KASPERSKY LAB Kaspersky Anti-Virus 5.
KASPERSKY ANTI-VIRUS 5.5 FOR PROXY SERVER Administrator's Guide © Kaspersky Lab http://www.kaspersky.
Contents CHAPTER 1. KASPERSKY ANTI-VIRUS FOR PROXY SERVER .............................. 5 1.1. Hardware and software requirements .................................................................. 6 1.2. Licensing policy ..................................................................................................... 7 1.3. Distribution kit ........................................................................................................ 7 1.3.1. License agreement ................................
Kaspersky Anti-Virus for Proxy Server 4.4. Ensuring anti-virus protection of HTTP traffic..................................................... 29 4.5. Configuring the anti-virus scan parameters for user groups.............................. 30 CHAPTER 5. ADDITIONAL SETTINGS OF KASPERSKY ANTI-VIRUS .................. 34 5.1. Creating groups ................................................................................................... 34 5.2. Anti-virus scan settings...................................
CHAPTER 1. KASPERSKY ANTIVIRUS FOR PROXY SERVER Kaspersky Anti-Virus 5.5 for Proxy Server (hereinafter also referred to as Kaspersky Anti-Virus or the Application) is intended for anti-virus protection of traffic routed via proxy servers based on Squid versions 2.5 and 3.0 with support for the Internet Content Adaptation Protocol (ICAP) in accordance with RFC 3507. The application allows the user to: • Perform anti-virus scanning of objects transferred via the proxy server.
Kaspersky Anti-Virus for Proxy Server 1.1. Hardware and software requirements In order to ensure normal functioning of Kaspersky Anti-Virus, the system must meet the following hardware and software requirements: Minimum hardware requirements for product operation: • ® Intel Pentium 133 MHz processor or higher • 64 MB RAM • 50 MB of disk space for application setup • 200 MB of available disk space for temporary files.
Kaspersky Anti-Virus for Proxy Server • Mandriva 2006. • Debian GNU/Linux version 3.1r2. • FreeBSD version 4.11. • FreeBSD version 5.4 . • FreeBSD version 6.1. • Squid 2.5 or 3.0 proxy server with ICAP support. • Perl 5.0 or higher (www.perl.org). • Glibc 2.2.x or higher (for Linux distributions). 7 1.2.
Kaspersky Anti-Virus for Proxy Server Before you unseal the envelope containing the CD, make sure you have carefully read the License Agreement. If you purchase our application online, you will download it from Kaspersky Lab's website. Your license key is either included in the installation package or will be sent to you by email after payment. 1.3.1.
Kaspersky Anti-Virus for Proxy Server Kaspersky Lab does not give advice on the performance and use of your operating system or other technologies. 1.5. Conventions Various formatting conventions are used throughout the text of this document depending on the purpose of a particular element. Table 1 below lists the formatting conventions used. Table 1. Conventions Style Bold type Menu titles, menu items, window titles, parts of dialog boxes, etc. Note. Attention! In order to perform the action, 1. 2.
CHAPTER 2. OPERATION ALGORITHM AND TYPICAL DEPLOYMENT SCENARIOS This chapter contains essential information necessary for understanding of application functionality, its configuration and integration with an existing network structure. 2.1. The algorithm of application functioning Kaspersky Anti-Virus scans HTTP traffic using two modes of proxy operation: REQMOD and RESPMOD. In the RESPMOD mode the application checks objects requested by users via a proxy server.
Operation algorithm and typical deployment scenarios 11 existing groups, the application will use the default group rules for anti-virus scanning and processing. 5. The application uses the results of anti-virus scanning to assign to a scanned object a specific status, which is employed to grant users access to that object or block access attempts (please refer to section 5.3 on p. 36 for details about available statuses and actions performed by the application).
Kaspersky Anti-Virus for Proxy Server The application performs anti-virus scanning of Internet traffic in the REQMOD mode in accordance with the following procedure (see Fig. 2): 1. User sends an object using HTTP via Squid proxy. 2. Squid proxy uses ICAP to transfer the received object to Kaspersky Anti-Virus for an anti-virus scan. 3. Kaspersky Anti-Virus checks if the request parameters match any of the existing groups (please refer to section 5.1 on p. 34 for details about groups).
