Manualshelf

Installation manual

ManualsBrandsESET ManualsPrint & ScanGATEWAY SECURITY - FOR LINUX BSD AND SOLARIS
11121314151617181920
13
Note: Some OS kernel versions do not support the interception of ON_CLOSE events. In these cases, close events will not be
monitored by esets_dac.
Exec events
To activate this file access type, set the value of the ‘event_mask parameter to exec in the [dac] section of the esets.cfg file. This
will enable the ON_EXEC bit of the Dazuko access mask.
The On-access scanner ensures that all opened, closed and executed files are first scanned by the esets_daemon for viruses.
Depending on the scan results, access to specific files is denied or allowed.
6.3.2 Installation and configuration
The Dazuko kernel module must be compiled and installed within the running kernel before initializing esets_dac. For details on
how to compile and install Dazuko, please see:
http://www.dazuko.org
Once Dazuko is installed, review and edit the [global] and [dac] sections of the ESETS configuration file (esets.cfg). Note that for
the On-access scanner properly function, it is dependent upon configuration of the ‘agent_enabled’ option within the [dac]
section of this file. Additionally, you must define the file system objects (i.e. directories and files) that are to be monitored by the
On-access scanner. This can be accomplished by defining the parameters of the ‘ctl_incl’ and ‘ctl_excl options, which are also
located within the [dac] section. After making changes to the esets.cfg file, you can force the newly created configuration to be re-
read by reloading the ESETS daemon.
6.3.3 Tips
To ensure that the Dazuko module loads prior to initialization of the esets_dac daemon, follow these steps:
Place a copy of the Dazuko module in either of the following directories reserved for kernel modules:
/lib/modules
or
/modules
Use the kernel utilities ‘depmod’ and ‘modprobe’ (For BSD OS, use ‘kldconfig’ and ‘kldload’) to handle dependencies and
successfully initialize the newly added Dazuko module.
In the esets_daemon initialization script ‘/etc/init.d/esets_daemon’, insert the following line before the daemon initialization
statement:
/sbin/modprobe dazuko
For BSD OS’s the line
/sbin/kldconfig dazuko
must be inserted into the ‘/usr/local/etc/rc.d/esets_daemon.sh’ script.
Warning! It is extremely important that these steps are executed in the exact order given. If the kernel module is not located
within the kernel modules directory it will not properly load, causing the system to hang.