==================================================================================== Symantec AntiVirus(TM) for Linux README.TXT Date: January 2012 Copyright (c) 2012 Symantec Corporation. All rights reserved. Symantec, the Symantec Logo, and Symantec AntiVirus are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. The Licensed Software and Documentation are deemed to be commercial computer software as defined in FAR 12.212 and subject to restricted rights as defined in FAR Section 52.227-19 "Commercial Computer Software - Restricted Rights" and DFARS 227.7202, et seq. Commercial Computer Software and Commercial Computer Software Documentation, as applicable, and any successor regulations. Any use, modification, reproduction release, performance, display or disclosure of the Licensed Software and Documentation by the U.S. Government shall be solely in accordance with the terms of this Agreement. ==================================================================================== README FILE Please review this document in its entirety before you install or roll out Symantec AntiVirus or call for technical support. It contains information that is not included in the Symantec AntiVirus documentation or the online Help. ==================================================================================== ==================================================================================== TABLE OF CONTENTS This document contains the following sections: INSTALLATION NOTES SUPPORTED DISTRIBUTIONS AND KERNEL VERSIONS ERRATA - Error in Implementation Guide regarding importing GRC.DAT files RELEASE NOTES - Files in the /etc/Symantec directory are not removed when you uninstall Symantec AntiVirus - Default logging level of daemons has been changed from DEBUG to INFO - Gjc interferes with Java LiveUpdate - Java Cryptography Extension - HTTP port 80 should be opened for Java LiveUpdate (e.g., ESX3.5) - New SAV command line options - Registry key root change - Customized installation path support for rpm packages - Debian and Ubuntu users should use sudo - Xen kernel details - You must install the i686-based dependent packages on 64-bit computers that run Debian or Ubuntu Linux before you install SAV for Linux - Auto Protect is not enabled on remote disk partitions by default - The Auto-Protect kernel modules source has been partially opened - Symantec AntiVirus for Linux Implementation Guide -- change in LiveUpdate behavior - Symantec AntiVirus for Linux Implementation Guide -- GRC.dat file value change - Symantec AntiVirus for Linux installation by GUI RPM manager may display a warning message - Auto-Protect is not supported for use on SUSE Linux Enterprise Server 11 (x86_64) with the kernel version 2.6.27.19-5 - Error messages may appear after you install the SAVUI installation package - English date format appears in the user interface if the Yet another Setup Tool (YaST) installation program is used to install SAV for Linux on computers that run non-English language operating systems - You must install the i686-based dependent packages on 64-bit computers that run Fedora or RedHat ES 6.x Linux before you install SAV for Linux - Hardware system requirements - Unity Panel Icon missing in Ubuntu 11.x desktop - Known issues SYMANTEC SOFTWARE LICENSE AGREEMENT ==================================================================================== INSTALLATION NOTES ==================================================================================== There are three different installation package directories for Symantec AntiVirus for Linux: 1. /deb/ contains the deb packages for both Debian and Ubuntu distributions. For the supported OS and kernel list, please refer to the section titled "SUPPORTED DISTRIBUTIONS AND KERNEL VERSIONS": 1.1 Make sure the user is in the sudo-ers list. 1.2 For Debian or Ubuntu 32bit architectures, execute 'sudo dpkg -i sav-*.i386.deb savap-*.i386.deb savjlu-*.i386.deb savui-*.i386.deb'. 1.3 For Debian or Ubuntu 64bit architectures, execute 'sudo dpkg -i sav-*.amd64.deb savap-*.amd64.deb savjlu-*.amd64.deb savui-*.amd64.deb'. 2. /rpm/ contains the rpm packages for most of the the Linux distributions that support the Red Hat Package Manager. For the supported OS and kernel list, refer to section titled "SUPPORTED DISTRIBUTIONS AND KERNEL VERSIONS": 2.1 For i386/i686 32bit architectures, execute 'rpm -i sav-*.i386.rpm savap-*.i386.rpm savjlu-*.i386.rpm savui-*.i386.rpm'. 2.2 For x86-64 EM64T/AMD64 architectures, execute 'rpm -i sav-*.i386.rpm savap-x64-*.x86_64.rpm savjlu-*.i386.rpm savui-*.i386.rpm'. 3. /unsupported/ contains the legacy rpm and deb packages that are no longer supported by new fixes since 1.0.13. For the unsupported OS and kernel list, refer to section titled "LEGACY DISTRIBUTIONS AND KERNEL VERSIONS": 3.1 For the legacy kernels on i386/i686 32bit architectures, type the following command: 'rpm -i ../rpm/sav-*.i386.rpm savap-legacy-*.i386.rpm ../rpm/savjlu-*.i386.rpm ../rpm/savui-*.i386.rpm'. 