KAPERSKY ANTI-VIRUS 5.0 - FOR NOVELL NETWARE, User Manual

Page 1: ...KASPERSKY LABS Kaspersky Anti Virus 5 0 for Novell NetWare USER GUIDE...

Page 2: ...K A S P E R S K Y A N T I V I R U S 5 0 F O R N O V E L L N E T W A R E User Guide Kaspersky Labs Ltd Visit our website http www kaspersky com Edition date October 2003...

Page 3: ...tion Scheme of the Program 11 2 3 Maintaining the Antiviral Protection System 12 CHAPTER 3 INSTALLING THE PROGRAM 14 3 1 Installation from the distribution package 14 3 2 Installation in the network 1...

Page 4: ...7 2 Viewing the server scanning results 58 7 3 Summarized results of the task execution 62 7 4 Notification regarding detected viruses 64 CHAPTER 8 LICENSE MANAGEMENT 66 8 1 Licensing policy 66 8 2 I...

Page 5: ...Infected Files 102 B 2 3 2 Messages Regarding Suspicious Files 103 B 2 3 3 Warnings 104 B 2 3 4 Messages Regarding Packed Executable Files 104 B 2 3 5 Messages Regarding Archive Files 104 B 2 3 6 Mes...

Page 6: ...rver the program will back up all the files being modified thus making it possible to revert to the lat est update if necessary Quarantine moves any detected infected or suspicious files to a special...

Page 7: ...lication and of the whole file server is not affected in the event of any contingency during file scanning The application performance the number of simultaneously scanned connec tions can be increase...

Page 8: ...igher About 12 Mb of available free RAM About 8 Mb of free hard disk space on the server s volumes 1 4 Distribution kit You can purchase Kaspersky Anti Virus 5 0 for Novell NetWare either from our dis...

Page 9: ...e terms of the LA 1 4 2 Registration card To register please fill in the tear off section of your registration card with your full name phone and e mail address if you have one and return this card to...

Page 10: ...is book we use various conventions to emphasize different meaningful parts of the documentation The table below lists the conventions used in this Guide Convention Meaning Bold font Menu titles comman...

Page 11: ...us functionality of the application will be limited to the real time server protection mode with default settings Scanning will be launched automatically when starting the server and will be stopped w...

Page 12: ...section 6 4 on page 51 If the scheduled start mode or start on event mode is selected the task is launched automatically Access to the application administrative functions and creation and running of...

Page 13: ...rvers will receive the updates from the network folder lo cated on the main server A server can receive updates only from the server located in the same NDS tree Therefore it is necessary to create at...

Page 14: ...ctions Most of the set tings required for installation will be made by default or will be based on the choice you make Please read carefully the text in each window of the wizard Make any desired chan...

Page 15: ...ky Anti Virus you will be asked to specify servers for the installation Figure 2 Select the required servers from the list of those currently connected Figure 2 Selecting servers for the installation...

Page 16: ...ne on the computer from which the application control utility will be started By default this field contains the server s directory SYS Public mgmt ConsoleOne 1 2 of the workstation s directory C Nove...

Page 17: ...the NDS 7 After the wizard successfully completes its work in the final window see Figure 5 you will be offered the opportunity to modify the AUTOEXEC NCF file so as to start the server side applicati...

Page 18: ...us 5 0 for Novell NetWare on a group of servers Select a node in the console tree that contains the required servers and select the Install Kaspersky Anti Virus option from the shortcut menu If this o...

Page 19: ...shortcut menu During installation the program will ask you to specify the directory in which to install the server side application and specify the path to the key file see Figure 7 These operations...

Page 20: ...e console tree You will be asked to confirm that you really want to uninstall the application see Figure 9 After the last installed server part is removed the NDS structure will be cleared the Kaspers...

Page 21: ...Kaspersky Anti Virus for Novell NetWare you must first uninstall the existing version and install a new one according to the instructions contained in this document Kaspersky Anti Virus 5 0 for Novell...

Page 22: ...to some of the most frequently used main menu items The review panel displays in a console tree form the name spaces installed in Novell ConsolOne The result panel dis plays the list of elements of t...

Page 23: ...ning on the server When the module is started this icon becomes green Each object category in the Kaspersky Anti Virus 5 0 name space has its own context menu In addition to Novell ConsoleOne standard...

