Endpoint Protection Small Business Edition

  • Private Community
 View Only
Back to discussions
Expand all | Collapse all

Linux Antivirus Commands that I cannot find

  • 1.  Linux Antivirus Commands that I cannot find

    Posted Jun 06, 2013 09:51 PM

    Hey Guys,

     

    I've been looking on the manual about this things but still got no luck,  maybe someone here knows about this:

     

    1. What's the process ID of used by SAV? What I'm trying to accomplish is to find it on my Linux Machine to prove that it is running on the background

    2. How Can I see the list of the things I exclude? I already excluded files and folder but dont know how to view them when I need to later on.

     

    I'm using Red Hat Enterprise Linux 6.2

     

    Thanks,



  • 2.  RE: Linux Antivirus Commands that I cannot find

    Posted Jun 06, 2013 09:58 PM

    I would go through these great articles written by Mick2009. The first one discusses exceptions.

    SAV for Linux Scanning Best Practices: A (Somewhat) Illustrated Guide

    https://www-secure.symantec.com/connect/articles/sav-linux-scanning-best-practices-somewhat-illustrated-guide

    SAV for Linux: A (Somewhat) Illustrated Guide Part 2

    https://www-secure.symantec.com/connect/articles/sav-linux-somewhat-illustrated-guide-part-2

    SAV for Linux: A (Somewhat) Illustrated Guide Part 3

    https://www-secure.symantec.com/connect/articles/sav-linux-somewhat-illustrated-guide-part-3

    Symantec AntiVirus for Linux: How to Configure Scan Exclusions from the Command Line Interface

    http://www.symantec.com/docs/TECH95274



  • 3.  RE: Linux Antivirus Commands that I cannot find

    Posted Jun 06, 2013 10:00 PM

    Hello,

    You can Check Mick2009 artical

    SAV for Linux Scanning Best Practices: A (Somewhat) Illustrated Guide

    https://www-secure.symantec.com/connect/articles/s...

    SAV for Linux: A (Somewhat) Illustrated Guide Part 2

    https://www-secure.symantec.com/connect/articles/s...

    SAV for Linux: A (Somewhat) Illustrated Guide Part 3

    https://www-secure.symantec.com/connect/articles/s...

    Symantec AntiVirus for Linux: How to Configure Scan Exclusions from the Command Line Interface

     

    Article:TECH95274  |  Created: 2009-01-29  |  Updated: 2012-08-20  |  Article URL http://www.symantec.com/docs/TECH95274

     



  • 4.  RE: Linux Antivirus Commands that I cannot find

    Broadcom Employee


  • 5.  RE: Linux Antivirus Commands that I cannot find

    Posted Jun 06, 2013 10:23 PM

    I tried # /opt/Symantec/symantec_antivirus/sav info -a 

    it only shows enable and disable.



  • 6.  RE: Linux Antivirus Commands that I cannot find

    Posted Jun 06, 2013 10:45 PM

    Hey man,

     

    I already see this, actually this is one of the things I followed to make exclusions, but it didint include a how to on displaying the exclusion lists.



  • 7.  RE: Linux Antivirus Commands that I cannot find

    Broadcom Employee
    Posted Jun 07, 2013 12:06 AM

    doesnt that help to know AP is enabled and running?



  • 8.  RE: Linux Antivirus Commands that I cannot find

    Posted Jun 07, 2013 01:23 AM

    All the command is mentioned here, check the cmd line interface section 

    ftp://ftp.symantec.com/public/english_us_canada/products/symantec_antivirus/symantec_antivirus_corp/10.1/manuals/SAV_Linux_Impl.pdf



  • 9.  RE: Linux Antivirus Commands that I cannot find

    Broadcom Employee
    Posted Jun 12, 2013 06:36 AM

    Hi,

    I am not much aware about linux OS however would like to share these articles.

    How to add Folder Exclusion for autoprotect, manual and weekly scans in Symantec Antivirus for Linux
     
     
    How to configure scanning of compressed files in Symantec AntiVirus for Linux
     
     
    Symantec AntiVirus for Linux: How to Configure Scan Exclusions from the Command Line Interface
     

     



  • 10.  RE: Linux Antivirus Commands that I cannot find

    Posted Jun 17, 2013 10:46 PM

    Hi Chetan,

     

    Thanks for the help, but what I need is the command to show the exclusion list, I already configured the exclusion for autoprotect, manual and scheduled scan, but I cannot find a command to show the exclusions that I made.

     

    Thanks,.



  • 11.  RE: Linux Antivirus Commands that I cannot find



  • 12.  RE: Linux Antivirus Commands that I cannot find

    Posted Jun 18, 2013 01:25 AM

    Thanks,

     

    But I'm looking for the command for displaying the exclusion list.

     

     



  • 13.  RE: Linux Antivirus Commands that I cannot find
    Best Answer

    Posted Jun 26, 2013 07:30 AM

    Hi D@ry1,

    Try this, from the directory to which you have installed SAVFL (/opt/Symantec/symantec_antivirus is the default):

    sudo ./symcfg -r list -k 'Symantec Endpoint Protection\AV\Storages\FileSystem\RealTimeScan'
     

    That should display a list of the exclusins/exceptions configured for AutoProtect.

    There are different exclusions for scheduled scans and manual scans.... change your path to include

    • LocalScans\ManualScan for exclusions that are applied to all manual scans
    • Custom Tasks\ (e.g. Custom Tasks\myschedscan) for exclusions that are applied to a specific scheduled scan (NOTE there is a space in "Custom Tasks")
       

    Please let me know how you get on/if that is what you were looking for!

    With thanks and best regards,

    Mick
     



  • 14.  RE: Linux Antivirus Commands that I cannot find

    Posted Jun 27, 2013 11:06 PM

    Finally someone who really understand what I need.

     

    Thanks man,



  • 15.  RE: Linux Antivirus Commands that I cannot find

    Posted Jun 28, 2013 10:30 AM

    Glad to assist!  &: )

    There are several threats emerging that replace apache files on Linux webservers, turning a legit website into something that serves up malicious stuff.  Please be sure that your Linux boxes are patched, protected with SAVFL, are updating via LiveUpdate, and have a good admin keeping an eye on the logs for anything suspicious. 

    All the best,

    Mick