Avira ANTIVIR PERSONAL FOR UNIX User Manual
Avira AntiVir
Personal
User Manual
|
Unix
Contents
1. About this Manual ................................................................................. 3
1.1 Introduction ..................................................................................................................................... 3
1.2 The Structure of the Manual ........................................................................................................... 3
1.3 Signs and Symbols............................................................................................................................ 4
1.4 Abbreviations ................................................................................................................................... 4
2. Product Information .............................................................................. 5
2.1 Features ............................................................................................................................................ 6
2.2 Licensing Concept ............................................................................................................................ 6
2.3 Modules and Operating Mode......................................................................................................... 6
2.4 System Requirements ...................................................................................................................... 7
2.5 Technical Information ..................................................................................................................... 7
3. Installation ........................................................................................... 8
3.1 Getting the Installation Files........................................................................................................... 8
3.2 Licensing........................................................................................................................................... 8
3.3 Installing AntiVir ............................................................................................................................. 8
3.4 Reinstalling and Uninstalling AntiVir........................................................................................... 13
4. Configuration .......................................................................................14
4.1 Configuration Files ........................................................................................................................ 14
4.2 Testing AntiVir Personal ............................................................................................................... 24
5. Operation .............................................................................................25
5.1 Scanning on-access with AntiVir Guard ....................................................................................... 25
5.2 Scanning on-demand with AntiVir Command Line Scanner....................................................... 27
5.3 Reaction to Detecting Viruses/ Unwanted Programs .................................................................. 31
6. Updates ................................................................................................32
6.1 Internet Updates ............................................................................................................................ 32
7. The Dazuko Kernel Module ...................................................................33
7.1 Compiling Dazuko on your own .................................................................................................... 33
7.2 Known Issues with dazukofs ......................................................................................................... 34
8. Service .................................................................................................36
8.1 Support ........................................................................................................................................... 36
8.2 Online Shop.................................................................................................................................... 37
8.3 Contact............................................................................................................................................ 37
9. Appendix ..............................................................................................38
9.1 Glossary .......................................................................................................................................... 38
9.2 Further Information ...................................................................................................................... 39
9.3 Golden Rules for Protection Against Viruses ............................................................................... 40
Avira GmbH Avira AntiVir Personal (UNIX) 2
1About this Manual
In this Chapter you can find an overview of the structure and contents of this manual.
After a short introduction, you can read information about the following issues:
• The Structure of the Manual – Page 3
• Signs and Symbols – Page 4
1.1 Introduction
We have included in this manual all the information you need about Avira AntiVir
Personal and it will guide you step by step through installation, configuration and
operation of the software.
The appendix contains a Glossary which explains the basic terms.
For further information and assistance, please refer to our website, to the Hotline of our
Technical Support and to our regular Newsletter (see Service – Page 36).
Your Avira Team
1.2 The Structure of the Manual
The manual of your AntiVir software consists of a number of Chapters, providing you
with the following information:
Chapter Contents
1 About this Manual The structure of the manual, signs and symbols
2 Product Information General information about Avira AntiVir Personal,
3 Installation Instructions to install AntiVir on your system –
4 Configuration Directions for optimum settings of AntiVir
5 Operation Working with AntiVir, after installation; targeted
6 Updates Carrying out automatic or manual Internet updates.
7 The Dazuko Kernel Module Information about compiling and using dazuko.
8 Service Support and Service.
its modules, features, system requirements and
licensing.
using the installation script.
components on your system.
scanning for viruses and unwanted programs;
reactions when viruses and unwanted programs are
detected.
9 Appendix Glossary of technical terms and abbreviations,
Golden Rules for Protection against Viruses.
Avira GmbH Avira AntiVir Personal (UNIX) 3
1.3 Signs and Symbols
The manual uses the following signs and symbols:
Symbol Meaning
3 ... shown before a condition that must be met prior to
... shown before a step you have to perform.