Operation algorithm and typical deployment scenarios 13 status defined according to the processing group parameters (please refer to section 5.1 on p. 34 for details about groups). 5. If transfer is allowed, the proxy will transmit the object sent by the user. If transfer is prohibited, Squid will not transmit the object. Instead, it will send to the user a notification informing that the transfer has been blocked. 2.2.
Kaspersky Anti-Virus for Proxy Server icap_enable on icap_send_client_ip on icap_service is_kav_resp respmod_precache 0 icap://localhost:1344/av/respmod icap_service is_kav_req reqmod_precache 0 icap://localhost:1344/av/reqmod icap_class ic_kav is_kav_req is_kav_resp icap_access ic_kav allow all They will make the proxy transmit all requested objects to Kaspersky AntiVirus via port 1344 of the local interface. 2.2.2.
CHAPTER 3. INSTALLING THE APPLICATION Before installing Kaspersky Anti-Virus, you are advised to: 1. Make sure that your system meets the hardware and software requirements (see section 1.1 on p. 6). 2. Log on to the system as root. 3. Make sure that your installed Squid proxy server supports ICAP. Unlike Squid 3.0, Squid 2.5 does not support ICAP by default. Please see the README-SQUID.txt file in the /opt/kav/5.
Kaspersky Anti-Virus for Proxy Server and the settings for interaction with the proxy server. Please refer to section 3.4 on p. 17 for details. 3.2. Installing the application on a server running FreeBSD The distribution file for installation of Kaspersky Anti-Virus on servers running the FreeBSD operating system is supplied as a .tgz package.
Installing the application 3.4. Post-install setup Post-install setup of Kaspersky Anti-Virus is the second stage of its installation including configuration of the application and Squid proxy server. To initiate the configuration process, use the postinstall.pl script located in the /opt/kav/5.5/kav4proxy/setup/ directory. After script start you will be offered to perform the following actions: The postinstall.pl script should be launched manually for RPM-based systems.
Kaspersky Anti-Virus for Proxy Server without the anti-virus databases. Please see section 5.5 on p. 40 for details on the application modes. 3.5. Distribution of the application files in directories After the installation of Kaspersky Anti-Virus on a server running Linux is complete, the application files will be located in the following directories, provided that the default paths have been accepted during the installation: /etc/kav/5.5/kav4proxy/kav4proxy.conf application parameters.
Installing the application 19 uninstall.pl – application removal script. /var/db/kav/5.5/kav4proxy/ – application directory including: backup/ – directory where the updater saves backup copies of the antivirus databases and application modules prior to an update. bases/ – directory containing the anti-virus databases and core modules. licenses/appinfo.dat – file that contains information about the current license. patches/ – directory where the updates for the anti-virus core modules are stored.
CHAPTER 4. USING KASPERSKY ANTI-VIRUS This chapter contains solutions for typical tasks related to work with Kaspersky Anti-Virus, such as application updating, management of license keys, anti-virus protection of HTTP traffic, and configuration of different anti-virus scanning parameters for various user groups. The tasks described in this section reflect basic features of Kaspersky Anti-Virus.
Using Kaspersky Anti-Virus 21 We strongly recommend that you set up the keepup2date component to update the databases every hour! After a successful update, a command specified as the value of the PostUpdateCmd parameter in the [updater.options] section of the configuration file will be executed. By default, this command will automatically initiate reloading of the anti-virus databases.
Kaspersky Anti-Virus for Proxy Server Task: Configure the application to update automatically your anti-virus databases every hour. An update server should be selected from the updcfg.xml file by default. Only errors occurring in the component operation should be recorded in the system log. Keep a general log of all task starts. Output no information to the console. Solution: to perform the above task, do the following: 1.
Using Kaspersky Anti-Virus 23 # keepup2date –l /var/log/kav/5.5/kav4proxy/updatesreport.log If you need to update the anti-virus databases on several servers, it may be more convenient to download the updates from an update server once, save them to a shared directory, and mount the directory within the file system of every server running Kaspersky Anti-Virus. Then it will be sufficient to launch the update script having specified first the mounted directory as the source of updates.
