How to remediate virus definitions in Symantec Antivirus for Linux (SAVFL) 1.0.x

Article:TECH93435  |  Created: 2009-01-15  |  Updated: 2013-07-30  |  Article URL http://www.symantec.com/docs/TECH93435
Article Type
Technical Solution


Environment

Issue



How to remediate virus definitions in Symantec Antivirus for Linux (SAVFL) 1.0.x

Symptoms
How to remediate virus definitions in Symantec Antivirus for Linux (SAVFL) 1.0.x

 


Cause



Virus definitions in Symantec Antivirus for Linux (SAVFL) 1.0.x need to be cleaned and rebuilt with the help of an Intelligent Updater (IU).


Solution



1. Stop the SAVFL daemons:

    a. Navigate to the Symantec AntiVirus installation directory (default location is: '/opt/Symantec/symantec_antivirus') in the terminal
    b. Run the following commands:
      ./rtvscand –k shutdown
      ./symcfgd –k shutdown


2. Clean the virusdefs and /tmp folders:

    a. Check the /tmp folder at file system root and remove any tmpjlu***.lck or jlucache.xml files.
    b. Navigate to the Symantec AntiVirus virus definitions directory (default location is: '/opt/Symantec/virusdefs') in the terminal
    c. Remove any 'tmp*' folders and any numbered folders.  
    d. Ensure that the 3 remaining folders are empty. If they are not empty, empty them.
      binhub (expected to be full)
      incoming (usually empty, if it's not, this may be an indication of what is wrong)
      texthub (also usually empty)
      terminal line example:
        cd /opt/Symantec/virusdefs/binhub
        rm *
    e. Open the remaining 2 files (definfo.dat & usage.dat) in a text editor and clear the contents.
      The following is a terminal line example performed from Symantec AntiVirus virus definitions directory (default location is: '/opt/Symantec/virusdefs'). Please note that this is only an example and not a strict procedure, there are other methods of performing the same action :
        echo > definfo.dat
        enter
        echo > usage.dat
        enter
      I would also suggest ensuring these files are empty:
        cat

3. Download and run the Intelligent Updater shell script. Please refer to the following publicly available document for assistance in this process: A terminal line walkthrough of applying Intelligent Updater Definitions to a SAV for Linux client

4. Start SAVFL daemons

    a. Navigate to the Symantec AntiVirus installation directory (default location is: '/opt/Symantec/symantec_antivirus') in the terminal
    b. Run the following commands:
      ./symcfgd (The daemon symcfgd must be started before rtvscand will start.)
      ./rtvscand


Technical Information

- Note: that Linux commands are case sensitive.

- The preceding dot-slash is usually necessary unless the PATH environment variable has been set to include the Symantec AntiVirus installation directory. As a security precaution, Linux will not execute commands that are not found in any of the PATH directories unless the command is fully qualified.




Legacy ID



2009041507453248


Article URL http://www.symantec.com/docs/TECH93435


Terms of use for this information are found in Legal Notices