3.2 For the legacy kernels on x86-64 EM64T/AMD64 architectures, type the following command: 'rpm -i ../rpm/sav-*.i386.rpm savap-x64-legacy-*.x86_64.rpm ../rpm/savjlu-*.i386.rpm ../rpm/savui-*.i386.rpm'. 3.3 For the legacy kernels on i386/i686 32bit architectures for Debian or Ubuntu, type the following command: 'sudo dpkg -i ../deb/sav-*.i386.deb savap-legacy-*.i386.deb ../deb/savjlu-*.i386.deb ../deb/savui-*.i386.deb'. 3.4 For the legacy kernels on x86-64 EM64T/AMD64 architectures for Debian, type the following command: 'sudo dpkg -i ../deb/sav-*.amd64.deb savap-x64-legacy-*.amd64.deb ../deb/savjlu-*.amd64.deb ../deb/savui-*.amd64.deb'. A customized installation path is currently supported ONLY for rpm packages. To customize the path, ensure that all rpm packages use the same path, as follows: 'rpm -i --prefix sav*.rpm'. If the installation displays the message "Relocation not supported for this configuration, please use --prefix ," then the should be used as the --prefix value as this indicates there are other Symantec applications on the machine using that value. Alternatively, if there are no other Symantec products on the machine, modify the BaseDir value to the desired custom path, and then rerun the installation. ==================================================================================== SUPPORTED DISTRIBUTIONS AND KERNEL VERSIONS ==================================================================================== Symantec AntiVirus for Linux 1.0.13 supports the following distributions: Red Hat Enterprise Linux 5.7, kernel 2.6.18-274.3.1.el5 Red Hat Enterprise Linux 6, kernel 2.6.32-71.29.1.el6 Red Hat Enterprise Linux 6.1, kernel 2.6.32-131.17.1.el6 Red Hat Enterprise Linux 6.2, kernel 2.6.32-220.el6 Novell Open Enterprise Server/Linux 2 (OES2), kernel 2.6.16.60-0.83.2 Novell Open Enterprise Server/Linux 11 (OES11), kernel 2.6.32.46-0.3.1 SuSE Linux Enterprise 10 with Service Pack 3, kernel 2.6.16.60-0.83.2 SuSE Linux Enterprise 10 with Service Pack 4, kernel 2.6.16.60-0.89.1 SuSE Linux Enterprise 11 initial release, kernel 2.6.27.19-5 2.6.27.21-0.1 2.6.27.39-0.3.1 SuSE Linux Enterprise 11 with Service Pack 1, kernel 2.6.32.46-0.3.1 [Note: SuSE Linux Enterprise 10/11 includes both Server (SLES10/11) and Desktop (SLED10/11) versions.] Ubuntu 11.04, kernel 2.6.38-12-generic, 2.6.38-12-server Ubuntu 11.10, kernel 3.0.0-12-generic, 3.0.0-12-server Debian 50r3, kernel 2.6.26-2 Debian 60r3, kernel 2.6.32-5 Fedora 15, kernel 2.6.41.1-1.fc15 Fedora 16, kernel 3.1.1-2.fc16 Specifically, the following kernel versions are supported (on i386/i686 architecture only): Red Hat Enterprise Linux 5.7 default 2.6.18-274.3.1.el5 Red Hat Enterprise Linux 5.7 PAE 2.6.18-274.3.1.el5 Red Hat Enterprise Linux 5.7 Xen 2.6.18-274.3.1.el5 Red Hat Enterprise Linux 6.0 default 2.6.32-71.29.1.el6 Red Hat Enterprise Linux 6.1 default 2.6.32-131.17.1.el6 Red Hat Enterprise Linux 6.2 default 2.6.32-220.el6 SuSE Linux Enterprise 10.3 default 2.6.16.60-0.83.2-default SuSE Linux Enterprise 10.3 smp 2.6.16.60-0.83.2-smp SuSE Linux Enterprise 10.3 bigsmp 2.6.16.60-0.83.2-bigsmp SuSE Linux Enterprise 10.4 default 2.6.16.60-0.89.1-default SuSE Linux Enterprise 10.4 smp 2.6.16.60-0.89.1-smp SuSE Linux Enterprise 10.4 bigsmp 2.6.16.60-0.89.1-bigsmp SuSE Linux Desktop 10.3 default 2.6.16.60-0.83.2-default SuSE Linux Desktop 10.3 smp 2.6.16.60-0.83.2-smp SuSE Linux Desktop 10.3 bigsmp 2.6.16.60-0.83.2-bigsmp SuSE Linux Desktop 10.4 default 2.6.16.60-0.89.1-default SuSE Linux Desktop 10.4 smp 2.6.16.60-0.89.1-smp SuSE Linux Desktop 10.4 bigsmp 2.6.16.60-0.89.1-bigsmp SuSE Linux Enterprise 11.0 default 2.6.27.19-5-default SuSE Linux Enterprise 11.0 pae 2.6.27.19-5-pae SuSE Linux Enterprise 11.0 xen 2.6.27.19-5-xen SuSE Linux Enterprise 11.0 default 2.6.27.39-0.3.1-default SuSE Linux Enterprise 11.0 pae 2.6.27.39-0.3.1-pae SuSE Linux Enterprise 11.0 xen 2.6.27.39-0.3.1-xen SuSE Linux Enterprise 11.1 default 2.6.32.46-0.3.1-default SuSE Linux Enterprise 11.1 pae 2.6.32.46-0.3.1-pae SuSE Linux Enterprise 11.1 xen 2.6.32.46-0.3.1-xen SuSE Linux Desktop 11 default 2.6.27.19-5-default SuSE Linux Desktop 11 xen 2.6.27.19-5-xen SuSE Linux Desktop 11 pae 2.6.27.19-5-pae SuSE Linux Desktop 11.1 default 2.6.32.46-0.3.1-default SuSE Linux Desktop 11.1 xen 2.6.32.46-0.3.1-xen SuSE Linux Desktop 11.1 pae 2.6.32.46-0.3.1-pae Open Enterprise Server 2 sp2 default 2.6.16.60-0.83.2-default Open Enterprise Server 2 sp2 smp 2.6.16.60-0.83.2-smp Open Enterprise Server 2 sp2 bigsmp 2.6.16.60-0.83.2-bigsmp Open Enterprise Server 2 sp3 default 2.6.16.60-0.83.2-default Open Enterprise Server 2 sp3 smp 2.6.16.60-0.83.2-smp Open Enterprise Server 2 sp3 bigsmp 2.6.16.60-0.83.2-bigsmp Debian 50r3 default 2.6.26-2-686 Debian 50r3 bigmem 2.6.26-2-686-bigmem Debian 60r3 default 2.6.32-5-686 Debian 60r3 bigmem 2.6.32-5-686-bigmem Fedora 15 default 2.6.41.1-1.fc15.i686 