From Oracle Linux 5 Security Technical Implementation Guide
Part of GEN006640
Associated with: CCI-001668
Virus scanning software can be used to protect a system from penetration from computer viruses and to limit their spread through intermediate systems.
Check for the existence of a cron job to execute a DoD-approved command-line scan tool daily. Other tools may be available but will have to be manually reviewed if they are installed. In addition, the definitions files should not be older than 7 days.
Check if DoD-approved command-line scan tool is scheduled to run:
# grep [scan tool] /var/spool/cron/* /etc/cron.d/* /etc/cron.daily/* /etc/cron.hourly/* /etc/cron.monthly/* /etc/cron.weekly/*
If a virus scanner is not being run daily and an exception has not been documented with the IAO, this is a finding.
Perform the following command to ensure the virus definition signature files are not older than 7 days.
# cd
Install a DoD-approved command-line virus scan tool, or an appropriate alternative. Ensure the virus signature definition files are no older than 7 days. Configure the system to run a virus scan on altered files dynamically or daily. If daily scans impede operations, justify, document, and obtain IAO approval for alternate scheduling.
Lavender hyperlinks in small type off to the right (of CSS
class id, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle or
Accept: application/rdf+xml.
Powered by sagemincer