... shown before the result that directly follows the preceding
For improved legibility and clear marking, the following types of emphasis are also used
in the text:
Emphasis in text Explanation
performing an action.
action.
... shown before a warning if there is a danger of critical data loss
or hardware damage.
... shown before a note containing particularly important
information, e.g. on the steps to be followed.
... shown before a tip that makes it easier to understand and use
AntiVir.
Ctrl+Alt Key or key combination
/usr/lib/AntiVir/guard/avscan Path and filename
ls /usr/lib/AntiVir/guard User entries
http://www.avira.com URLs
Signs and Symbols – Page 4 Cross-reference within the document
1.4 Abbreviations
The manual uses the following abbreviations:
Abbreviation Meaning
CLS Command Line Scanner
FAQ Frequently Asked Question
GUI Graphical User Interface
SMTP Simple Mail Transfer Protocol
VDF Virus Definition File
Avira GmbH Avira AntiVir Personal (UNIX) 4
2 Product Information
UNIX computers are more often used as file servers or email gateway servers. Thus they
transfer and store files that have no connection to UNIX, e.g. Office documents and email
attachments. So, viruses can access a server through a Windows Client and freely cause
damage.
Avira AntiVir Personal is a comprehensive and flexible tool for confronting viruses and
unwanted programs and for reliable protection of your systems.
Losing valuable files usually has dramatic consequences. Not even the
best antivirus software can fully protect you against data loss.
Ensure that you make regular backups of your files.
An antivirus program can be reliable and effective only if kept up to
date.
Ensure that you keep your AntiVir programs up to date using
automatic updates as described in this user guide.
Avira GmbH Avira AntiVir Personal (UNIX) 5
2.1 Features
Avira AntiVir Personal offers you extensive configuration possibilities to keep control of
your computer.
The current features of Avira AntiVir Personal are:
• Easy installation, using the installation script.
• Command Line Scanner (on demand):
• Resident guard (on-access):
• Heuristic detection of macroviruses.
• Detection of all common archive types with certain recursion level in the case of
• Automatic Internet Updates for product, scan engine and VDF.
• Comprehensive functions for logging, warnings and messages for the administrator.
• Self-Integrity Program Check, which ensures the antivirus system is operating
Configurable on-demand search for all known malware types (viruses, Trojans,
backdoor programs, hoaxes, worms etc.)
Configurable reactions when detecting viruses or unwanted programs: repair, move,
rename programs or files; automatically remove viruses or unwanted programs.
nested archives.
correctly at all times.
2.2 Licensing Concept
Avira AntiVir Personal - Free Antivirus is free for personal use. For more details, please
visit www.free-av.com
Self-Integrity Check
Each AntiVir executable binary is signed and performs a self-integrity check during
startup.
The self-integrity check cannot protect against forgery (e.g. to check if
the complete package is faked) or crafted attacks (e.g. the function
call that performs the self-integrity check is bypassed). Such a
verification has to be performed from outside the package.
2.3 Modules and Operating Mode
The Avira security software consists of the following program components:
• AntiVir Engine
•AntiVir Guard
• AntiVir Command Line Scanner
•Avira Updater
AntiVir Engine
AntiVir Engine essentially represents the scanning and repairing modules of Avira
software. These are also used by the other AntiVir products.
Avira GmbH Avira AntiVir Personal (UNIX) 6
AntiVir Guard
AntiVir Guard runs as a daemon process. It permanently monitors all user access in the
network (on access) and it protects the files against viruses and unwanted programs. It
immediately blocks access to infected files which can be automatically renamed, repaired
or moved.
AntiVir Command Line Scanner
AntiVir CLS can always be launched from the command prompt (on-demand). Infected
files and suspicious macros can be isolated or deleted using a number of options. It can be
integrated and used within scripts.
Avira Updater
Avira Updater downloads current updates from the AntiVir web servers and installs them
at regular intervals, manually or automatically. It can also send update notifications by
email. You can update Avira AntiVir entirely or only the scanner.