Page 24: ...On Demand Scan The Real Time Protection task starts automatically together with the server part of the program For a more detailed check of the server the administrator can run the On demand Scan task...

Page 25: ...soleOne is installed The user can start stop the modules using the context menu in the left panel of Novell ConsoleOne window In order to start the Kaspersky Anti Virus module on the server select the...

Page 26: ...ing and scan on demand tasks are launched if they have the respective setting activated in their startup options After the Kaspersky Anti Virus module is started on the server separate screens display...

Page 27: ...Anti Virus command In addition you can start stop the Kaspersky Anti Virus module on the Gen eral tab in the application parameters setup window using the Load Kaspersky Anti Virus Unload Kaspersky A...

Page 28: ...ell NetWare begins working with the minimal number of settings most of which are set by default We recommend that after starting the application you familiarize yourself with its options and if necess...

Page 29: ...by the application for more details please refer to section A 2 on page 72 The directory in which the current and the previous versions of the anti virus database are stored Quarantine directories for...

Page 30: ...wed by their type The user can choose to view either the server scanning tasks startup schedule both scan by demand and real time protection or the update tasks The user can change any of the elements...

Page 31: ...are distributed to the servers included in the mailing list and saved in the directories for storing the used anti virus database Backup copies of all the updated objects are created If necessary the...

Page 32: ...be unique within this server Task Type the type of the task The set value is Anti virus Database Updating and it is detected automatically depending on your selection Template the template for creatin...

Page 33: ...updating tasks as the tasks view mode 4 Click on the Create button located in the group of buttons on the right 5 Make the desired settings as described above in the dialog win dow Create the task se...

Page 34: ...erver name Task name with six tabs see Figure 15 Please familiarize yourself with the information provided on the tabs and change or add to it if nec essary Figure 15 Setting up the task Anti Virus Da...

Page 35: ...virus da tabase created prior to downloading the new update By default updating via the Internet is set The list of update sources con tains the addresses recommended by Kaspersky Lab as sources for...

Page 36: ...erver in the Kaspersky Anti Virus 5 0 name space in the console tree Call the context menu and select the Properties item 2 In the next window Kaspersky Anti Virus on Server name se lect the Tasks tab...

Page 37: ...Server name select the Schedule tab 7 Select The anti virus database updating tasks schedule as the tasks view mode Click on the Add button at the right side of the schedule 8 In the Create the new sc...

Page 38: ...tch setting of update tasks do the following 1 In the Kaspersky Anti Virus 5 0 name space in the console tree select the server whose tasks you wish to set up Call the context menu and select the Prop...

Page 39: ...is from the list of tasks you have in cluded in the batch Click OK Figure 20 The Select task template window 6 This will open the Edit window see Figure 21 the tabs of which contain the settings of th...

Page 40: ...l be shared by these tasks You can change the tasks schedule on the Schedule tab individually for each task Figure 21 The Edit window Batch task setup 5 4 Starting stopping a task Tasks can be started...

Page 41: ...on is complete To stop a task manually do the following 1 In the Kaspersky Anti Virus 5 0 name space in the console tree select the server you wish to stop scanning 2 Expand the task types list and se...

Page 42: ...name To delete an update task from the application setup window do the following 1 Select the required server in the Kaspersky Anti Virus 5 0 name space in the console tree Call the context menu and...

Page 43: ...k During scanning on demand the program scans the directory tree of the selected volumes on the server and virus checks the files specified in the settings This type of task is intended for scheduled...

Page 44: ...n It is detected automatically based on your selection Template the template for task creation You can create tasks by example by selecting a previously created task from the list as a template In thi...

Page 45: ...e specified in the Task name field After the application setup window is closed with the OK button the newly created task will appear in the re spective task type list in the console tree Now you need...

Page 46: ...canning and activate additional scanning modes namely scan by wildcard archive scanning packed executables scanning and use of heuristic code analyzer This can be done on the Scan options tab see Figu...

Page 47: ...scanning re sults log This can be done on the Statistics tab for more details please refer to section B 2 7 on page 112 To make your settings come into force you need to apply them using the Apply bu...

Page 48: ...w Kaspersky Anti Virus on Server name select the Schedule tab 7 Select the mode for reviewing the Real Time Protection and On demand Scan tasks The on demand scan and the real time protection and task...

