avast4guard and dazukofs

Avast Business Avast Business for Linux
1

Does avast4guard work with dazukofs? I installed dazukofs and avast4guard seems to be installed succesfully, but when I want to start avast4guard it says it can’t find dazuko and won’t start. I’m using xubuntu 10.04 x86.
The dazuko (not dazukofs) module is old and not supported on the current linux kernels so installing this is no option…

2

How can I install a dazuko version that is supported by avast4guard on a linux 2.6.32 kernel?

3

Hallo, the problem isn’t in avast, but in dazuko, which is not maintained anymore, and you must use some mediate layer to get it work on latest kernels.

Small how-to is here:

notes and hints for quick installation:

  1. install the AV engine and database (libavastengine* package):
    rpm -i libavastengine-4.7.6-1.i586.rpm
    (might need to add perl-URI or perl-libwww-perl to satisfy all dependences, or use --nodeps, they serve for online updating only)

  2. install the scanning daemon (avast4server* package):
    rpm -i avast4server-3.2.0_rc-1.i586.rpm
    (look at /etc/avastd.conf, our default settings will need ~512MB machine, otherwise lower the daemoncounts or disable the “local” section)
    (make sure that licensefile= points to your License.dat file, at least for the “guard” section)
    (you can test whether it works using: avastlite -a /var/run/avastguard/guardscanner.sock <some_path>)

  3. install the on-access avastguard client (avast4guard* package):
    rpm -i avast4guard-3.2.0_rc-1.i586.rpm
    (INCLUDEPATH in the avastguard.conf determines the guarded sub-tree in your filesystem)
    (on 2.6 kernels, for LSM/RedirFS, the ON_CLOSE Dazuko option isn’t available, thus, keep it set to “no” in the avastguard.conf)

Both avastd from 2) and avastguard from 3) are daemons, and you can start/stop them via /etc/init.d/avastd or /etc/init.d/avastguard scripts.

notes for compiling redirfs and dazuko (for SuSE11):

  • unpack the redirfs tarball, and do as root:
    cd redirfs-0.8
    make -C /lib/modules/uname -r/build M=pwd modules
    make -C /lib/modules/uname -r/build M=pwd modules_install

  • unpack the dazuko tarball, and do as root:
    cd dazuko-2.3.7
    cp <absolute_path_to_the_redirfs-0.8_directory>/Module.symvers .
    ./configure --redirfsdir=<absolute_path_to_the_redirfs-0.8_directory>
    make install

  • the modules can be loaded as:
    modprobe --allow-unsupported redirfs
    modprobe --allow-unsupported dazuko

regards,
pc