![]() ![]() Bugs or design issues in the third-party software can do various unpredictable things to the system. When scanners are implemented as kernel modules, they have total control over the system. File scanners can and do cause severe performance, stability, and security issues Examples include: the rpm -Va command, auditctl, SELinux. Is virus/malware protection software needed on a SUSE Linux Enterprise Server? TID 19608Ĭertain functionality often promised by endpoint protection vendors is already implemented in SLES. More information on how to harden a system can be found here: There should always be a sound and justified reason for using the file scanner, it should be limited to this use only. scanning file systems that are exported to Windows hosts via Samba or NFS on a file server.scanning incoming mail for malicious attachments on a mail server.scanning untrusted upload data on a web server. ![]() Based on the function of the Linux machine certain limited use cases are known, for example: When applying 3rd party file scanner solutions, several general considerations should be made: Is the file scanner needed for a particular use case?įile scanners are unnecessary on SUSE Linux under ordinary circumstances and do not provide additional security for the SUSE Linux System as an endpoint.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |