This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
CarlaBradley
Beginner
Beginner
‎2017-05-25 09:41 AM

ClamAV virus definitions to RSA servers

We are setting up a server (separate from our RSA servers) to download ClamAV virus definitions. I've searched the documentation and read how to manually apply updates and how to automatically download them if you have internet access through the "sudo /usr/bin/freshclam" command. If your server doesn't have internet access, how do you configure RSA to download the virus definitions from an internal server. I will have all the firewall rules in place. Just need the syntax for the RSA servers. 

Labels (1)
0 Likes
Reply
5 Replies
CarlaBradley
Beginner
Beginner
In response to EdwardDavis
‎2017-05-25 11:19 AM

That is the document on manually applying that I referenced. I read that document. What we are doing is having a separate server that the virus definitions will download to then RSA  servers will access that server for the definitions. I just need to know what files to edit on the RSA server and what to put so that it knows to get the virus definitions from that new server we are building.

0 Likes
Reply
EdwardDavis
Employee
Employee
In response to CarlaBradley
‎2017-05-25 12:09 PM

If you are not going to have the RSA server directly update itself over the network, you need to update it manually per the method in the KB. We have no QA'd procedure to manipulate ClamAV and have it 'phone somewhere else' for it's updates that has been tested, vetted, and known not to interfere with or break future patches. 

 

 

That being said, it seems like a minor adjustment to have ClamAV use a local mirror

 

ClamavNet 

Reply
CarlaBradley
Beginner
Beginner
In response to EdwardDavis
‎2017-05-25 12:40 PM

That's what we are setting up. But you're saying that would break future patches?

0 Likes
Reply
JamesMandelbaum
Employee
Employee
In response to CarlaBradley
‎2017-05-26 01:18 PM

Carla,

 

He is not saying it "will" break from future patches but instead that it "may" break since this is not a supported nor tested method.     When we create new updates we test for standard supported configurations and can not force what will happen to those who deviate from the norms.

 

Jim

Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.