ESET NOD32 ANTIVIRUS - FOR NOVELL NETWARE SERVER, NOD32 User Manual

NOD32 for Novell Netware Server

User Guide

ENNL1-02

Copyright © 2003 ESET

1. Introduction

This User Guide describes the usage of NOD32 for Novell Netware Server ­its installation, loading/unloading of the resident protection, configuration,
scanning with the on-demand scanner and updating.

2. Installation

Create a directory named NOD32 on volume SYS: and copy the following files
into it:

AMON.NLM
NOD32.NLM
NOD32.000

3. Loading and unloading the resident antiviral
protection (AMON)

To load AMON, use the following command on the system console:

LOAD SYS:NOD32/AMON

To unload AMON from memory, use the following command:

UNLOAD AMON

1

4. Configuration

The Amon switches

If you need to change the default settings of AMON, create a configuration file
SYS:NOD32/AMON.CFG. Each line may contain one of the following switches
(one switch per line):

• -onread+ - enables testing files being read (default setting)

• -onread- - disables testing files being read

• -onwrite+ - enables testing files being created and modified

(default setting)

• -onwrite- - disables testing files being created and modified

• -onrename+ - enables testing files being renamed (default

setting)

• -onrename- - disables testing files being renamed

• -all - enables testing files with any extension (default

setting)

• -all- - allows testing of the files with default extensions

only

• -recipient=USER1,USER2... - when an infiltration is detected,
AMON sends a message to all users in the list. It is possible to list
several users delimited by a comma. To prevent message flood in case
of massive system infection, AMON sends one message each 30
seconds at the maximum

• -notify - when an infiltration is detected, AMON sends a

message to the user who attempted to access the
infected file

The following switches are identical with switches used in NOD32 for
DOS and Windows:

• -pattern

• -log

• -logappend

• -logrewrite

2

• -clean

• -rename

• -delete

• -heur

• -heursafe

• -heurist

• -herded

5. The log

When enabled (i.e.. the Log switch log- is not used), AMON logs the
detection of all infiltrations with the verbose description of the available details
into the file SYS:/NOD32/AMON.LOG. This information is also displayed on
the screen.

6. How to use the antiviral on-demand scanner NOD32

To run NOD32 enter the command as follows:

LOAD SYS:NOD32/NOD32 [parameters] [path list]

Parameters of NOD32.NLM

NOD32 is a program controlled from within command line. It allows you to
scan drives or directories and clean possible virus infiltration.

Parameter list:

• -? -h –help -displays the list of parameters with

descriptions

• -subdir+ -enables testing of subdirectories (default

setting)

• -subdir- -disables testing of subdirectories

• -pack+ -enables testing of internally compressed

files

• -pack- -enables testing of internally compressed

files (default setting)

• -arch+ -enables testing of archives (ZIP, RAR, ARJ,

LZH, LHA)

• -arch- -enables testing of archives (ZIP, RAR, ARJ,

LZH, LHA) (default setting)

3

• -pattern+ -enables testing using virus signature(default

setting)

• -pattern- -disables testing using virus signatures

• -heur+ -enables heuristics (default setting)

• -heur- -disables heuristics

• -heursafe -sets heuristics sensitivity to Safe

• -heurstd -sets heuristics sensitivity to Standard

(default setting)

• -heurdeep -sets heuristics sensitivity to Deep

Cleaning:

• -clean -cleans the infected files automatically (if

applicable)

• -prompt -displays a dialog on every infected file

• -rename -renames the infected files

• -delete -deletes the infected files

Log:

• -log+ -enables logging to file (default setting)

• -log- -disables logging to file

• -logappend -enables log file append option (default

setting)

• -logrewrite -enables log file overwriting

• -list+ -lists all scanned objects in log

• -list- -lists only infected objects in log (default

setting)

• -log=<FILENAME> -sets the log name

4

7. Updating the NOD32 for Novell with NOD32UPD

Introduction

NOD32UPD is a module of the NOD32 anti-virus system providing command
line update

of the anti-virus system (NOD32). The “Command Line Updater“
works on all operating systems supported by NOD32. In particular, it works on
Windows 95/98/ME/NT/2000, Dos, Novell Netware and Linux.
The module can also be applied to update a remote computer (e.g. a server).

IMPORTANT NOTE! Recently, a new generation of NOD32 for Windows has
been released (also known as "version 2"). The format of its mirror folder has
changed. Therefore we provide a new tool, NOD32UP2.NLM for updating
from V2 mirror.
When updating from the mirror created with NOD32 version 1 please refer to
the section “Application of NOD32UPD“
When updating from the mirror created with NOD32 version 2, then please
refer to the section “Application of NOD32UPD2“
The examples using NOD32UPD in this document are valid also for
NOD32UPD2 except the section “Application of NOD32UPD“

NOTE 1:There are three types of updates/upgrades of NOD32 system:

• Upgrade of the program (sometimes referred to as the “update of the
executables” or “environment upgrade”)

• Update of the database/s: a/ incremental, b/ cumulative

NOD32UPD supports all three types of actualization.

NOTE 2: The term “Target Computer” used in this Manual has the following
meaning:

A computer with NOD32 anti-virus system that is to be updated using
NOD32UPD.

Requirements (to run the NOD32UPD)

To run NOD32UPD:

• NOD32 (program - environment version 1.023 or higher) has to be
installed on the Target Computer
Computer running NOD32UPD module must have access privileges to
the directory with the Update Files. The Update Files can be
downloaded preferably using NOD32 Control Center module in the
administrator’s mode or, alternatively, manually (using your NOD32
username and password) from:

5