ClearOS Documentation

×

Warning

301 error for file:https://clearos.com/dokuwiki2/lib/exe/css.php?t=dokuwiki&tseed=82873f9c9a1f5784b951644363f20ef8

User Tools

Site Tools


Gateway Antivirus

The Antivirus feature protects your network from viruses. The engine is used by various parts of your ClearOS system:

Installation

If you did not select this module to be included during the installation process, you must first install the module.

You can find this feature in the menu system at the following location:

Gateway|Antimalware|Antivirus

Antimalware Updates and ClearSDN

The open source ClamAV solution is the antivirus engine used in ClearOS Enterprise. This software automatically checks for updates several times a day for new antivirus signatures. This is already included in ClearOS Enterprise for free!

https://clearos.com/dokuwiki2/lib/exe/fetch.php?media=omedia:clearsdn-icon-xxs.png In addition, the ClearSDN Antimalware Updates service provides additional daily signature updates to improve the effectiveness of the antivirus system. These signatures are compiled from third party organizations as well as internal engineering resources from ClearCenter. We keep tabs on the latest available updates and fine tune the system so you can focus on more important things.

Configuration

Block Encrypted Files

Some file formats, including zip files, can be optionally encrypted and password protected. The antivirus system is not able to properly scan these password protected files. Since many virus writers use this technique to bypass virus checking, you may want set your network policy to completely block encrypted files.

Maximum Files in Zip Files

When the antivirus system unpacks a compressed archive (zip file), a limit on the number of files is recommended to protect the system from a potential denial of service attack. For this reason, we do not recommend setting this to unlimited.

Maximum File Size in Zip Files

The vast majority of viruses are delivered in small files. In order to preserve system resources, any file over the Maximum File Size limit will not be scanned for viruses.

Maximum Recursion in Zip Files

A zip file can contain a zip file, which contains a zip file, inside another zip file, within a zip file, etc. This technique of embedding multiple layers of zip files can be used to create a denial of service attack. Keep this setting at the default unless you have very unusual requirements.

Update Interval

The open source antivirus engine (ClamAV) in ClearOS will check for new virus signatures on a regular interval. Unless you are running on a very slow Internet connection, keep the update interval at the minimum.

content/en_us/5_antivirus.txt · Last modified: 2015/03/02 08:49 (external edit)

https://clearos.com/dokuwiki2/lib/exe/indexer.php?id=content%3Aen_us%3A5_antivirus&1566281988