Kaspersky Anti-Virus for Proxy Server 1. Create a local directory. The kluser account must have sufficient privileges to write to it. 2. Run the keepup2date component as follows: # keepup2date –u
where stands for a full path to the created directory. 3. Provide reading access to that directory for local computers on your network. 4.2. Managing license keys The right to use Kaspersky Anti-Virus is determined by the license key.Using Kaspersky Anti-Virus • 25 timely notifications about new virus threats. Therefore it is essential to extend in time your license to use Kaspersky AntiVirus. You can also install an additional key. The application will start using it as soon as the current active key expires (see section 4.2.2 on p. 26). 4.2.1. Viewing information about license keys You can view information about the installed license keys in the reports of the kavicapserver component.
Kaspersky Anti-Virus for Proxy Server To view information about a license key, enter, for example, the following in the command line: # licensemanager -k 00053E3D.key where 00053E3D.key is the name of the license key file. In the server console, you will see information similar to the following: Kaspersky license manager. Version 5.5.0/RELEASE Copyright (C) Kaspersky Lab, 1997-2006.
Using Kaspersky Anti-Virus 27 To install a new license key, enter, for example, the following in the command line: # licensemanager -a 00053E3D.key where 00053E3D.key is the name of the license key file. If the installation is successful, the following (or similar) information will be displayed on the server console: Kaspersky license manager. Version 5.5.0/RELEASE Copyright (C) Kaspersky Lab. 1998-2006. Key file 00053E3D.
Kaspersky Anti-Virus for Proxy Server Copyright (C) Kaspersky Lab. 1998-2006. Additional key was successfully removed 4.3. Using a control script The kav4proxy application control script located in the /opt/kav/5.5/kav4proxy/init.d directory is used to start, stop and restart the application. It uses the following command line keys: • start – command to check the configuration file and launch the application. 0 return code indicates a successful start.
Using Kaspersky Anti-Virus 4.4. Ensuring anti-virus protection of HTTP traffic Task: Provision for anti-virus scanning of HTTP traffic transmitted by Squid installed on the same server with Kaspersky Anti-Virus in accordance with the following requirements: • General parameters of anti-virus scanning must be used for all requests: • Disinfection of infected objects must be enabled. • Scanning of e-mail databases must be disabled. • Scanning of packed and archived objects must be enabled.
Kaspersky Anti-Virus for Proxy Server ScanPacked=yes ScanArchives=yes ScanMailBases=no ScanMailPlain=no Cure=yes [icapserver.actions] InfectedAction=deny SuspiciousAction=deny WarningAction=deny ErrorAction=skip ProtectedAction=skip CorruptedAction=skip [icapserver.protocol] AnswerMode=partial [icapserver.statistics] AVStatisticsFile=/var/log/kav/5.5/statistic 3. Restart Kaspersky Anti-Virus using the following command: # /opt/kav/5.5/kav4proxy/init.d/kav4proxy reload Please refer to Chapter 5 on p.
Using Kaspersky Anti-Virus Task: Configure the application to perform anti-virus checks of HTTP traffic I accordance with the following requirements: • • • The following anti-virus scanning parameters must be specified for the managers group that includes computers using the IP addresses of the 192.168.1.0/255.255.255.0 subnet: • Scanning of packed, archived files and e-mail databases must be disabled. • Disinfection of infected objects must be enabled.
Kaspersky Anti-Virus for Proxy Server ClientIP=192.168.1.0/255.255.255.0 URL=.* [icapserver.engine.options:managers] ScanPacked=no ScanArchives=no ScanMailBases=no ScanMailPlain=no Cure=yes [icapserver.actions:managers] InfectedAction=deny SuspiciousAction=deny WarningAction=deny ErrorAction=deny ProtectedAction=deny CorruptedAction=deny 2. In the kav4proxy.conf configuration file, create the following sections containing the anti-virus scanning parameters for the sales group: [icapserver.