2.4 System Requirements
Avira AntiVir Personal asks for the following minimum system requirements on your
computer:
• i386 (Linux) or Sparc (SunOS) processor;
• 100 MB free hard disk space;
• 20 MB temporary disk space
• 192 MB (512 MB on SunOS) free memory space;
• Linux with glibc; SunOS.
You need sufficient disk space on your hard drive to save the
temporary guard files. We therefore recommend that there are at
least 4GB available for the temporary directory.
Officially supported distributions for Avira AntiVir Personal:
- Red Hat Enterprise Linux 5 Desktop
- Red Hat Enterprise Linux 4 Desktop
- Novell SUSE Linux Enterprise Desktop 10 - 10.2
- Novell SUSE Linux Enterprise Desktop 9
- Debian GNU/Linux 4 (stable)
- Ubuntu Desktop Edition 8
- Sun Solaris 9 (SPARC)
- Sun Solaris 10 (SPARC)
2.5 Technical Information
AntiVir Guard is based on DazukoFS (http://www.dazuko.org), an open source software
project. DazukoFS is a kernel module which allows the AntiVir Guard daemon to access
the files.
Avira GmbH Avira AntiVir Personal (UNIX) 7
3 Installation
You can find the current version of Avira AntiVir Personal - Free antivirus on www.free-
av.com.
AntiVir is supplied as a packed archive. It contains AntiVir Engine, Guard, Command Line
Scanner and the Avira Updater.
You will be guided step by step throughout the installation procedure. This Chapter is
divided into the following sections:
• Getting the Installation Files – Page 8
• Licensing – Page 8
• Installing AntiVir – Page 8
• Reinstalling and Uninstalling AntiVir – Page 13
• – Page13
3.1 Getting the Installation Files
Downloading the Installation Files from the Internet
Download the current version of Avira AntiVir Personal - Free antivirus, from
www.free-av.com to your local computer.
Save the file in the temporary folder (/tmp) on the computer on which you want to
run Avira AntiVir Personal. The file name is
antivir-workstation-pers.tar.gz
Unpacking Program Files
Go to the temporary directory:
cd /tmp
Unpack the archive containing the AntiVir kit:
tar -tar -xzvf antivir-workstation-pers.tar.gz
In the temporary directory will then appear:
3.2 Licensing
Avira AntiVir Personal - Free Antivirus is free for personal use. If the initial license
expires, you can extend it without reinstalling the product, by downloading the current
license file from www.free-av.com.
Copying the License File
Copy the license file hbedv.key to the installation directory on your system, if the
license in your Avira AntiVir Personal has expired
/tmp/antivir-workstation-pers-<version>
antivir-workstation-pers-<version>
3.3 Installing AntiVir
AntiVir is automatically installed using a script. This script performs the following tasks:
• Checks integrity of the installation files.
Avira GmbH Avira AntiVir Personal (UNIX) 8
• Checks for the required permissions for the installation.
• Checks for an existing version of AntiVir on the computer.
• Copies the program files. Overwrites existing obsolete files.
• Copies AntiVir configuration files. Existing AntiVir configuration files are inherited.
• Optional: it creates a link in /usr/bin, so that AntiVir can be called from any folder
without needing a given path.
• Optional: it installs the resident scanner AntiVir Guard and the dazuko module.
• Optional: it installs a Gnome plug-in.
• Optional: it installs Avira Updater.
• Optional: it configures an automatic start for Avira Updater and AntiVir Guard on
system start-up.
Preparing Installation
Login as root. Otherwise you do not have the required authorization for installation
and the script returns an error message.
Go to the directory in which you unpacked AntiVir:
cd /tmp/antivir-workstation-pers-<version>
Installing AntiVir
For using Avira AntiVir Personal v.3 with AntiVir Guard, we recommend
and support dazuko3/dazukofs.
The installation script will also install dazuko3, if it detects the
needed build components on your system. If the installation script
cannot detect a supported linux kernel version, you can only install Avira
AntiVir without AntiVir Guard. AntiVir Guard can be easily installed
later. For more details, see The Dazuko Kernel Module – Page 33.
