Avast Security for Linux - FAQs

What is Avast Security for Linux?

The Avast Security for Linux products are a set of components distributed in the form of standard software packages - DEB for Debian/Ubuntu systems and RPM for RedHat/SUSE systems. Software repositories are also provided so that all the standard system management tools can be used to keep the Avast programs up to date.

Packages

The Avast Linux components are distributed in the form of the following software packages:

  • avast
    The avast package provides the core scanner service (avast) and a command line scan utility (scan). It can be used for on demand scanning or mail server integration using AMaViS.

    The avast package is required by the avast-proxy and avast-fss packages.
  • avast-proxy
    The avast-proxy package provides a transparent network traffic filtering proxy designed for gateway/router usage. Using the avast-proxy, you can scan all computer network traffic from a single machine. avast-proxy supports the HTTP, IMAP and POP3 protocols as well as their secured variants (HTTPS, IMAPS, POP3S) using certificate resigning.

    Network traffic redirection is required for the proxy to work. This is done using iptables, the standard linux firewall (netfilter) interface. Refer to the avast-proxy manual page in technical documentation (Appendix D) for example iptable rules.
  • avast-fss
    The avast-fss package provides a fanotify-based "on write" filesystem shield designed for fileserver usage. The typical target fields for avast-fss are SMB/NFS file servers.
     

Business products

The Avast Linux components are available as the following business products:

How do I install Avast Security for Linux?

To install the Avast Linux server products:

  1. Add the Avast repository to the system repositories.
  2. Get the desired packages from the repository.

Debian/Ubuntu

  1. Add the Avast repository to the system repositories:
    # echo "deb http://deb.avast.com/lin/repo debian release" \
    >> /etc/apt/sources.list
    # apt-key add /path/to/avast.gpg
    # apt-get update
  2. Install the avast package and optionally the avast-fss (officially supported only on RHEL/CentOS) and avast-proxy packages:
    # apt-get install avast
    # apt-get install avast-fss
    # apt-get install avast-proxy

RHEL/CentOS

  1. Add the Avast repository to the system repositories:
    # echo '[avast]
    name=Avast
    baseurl=http://rpm.avast.com/lin/repo/dists/rhel/release
    enabled=1
    gpgcheck=1' > /etc/yum.repos.d/avast.repo
    # rpm --import /path/to/avast.gpg
  2. Install the avast package and optionally the avast-fss and avast-proxy packages:
    # yum install avast
    # yum install avast-fss
    # yum install avast-proxy

SLES

  1. Add the Avast repository to the system repositories:
    # zypper addrepo \
    http://rpm.avast.com/lin/repo/dists/suse/release Avast
    # rpm --import /path/to/avast.gpg
  2. Install the avast package and optionally the avast-fss (officially supported only on RHEL/CentOS) and avast-proxy packages:
    # zypper install avast
    # zypper install avast-fss
    # zypper install avast-proxy
  • The current virus definitions database (VPS) is downloaded during the installation of the Avast package, so the installation may take some time.
  • The Avast GPG public key referenced as avast.gpg can be found in technical documentation (Appendix E).

How can I start or stop the Avast Linux services?

All avast packages provide conventional init scripts for starting/stopping the services. For example, starting the core Avast service is done by running:

# /etc/init.d/avast start

...and stopping the core Avast service is done by running:

# /etc/init.d/avast stop

All Avast services use the system logger (syslog) for logging, so the log file location is dependent on the host system. The most common log file paths are /var/log/messages and /var/log/syslog.

How do I insert a license file to Avast Security for Linux?

Access to the program repositories is not restricted in any way. You can always obtain all the latest packages, but a license file is required to run the components. The license for the products comes in the form of a file named license.avastlic. After obtaining the license file, copy it into the /etc/avast directory:

# cp /path/to/license.avastlic /etc/avast

How can I keep Avast Security for Linux up to date?

Regularly updating the virus definitions database (VPS) is necessary to keep your antivirus protection up to date. Avast antivirus provides a shell script, which checks for the latest VPS over the Internet and automatically downloads it. The update script is automatically installed and periodically executed every hour as a cronjob.

The default Avast crontab entry is:

0 * * * * /var/lib/avast/Setup/avast.vpsupdate

Avast antivirus uses incremental updates, so the average update data size is less than 0.5 MB.

Local virus definitions mirrors

It is possible to use a local, mirrored VPS repository. This is useful if you are running several Avast installations on your local network.

To set up a local VPS mirror, all you need is a local HTTP server that can serve as a copy of the official public repository. To get your local repository copy, use the following command:

$ wget -r -N -e robots=off -nH --cut-dirs=2 \
"http://download.ff.avast.com/lin/x86_64/vps9/"

To change the VPS repository URL that Avast uses for getting the VPS updates, edit the  /etc/avast/vps.conf  configuration file.

How do I integrate Avast Security for Linux into AMaViS?

AMaViS is an interface between mailer (MTA) and content checkers that is already prepared for integration with mail scanners. Integration of Avast into AMaViS covers updating AMaViS configuration and enabling access to emails going through AMaViS to be scanned by Avast antivirus. This can be divided into three steps:

  1. Integrating Avast antivirus
    Open the AMaViS configuration file (e.g. /etc/amavis/conf.d/50-user) and insert the following lines into the file:
    @av_scanners = (
    ### http://www.avast.com
    ['Avast', '/bin/scan', '{}', [0], [1], qr/\t(.+)/m]
    );
  2. Enabling virus scanning
    Then open the AMaViS content filter configuration file (e.g. /etc/amavis/conf.d/15-content_filter_mode) and enable antivirus checking mode by uncommenting the bypass_virus_checks lines.
  3. Update of access permissions
    Finally, enable the Avast scan service to scan emails going through AMaViS:
    # usermod -G amavis -a avast
  • Avast Core Security for Linux
  • Avast File Server Security for Linux
  • Avast Network Security for Linux
  • Avast Security Suite for Linux
  • Debian
  • Ubuntu
  • Red Hat Enterprise Linux
  • CentOS
  • SUSE

Need additional help?

Contact us