Fedora 15 PAE 2.6.41.1-1.fc15.i686.PAE Fedora 16 default 3.1.1-2.fc16.i686 Fedora 16 PAE 3.1.1-2.fc16.i686.PAE Additiontally, the following kernel versions are supported on x86-64 (both EM64T/AMD64) architectures: Red Hat Enterprise Linux 5.7 default 2.6.18-274.3.1.el5 Red Hat Enterprise Linux 5.7 Xen 2.6.18-274.3.1.el5 Red Hat Enterprise Linux 6.0 default 2.6.32-71.29.1.el6 Red Hat Enterprise Linux 6.1 default 2.6.32-131.17.1.el6 Red Hat Enterprise Linux 6.2 default 2.6.32-220.el6 SuSE Linux Enterprise 10.3 default 2.6.16.60-0.83.2-default SuSE Linux Enterprise 10.3 smp 2.6.16.60-0.83.2-smp SuSE Linux Enterprise 10.4 default 2.6.16.60-0.89.1-default SuSE Linux Enterprise 10.4 smp 2.6.16.60-0.89.1-smp SuSE Linux Desktop 10.3 default 2.6.16.60-0.83.2-default SuSE Linux Desktop 10.3 smp 2.6.16.60-0.83.2-smp SuSE Linux Desktop 10.4 default 2.6.16.60-0.89.1-default SuSE Linux Desktop 10.4 smp 2.6.16.60-0.89.1-smp SuSE Linux Enterprise 11 default 2.6.27.21-0.1-default SuSE Linux Enterprise 11 xen 2.6.27.21-0.1-xen SuSE Linux Enterprise 11 default 2.6.27.39-0.3.1-default SuSE Linux Enterprise 11 xen 2.6.27.39-0.3.1-xen SuSE Linux Enterprise 11.1 default 2.6.32.46-0.3.1-default SuSE Linux Enterprise 11.1 xen 2.6.32.46-0.3.1-xen SuSE Linux Desktop 11 default 2.6.27.21-0.1-default SuSE Linux Desktop 11 xen 2.6.27.21-0.1-xen SuSE Linux Desktop 11.1 default 2.6.32.46-0.3.1-default SuSE Linux Desktop 11.1 xen 2.6.32.46-0.3.1-xen Open Enterprise Server 2 sp2 default 2.6.16.60-0.83.2-default Open Enterprise Server 2 sp2 smp 2.6.16.60-0.83.2-smp Open Enterprise Server 2 sp3 default 2.6.16.60-0.83.2-default Open Enterprise Server 2 sp3 smp 2.6.16.60-0.83.2-smp Open Enterprise Server 11 default 2.6.32.46-0.3.1-default Open Enterprise Server 11 xen 2.6.32.46-0.3.1-xen Debian 50r3 default 2.6.26-2-amd64 Debian 60r3 default 2.6.32-5-amd64 Fedora 15 default 2.6.41.1-1.fc15 Fedora 16 default 3.1.1-2.fc16 Ubuntu 11.04 generic 2.6.38-12 Ubuntu 11.04 server 2.6.38-12 Ubuntu 11.10 generic 3.0.0-12 Ubuntu 11.10 server 3.0.0-12 Running Symantec AntiVirus for Linux 1.0.13 on any other combination of distributions and kernel versions is not supported. ==================================================================================== LEGACY DISTRIBUTIONS AND KERNEL VERSIONS ==================================================================================== All the kernels listed in the 'SAVFL MR13 Legacy Kernels' sheet of the Kernel_Checklist_MR13.xls file are no longer supported for maintenance in 1.0.13. If you want to real-time protection for one of these kernels, use the legacy rpm or deb packages that can be found in the unsupported folder. ==================================================================================== ERRATA ==================================================================================== --------------------------------------------------------------------------------- Error in the Implementation Guide regarding importing GRC.DAT files --------------------------------------------------------------------------------- Page 79 of the Symantec AntiVirus for Linux Implementation Guide has an error in the procedure for importing GRC.DAT files. The second paragraph includes instructions to set the VirusProtect6\ProductControl\CheckGRCNow value to 1 in order to import a GRC.DAT file immediately. The sentence should specify VirusProtect6\ProductControl\ProcessGRCNow instead. ==================================================================================== RELEASE NOTES ==================================================================================== --------------------------------------------------------------------------------- Files in the /etc/symantec directory are not removed when you uninstall Symantec AntiVirus --------------------------------------------------------------------------------- The VPREGDB.BAK, VPREGDB.DAT, and VPREGDB.SAV configuration files are deliberately retained in the /etc/symantec directory after you use rpm to uninstall Symantec AntiVirus. These files may be used to save and restore Symantec AntiVirus configuration data. To reinstall Symantec AntiVirus with its default configuration, delete these existing VPREGDB.BAK, VPREGDB.DAT, and VPREGDB.SAV files before you reinstall. --------------------------------------------------------------------------------- Default logging level of daemons has been changed from DEBUG to INFO --------------------------------------------------------------------------------- The default logging level of the daemons has been changed from DEBUG to INFO to enhance performance. To change the logging levels, refer to the man page, rtvscand(8). --------------------------------------------------------------------------------- Gjc interferes with Java LiveUpdate --------------------------------------------------------------------------------- By default some Linux distributions, such as Ubuntu, install