Exim configuration file (/etc/sysconfig/exim) used for integration.
* In case of integration with Exim and if Kaspersky Anti-Spam 3.0 beta 1 has 
  been installed earlier, after installation of this product version the host 
  system will only perform anti-spam checks; anti-virus scanning will not 
* Certain issues have been reported for installation of Webmin plug-in modules
  with Webmin version included into Debian GNU/Linux 3.0 and Mandrakelinux-10.1.
  A Webmin update is recommended before installing the product. For 
  Mandrakelinux-10.1 installation of Webmin from a tar.gz package available 
  at www.webmin.com is recommended.
* Names of detected and disinfected viruses appear twice in anti-virus 
  statistics (as detected and cured objects), resulting in incorrect 
  reflection of virus statistics within Webmin.
* You are advised to use latin letter and digits only in group names in the 
  application configuration file. Other characters may cause problems while 
  using the Webmin plug-in module to configure the application.

Siehe auch