Re: What is Dazuko?
- From: Enigma <unicorn-fly@xxxxxxxxxxx>
- Date: Fri, 30 Dec 2005 12:56:37 +0100
Christian,
>> Dazuko can run several daemons in one real time scan. Its possible to scan every Linux file, which already runs or will start
> to running, in real time
>
> I'm not sure if I got this right: Are files only scanned when you start
> to execute them or also when you read/write them? ("On access scan")
Both, but only with AntiVir virus scanner and you have to run AVGuard.
You can check when you execute or read/write a file, if its working,
with one of the monitors from SUSE (for example KSys Guard). AVguard is
a module from AntiVir for real time scanning.
Antivir is not an easy scanner to install but one of the best virus
scanner. Norman is also a very good scanner. If you want to learn more
about virus scanners for Linux, LINUX magazine has in its January
edition a test about virus scanners and a article about KlamAV.
(www.linux-magazine.com)
>> It make sens to scan on window viruses
>
> I didn't say, it does not make sense to scan for Windows virusses, but
> it does not make sense to scan a Linux machine for Windows virusses. The
> connection between Linux and Windows comes with Samba or an email
> server, but I thought Samba didn't need dazuko but rather samba-vscan
> and emails are scanned by AMaViS, no need for dazuko either.
I'm not using samba or a e-mail server. My provider checks on viruses
but that is not enough. Btw Samba is not the only software to run a
server with, there is plenty of other server software.
>> I'm still running Windows XP SP2 and scan it via Linux.
>
> How do you scan a Windows machine from a Linux machine? Do you access a
> share on the windows machine and do an on demand scan?
With Linux you can mount Window partitions and scan them for viruses. I
scan Windows, when its not running, to get access to the protected
files. I've found several viruses in the protected Windows area which
were not noticed by a virus scanner when Windows was running. If you
want to scan Windows on demand you have to use a server for in coming
and out going traffic in a network, but thats not what I do.
If you run Knoppix 4.0 on a machine, mount every partition on that
machine, run a virus scanner (which you don't have to install, for
example Vexira. don't forget to download the latest virus update) so you
can scan any kind of OS on viruses even the protected files.
>> samba-vscan is a universal manager for several virus scanners. So the question "What do I have to manage there" is out of the question!
I don't now yet because I haven't examen it. I'll let you now when I
tried it on several virus scanners.
> I still don't get it. If samba-vscan is an universal manager and dazuku
> is a manager which I need in addition, why do I need a 3rd manager
> KlamAV ...
Dazuko is not a manager but a tool to make it posible for AntiVir,
ClamAV, etc. to scan on real time, Dazuko has to run in a protected
area. Your kernel is the best protected area's on Linux. So if theres a
virus attack its not easy to knock a Linux machine down, even its virus
protection.
KlamAV is the KDE manager shell for ClamAV. KlamAv makes it possible to
manage ClamAV on X-Window level. Normally ClamAV only runs in terminal
or in text mode. Clamd is the real time scanner module for ClamAV
AntiVir, for me, has not a X-Window manager yet, it only runs in
terminal or in text mode and there fore theres samba-vscan I think.
Enigma
.
- References:
- KlamAV, How does Dazuko run automatically
- From: Enigma
- Re: What is Dazuko? (was:KlamAV, How does Dazuko run automatically)
- From: Christian Barmala
- Re: What is Dazuko?
- From: Enigma
- Re: What is Dazuko?
- From: Christian Barmala
- KlamAV, How does Dazuko run automatically
- Prev by Date: Re: Where are the SuSE 9.2 Professional CD ISOs?
- Next by Date: Re: Where are the SuSE 9.2 Professional CD ISOs?
- Previous by thread: Re: What is Dazuko?
- Next by thread: Buggy Evolution (Exchange)
- Index(es):
Relevant Pages
|