with the GNU Java(tm), which has problems running Java LiveUpdate. To use Java LiveUpdate services, make sure Sun JRE 1.4.2 or higher is installed instead of GNU Java. --------------------------------------------------------------------------------- Java(TM) Cryptography Extensions --------------------------------------------------------------------------------- Ensure Unlimited Strength Java(TM) Cryptography Extension (JCE) policy files are used rather than limited jar policy files. --------------------------------------------------------------------------------- HTTP port 80 should be opened for Java LiveUpdate (e.g., ESX3.5) --------------------------------------------------------------------------------- Some Linux systems install firewalls by default. If the firewall blocks HTTP port 80, it denies accesses to the default Symantec LiveUpdate Servers. Make sure that http port 80 is open. For example, on ESX 3.5, type the following command: #esxcfg-firewall --openPort 80,tcp,out,http80 If you use proxy servers, please configure them accordingly. --------------------------------------------------------------------------------- New SAV command line options --------------------------------------------------------------------------------- The following are new command line options: 1. 'sav scheduledscan -p|--stop scan_id' stops a scheduled scan that is in progress. 2. 'sav manualscan -c|--clscan [pathname|-]' initiates a synchronous manual scan that does not return control to the command prompt until the scan is complete. 3. 'sav quarantine -d|--delete/-r|--restore/-p|--repair/-i|--info "*"' deletes, restores, repairs, or provides detailed information about all of the quarantined items, respectively. For more information about the command instructions, please refer to the man page. --------------------------------------------------------------------------------- Registry key root change --------------------------------------------------------------------------------- The new registry root key has been changed from "\VirusProtect6" to "\Symantec Endpoint Protection\AV". Use this new value when you follow the examples in the documentation. --------------------------------------------------------------------------------- Customized installation path support for rpm packages --------------------------------------------------------------------------------- The user can install rpm packages to a customized installation path with the option prefix, but you must install these rpm packages to the same path, e.g., you can type the following command 'rpm -Uhv --prefix yourpath *.rpm'. --------------------------------------------------------------------------------- Debian and Ubuntu users should use sudo --------------------------------------------------------------------------------- For installation and when you execute Symantec AntiVirus for Linux commands, Debian and Ubuntu users should use sudo. Do NOT su to root for these actions. In addition, ensure that the user who is running the command is in the sudoers list. --------------------------------------------------------------------------------- Xen kernel details --------------------------------------------------------------------------------- Symantec AntiVirus for Linux supports -xen kernels of a paravirtulized guest OS. It does not need any specific configurations to install or load autoprotect modules. The supported -xen kernels are explicitly listed in the section titled "SUPPORTED DISTRIBUTIONS AND KERNEL VERSIONS". Other variants, such as -xenU, are different kernels that are NOT officially supported by the product. --------------------------------------------------------------------------------- You must install the i686-based dependent packages on 64-bit computers that run Debian or Ubuntu Linux before you install SAV for Linux --------------------------------------------------------------------------------- Since many of the executable files in SAV packages are 32-bit programs, you must install the i686-based dependent packages on 64-bit computers that run Debian or Ubuntu Linux before you install the SAV for Linux packages. If the i686-based dependent packages are not already on the computer, you can install them by typing the following command: sudo apt-get install ia32-libs --------------------------------------------------------------------------------- Auto Protect is not enabled on remote disk partitions by default --------------------------------------------------------------------------------- By default, Auto Protect will not capture file access on remote disk partitions, such as NFS. To enable this feature, please set the following registry key \\HKEY_LOCAL_MACHINE\Symantec Endpoint Protection\AV\Storages\FileSystem\RealTimeScan\Networks to 1. --------------------------------------------------------------------------------- The Auto-Protect kernel modules source has been partially opened --------------------------------------------------------------------------------- Based on requests from customers, Symantec is partially opening the Auto-Protect kernel modules source code. Symantec will provide the relevant library files so that customers can compile the Auto-Protect kernel modules themselves. For more information, refer to README file in the source tar-ball. --------------------------------------------------------------------------------- Symantec AntiVirus for Linux Implementation Guide -- change in LiveUpdate behavior --------------------------------------------------------------------------------- In the section titled "About the Java LiveUpdate configuration file", the definition of the working directory in the first row of the table is out of date. The local package directory is no longer removed under any circumstances when Java LiveUpdate exits. --------------------------------------------------------------------------------- Symantec AntiVirus for Linux Implementation Guide -- GRC.dat file value change --------------------------------------------------------------------------------- In the Symantec AntiVirus for Linux Implementation Guide chapter called "Configuring Symantec AntiVirus for Linux," in the section titled "Deploying GRC.DAT files," the value \VirusProtect6\ProductControl\CheckGRCNow should be \Symantec Endpoint Protection\AV\ProductControl\ProcessGRCNow. --------------------------------------------------------------------------------- Symantec AntiVirus for Linux installation by GUI RPM manager may display a warning message --------------------------------------------------------------------------------- If you install Symantec AntiVirus for Linux by using the GUI RPM manager without using the command line for installation, you may see a warning message that states that the installer is not a known application. You may safely ignore this message. Click Ignore, and the installation should succeed without problems. --------------------------------------------------------------------------------- Auto-Protect is not supported for use on SUSE Linux Enterprise Server 11 (x86_64) with the kernel version 2.6.27.19-5 --------------------------------------------------------------------------------- Loading the Auto-Protect kernel module (symev) on SUSE Linux Enterprise Server 11 (x86_64) with the kernel version 2.6.27.19-5 causes the operating system to hang (stop responding) due to an operating system defect. If you want to use the Auto-Protect feature on SUSE Linux Enterprise Server 11 (x86_64), you must upgrade your kernel to version 2.6.27.21-0.1.2 or later. For more information, refer to bug 439348 in the Novell Bugzilla. --------------------------------------------------------------------------------- Error messages may appear after you install the SAVUI installation package --------------------------------------------------------------------------------- After you install the SAVUI installation package on some platforms, you may see the following error messages in the savui-install.log file: * QSettings:sync: filename is null/empty * QDate::setYMD: Invalid date 0000-00-00 After the first restart, you may see the following strings in the savui-install.log file: * ICE default IO error handler doing an exit(), pid = 3566, errno = 0 * savtray: Fatal IO error: client killed You can ignore these strings. They do not reappear. --------------------------------------------------------------------------------- English date format appears in the user interface if the Yet another Setup Tool (YaST) installation program is used to install SAV for Linux on computers that run non-English language operating systems --------------------------------------------------------------------------------- If you use YaST to install the savui package on non-English language versions of SUSE Linux, the savtray user interface date format appears as MM/DD/YY instead of YY/MM/DD. To get the correct date format to appear, you can restart the savtray program. Other installation methods do not have this issue. --------------------------------------------------------------------------------- You must install the i686-based dependent packages on 64-bit computers that run Fedora or RedHat ES 6.x Linux before you install SAV for Linux --------------------------------------------------------------------------------- Since many of the executable files in SAV packages are 32-bit programs, you must install the i686-based dependent packages on 64-bit computers that run Fedora Linux before you install the SAV for Linux packages. If the i686-based dependent packages are not already on the computer, you can install them by using the following command: yum install glibc.i686 libgcc.i686 libX11.i686 --------------------------------------------------------------------------------- Hardware system requirements --------------------------------------------------------------------------------- Symantec AntiVirus for Linux requires the following hardware capabilities: . Intel Pentium II 266 MHz or higher processor . 