Page 49: ...Call the context menu and select the Properties item 2 In the next window Kaspersky Anti Virus on Server name se lect the Tasks tab see Figure 16 3 Select the mode for reviewing the Real Time Protect...

Page 50: ...in the previous window To apply these settings to the whole batch of tasks check the Save checkbox in the lower part of the window on each of the tabs After this the fields on the tabs become availab...

Page 51: ...an 2 Expand the task types list and select On Demand Scan Real Time Protection 3 Expand the list of the created tasks of the type you need and select the task to start 4 Call the context menu and sele...

Page 52: ...te all the tasks of the same type do the following 1 In the Kaspersky Anti Virus 5 0 name space in the console tree select the server you wish to delete the tasks for 2 Expand the list of task types a...

Page 53: ...sh to delete Click Delete in the group of buttons on the left Click OK in the next window to confirm deletion As a result the task is removed from the list After the window is closed with the OK butto...

Page 54: ...or merging the log data become unavailable To view any journals use the Microsoft Internet Explorer 6 0 Viewing the xml format log is only possible if Microsoft Internet Explorer 6 0 is installed on...

Page 55: ...sults log file can also be viewed from the Anti virus database updating Server name Task name task win dow see section B 1 6 on page 92 and section B 1 3 on page 86 or the Kaspersky Anti Virus on Serv...

Page 56: ...he information about the anti virus database updating results is displayed The information is output at 100 lines per page and the lines are numbered The Total Records field displays the total number...

Page 57: ...t errors in the event that the update fails You can check all the boxes using the Select all button or uncheck all the boxes using the Clear button 2 In order to refresh the information in the table c...

Page 58: ...the one for which you want to view parameters 3 Open the context menu and select the View the event log item As a result the Microsoft Internet Explorer starts The journal with the task results which...

Page 59: ...forma tion regarding the infected files detected is displayed The left pane of the log contains a list of all the task launch sessions in the form of hyperlinks see Figure 29 The information on the ta...

Page 60: ...event Object the event registered Result the result of the event Virus name the name of the detected virus or the archive name User name the name of the user who was accessing the infected ob ject The...

Page 61: ...ages regarding infected files Suspicious files messages regarding suspicious files Alerts alerts regarding detection of a modified or a damaged virus in a file Packed files information regarding packe...

Page 62: ...e 32 The server scanning statistics window 7 3 Summarized results of the task execution With the XML logs you can create and view composite logs with information about the results of several tasks Dif...

Page 63: ...vent log button will display the log of this task 5 In the View event log window see Figure 33 and Figure 34 that will open set up the parameters of the composite log Specify the amount of information...

Page 64: ...x plorer The left pane of the log contains the task type and the list of se lected tasks launch sessions see Figure 29 This information includes the time the date and the name of the task Except for t...

Page 65: ...e network or by e mail The user notification procedure information sending method and the text of the messages to be sent are set during adjustment of the real time server protection and on demand sca...

Page 66: ...t produced by Kaspersky Lab The application may have only one valid license key It con tains the limitations set for the operation of Kaspersky Anti Virus These limita tions can be checked by special...

Page 67: ...n the console tree open the context menu and select the Properties item The license agreement expiry date is shown in the License expiry date field on the General tab of the Kaspersky Anti Virus on Se...

Page 68: ...Virus 5 0 for Novell NetWare in good time Renewing the license agreement means purchasing and installing a new license key In order to purchase a new key please contact the company you purchased the...

Page 69: ...license keys in stalled on this server The following information is displayed for each key File name name of the key file Serial number Number of servers the number of Novell servers in the LAN on whi...

Page 70: ...cting the key file After this the license agreement term will be extended for the period set for the newly installed license key If the new license key is installed before the current one expires the...

Page 71: ...per part of the General tab contains the name of the program its version number and the following information Server name the name of the server on which the Kaspersky Anti Virus module is installed S...

Page 72: ...group con tains the address of the directory where the current version of the anti virus da tabase used for the scanning is stored The Backup copy field contains the di rectory where the previous vers...

Page 73: ...the server should be entered The Port field shows the decimal number of communication port used for connection with the Kaspersky Anti Virus module The default value is 8195 The Port for the updating...

