Hello, currently I am trying to install Sophos Anti Virus and found out that these binaries require FreeBSD 3.x compatibility. Now the misc/compat3x port ist marked FORBIDDEN because of two security vulnerabilities (FreeBSD-SA-03:08.realpath and FreeBSD-SA-03:05.xdr). Any idea how to proceed ? Contacting Sophos ? Waiting for a fixed compat3x ? Using a different virus scanner software ? Thanks in advance...Andy
On Sat, Apr 24, 2004 at 03:29:26PM +0200, Andy Wolf wrote:> Hello, > > currently I am trying to install Sophos Anti Virus and found out that > these binaries require FreeBSD 3.x compatibility. Now the misc/compat3x > port ist marked FORBIDDEN because of two security vulnerabilities > (FreeBSD-SA-03:08.realpath and FreeBSD-SA-03:05.xdr). > > Any idea how to proceed ? Contacting Sophos ?That would be a good idea. Try explaining the problem to them and asking them to produce a 4.x binary.> Waiting for a fixed compat3x ?I wouldn't hold my breath on that. It's been over 4 months and no-one in the community has expressed interest in fixing the security vulnerabilities in question in the 3.x branch. Kris -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20040424/1f09e1c2/attachment.bin
Andy, I currently use Sophos on FreeBSD 5.1-RELEASE without any 3.x compatibility. I have been using it in this configuration for 5 months. I use MailScanner as the frontend that invokes sweep (Sophos) and also SpamAssassin. This setup has been fantastic for our company. I installed the httpupd script to update the IDE files (it runs from cron every 30 minutes). We average about 25 viruses per day in the inbound email. To protect the desktop I installed the Sophos desktop scanners on 12 Windows 2000 desktop. The updates to these are managed by Sophos Enterprise Manager on our NT 4.0 Exchange server, with the CID (central installation directory) located on the FreeBSD system. For our laptop users I install Sophos RemoteUpdate which pulls the updates from the Apahce webserver on the FreeBSD system (both in the office and on the road). Just before I emailed you I downloaded the latest version of sweep (Sophos) on a FreeBSD 5.2.1-RELEASE system again without any 3.x stuff and scanned the /usr/local directory...success... Note: their product called MailMonitor which does not run on FreeBSD (works on Linux) and this is why the you have to use MailMonitor or AMaViS. If you want to discuss our experience with Sophos please email me: Jim Sills <jsills@g3llc.com> Below is the output of sweep -v %sweep -v SWEEP virus detection utility Copyright (c) 1989,2004 Sophos Plc, www.sophos.com System time 12:11:21, System date 24 April 2004 Product version : 3.81 Engine version : 2.19 User interface version : 2.07.060 Platform : FreeBSD/Intel Released : 03 May 2004 Total viruses (with IDEs) : 89756 -- On Sat, 24 Apr 2004, Andy Wolf wrote:> Hello, > > currently I am trying to install Sophos Anti Virus and found out that > these binaries require FreeBSD 3.x compatibility. Now the misc/compat3x > port ist marked FORBIDDEN because of two security vulnerabilities > (FreeBSD-SA-03:08.realpath and FreeBSD-SA-03:05.xdr). > > Any idea how to proceed ? Contacting Sophos ? Waiting for a fixed > compat3x ? Using a different virus scanner software ? > > Thanks in advance...Andy > > _______________________________________________ > freebsd-stable@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-stable > To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org" > >
On Sat, 24 Apr 2004, Jim Sills wrote: [snip] JS> Below is the output of sweep -v JS> JS> %sweep -v JS> SWEEP virus detection utility JS> Copyright (c) 1989,2004 Sophos Plc, www.sophos.com JS> JS> System time 12:11:21, System date 24 April 2004 JS> JS> Product version : 3.81 JS> Engine version : 2.19 JS> User interface version : 2.07.060 JS> Platform : FreeBSD/Intel JS> Released : 03 May 2004 Hmm? Really? ;-) JS> Total viruses (with IDEs) : 89756 Sincerely, D.Marck [DM5020, MCK-RIPE, DM3-RIPN] ------------------------------------------------------------------------ *** Dmitry Morozovsky --- D.Marck --- Wild Woozle --- marck@rinet.ru *** ------------------------------------------------------------------------
Hello, finally I found out that simply creating a symlink libc.so.3 -> libc.so.5 is sufficient ;-) BTW: For others that might find this thread late on. I found the ports for Sophos SAV and for Sophie at http://www.roughtrade.net/bsd/ quite useful. They maybe save you some time and a package registration always is nice to have ;-) Thanks for all the hints...Andy
On Sat, Apr 24, 2004 at 08:22:50PM +0200, Andy Wolf wrote:> Hello, > > finally I found out that simply creating a symlink libc.so.3 -> > libc.so.5 is sufficient ;-)Dangerous! Your application will now behave unpredictably. Kris -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 187 bytes Desc: not available Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20040424/6e95feb8/attachment.bin