On-access AV scanning

Daniel Bye freebsd-questions at slightlystrange.org
Fri Jul 27 10:43:18 UTC 2012 

Are there any current options available to support on-access antivirus
scanning on FreeBSD?

security/dazuko doesn't build on FreeBSD more recent than 8[0], so that's a
non-starter, and it looks as if the FreeBSD zfs implementation lacks support
for the vscan property[1], so using vscan with c-icap[2] is apparently not
an option, either. I am in no way clever enough to even consider attempting
to add vscan support.

I met the new CIO of my company yesterday, and out of that conversation, I
am putting together a case for getting a FreeBSD or Solaris workstation to
replace the aged Windows XP machine I've been on for the last three years. 
My first choice would be FreeBSD, but I need to convince him that AV
provisions are adequate to meet corporate IT policy guidelines.  With the
hardware specifications we are looking at, it would be possible to configure
a full, on-demand scan every few hours, but on-access capability would be
nice.

And yes, I know that neither FreeBSD nor Solaris are renowned for their
sickly vulnerability to viruses, but we operate in a mixed environment, with
a lot of Windows machines and ZFS file systems exported by SMB/CIFS, so we
need the AV to ensure any viruses are stopped before they infect a
susceptible machine.  It seems a small price to pay to finally get a decent
workstation!

Thanks for any hints,

Dan

[0]: security/dazuko/Makefile:22
[1]: cddl/contrib/opensolaris/lib/libzfs/common/libzfs_dataset.c:1456-1461
     (FreeBSD 9.1-PRERELEASE from two days ago)
[2]: https://www.sunwfrk.com/2009/04/19/zfs-with-on-access-virus-scan/


-- 
Daniel Bye
                                                                     _
                                              ASCII ribbon campaign ( )
                                         - against HTML, vCards and  X
                                - proprietary attachments in e-mail / \
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 196 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20120727/2d41945c/attachment.pgp

More information about the freebsd-questions mailing list