SEO

What antivirus software is available for OpenBSD? Suggestions on both
commercial and non-commercial products would be greatly appreciated.
/PP

On 16/09/2004 2:44 PM, PP wrote:

> What antivirus software is available for OpenBSD? Suggestions on both
> commercial and non-commercial products would be greatly appreciated.

http://www.google.com/search?hl=en&i...ivirus+openbsd

Seems like at least three commercial vendors out there. You might need
to narrow down what kind of AV support you need, and then refine your
search items further to see how OBSD people implement these products.

> http://www.google.com/search?hl=en&i...ivirus+openbsd
>
> Seems like at least three commercial vendors out there. You might need to
> narrow down what kind of AV support you need, and then refine your search
> items further to see how OBSD people implement these products.

Googling in all honour... although I didn't say so straight out it would be
nice to hear what people actually use and their experiences from the various
products. Searching the net is not a problem for me but I often find the
information found a bit anonymous. This group on the other hand is alive and
well and my respect for the opinions shared in here is great and that's why
I choose to ask my questions here rather than simply search for bits and
pieces around the net.

Kind regards
PP

PP wrote:

> What antivirus software is available for OpenBSD? Suggestions on both
> commercial and non-commercial products would be greatly appreciated.
> /PP

clamav works fine for us, and it's free.
--
Mailman


-----= Posted via Newsfeeds.Com, Uncensored Usenet News =-----
http://www.newsfeeds.com - The #1 Newsgroup Service in the World!
-----== Over 100,000 Newsgroups - 19 Different Servers! =-----

On Thu, 16 Sep 2004 20:49:35 GMT, "PP" <someone@microsoft.com> wrote:

>> http://www.google.com/search?hl=en&i...ivirus+openbsd
>>
>> Seems like at least three commercial vendors out there. You might need to
>> narrow down what kind of AV support you need, and then refine your search
>> items further to see how OBSD people implement these products.
>
>Googling in all honour... although I didn't say so straight out it would be
>nice to hear what people actually use and their experiences from the various
>products. Searching the net is not a problem for me but I often find the
>information found a bit anonymous. This group on the other hand is alive and
>well and my respect for the opinions shared in here is great and that's why
>I choose to ask my questions here rather than simply search for bits and
>pieces around the net.

The best policy before asking for help/comments is to show people that
you have started researching on your own. Otherwise many people will
simply ignore your posts.

/pm

On Thu, 16 Sep 2004 18:44:35 +0000, PP wrote:

> What antivirus software is available for OpenBSD? Suggestions on both
> commercial and non-commercial products would be greatly appreciated.
> /PP

www.clamav.net

"PP" <someone@microsoft.com> wrote in message news:<nal2d.3403$d5.25941@newsb.telia.net>...
> What antivirus software is available for OpenBSD? Suggestions on both
> commercial and non-commercial products would be greatly appreciated.

sophos' "sweep" for FreeBSD works when you have FreeBSD emulation
enabled. "mmsmtp" for Linux doesn't work on OpenBSD, as some of the
Linux emulation layer is incomplete or otherwise incorrect. people
have used "sweep" with their MTA to scan mails and attachments that
come though. it's much slower, however.

hope this helps.

------
jose nazario
co-author, "Secure Architectures with OpenBSD"

PP wrote:
> What antivirus software is available for OpenBSD? Suggestions on both
> commercial and non-commercial products would be greatly appreciated.
> /PP
>
>
I use clamav. it rplaced several instalations of sophos sweep(linux
version with linuy emulation on openbsd)

i found a port at http://www.fatbsd.com/openbsd/index.php which is
regularely maintained and updated.

i up to now never had an incident of missed virus with clam. i can
really recomend using it.

> clamav works fine for us, and it's free.
Yeah, I'm using it for about one year now and the only thing that passed by
was
VBS-Scriptvirus VBS/Expl.Zerolin.2
Client-side AntiVir caught that up, but by subject that mail was to be
considered spam.
Cheers,
Dorian

In the referenced article, jose@monkey.org (jose nazario) writes:
>"PP" <someone@microsoft.com> wrote in message news:<nal2d.3403$d5.25941@newsb.telia.net>...
>> What antivirus software is available for OpenBSD? Suggestions
>> on both commercial and non-commercial products would be greatly
>> appreciated.
>
>sophos' "sweep" for FreeBSD works when you have FreeBSD emulation
>enabled.

I'm using the Linux libc6 version of Sophos on the i386 platform.
You'll need to have kern.emul.linux=1 set in /etc/sysctl.conf and
also have /usr/ports/emulators/redhat installed. This Linux version
of Sophos seems to work well and our mail servers routinely catch
several hundred viruses per day that have been aimed at us from the
outside world. Yesterday's tally is listed below. I suspect some
of our anti-spam measures are refusing mail from trojanned hosts.
So the figures below may not reflect all the crap that's aimed at
us.

Virus Count
----- -----
W32/Netsky-P 220
W32/MyDoom-O 177
W32/Lovgate-V 136
W32/Bagle-AA 76
W32/Bagle-Zip 45
W32/Bagle-AG 35
W32/Bagle-N 32
W32/Bugbear-D 20
W32/Bagle-AI 19
W32/Netsky-D 19
W32/Netsky-Q 18
W32/Gibe-F 16
W32/Netsky-Z 15
W32/MyDoom-N 13
W32/Netsky-C 10
W32/Rox-A 8
W32/Netsky-B 7
W32/Bagle-AF 5
W32/Mydoom-T 5
W32/Netsky-AB 4
W32/Lovgate-AD 3
W32/NetskyP-Dam 3
W32/Bagle-W 2
W32/MyDoom-H 2
W32/Bugbear-B 1
W32/Mabutu-A 1
W32/MyDoom-S 1
W32/Netsky-N 1
W32/NskyAB-Dam 1
W32/Parite-B 1
W32/Torvil-A 1
W32/Zafi-B 1

>"mmsmtp" for Linux doesn't work on OpenBSD, as some of the Linux
>emulation layer is incomplete or otherwise incorrect. people have
>used "sweep" with their MTA to scan mails and attachments that come
>though. it's much slower, however.

Indeed it is slow. Probably because each invokation of "sweep" has to
unpack all the stored virus patterns it uses before it can do anything.
And this set of virus patterns is constantly growing. Sigh.

The above slowness might not matter if you're using something like
MailScanner:

http://www.sng.ecs.soton.ac.uk/mailscanner/

which can scan a tranche of email at once. However I found it a
problem as I use exim + exiscan. It's also likely to be a problem
if you're using AMaViS. So I'm using the sophie daemon:

http://www.vanja.com/tools/

I obviously compiled the sophie daemon on a Redhat Linux box so it's
again running in Linux compatability mode. Seems to work well.

>hope this helps.
>
>------
>jose nazario
>co-author, "Secure Architectures with OpenBSD"

Good book. It always seems to migrate towards the top of my
reading list :-)
--
Dennis Davis, BUCS, University of Bath, Bath, BA2 7AY, UK
D.H.Davis@bath.ac.uk