Using Kaspersky Anti-Virus 33 ErrorAction=skip ProtectedAction=skip CorruptedAction=deny 3. Specify the following parameters for the default group: [icapserver.engine.options] ScanPacked=yes ScanArchives=yes ScanMailBases=no ScanMailPlain=no Cure=no [icapserver.actions] InfectedAction=deny SuspiciousAction=deny WarningAction=deny ErrorAction=deny ProtectedAction=deny CorruptedAction=deny 4. Restart Kaspersky Anti-Virus using the following command: # /opt/kav/5.5/kav4proxy/init.
CHAPTER 5. ADDITIONAL SETTINGS OF KASPERSKY ANTI-VIRUS This section contains a detailed explanation of basic parameters of Kaspersky Anti-Virus. Unlike the required settings essential for application functioning and specified during product installation and post-install setup, additional configuration can be performed at the administrator's discretion. It is aimed to extend the functionality of the application and its customization to your corporate security policy. 5.1.
Additional settings of Kaspersky Anti-Virus 35 • [icapserver.actions:] contains the parameters that define actions performed by the application over objects depending upon the status assigned to them during an anti-virus check. • [icapserver.notify:] contains the parameters used to notify administrators about blocked objects that the application has applied the deny action to. The default group parameters are specified in the [icapserver.groups], [icapserver.
Kaspersky Anti-Virus for Proxy Server 5.2. Anti-virus scan settings Anti-virus engine parameters in the [icapserver.engine.options:] define the modes for scanning and disinfection of requested objects within a corresponding group as follows: • ScanPacked=yes|no – enables/ disables scanning of packed files. If the mode is disabled, all packed objects are considered to be clean. • ScanArchives=yes|no – enables/ disables scanning of objects inside archives.
Additional settings of Kaspersky Anti-Virus 37 • INFECTED – the object is infected and cannot be cured or disinfection has not been attempted. • CURED – the object was infected; it has been cured successfully. • WARNING – the object contains code that resembles a known virus. • SUSPICIOUS – the object is suspected of being infected with an unknown virus. • PROTECTED – the object is password-protected and therefore it cannot be scanned. • CORRUPTED – the object is damaged.
Kaspersky Anti-Virus for Proxy Server • object_suspicious – template containing a notification about detection of an object suspected of being infected with an unknown virus. • object_warning – template containing a notification about detection of an object that resembles the code of a known virus. • object_protected – template containing a notification about detection of a password-protected object.
Additional settings of Kaspersky Anti-Virus the script is defined by the NotifyScript parameter in the [icapserver.notify:] section of the application configuration file. Below you can examine a sample notification script and the steps necessary to configure the application to run the script. Administrators can use SHELL syntax to create their own custom scripts, which will be executed every time when the application blocks an object transfer via proxy after its scanning.
Kaspersky Anti-Virus for Proxy Server During script creation you can use special macros, such as %URL%, %CLIENT_ADDR%, etc. to specify additional information. Please refer to section A.2 on p. 55 for details on macros. 2. Save the script file and make sure that the kluser user account has sufficient privileges for its execution. 3. Set the script launch string as the value of the NotiftyScript parameter. E.g., if the script has been saved to the /usr/local/bin/notify.
Additional settings of Kaspersky Anti-Virus 5.6. Modes of interaction with proxy via ICAP The mode used by Kaspersky Anti-Virus for work with a proxy server is defined by the AnswerMode parameter, which can take the following values: • partial – in that mode Kaspersky Anti-Virus sends to proxy parts of the object being scanned with the frequency determined by the MaxSendDelayTime parameter for their further transfer to the user.
Kaspersky Anti-Virus for Proxy Server • General statistics of application activity. Statistics of anti-virus processing can be written to a local file or to a network socket. In order to make the application log its statistics to a local file, specify the path to that file as the value for the AVStatisticsFile parameter. The AVStatisticsAddress parameter is intended to specify a network socket.
Additional settings of Kaspersky Anti-Virus 43 Infected_requests The number of requests, which returned infected, suspicious objects or objects resembling a known virus identified during processing. Protected_requests The number of requests, which returned protected objects identified during processing. Error_requests The number of requests, which returned objects causing processing errors. Total_traffic The total volume of processed traffic (MB).