Page 74: ...rsky Anti Virus module is started on the server This value defines the number of files that can be scanned for viruses simultaneously Two copies of the antiviral engine are started by default The opti...

Page 75: ...work with the schedule They include the following buttons Add add a task to the schedule Edit change the task start up parameters Delete delete the task from the schedule The tasks in the schedule ar...

Page 76: ...ask is selected using the mouse in the left pane of the window Figure 43 Setting up the monthly running of the task 4 In the Task launch group select one of the following start modes from the drop dow...

Page 77: ...rs Make the desired changes and click OK Figure 44 Changing the task start parameters A 5 The Tasks Tab The Tasks tab see Figure 45 displays a full list of the tasks created for the server The tasks i...

Page 78: ...the following buttons Create Delete Edit change the task parameters View event log Figure 45 Setting up the application The Tasks tab A 6 The E mail Notification tab The E mail notification tab see F...

Page 79: ...ngs 79 In the From field enter the notification message sender data It is advised that you use an electronic address registered within this mail server Figure 46 Setting up the application The E mail...

Page 80: ...hts to access file systems of the servers included in the mailing list Figure 47 Setting up the anti virus database update task The To tab In the upper part of the Recipients tab there is a group titl...

Page 81: ...te task has the rights to access this server s file system yes no Status the server s current status on off To the right of the table there are action buttons used to create the list of servers and gr...

Page 82: ...ss the file systems of the up dated server select the desired server in the table and click on the Add rights button To remove a server from the list of servers to which the Anti virus da tabase updat...

Page 83: ...abase update task The Settings tab Updating via the Internet By default the list contains the addresses recommended by Kaspersky Lab for downloading anti virus database updates The list can modified u...

Page 84: ...ork folders from which to download the updates update sources The primary update folder is the one placed first in the list Other folders will be tried one after another in the event the primary updat...

Page 85: ...dress is edited in the same way it is added Up move the selected address in the table one line up Down move the selected address in the table one line down Figure 52 Dialog window for the server selec...

Page 86: ...mode is Scan by the list file In order to enable backup of the previous version of the anti virus data base update check the Backup of the anti virus database box In this case all the information from...

Page 87: ...d information about updating results The structure of the latter can be adjusted by the user By default it contains the information regarding the update source and the results of downloading the updat...

Page 88: ...will be added to the end of the existing file You can review the changes you have made to the log settings To do so open it using the View event log button B 1 4 The Proxy Tab The Proxy tab see Figur...

Page 89: ...te source in the event of disconnection In the left part of the tab there is a table containing all the scheduled runs of the task It consists of two columns and includes the following information Sta...

Page 90: ...lect one of the following start modes from the drop down list Daily Weekly Monthly The default value is Daily start time is 0 00 3 Set the schedule parameters in the group of fields corresponding to t...

Page 91: ...the week on which you wish the task to be started see Figure 58 You can check more than one box if necessary After that you must specify the start up time in the Task start time field group see above...

Page 92: ...y the parameters of reconnection with the update source In the Attempts field enter the number of reconnection at tempts In the every field enter the time interval between the attempts to reconnect 5...

Page 93: ...on Figure 60 Setting up the anti virus database updating task The Statistics tab B 2 The Scan on Demand and Real Time Protection Tasks B 2 1 The Scanning options Tab On the Scanning options tab see Fi...

Page 94: ...indow and using the Add and Remove buttons create the desired list By default the list includes all the volumes of the server which means that the entire server will be scanned To define the location...

Page 95: ...ove the unnecessary files and add the desired ones You can specify file masks separating them by spaces e g exe com Any wildcards allowable in MS DOS file names can be used for example means that all...

Page 96: ...vector intercept etc such a file is considered suspicious and an appropriate message is displayed Of course like any heuristic algorithm Code Analyzer can give false responses However it has been test...

Page 97: ...module extracting engine is used for searching and removing viruses from packed executable files Packed executables contain a special unpacking program When such a file is launched the main program is...

Page 98: ...encrypted with CryptCOM then packed with PKLITE and finally archived using PKZIP B 2 2 The Actions Tab On the Actions tab see Figure 63 the user can specify the actions to be taken by the program to...

Page 99: ...log Delete delete the file Rename save the file under another name To specify the actions to be taken to suspicious files do the following 1 In the How to treat suspicious files field select one of t...

