From owner-freebsd-questions@FreeBSD.ORG Fri Jul 27 10:43:18 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1FD4F1065672 for ; Fri, 27 Jul 2012 10:43:18 +0000 (UTC) (envelope-from dan@slightlystrange.org) Received: from lhscloud01.localhostservices.net (lhscloud01.localhostservices.net [83.222.226.222]) by mx1.freebsd.org (Postfix) with ESMTP id C79C68FC0C for ; Fri, 27 Jul 2012 10:43:17 +0000 (UTC) Received: from client-82-26-202-194.pete.adsl.virginmedia.com ([82.26.202.194] helo=catflap.slightlystrange.org) by lhscloud01.localhostservices.net with esmtps (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.80 (FreeBSD)) (envelope-from ) id 1Sui0k-000JDD-84 for freebsd-questions@freebsd.org; Fri, 27 Jul 2012 11:43:10 +0100 Received: from dan by catflap.slightlystrange.org with local (Exim 4.80 (FreeBSD)) (envelope-from ) id 1Sui0i-0000im-Fe for freebsd-questions@freebsd.org; Fri, 27 Jul 2012 11:43:08 +0100 Date: Fri, 27 Jul 2012 11:43:08 +0100 From: Daniel Bye To: FreeBSD Questions Message-ID: <20120727104308.GA4834@catflap.slightlystrange.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="pf9I7BMVVzbSWLtt" Content-Disposition: inline X-PGP-Fingerprint: D349 B109 0EB8 2554 4D75 B79A 8B17 F97C 1622 166A X-Operating-System: FreeBSD 9.1-PRERELEASE amd64 User-Agent: Mutt/1.5.21 (2010-09-15) Sender: Daniel Bye Subject: On-access AV scanning X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: Daniel Bye List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Jul 2012 10:43:18 -0000 --pf9I7BMVVzbSWLtt Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Are there any current options available to support on-access antivirus scanning on FreeBSD? security/dazuko doesn't build on FreeBSD more recent than 8[0], so that's a non-starter, and it looks as if the FreeBSD zfs implementation lacks support for the vscan property[1], so using vscan with c-icap[2] is apparently not an option, either. I am in no way clever enough to even consider attempting to add vscan support. I met the new CIO of my company yesterday, and out of that conversation, I am putting together a case for getting a FreeBSD or Solaris workstation to replace the aged Windows XP machine I've been on for the last three years.= =20 My first choice would be FreeBSD, but I need to convince him that AV provisions are adequate to meet corporate IT policy guidelines. With the hardware specifications we are looking at, it would be possible to configure a full, on-demand scan every few hours, but on-access capability would be nice. And yes, I know that neither FreeBSD nor Solaris are renowned for their sickly vulnerability to viruses, but we operate in a mixed environment, with a lot of Windows machines and ZFS file systems exported by SMB/CIFS, so we need the AV to ensure any viruses are stopped before they infect a susceptible machine. It seems a small price to pay to finally get a decent workstation! Thanks for any hints, Dan [0]: security/dazuko/Makefile:22 [1]: cddl/contrib/opensolaris/lib/libzfs/common/libzfs_dataset.c:1456-1461 (FreeBSD 9.1-PRERELEASE from two days ago) [2]: https://www.sunwfrk.com/2009/04/19/zfs-with-on-access-virus-scan/ --=20 Daniel Bye _ ASCII ribbon campaign ( ) - against HTML, vCards and X - proprietary attachments in e-mail / \ --pf9I7BMVVzbSWLtt Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (FreeBSD) iEYEARECAAYFAlAScLwACgkQixf5fBYiFmqOpgCaA/ExplCRhzVn6bjI+wpYiTSz yf4AnAuovSlIU/rZ6DTd1m0U74agGD6U =XV9k -----END PGP SIGNATURE----- --pf9I7BMVVzbSWLtt--