Type the command:
./install
Please note the dot and slash in the command syntax. Typing the command without
this path specification, leads to another command, which is not related to AntiVir
installation process and this would result in error messages and unwanted actions.
Press q to close the license text view.
The installation script starts. After you agree with the license terms, it will copy
the program files.
Do you agree to the license terms? [n] y
copying install_list_guard to /usr/lib/AntiVir/guard/ ... done
copying AV_WKS_PERS to /usr/lib/AntiVir/guard/ ... done
copying LICENSE to /usr/lib/AntiVir/guard/LICENSE-workstation ... done
1) installing AntiVir Core Components (Engine, Savapi and Avupdate)
copying uninstall to /usr/lib/AntiVir/guard ... done
copying etc/file_list to /usr/lib/AntiVir/guard ... done
.....
installation of AntiVir Core Components (Engine, Savapi and Avupdate) complete
Avira GmbH Avira AntiVir Personal (UNIX) 9
After you type the path to the key file, the installer continues with updates’
configuration:
2) Configuring updates
An internet updater is available...
...
Would you like to create a link in /usr/sbin for avupdate-guard? [y]
Type y and confirm with Enter.
Then the script can create a daily cron task for automatic updates:
linking /usr/sbin/avupdate-guard ... done
Would you like to setup Scanner update as cron task ? [y]
The update cron job uses the minute when the product was installed. If you
want another update time, you can change the entries later, in
/etc/cron.d/avira_updater
You can specify the time of the day when the updates should start:
The AntiVir Updater can be set to always check for updates at a particular time of
day. This is specified in a HH:MM format (where HH is the hour and MM is the
minutes). If you do not have a permanent connection, you may set it to a time
when you are usually online.
available option: HH:MM
What time should updates be done [00:15]?
Press Enter or set another time first.
Then the installer asks if you want to check for Product updates every week:
Would you like to check for Guard updates once a week ? [n]
Press y, if you want to create this task, or just press Enter, if you don’t.
The next step of the installation process is installing the main program.
If no dazuko device is detected on your system, the script tries to install
dazuko:
3) installing main program
copying bin/linux_glibc22/libdazuko3compat2.so to /usr/lib/AntiVir/guard...
done
...
No Dazuko device found on your system
Would you like to install dazuko now ? [y]
Press y, if you want to install dazuko and use AntiVir Guard, then press Enter.
Avira GmbH Avira AntiVir Personal (UNIX) 10
Dazuko3 package is installed.
installing dazuko ... Available Dazuko3-Package: '3.0.0-rc4'
checking for needed build components:
checking for C compiler cc ... found
checking for C compiler gcc ... found
checking for kernel sources ... found
detecting kernel version ... 2.6.18
unpacking dazuko-3.0.0-rc4_2.6.18 ... done
installing dazuko-3.0.0-rc4_2.6.18 ...
initiate dazukofs ...
done
linking /usr/lib/AntiVir/guard/libdazuko.so to /usr/lib/AntiVir/guard/
libdazuko3compat2.so...
If the attempt to install dazuko fails, you have to compile the module yourself.
For more details, see The Dazuko Kernel Module – Page 33.
AntiVir can be installed even without dazuko, but in this case it will run
without AntiVir Guard.
The installer then reads /etc/fstab, to check the directories to be mounted as
dazukofs. If no entry is found, it asks you to enter one directory to be scanned by
the Guard:
Guard will automatically protect all directories
which are mounted upon dazukofs filesystem.
Please specify at least one directory to be protected
by Guard to add in /etc/fstab: [/home]
There are some file systems that should not be overlayed by dazukofs, since
no security gain would be achieved, but on the contrary, it could lead to
system malfunction. Examples of these file systems are
procfs (/proc), usbfs
. These file systems do not allow the creation
sysfs (/sys),
of files anyway, so they do not need to be protected against malware.
