Critical System Protection

 View Only

  • 1.  SEP for AIX? Will CSP meet my requirements?

    Posted Jun 10, 2013 12:34 PM

    I'm not an expert in AV software or terminology, so this may be a very simple question.

    I want to deploy a virus checker at the staging end of a secure file transfer capability running on AIX.  On Windows, I would use SEP, but there isn't an AIX version.

    Based on this forum thread ( http://www.symantec.com/connect/forums/antivirus-ibm-aix ), the only AIX option that isn't a Domino email product is Symantec Critical System Protection.  Does this product allow me to run a customised scan on a single file/directory via a command line prompt, or is it just intrusion detection software?

    Does Symantec have a product that runs on AIX that could do what I want?



  • 2.  RE: SEP for AIX? Will CSP meet my requirements?

    Broadcom Employee
    Posted Jun 10, 2013 12:44 PM

    Yes SCSP is the right solution to be installed on AIX platform. SCSP is not an AV , its a host IPS/IDS. This will stop the threats/external attacks.

    this is the link to support feature for AIX ,

    http://www.symantec.com/business/support/index?page=content&id=DOC6408&key=52463



  • 3.  RE: SEP for AIX? Will CSP meet my requirements?

    Posted Jun 10, 2013 03:59 PM

    If this is something that you want to implement on an ongoing basis, may I suggest you look into the Symantec Scan Engine?  It may be the solution you are looking for.

    As Pete said, CSP will protect you from Viruses and other threats, but there is no "Scanning" for nefarious things like with a AV product, so if the end result is using AIX as a file transfer service, then CSP will not really do much.  

    CSP locks down a machine so Malware cannot run (actually, it prevents the malware from being able to touch protected resources), but it will not prevent malware from being temporarily stored on an AIX machine, only to be later downloaded by a client machine from the AIX server.  So if this is some sort of file transfer gateway, and you want to scan all the items as they arrive, you should look in to the in-line capability of the Scan Engine.

     

     



  • 4.  RE: SEP for AIX? Will CSP meet my requirements?

    Posted Jun 11, 2013 03:45 AM

    Thanks for the replies.  You have confimed my understanding of CSP.

    My existing process just makes a shell call to an AV to scan selected files or directories before they are allowed inside the network, and I'm looking for something to replace it with the minimum effort.

    Is Sementic Scan Engine a separate product, or does it form part of a Domino/Mail Server AV?

    Based on http://www.symantec.com/business/support/index?page=content&id=TECH123321 it looks like its not supported on AIX?



  • 5.  RE: SEP for AIX? Will CSP meet my requirements?

    Broadcom Employee
    Posted Jun 11, 2013 04:03 AM

    its a different product. Its now called protection engine.

    is this AIX server a filer?

    these devices are supported

    http://www.symantec.com/business/support/index?page=content&id=HOWTO83461