Kaspersky Anti-Virus 5.5 for Linux and FreeBSD Mail Servers MP2 CF1 ( RELEASE NOTES

Aus Wiki.csoft.at

Released on: 2007-07-17


 * What's new?
 * Application Overview
 * System Requirements
 * Application Installation & Upgrade
   ** Migration from earlier version of the application (Kaspersky 
      Anti-Virus 5.5 for Linux and FreeBSD Mail Servers MP2)
 * Known Issues & Workarounds

What's new?

 * This version is a Critical Fix for errors found in previous version 
   (Kaspersky Anti-Virus 5.5 for Linux and FreeBSD Mail Servers MP2). Errors 
   and inaccuracies in the Administrator's Guide have been fixed, too.
 * OpenBSD platform is no longer supported.
 * Universal distribution package in tar.gz archive for all Linux systems is 
   no longer included into the application package.

Application Overview

Kaspersky Anti-Virus 5.5 for Linux and FreeBSD Mail Servers (hereinafter referred to as Kaspersky Anti-Virus) provides anti-virus processing of mail traffic and file systems of servers running the Linux or FreeBSD operating systems, and using the sendmail, postfix, qmail, or exim mail programs.

This software application allows the user to:

* Scan for viruses incoming and outgoing mail messages, as part of the
  server's SMTP traffic.
* Detect infected, suspicious, corrupted, and password-protected files, as
  well as files that cannot be scanned.
* Cure infected objects of file systems and e-mail messages.
* Quarantine all infected, suspicious, and corrupted objects of the server
  file system and its mail traffic. For the latter, password-protected files 
  can also be quarantined, as well as files that cannot be scanned.
* Process mail traffic according to rules preset for groups of senders and
* Provide secondary filtering of mail traffic by name and type of attached
  files, and use individual processing rules for the filtered objects.
* Notify the sender, recipient, and group administrator about mail messages
  that contain infected, suspicious, and other objects.
* Update the anti-virus databases downloading update files from Kaspersky 
  Lab's update servers.
* Scan for viruses all mounted file systems.
* Configure Kaspersky Anti-Virus via the web based interface provided by
  the Webmin program and the application configuration file.

System Requirements

Hardware requirements:

* Intel Pentium-class processor;
* 32 Mb of RAM;
* 100 Mb of available hard disk space.

Software requirements:

* One of the following operating systems:
     * Red Hat Linux 9.0;
     * Red Hat Enterprise Linux Advanced Server 3;
     * Fedora Core 3;
     * SuSE Linux Enterprise Server 9.0;
     * SuSE Linux Professional 9.2;
     * Linux Mandrake 10.1;
     * Debian GNU/Linux 3.0 updated (r4);
     * FreeBSD 4.10, 5.3.
* One of the following mail systems: 
     * sendmail 8.x;
     * qmail 1.03;
     * postfix 1.0 or higher;
     * exim 4.0.
* Perl version 5.0 or higher (www.perl.org), the which utility for 
  Kaspersky Anti-Virus installation.
* The Webmin program (www.webmin.com) for remote administration
  of Kaspersky Anti-Virus.

Application Installation & Upgrade

Kaspersky Anti-Virus 5.5 during installation does not remove the existing versions of Kaspersky Anti-Virus. It changes only files essential for operation of version 5.5; in particular, the installer removes the settings of earlier (5.0) versions from mail server configuration. In addition, the installer also replaces startup scripts to avoid conflict between aveserver versions. The setup procedure allows import of settings from previous versions into version 5.5.

   Migration from earlier version of the application (Kaspersky Anti-Virus 
   5.5 for Linux and FreeBSD Mail Servers MP2)
   We recommend the following method for application upgrading:

   1. Save the application configuration file if it has been modified by 
      the administrator while working with the product.
   2. Uninstall the existing application version using the method described 
      in the included Administrator's Guide. If the Webmin module has been 
      installed it should be removed using Webmin administration tools.
   3. Install this application version using the method described in the 
      included Administrator's Guide.
   4. Replace the default application configuration file 
      (/etc/kav/5.5/kav4mailservers/kav4mailservers.conf) with the file 
      saved during step 1.

General Issues & Workarounds

 * Automatic removal of Kaspersky Anti-Virus with restoration of the original
   configuration will be impossible in cases when the product is installed 
   together with Kaspersky Anti-Spam 2.0 and the latter has been installed 
   after Kaspersky Anti-Virus.
 * Proxy Server parameters are not imported in cases, when import of settings
   from an earlier version has been selected during installation.
 * In cases when the product is installed together with Kaspersky Anti-Spam 
   2.0 and integrated with postfix, their interaction requires that the 
   kas-pipe and smtpscanner processes must be started by the kluser user. To 
   do so, change the mailft user to kluser in the master.cf configuration 
   file after installation and configuration of the applications.
   E.g., replace the line: inet n n n - 20 spawn

  user=mailflt argv=/usr/local/ap-mailfilter/bin/kas-pipe -c /usr/local/ap-mailfilter/etc/kas-pipe-postfix.conf
   with the following line: inet n n n - 20 spawn

  user=kluser argv=/usr/local/ap-mailfilter/bin/kas-pipe -c /usr/local/ap-mailfilter/etc/kas-pipe-postfix.conf
 * If a Linux Mandrake 10.1 system uses security level value higher than 
   normal, you will have to change manually the owner of the directory 
   specified for recording of the log files running the following command 
   after installation:
           chown kluser:klusers /var/log/kav/5.5/
 * In some distributions exim is by default supplied without LMTP support.
   Since the number of these modifications is very large and constantly 
   increasing, the experts of Kaspersky Lab guarantee operation of Kaspersky
   Anti-Virus with the stable official Exim version only built using the 
   TRANSPORT_LMTP=yes option in Local/Makefile.
 * In case of integration with exim in systems based on RHEL-3, you will have
   to add manually to the "kav_lmtp_transport" section of the 
   /etc/exim/exim4.conf.listen file the following line after installation:
           home_directory = /var/db/kav
 * In case of Kaspersky Anti-Virus integration with exim and subsequent 
   installation of Kaspersky Anti-Spam 3.0 the host system will only run 
   anti-spam checks; anti-virus scanning will not be performed.
 * Certain issues have been reported for installation of Webmin plug-in 
   modules with Webmin version included into Debian GNU/Linux 3.0 and 
   Linux Mandrake 10.1. You are advised to update Webmin before installing 
   Kaspersky Anti-Virus. For Linux Mandrake 10.1 installation of Webmin from 
   a tar.gz package available at www.webmin.com is recommended.
 * Names of detected and disinfected viruses appear twice in anti-virus 
   statistics (as detected and cured objects), resulting in incorrect 
   reflection of virus statistics within Webmin.
 * You are advised to use Latin letters and digits only in group names in 
   the application configuration file. Other characters may cause problems 
   while using the Webmin plug-in module to configure the application.
 * If you are using the Quarantine feature with e-mail messages, make sure 
   that the kluser user has write access to the quarantine directories 
   defined by the QuarantinePath parameters in the [smtpscan.group:*] 
   sections of the configuration file.