Agreed -- our approach is to keep critical and security related patches
installed in a timely manner ... that's more important in a server
environment then doing AV scans (imho). Also maintaining security
controls so Linux system files and code are protected -- and patches are
coming from trusted sources. Here's an avscan script for that checkbox :
echo 'AV scan complete';exit
Scott Rohling
On Tue, Aug 25, 2015 at 10:07 AM, Marcy Cortes <
[email protected]> wrote:
> It seems many organizations have a box to check - running AV software,
> check.
>
> Windows end user systems absolutely need it.
> Windows servers, probably do.
> Linux end user, probably.
> Linux servers? Well, where are the potential bad files coming from? Are
> there end users FTP'ing to that server all the time? Then yeah, those
> might need it.
> Is it accepting files over HTTP? Is it a file server (NFS? or Samba?)?
> Those probably need it.
> But for your other types of servers??
> You would need to evaluate the risk, document it, and have management sign
> off.
> Which is what we have done.
>
>
>
>
> -----Original Message-----
> From: Linux on 390 Port [mailto:[email protected]] On Behalf Of
> CHAPLIN, JAMES (CTR)
> Sent: Monday, August 24, 2015 7:25 AM
> To: [email protected]
> Subject: Re: [LINUX-390] Symantec Endpoint Protection (SEP) for
> installation on zLinux?
>
> Thanks Marcy,
> Sad to say this was the only response, not because of the list, but
> interest in hardening and anti-virus software tools available for the s390x
> architecture of Linux. Has anyone used or can name an alternate anti-virus
> tool (other than Symantec's end point) for Linux on the z Architecture
> (s390z)?
>
> We found one toll using Google.... F-PROT, but it is no longer available
> (from their website):
> "Due to lack of customer demand, we have discontinued this product. If you
> are interested in F-PROT for S/390, please contact our sales department (
> [email protected])."
>
> Fedora 22 for s390x has a tool ClamAV for use with Exim (mail server), but
> nothing for RHEL, any suggestions?
>
> James Chaplin, ITILĀ® v3 Foundation
> Systems Programmer, MVS, zVM & zLinux
> CA Technologies
>
> -----Original Message-----
> From: Linux on 390 Port [mailto:[email protected]] On Behalf Of
> Marcy Cortes
> Sent: Tuesday, August 18, 2015 11:24 AM
> To: [email protected]
> Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?
>
> We've been given an exception because it doesn't exist for z.
> Not a bad thing imnsho :)
>
>
>
> -----Original Message-----
> From: Linux on 390 Port [mailto:[email protected]] On Behalf Of
> CHAPLIN, JAMES (CTR)
> Sent: Tuesday, August 18, 2015 5:35 AM
> To: [email protected]
> Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation
> on zLinux?
>
> Fellow Penguin Mainframers,
> Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or
> SUSE) on the s390x architecture? We have been given a "Security
> Requirement" that this vendor specific software has to be in place, and we
> cannot even verify that they support the s390x architecture. Please share
> any experience you may have with this if your shop has gone down this path
> and implemented SEP.
>
> James Chaplin, ITIL(r) v3 Foundation
> Systems Programmer, MVS, zVM & zLinux
> CA Technologies
>
> ----------------------------------------------------------------------
> For LINUX-390 subscribe / signoff / archive access instructions, send
> email to [email protected] with the message: INFO LINUX-390 or visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> ----------------------------------------------------------------------
> For more information on Linux on System z, visit http://wiki.linuxvm.org/
>
> ----------------------------------------------------------------------
> For LINUX-390 subscribe / signoff / archive access instructions, send
> email to [email protected] with the message: INFO LINUX-390 or visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> ----------------------------------------------------------------------
> For more information on Linux on System z, visit http://wiki.linuxvm.org/
>
> ----------------------------------------------------------------------
> For LINUX-390 subscribe / signoff / archive access instructions, send
> email to [email protected] with the message: INFO LINUX-390 or visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> ----------------------------------------------------------------------
> For more information on Linux on System z, visit http://wiki.linuxvm.org/
>
> ----------------------------------------------------------------------
> For LINUX-390 subscribe / signoff / archive access instructions,
> send email to [email protected] with the message: INFO LINUX-390 or
> visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> ----------------------------------------------------------------------
> For more information on Linux on System z, visit
> http://wiki.linuxvm.org/
>
----------------------------------------------------------------------
For LINUX-390 subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
----------------------------------------------------------------------
For more information on Linux on System z, visit
http://wiki.linuxvm.org/