512 MB RAM or higher . 3 GB free disk space The installed directory disk (it's /opt by default) requires at least 2G free disk space when running LiveUpdate. The Liveupdate work directory disk (it's /tmp by default) requires at least 500M free disk space when running LiveUpdate. --------------------------------------------------------------------------------- Unity Panel Icon missing in Ubuntu 11.x desktop --------------------------------------------------------------------------------- In 11.x Ubuntu, after the savui deb package installed, if the tray icon of it missed on Unity panel, please execute the following command lines on a desktop terminal with the user account you login desktop system: #systraywhitelist=`gsettings get com.canonical.Unity.Panel systray-whitelist` #echo $systraywhitelist if the output includes "Savtray" string, then re-login desktop system, if not, execute the command line: #systraywhitelist=`echo $systraywhitelist | sed "s/, 'Savtray'//g"` #systraywhitelist="${systraywhitelist%]}, 'Savtray']" #gsettings set com.canonical.Unity.Panel systray-whitelist "$systraywhitelist" then re-login desktop system. --------------------------------------------------------------------------------- Known issues --------------------------------------------------------------------------------- Please don't upgrade savjlu rpm package from the previous versions by 'rpm -U', Jave Liveupdate would break if doing that. Please uninstall old versions and then install the new version by 'rpm -e' followed by 'rpm -i'. We will fix this issue in the next release. ==================================================================================== SYMANTEC SOFTWARE LICENSE AGREEMENT Symantec AntiVirus ==================================================================================== SYMANTEC CORPORATION AND/OR ITS SUBSIDIARIES (SYMANTEC) IS WILLING TO LICENSE THE SOFTWARE TO YOU AS AN INDIVIDUAL, THE COMPANY, OR THE LEGAL ENTITY THAT WILL BE UTILIZING THE SOFTWARE (REFERENCED BELOW AS YOU OR YOUR) ONLY ON THE CONDITION THAT YOU ACCEPT ALL OF THE TERMS OF THIS LICENSE AGREEMENT. READ THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT CAREFULLY BEFORE USING THE SOFTWARE. THIS IS A LEGAL AND ENFORCEABLE CONTRACT BETWEEN YOU AND THE LICENSOR. BY OPENING THIS PACKAGE, BREAKING THE SEAL, CLICKING THE AGREE OR YES BUTTON OR OTHERWISE INDICATING ASSENT ELECTRONICALLY, OR LOADING THE SOFTWARE, YOU AGREE TO THE TERMS AND CONDITIONS OF THIS AGREEMENT. IF YOU DO NOT AGREE TO THESE TERMS AND CONDITIONS, CLICK THE I DO NOT AGREE OR NO BUTTON OR OTHERWISE INDICATE REFUSAL AND MAKE NO FURTHER USE OF THE SOFTWARE. 1. License: The software and documentation that accompanies this license (collectively the Software) is the proprietary property of Symantec or its licensors and is protected by copyright law. While Symantec continues to own the Software, You will have certain rights to use the Software after Your acceptance of this license. This license governs any releases, revisions, or enhancements to the Software that the Licensor may furnish to You. Except as may be modified by an applicable Symantec license certificate, license coupon, or license key (each a License Module) that accompanies, precedes, or follows this license, and as may be further defined in the user documentation accompanying the Software, Your rights and obligations with respect to the use of this Software are as follows. You may: A. use the number of copies of the Software as have been licensed to You by Symantec under a License Module. If the Software is part of a suite containing multiple Software titles, the total number of copies You may use, in any combination of Software titles, may not exceed the total number of copies indicated in the License Module. Your License Module shall constitute proof of Your right to make such copies. If no License Module accompanies, precedes, or follows this license, You may make one copy of the Software You are authorized to use on a single computer; B. make one copy of the Software for archival purposes, or copy the Software onto the hard disk of Your computer and retain the original for archival purposes; C. use the Software on a network, provided that You have a licensed copy of the Software for each computer that can access the Software over that network; D. use the Software in accordance with any written agreement between You and Symantec; and E. after written consent from Symantec, transfer the Software on a permanent basis to another person or entity, provided that You retain no copies of the Software and the transferee agrees in writing to the terms of this license. You may not: A. copy the printed documentation that accompanies the Software; B. sublicense, rent, or lease any portion of the Software; reverse