Kaspersky Anti-Virus for Proxy Server The level of detail is a number that sets the level of verboseness for information regarding the components’ work. Each subsequent level includes information of the previous level together with some additional data. Possible levels of report details are listed in the table 4 below. Table 4. Levels of report details Level name Level letter symbol 0 Fatal Errors F Information about critical errors only (i.e.
Additional settings of Kaspersky Anti-Virus 45 Information about fatal errors is displayed always, regardless of the report detail level. The optimal level is level 4, which is also the default level. Information messages may be subdivided into the following types: • Messages pertaining to anti-virus checks. • Messages pertaining to the operation of the application.
Kaspersky Anti-Virus for Proxy Server In order to enable creation of memory dump files, specify the /var/log/kav/5.5/kav4proxy/core path as the value for the CorePath parameter in the [icapserver.path] of the application configuration file. Make sure that the partition where the /var/log/kav/5.5/kav4proxy/core directory is located has sufficient free disk space for storage of core files. In addition, in FreeBSD-based systems a modification of system kernel parameters may be necessary.
CHAPTER 6. UNINSTALLING THE APPLICATION Depending upon the distribution package selected for installation of the application, removal of Kaspersky Anti-Virus from a server running Linux will require one of the following steps: • To uninstall the application installed from an .rpm package, type the following in the command line: # rpm –e • To uninstall the application installed from a .
APPENDIX A. APPLICATION REFERENCE A.1. kav4proxy.conf application configuration file This appendix is devoted to a detailed description of the kav4proxy.conf file containing default settings used immediately after Kaspersky Anti-Virus installation on a server. The [path] section contains the parameters that define paths to the directories essential for the application's functioning: BasesPath – full path to the directory where the anti-virus databases are stored.
Appendix A records of the standard set, the signatures of potentially dangerous software such as adware, remote administration utilities, etc. The [icapserver.network] section contains network settings of the application: ListenAddress – IP address and the port that Kaspersky Anti-Virus uses to wait for proxy requests sent via ICAP. Default value: 0.0.0.0:1344 (the application listens on port 1344 using all network interfaces of the server). Timeout – network timeout for interaction via ICAP.
Kaspersky Anti-Virus for Proxy Server HTTPClientIpField – name of the HTTP field to be used for identification of client's IP address. The [icapserver.statistics] section contains the parameters pertaining to the generation of application statistics: CounterStatisticsFile – path to the file where the values of statistics counters will be stored. AVStatisticsFile – path to the file where anti-virus scanning statistics will be stored.
Appendix A The [icapserver.groups] section contains the default group parameters: Priority – group priority. If request parameters match several groups then the processing will use the rules of the group with the highest priority. ClientIP – IP address of the client that has requested an object through proxy. Objects requested from a specified IP address and located at an address defined by the URL parameter will be processed using the rules of this group.
Kaspersky Anti-Virus for Proxy Server The [icapserver.filter] section contains filtration parameters for the default group: ExcludeMimeType – exception mask for filtering by MIME type (regular expressions can be used). The application will not perform anti-virus scanning of objects with MIME type, which does not match the specified mask. ExcludeURL – exception mask for filtering by URL type (POSIX Extended Regular Expressions can be used).
Appendix A 53 The [icapserver.actions] section contains the settings for actions over scanned objects for the default group: CuredAction – action over disinfected objects. InfectedAction – action over infected objects. SuspiciousAction – action over suspicious objects. WarningAction – action over an object resembling a known virus. ErrorAction – action over an object, which has caused a scanning error. ProtectedAction – action over password-protected objects. CorruptedAction – action over damaged objects.
Kaspersky Anti-Virus for Proxy Server The avbasestest utility starts automatically, it does not require user participation. The [updater.options] section contains various parameters of the keepup2date component: KeepSilent=yes|no – the mode used for output of component messages to the console. When the parameter is set to yes the component does not output reports to the console. Default value: no. PostUpdateCmd – command performed immediately after an update of the antivirus databases.