Page 100: ...s after rebooting or reloading Kaspersky Anti Virus on the server B 2 3 The Event log Tab The Event log tab see Figure 64 is used for setting up the parameters for log ging the update task execution r...

Page 101: ...iles Warnings files alerts regarding detection of a modified or a damaged virus in a file Compressed executables information information regard ing packed executable files Archived files information i...

Page 102: ...ng can take the following values disinfected the virus is removed deleted the file is deleted removed the file is quarantined renamed the file extension is changed to vir or vi1 vi2 etc if a file with...

Page 103: ...ppears to be a Trojan horse Trivial the file appears to be infected with an unidentified virus capable of replacing executable files in the current directory the size of this virus is usually less tha...

Page 104: ...rchive Files When an archive is unpacked by the anti virus program a record will be added to the event log with information about the archiver used to create the file The for mat of the record is as f...

Page 105: ...essage received by the user when a virus is detected on the server In order to organize delivery of notifications to the Novell NetWare net work users do the following 1 Check the Send box 2 In the Re...

Page 106: ...m the list individually Figure 67 Selecting the users who will receive the virus notifications 3 In the Text field manually create the notification text You can use the following macros NAME OF USER U...

Page 107: ...that will receive the notifications regarding the viruses detected To do so Click on the Add button this will open the Select Recipients dialog window see Figure 69 Manually type in the desired addre...

Page 108: ...ter which the task must be terminated Figure 70 Setting up the real time protection task The Schedule tab In the right part of the tab there is a table containing all the scheduled runs of the task It...

Page 109: ...dule To add a task to the schedule do the following 1 Click on the Add button This will open the Create the new schedule for the task window see Figure 71 Figure 71 Setting the server scanning to star...

Page 110: ...the task start up time in the Task start time field see Figure 72 Enter the hour value in the first field and the minute value in the second field The field values are set using the scroll buttons on...

Page 111: ...roup see above 4 In the Task duration group specify the time after which the task must be terminated To do so select the desired option from the drop down list Not defined the task execution time is u...

Page 112: ...number of directories scanned Archived files the number of archive files scanned Compressed executables the number of packed files scanned Infected files the number of infected files detected Suspici...

Page 113: ...so start the task using the Start the task button The information updates in real time as the server is being checked You can view the log of the task execution results To do so click on the View even...

Page 114: ...eb server Upcoming add on features include Kaspersky Anti Hacker for general work place defense against any hacker attacks and Kaspersky Anti Spam for en terprise wide prevention of incoming spam mess...

Page 115: ...ccessing the network This allows you to preserve confidential data on your machine Thanks to the SmartStealth technique it becomes more difficult to detect your computer from outside At the same time...

Page 116: ...can choose the anti virus program best suited to the operating systems and applications you use Kaspersky Corporate Suite This package has been developed to provide full scale data protection for corp...

Page 117: ...raffic streams for objects identified as spam The soft ware is compatible with any mail system already used in the customer s com pany and can be installed both on an existing mail server or a dedicat...

Page 118: ...IGHT TO RETURN AND REFUND EXPIRES 30 DAYS AFTER PURCHASE FROM AN AUTHORISED KASPERSKY LAB DISTRIBUTOR OR RESELLER THE RIGHT TO RETURN AND REFUND EXTENDS ONLY TO THE ORIGINAL PURCHASER All references t...

Page 119: ...r programs will be provided by Kaspersky Labs on request on payment of its reasonable costs and expenses for procuring and supplying such information In the event Kaspersky Labs notifies you that it d...

Page 120: ...ains all of the Document s proprietary notices 2 Term This Agreement is effective for one 1 year unless and until earlier ter minated as set forth herein This Agreement will terminate automatically if...

Page 121: ...sclose provide or otherwise make available such confidential information in any form to any third party without the prior written consent of Kaspersky Labs You shall implement reasonable security meas...

Page 122: ...e hereby excluded including without limitation the implied conditions warranties or other terms as to satisfactory quality fitness for purpose or as to the use of reasonable skill and care 7 Limitatio...

Page 123: ...edes all and any prior under standings undertakings and promises between you and Kaspersky Labs whether oral or in writing which have been given or may be implied from any thing written or said in neg...