engineer, decompile, disassemble, modify, translate, make any attempt to discover the source code of the Software, or create derivative works from the Software; C. use the Software as part of a facility management, timesharing, service provider, or service bureau arrangement; D. use a previous version or copy of the Software after You have received and installed a disk replacement set or an upgraded version. Upon upgrading the Software, all copies of the prior version must be destroyed; E. use a later version of the Software than is provided herewith unless You have purchased corresponding maintenance and/or upgrade insurance or have otherwise separately acquired the right to use such later version; F. use, if You received the software distributed on media containing multiple Symantec products, any Symantec software on the media for which You have not received permission in a License Module; nor G. use the Software in any manner not authorized by this license. 2. Content Updates: Certain Software utilize content that is updated from time to time (including but not limited to the following Software: antispam software utilize updated antispam rules; antivirus software utilize updated virus definitions; content filtering software utilize updated URL lists; some firewall software utilize updated firewall rules; policy compliance software utilize updated policy compliance updates; and vulnerability assessment products utilize updated vulnerability signatures; these updates are collectively referred to as Content Updates). You shall have the right to obtain Content Updates for any period for which You have purchased maintenance, except for those Content Updates that Symantec elects to make available by separate paid subscription, or for any period for which You have otherwise separately acquired the right to obtain Content Updates. Symantec reserves the right to designate specified Content Updates as requiring purchase of a separate subscription at any time and without notice to You; provided, however, that if You purchase maintenance hereunder that includes particular Content Updates on the date of purchase, You will not have to pay an additional fee to continue receiving such Content Updates through the term of such maintenance even if Symantec designates such Content Updates as requiring separate purchase. This License does not otherwise permit the licensee to obtain and use Content Updates. 3. Limited Warranty: Symantec warrants that the media on which the Software is distributed will be free from defects for a period of thirty (30) days from the date of delivery of the Software to You. Your sole remedy in the event of a breach of this warranty will be that Symantec will, at its option, replace any defective media returned to Symantec within the warranty period or refund the money You paid for the Software. Symantec does not warrant that the Software will meet Your requirements or that operation of the Software will be uninterrupted or that the Software will be error-free. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, THE ABOVE WARRANTY IS EXCLUSIVE AND IN LIEU OF ALL OTHER WARRANTIES, WHETHER EXPRESS OR IMPLIED, INCLUDING THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, AND NONINFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS. THIS WARRANTY GIVES YOU SPECIFIC LEGAL RIGHTS. YOU MAY HAVE OTHER RIGHTS, WHICH VARY FROM STATE TO STATE AND COUNTRY TO COUNTRY. 4. Disclaimer of Damages: SOME STATES AND COUNTRIES, INCLUDING MEMBER COUNTRIES OF THE EUROPEAN ECONOMIC AREA, DO NOT ALLOW THE LIMITATION OR EXCLUSION OF LIABILITY FOR INCIDENTAL OR CONSEQUENTIAL DAMAGES, SO THE BELOW LIMITATION OR EXCLUSION MAY NOT APPLY TO YOU. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW AND REGARDLESS OF WHETHER ANY REMEDY SET FORTH HEREIN FAILS OF ITS ESSENTIAL PURPOSE, IN NO EVENT WILL SYMANTEC BE LIABLE TO YOU FOR ANY SPECIAL, CONSEQUENTIAL, INDIRECT, OR SIMILAR DAMAGES, INCLUDING ANY LOST PROFITS OR LOST DATA ARISING OUT OF THE USE OR INABILITY TO USE THE SOFTWARE EVEN IF SYMANTEC HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. IN NO CASE SHALL SYMANTEC'S LIABILITY EXCEED THE PURCHASE PRICE FOR THE SOFTWARE. The disclaimers and limitations set forth above will apply regardless of whether or not You accept the Software. 5. U.S. Government Restricted Rights: RESTRICTED RIGHTS LEGEND. All Symantec products and documentation are commercial in nature. The software and software documentation are Commercial Items, as that term is defined in 48 C.F.R. section 2.101, consisting of Commercial Computer Software and Commercial Computer Software Documentation, as such terms are defined in 48 C.F.R. section 252.227-7014(a)(5) and 48 C.F.R. section 252.227-7014(a)(1), and used in 48 C.F.R. section 12.212 and 48 C.F.R. section 227.7202, as applicable. Consistent with 48 C.F.R. section 12.212, 48 C.F.R. section 252.227-7015, 48 C.F.R. section 227.7202 through 227.7202-4, 48 C.F.R. section 52.227-14, and other relevant sections of the Code of Federal Regulations, as applicable, Symantecs computer software and computer software documentation are licensed to United States Government end users with only those rights as granted to all other end users, according to the terms and conditions contained in this license agreement. Manufacturer is Symantec Corporation, 20330 Stevens Creek Blvd., Cupertino, CA 95014, United States of America. 