Appendix A PassiveFtp=yes|no – the parameter determines the use of passive FTP mode. Default value: no. The [updater.report] section contains the settings for output of reports by the keepup2date component: ReportFilename – name of the file used for logging of a report on the component's activity. ReportLevel=0|1|2|3|4|9 – level of details in the report on the component's activity (0 – Fatal, 1 – Error, 2 – Warning, 3 – Info, 4 – Activity, 9 – Debug). Default value: 4.
Kaspersky Anti-Virus for Proxy Server %ACTION% Action performed on an object. %VERDICT% Object status. %PRODUCT% Product description. %DATE% Time of message creation. A.3. kavicapserver return codes 30 Fatal system error. 65 Error loading the configuration file (file not found). 66 Error in the configuration file or command line parameters. 70 The component executable file is corrupted. 0 No errors detected at component start. A.4.
Appendix A -k Output to the console information about the license key. -a Install a license key. -d Delete the current/additional key. A.5. Licensemanager return codes The licensemanager component may return any of the following codes while running: 0 The component has successfully completed its operation. 30 Fatal system error. 64 Licensing error. 65 Error reading the configuration file. 66 Error in command line options.
Kaspersky Anti-Virus for Proxy Server Update options -c Use the alternative configuration file . -u Copy the application update to the local . Within the specified directory, the utility will reproduce a structure identical to the internal structure of an update server, thus enabling local computers to update from that directory. -x Copy updates for all products of Kaspersky Lab to the local .
Appendix A A.7. Keepup2date return codes The keepup2date component may return any of the following codes while running: 0 The anti-virus databases do not need an update. 1 The anti-virus databases were updated successfully. 10 A fatal error occurred; updating was interrupted. 12 An error while rolling back to the previous version of the anti-virus databases. Rollback has been interrupted. 30 The PostUpdaterCmd command could not be executed after the databases were updated.
APPENDIX B. KASPERSKY LAB Founded in 1997, Kaspersky Lab has become a recognized leader in information security technologies. It produces a wide range of data security software and delivers high-performance, comprehensive solutions to protect computers and networks against all types of malicious programs, unsolicited and unwanted email messages, and hacker attacks. Kaspersky Lab is an international company.
Appendix B 61 B.1. Other Kaspersky Lab Products Kaspersky Anti-Virus® Personal ® Kaspersky Anti-Virus Personal has been designed to provide anti-virus protection to personal computers running Microsoft Windows 98/ME or Microsoft Windows 2000/NT/XP against all known viruses, including potentially dangerous software. Kaspersky Anti-Virus Personal provides real-time monitoring of all sources of virus intrusion - e-mail, Internet, floppy disks, CD, etc.
Kaspersky Anti-Virus for Proxy Server retrieval of daily updates for the anti-virus database and the program modules. A unique second-generation heuristic analyzer efficiently detects unknown viruses. A simple and convenient interface allows users to configure the program quickly making work with it easier than ever. ® Kaspersky Anti-Virus Personal Pro has the following features: • On-demand scan of local disks. • Real-time automatic protection of all accessed files from viruses.
Appendix B 63 Kaspersky® Personal Security Suite Kaspersky® Personal Security Suite is a software suite designed for organizing comprehensive protection of personal computers running Microsoft Windows. The suite prevents malicious and potentially dangerous programs from penetrating through any possible data sources and protects you from unauthorized attempts to access your computer’s data, as well as blocking spam.
Kaspersky Anti-Virus for Proxy Server • Exclude archives and e-mail databases from scanning. • Select standard/extended anti-virus databases for scanning. • Save a report on the scanning results in txt or html formats. ® Kaspersky OnLine Scanner Pro The program is a subscription service offered to the visitors of Kaspersky Lab's corporate website. The service allows an efficient online anti-virus scan of your computer and disinfection of dangerous files.
Appendix B 65 • Monitoring of changes in OS registry due to internal system registry control. • Blocking of dangerous VBA macros in Microsoft Office documents. • System restoration after malicious spyware influence accomplished due to recording of all changes in the registry and computer file system and an opportunity to perform their roll-back at user's discretion. Kaspersky® Internet Security 6.0 ® Kaspersky Internet Security 6.
