Proaktiv IT-sikkerhet
 

Virus Control for Novell Netware (FireBreak)

FireBreak is Norman’s server-based antivirus program for Novell’s NetWare operating system. It ensures that all files stored or accessed from the NetWare server are checked for computer viruses, trojans, and other malicious code - or malware as a collective term. It is invisible to the users and is designed to work with NetWare in a way that takes advantage of both products’ top-notch qualities.

  • On-access file scanning
  • Norman SandBox - a revolutionary way to detect new and unknown malware
  • Multi-CPU and Cluster support

Managing FireBreak

Most of the administrative tasks for FireBreak can be performed in the FireBreak object in the eDirectory (NDS), such as configuration of auto-updates, messaging and eDirectory options. Other tasks, like monitoring real-time actions can be done both at the server console and by browsing in log files.

FireBreak’s console menus follow the conventions for NetWare’s “look and feel", including implementation of “first letter" selection in the menus.

We have also developed a ConsoleOne snap-in module, as we believe that ConsoleOne represents a simplified and consequently more user-friendly approach for configuration and administration of the FireBreak installation.

Scanning

Norman FireBreak offers two types of scanning:

  • On-access scanning is continuous scanning of files accessed on the server. So if a user tries to copy an infected file to or from your server, infect a file on the server, or run an infected file from the server, Norman FireBreak will detect the file and repair, quarantine, delete, or ignore it. These actions are all configurable. Both NSS and Classic NetWare volumes are supported. This can be done with or without Norman SandBox.
  • On-demand scanning is used for scanning selected parts or the entire server for possible viruses at your request. This can be done with or without Norman SandBox.

Multi-CPU support

Many large companies use servers with multiple CPUs to increase performance. This has previously been a problem for many antivirus vendors. FireBreak can run perfectly well in a multi-CPU environment.

Clusters

Network servers are often connected to form one or more clusters, to ease administration, increase capacity, reduce load, etc. FireBreak is fully cluster compatible.

FireBreak NetWare WAN

Another strength of Norman FireBreak is Enterprise-wide functioning. If two or more NetWare servers are running Norman FireBreak, one of them can be configured to be a communications hub. The hub can then operate as a central monitoring station, enabling more efficient WAN administration.

For configuration purposes, a configuration object for Norman FireBreak is created in an eDirectory (NDS). From this configuration object all the Norman FireBreak objects can be configured from one central location, thus reducing the administrative burden for the administrator.

Messaging

The messaging module in FireBreak supports messages and alarms received from Norman Virus Control. All messages and alarms can be logged, printed, forwarded as SNMP traps, or broadcasted as NetWare alerts.

Sending messages over SMTP (email)

All messages and alarms can now be sent to selected recipients via email.

Protocol support

FireBreak automatically detects and fully supports the protocol used in its operating environment. It does not matter whether TCP/IP, IPX or both protocols are being used.

Proaktiv antivirusbeskyttelse

Unik proaktiv teknologi for å gi våre kunder den best mulige beskyttelse mot ondsinnet programvare

Denne kraftige og enestående sikkerhetsløsningen benytter Norman DNA Matching, Norman Exploit Detection og Norman SandBox®, den verdenskjente teknologien for virksomhetsbeskyttelse.

 Norman SandBox® er en revolusjonerende teknikk for proaktiv deteksjon av ny og ukjent malware. Det er et virtuelt miljø hvor programmer kan operere i trygge omgivelser uten at de påvirker de reele prosesser, programfiler eller nettverksomgivelser. Dersom et program utfører handlinger som SandBox oppfatter som mistenkelige, vil programmet bli "tagget" som et ondsinnet program.
Norman DNA Matching er en proaktiv teknologi og metode for identifikasjon av den virale profilen til alle typer skadeprogram. Arvet eller gjenbrukt programmeringskode gjenkjennes i nye skadeprogrammer, noe som gir unik proaktiv beskyttelse mot trusler. Ny malware som ser ut som om den er en mutasjon av malware kjent fra før, er sannsynligvis i samme familie, og blir dermed identifisert som ondsinnet av Norman DNA Matching.
Norman Exploit Detection er en teknologi for å detektere skadeprogrammer som utnytter sårbarheter i en rekke mye benyttede dokumenttyper som OLE2 (Office-dokumenter), MDB (Access), WMF (Windows Media File), JPEG (bilder), RIFF (Windows media meta-format) og SWF (Flash). Teknologien tillater at flere typer kan legges til dersom slike også blir misbrukt av malware. Norman Exploit Detection er ikke avhengig av at en spesiell sårbarhet er oppdaget og analysert.

 

 

Systemkrav

  • NetWare versions 4.11 or later
    • NetWare 3.11, 3.12, 3.2 and 4.10 are not supported.
    • For NetWare 4, support pack 9 is required.
    • For NetWare 5.0, support pack 6 is required.
    • For NetWare 5.1 and 6.0 the latest support packs are recommended.
      • On NetWare 5.1 we strongly recommend support pack 6 and on NetWare 6.0 we strongly recommend support pack 3.
        NetWare support packs are available from Novell at http://support.novell.com
         
  • NDS v6 or later including eDirectory
     
  • ConsoleOne v1.3.x
     
  • NseNW v5.40 or later with corresponding virus definition files.

Nedlastinger