6. Export Regulation: Certain Symantec products are subject to export controls by the U.S. Department of Commerce (DOC), under the Export Administration Regulations (EAR) (see www.bxa.doc.gov). Violation of U.S. law is strictly prohibited. Licensee agrees to comply with the requirements of the EAR and all applicable international, national, state, regional and local laws, and regulations, including any applicable import and use restrictions. Symantec products are currently prohibited for export or re-export to Cuba, North Korea, Iran, Iraq, Libya, Syria and Sudan or to any country subject to applicable trade sanctions. Licensee agrees not to export, or re-export, directly or indirectly, any product to any country outlined in the EAR, nor to any person or entity on the DOC Denied Persons, Entities and Unverified Lists, the U.S. Department of States Debarred List, or on the U.S. Department of Treasurys lists of Specially Designated Nationals, Specially Designated Narcotics Traffickers, or Specially Designated Terrorists. Furthermore, Licensee agrees not to export, or re-export, Symantec products to any military entity not approved under the EAR, or to any other entity for any military purpose, nor will it sell any Symantec product for use in connection with chemical, biological, or nuclear weapons or missiles capable of delivering such weapons. 7. General: If You are located in North America or Latin America, this Agreement will be governed by the laws of the State of California, United States of America. Otherwise, this Agreement will be governed by the laws of England and Wales. This Agreement and any related License Module is the entire agreement between You and Symantec relating to the Software and: (i) supersedes all prior or contemporaneous oral or written communications, proposals, and representations with respect to its subject matter; and (ii) prevails over any conflicting or additional terms of any quote, order, acknowledgment, or similar communications between the parties. This Agreement shall terminate upon Your breach of any term contained herein and You shall cease use of and destroy all copies of the Software. The disclaimers of warranties and damages and limitations on liability shall survive termination. Software and documentation is delivered Ex Works California, U.S.A. or Dublin, Ireland respectively (ICC INCOTERMS 2000). This Agreement may only be modified by a License Module that accompanies this license or by a written document that has been signed by both You and Symantec. Should You have any questions concerning this Agreement, or if You desire to contact Symantec for any reason, please write to: (i) Symantec Customer Service, 555 International Way, Springfield, OR 97477, U.S.A., (ii) Symantec Customer Service Center, PO BOX 5689, Dublin 15, Ireland, or (iii) Symantec Customer Service, 1 Julius Ave, North Ryde, NSW 2113, Australia. 8. Additional Uses and Restrictions: A. If the Software You have licensed is a specified Symantec AntiVirus for a corresponding third party product or platform, You may only use that specified Software with the corresponding product or platform. You may not allow any computer to access the Software other than a computer using the specified product or platform. In the event that You wish to use the Software with a certain product or platform for which there is no specified Software, You may use Symantec AntiVirus Scan Engine. B. If the Software you have licensed is Symantec AntiVirus utilizing Web Server optional licensing as set forth in the License Module, the following additional use(s) and restriction(s) apply: i) You may use the Software only with files that are received from third parties through a web server; ii) You may use the Software only with files received from less than 10,000 unique third parties per month; and iii) You may not charge or assess a fee for use of the Software for Your internal business. C. If the Software You have licensed is Symantec Client Security, this Software utilizes the Standard Template Library, a C++ library of container classes, algorithms, and iterators. Copyright (c) 1996-1999. Silicon Graphics Computer Systems, Inc. Copyright (c) 1994. Hewlett-Packard Company. ===================================================================================== ===================================================================================== END OF FILE =====================================================================================