The special directory "/" (
root) should not be mounted with dazukofs,
because it may also be the root for other file systems, which likewise should
not be mounted with dazukofs.
Mounting "/" could also be dangerous due to the fact that there will very
likely be processes already working on files under/ before dazukofs is
mounted. This might result in undefined file states, if those files are later
accessed through the dazukofs layer.
Type one directory, which you want to be protected on-access (for example, /home)
and press Enter.
If you want to modify the list of protected directories, you can add or remove entries
later, by editing /etc/fstab file and remounting dazukofs.
Avira GmbH Avira AntiVir Personal (UNIX) 11
Then the installer checks if the default quarantine directory exists:
/home/quarantine, the AVIRA Guard default quarantine directory, does not exist.
INFO: You can change the quarantine directory in /etc/avira/avguard.conf.
and /etc/avira/avscan.conf after the installation.
Would you like to create /home/quarantine ? [y]
Type Enter, to create the directory, if necessary. You can change it later in the
configuration files.
Then the script can install a GNOME plug-in, which would allow you to add the
status icon for AntiVir Guard to the panel ( - Guard is active; - Guard is
inactive):
Would you like to install the AVIRA Guard GNOME plugin? [n]
Type y and press Enter, if you want to install the plug-in,
or just press Enter, if you don’t.
Then you are asked if you want to create a link to avguard and if the Updater should
be automatically activated at system start:
Would you like to create a link in /usr/sbin for avguard ?[y]
linking /usr/sbin/avguard to /usr/lib/AntiVir/guard/avguard ... done
Please specify if boot scripts should be set up.
Set up boot scripts [y]:
Confirm with Enter.
The automatic system start is configured:
setting up boot script ... done
installation of AVIRA Guard complete
The installation process is complete. You can start AntiVir Guard, if dazuko is
correctly compiled:
Would you like to start AVIRA Guard now? [y]
Starting Avira AntiVir Workstation Personal...
Starting: avguard.bin
You will see a report that indicates the completion of the installation:
Installation of the following features complete:
AntiVir Core Components (Engine, Savapi and Avupdate)
AVIRA Internet Updater
AVIRA Guard
Finally, you can start AntiVir:
/usr/lib/AntiVir/guard/avguard start
Modified binaries will not run.
For example, if binaries are prelinked: Either disable prelinking or add
/usr/lib/AntiVir/guard as an excluded prelink path in
/etc/prelink.conf
Avira GmbH Avira AntiVir Personal (UNIX) 12
3.4 Reinstalling and Uninstalling AntiVir
You can launch the installation script at any time. There are several possible situations,
such as:
• Later installation of some components, e.g. AntiVir Guard or Avira Updater.
• Activating or deactivating the automatic start of Avira Updater or AntiVir Guard.
Reinstalling AntiVir
The procedure applies to all above mentioned cases:
3 First of all, you have to make sure that AntiVir Guard is stopped:
/usr/lib/AntiVir/guard/avguard stop
Open the temporary directory where you unpacked AntiVir Personal:
cd /tmp/antivir-workstation-pers-<version>
Type:
./install
The installation script performs as described in Installing AntiVir – Page 8).
Make the changes you need during installation procedure.
AntiVir is installed with the required features.
Uninstalling AntiVir
You can use the uninstall script, located in the temporary AntiVir directory, to remove
Avira AntiVir Personal. The syntax is:
uninstall [--product=productname] [--inf=inf-file] [--force]
[--version] [--help]
where productname is Guard.
Open the AntiVir directory:
cd /usr/lib/AntiVir/guard
Type:
./uninstall --product=Guard
The script starts uninstalling the product, asking you step by step, if you want to
keep backups for the license file, for the configuration files and logfiles; it can also
remove the cronjobs you made for Guard and Scanner.
Answer the questions with y or n and press Enter.
Avira AntiVir Personal is removed from your system.
Avira GmbH Avira AntiVir Personal (UNIX) 13
Loading...