Kaspersky Anti-Virus for Proxy Server computer detection from outside. When you switch into that mode, the system will block all network activity except for a few transactions allowed in userdefined rules. The program employs complex approach to anti-spam filtering of incoming e-mail messages: • Verification against black and white lists of recipients (including addresses of phishing sites). • Inspection of phrases in message body. • Analysis of message text using a self-learning algorithm.
Appendix B • E-mail systems including Microsoft Exchange Notes/Domino, Postfix, Exim, Sendmail, and Qmail. • Internet gateways: CheckPoint Firewall –1; Microsoft ISA Server 2000 Standard Edition. 2000/2003, Lotus The Kaspersky Anti-Virus® Business Optimal distribution kit includes Kaspersky® Administration Kit, a unique tool for automated deployment and administration. You are free to choose from any of these anti-virus applications, according to the operating systems and applications you use.
Kaspersky Anti-Virus for Proxy Server Kaspersky® Anti-Spam Kaspersky® Anti-Spam is a cutting-edge software suite that is designed to help organizations with small- and medium-sized networks wage war against the onslaught of unsolicited e-mail messages (spam). The product combines the revolutionary technology of linguistic analysis with modern methods of e-mail filtration, including DNS Black Lists and formal letter features.
Appendix B the presence of viruses and other malware (Spyware, Adware, etc.) and performs centralized anti-spam filtration of e-mail stream. This solution also includes some additional mail traffic filtration features. B.2. Contact Us If you have any questions, comments, or suggestions, please refer them to one of our distributors or directly to Kaspersky Lab. We will be glad to assist you in any matters related to our product by phone or via e-mail.
APPENDIX C. LICENSE AGREEMENT End User License Agreement NOTICE TO ALL USERS: CAREFULLY READ THE FOLLOWING LEGAL AGREEMENT ("AGREEMENT") FOR THE LICENSE OF SPECIFIED SOFTWARE ("SOFTWARE") PRODUCED BY KASPERSKY LAB ("KASPERSKY LAB"). IF YOU HAVE PURCHASED THIS SOFTWARE VIA THE INTERNET BY CLICKING THE ACCEPT BUTTON, YOU (EITHER AN INDIVIDUAL OR A SINGLE LEGAL ENTITY) CONSENT TO BE BOUND BY AND BECOME PARTY TO THIS AGREEMENT.
Appendix C 71 PRODUCT. IN THIS CASE, KASPERSKY LAB WILL NOT BE HELD BY THE PARTNER'S CLAUSES. THE RIGHT TO RETURN AND REFUND EXTENDS ONLY TO THE ORIGINAL PURCHASER. All references to "Software" herein shall be deemed to include the software activation key ("Key Identification File") with which you will be provided by Kaspersky Lab as part of the Software. 1. License Grant.
Kaspersky Anti-Virus for Proxy Server steps to achieve interoperability, provided that you only reverse engineer or decompile the Software to the extent permitted by law. 1.1.4 You shall not make error corrections to, or otherwise modify, adapt, or translate the Software, nor create derivative works of the Software, nor permit any third party to copy the Software (other than as expressly permitted herein). 1.1.
Appendix C 73 described herein. Upon any termination or expiration of this Agreement, you must immediately destroy all copies of the Software and the Documentation. You may terminate this Agreement at any point by destroying all copies of the Software and the Documentation. 3. Support.
Kaspersky Anti-Virus for Proxy Server You shall implement reasonable security measures to protect such confidential information, but without limitation to the foregoing shall use best endeavours to maintain the security of the Key Identification File. 6. Limited Warranty.
Appendix C 75 (whether such losses or damage were foreseen, foreseeable, known or otherwise): (a) Loss of revenue; (b) Loss of actual or anticipated profits (including for loss of profits on contracts); (c) Loss of the use of money; (d) Loss of anticipated savings; (e) Loss of business; (f) Loss of opportunity; (g) Loss of goodwill; (h) Loss of reputation; (i) Loss of, damage to or corruption of data, or: (j) Any indirect or consequential loss or damage howsoever caused (including, for the avoidance of do
