User Guide
Table Of Contents
- KASPERSKY ANTI-VIRUS FOR PROXY SERVER
- OPERATION ALGORITHM AND TYPICAL DEPLOYMENT SCENARIOS
- INSTALLING THE APPLICATION
- USING KASPERSKY ANTI-VIRUS
- ADDITIONAL SETTINGS OF KASPERSKY ANTI-VIRUS
- Creating groups
- Anti-virus scan settings
- The choice of actions over scanned objects
- Administrator notifications
- Operation modes
- Modes of interaction with proxy via ICAP
- Application statistics logging
- Application reporting parameters
- Memory dump creation for detection of errors
- Work with Internet broadcasting stations
- UNINSTALLING THE APPLICATION
- APPLICATION REFERENCE
- KASPERSKY LAB
- LICENSE AGREEMENT
Additional settings of Kaspersky Anti-Virus 39
the script is defined by the NotifyScript parameter in the
[icapserver.notify:<group name>] section of the application configuration file.
Below you can examine a sample notification script and the steps necessary to
configure the application to run the script.
Administrators can use SHELL syntax to create their own custom
scripts, which will be executed every time when the application blocks
an object transfer via proxy after its scanning. Every group created by
the administrator can be assigned its own notification script (please
refer to section 5.1 on p. 34 for details about groups).
In order to configure the application to send notifications about blocked
objects to admin@test.local, perform the following steps
1. Create an executable script file with the following contents:
#!/bin/sh
recipients='admin@test.local'
/usr/lib/sendmail -t -i<<EOT
From: Kaspersky Anti-Virus For Proxy Server
<root@$HOSTNAME>
To: $recipients
Subject: %VERDICT% object requested
Action applied: %ACTION%
Verdict: %VERDICT%
Requested URL: %URL%
Client IP: %CLIENT_ADDR%
Found:
Infected: %VIRUS_LIST%
Cured: %CURED_LIST%
Suspicios: %SUSP_LIST%
Warnings: %WARN_LIST%
This message generated by %PRODUCT% at %DATE% on
$HOSTNAME
EOT