Copyright (c) 2024, Oracle. All rights reserved. Oracle Confidential.
Antivirus Software for Solaris (Doc ID 1582267.1)
In this Document
Goal
Solution
APPLIES TO:
Solaris Operating System - Version 9 and later
Oracle Solaris on SPARC (64-bit)
Oracle Solaris on SPARC (32-bit)
Oracle Solaris on x86 (32-bit)
Oracle Solaris on x86-64 (64-bit)
GOAL
Antivirus support for Solaris ?
SOLUTION
As you know, security is very important for Oracle and we fix as soon as possible any security holes that we find in our
softwares. But regarding viruses, as this is an another kind of security breach and as we don't develop a software to protect
you from these unwanted codes, you should look for a third-party solution to protect you. Installing an anti-virus software
adds an extra layer of security which is useful especially for Solaris based applications, like mail server or file sharing that are
being accessed by has multi-OS clients.
In current situation, findings on Solaris virus definitions are low-risk/low threat, but this is not the case for the other operating
systems. And in some cases are not viruses but vulnerabilities that are addressed by patches/updates as described in this blog:
Solaris is immune from virus/malware right ?
Installing AV is a customer decision, but if you want to use this kind of protection to protect your Solaris machines or the
clients using the data stored in your Solaris machines, updated version of virus definition can be checked by customer directly
from the anti-virus vendors database to evaluate and assess further.
Here is a list of known anti-virus softwares :
- Avast
- CA
- Clam AV
- CyberSoft VFind
- F-PROT Antivirus
- Interscan VirusWall
- Kapersky
�- Mailscanner
- McAfee Endpoint Protection Suite
- Panda EPS
- Sophos Anti-Virus for Unix (Product is retired as of July 2023)
- Symantec Protection Engine for Cloud Services
Or if you use or can upgrade to Solaris 11, any ICAP compatible third-party antivirus engine can theoretically do the job.
A list of ICAP antivirus software that are supported by Solaris 11.x virus-scan service can be found there :
Solaris 11 : [Link]
Solaris 11.1 : [Link]
Solaris 11.3 : [Link]
Solaris 11.4 : [Link]
An official list for Solaris 11.2 doesn't exist but the procedure to activate the vscan engine if the anti-virus software is
compatible with this version of Solars is here :
[Link] As Solaris 11.2 is just a minor update of Solaris 11 and
11.1, you can certainly use the same softwares.
WARNING : Using an anti-virus software doesn't protect you from all possible attacks coming from internal or external
accesses.
Even if Solaris is extremely secure by default since Solaris 10, I suggest you to read the following documentations to learn
more about Solaris security :
Solaris 9 : [Link]
Solaris 10 : [Link]
Solaris 11.x : [Link]
Solaris 11.2 Security Compliance Guide : [Link]
Solaris 11.3 Security Compliance Guide : [Link]
Solaris 11.4 Security Compliance Guide : [Link]
Security and Compliance [Link]
Solaris provides a builtin file integrity checker called BART (Basic Audit Reporting Tool). BART enables you to determine what
file-level changes have occurred on a system, relative to a known baseline. You use BART to create a baseline or control
�manifest from a fully installed and configured system. You can then compare this baseline with a snapshot of the system at a
later time, generating a report that lists file-level changes that have occurred on the system since it was installed.
More information can be found in the BART documentation: [Link]
Didn't find what you are looking for?
