From owner-freebsd-questions@FreeBSD.ORG Fri Jul 27 11:57:58 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 319521065673 for ; Fri, 27 Jul 2012 11:57:58 +0000 (UTC) (envelope-from ml@my.gd) Received: from mail-ee0-f54.google.com (mail-ee0-f54.google.com [74.125.83.54]) by mx1.freebsd.org (Postfix) with ESMTP id B10778FC1F for ; Fri, 27 Jul 2012 11:57:57 +0000 (UTC) Received: by eeke52 with SMTP id e52so693801eek.13 for ; Fri, 27 Jul 2012 04:57:57 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding :x-gm-message-state; bh=qcj2Tge6WFUJvruXKvhHve+kapJqO8nGEV1Cy7vgh/s=; b=BaLods+++XAu2PmJeWB64BrqB+mtDXvAZbesDtdeqIBsNIpX8Q5aidhTnO5TAnA4nv n+nGYdBASBJhe04++nyOxXsX9GQRY+YkqFhWTaHQLHuTKfard2c4pISNDdNnjB8adtrH jR60Ryx2+sl164YejliRdlbUbcVvE7jG3659aVcnlJ5j8jnnK6xHJKhN6Jq+42r5d24b 7G7LbIsEQNjAHy/uB0BEAZJwAXmfxq8PkPEAEXPrSrk/chBT5XzvF7LMTnCPTSuXztrE 1AatYPYfs/r1A/Uk1zs3rXIL8fSHAm/Nwv4B1+Th7dHpmJbrvkfLsTMJ+b1RmQbGohgL +rZA== Received: by 10.14.3.132 with SMTP id 4mr2384012eeh.9.1343389938296; Fri, 27 Jul 2012 04:52:18 -0700 (PDT) Received: from dfleuriot-at-hi-media.com ([83.167.62.196]) by mx.google.com with ESMTPS id 7sm5606098eeb.3.2012.07.27.04.52.17 (version=SSLv3 cipher=OTHER); Fri, 27 Jul 2012 04:52:17 -0700 (PDT) Message-ID: <501280F0.8000508@my.gd> Date: Fri, 27 Jul 2012 13:52:16 +0200 From: Damien Fleuriot User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:14.0) Gecko/20120713 Thunderbird/14.0 MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <20120727104308.GA4834@catflap.slightlystrange.org> <20120727110019.GB4834@catflap.slightlystrange.org> <20120727114729.GC4834@catflap.slightlystrange.org> In-Reply-To: <20120727114729.GC4834@catflap.slightlystrange.org> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Gm-Message-State: ALoCoQkbDhSNnpcu3t0IbxJzTXOFHTGEZMs2ArdIZPNiw4zycW6BnV1WHdzDlNBJUi1N8sBTz+0L Subject: Re: On-access AV scanning X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Jul 2012 11:57:58 -0000 On 7/27/12 1:47 PM, Daniel Bye wrote: > On Fri, Jul 27, 2012 at 07:19:45AM -0400, Daniel Feenberg wrote: >> >> >> On Fri, 27 Jul 2012, Daniel Bye wrote: >> >>> On Fri, Jul 27, 2012 at 12:51:04PM +0200, Wojciech Puchar wrote: >>>>> Are there any current options available to support on-access antivirus >>>>> scanning on FreeBSD? >>>>> >>>> FreeBSD doesn't need this as there are no viruses on that system. >>> >>> Well, thanks. >>> >>>> >>>>> And yes, I know that neither FreeBSD nor Solaris are renowned for their >>>>> sickly vulnerability to viruses, but we operate in a mixed environment, with >>>>> a lot of Windows machines and ZFS file systems exported by SMB/CIFS, so we >>>>> need the AV to ensure any viruses are stopped before they infect a >>>>> susceptible machine. It seems a small price to pay to finally get a decent >>>>> workstation! >>>> No idea - YOU will not spread wiruses, and viruses from other >>>> winstations will not affect you. >>>> >>>> so just install antivirus software on winstations. >>>> >>>> Or finally educate users as it is really simple to avoid viruses >>>> even with windows >>> >>> I refer you to the part where I specifically talk about our corporate IT >>> policy. All desktops/workstations (that is, all of them, every single one), >>> must have AV software running on them. There will be no exceptions, on pain >> >> Well, there is AV software for FreeBSD - we use Kaspersky on our >> FreeBSD based mailserver, but the viruses it looks for are Windows >> viruses. I don't know if that will satisfy your IT policy. Maybe you >> should be looking at Cygwin? Or, can FreeBSD run under HyperV? > > Thanks, Daniel. I have looked at Kaspersky, and various others, but the main > sticking point, as I see it, is that there is no on-access scanning > capability in any of the AV packages available for FreeBSD. It's not > essential to build my case, but it would certainly strengthen it. I use > ClamAV on my home mail server, and it works well. I have also tested it out > on a desktop machine to run on-demand scans, and it works just fine, and > doesn't impose so much of a load as to be a nuisance. > > We have had a couple of virus outbreaks recently, so this is quite a high > profile concern around here at the moment. The CIO is from a technical > background, so I might well be able to convince him of FreeBSD's strengths > as a very secure system, but I will still need to accede to the IT policy, > sadly - no way around it. > > Dan > FUSE ClamFS But then, FUSE... ew...