Best Of

F-Secure Linux Security 64 RTM Release Notes

F-Secure Linux Security 64 provides an integrated, out-of-the-box security solution with strong real-time protection against viruses and potentially unwanted applications. It also includes host intrusion prevention (HIPS) functionality that provides protection against unauthorized system modifications, userspace and kernel rootkits. The solution can be easily deployed and managed using F-Secure Policy Manager.

Linux Security 64 Download

Main features in this release

• New on-access scanner for continuous protection.
• New system integrity checker for protection against unauthorized system changes.
• Support for manual scanning of files.
• Configurable automatic updates.
• Support for management using F-Secure Policy Manager.

Supported platforms

Linux Security 64 supports the following Linux distributions:

• CentOS 7
• RHEL 7
• Oracle Linux 7
• Amazon Linux 2.0
• Debian 9
• Ubuntu 16.04
• Ubuntu 18.04

Dependencies

Linux Security 64 requires the following packages to be installed before installing the product:

CentOS, RHEL, Oracle Linux, and Amazon Linux

• fuse-libs
• libcurl
• python

Debian and Ubuntu 16.04

• libfuse2
• libcurl3
• python

Ubuntu 18.04

• libfuse2
• libcurl4
• python

Installation

To install Linux Security 64, you first need to create an installation package using Policy Manager, then use that installation package to install the product on the target machine.

Note that you will need Policy Manager version 14.20 to install and manage Linux Security 64.

1. Create the installation package:
   1. In Policy Manager Console, select Tools > Installation packages from the menu. This opens the Installation packages window.
   2. Click Import.
   3. Select the Linux Security installation package you want to use and click Import.
   4. Select the imported installation package in the packages list and click Export.
   5. Specify a name and a folder for the exported zip file. A Remote Installation Wizard window will appear.
   6. Click Next.
   7. Enter your license keycode for the product and click Next.
   8. Adjust the address of your Policy Manager Server and its HTTP and HTTPS ports if necessary, then click Finish.

2. Copy the exported zip file to the Linux host in your network.

3. Install the product:
   1. Log into the Linux host as root.
   2. Make sure that you have the prerequisites installed (refer to the dependencies listed above).
   3. Extract the zip file into an empty directory.
   4. Run the following command: bash f-secure-linuxsecurity/f-secure-linuxsecurity-installer
   5. Read and accept the license terms when prompted.
   6. After the installation process finishes, Policy Manager Console will shortly show the Linux host in Pending hosts list.

Uninstallation

You can uninstall the product from the command line.

1. Log in to the Linux host as root.
2. Run the uninstallation command:
   1. RHEL-based distributions: rpm -e f-secure-linuxsecurity
   2. Debian-based distributions: dpkg -r f-secure-linuxsecurity

Known Issues

• CSLP-3319: Manual scanning cannot be invoked from Policy Manager Console.
• CSLP-3320: Scheduled scanning reports do not contain checksums of the detected files.
• CSLP-3321: Scheduled scanning reports do not contain engine names and versions.
• CSLP-3322: Command-line and scheduled scanning also applies malware actions to files that are part of integrity checker baseline.
• CSLP-3323: Manual channel updates cannot be triggered from Policy Manager Console.
• CSLP-3289: All alerts are not mirrored in the system log.
• CSLP-3327: Removing the product does not stop or remove f-secure-linuxsecurity-scand service.

F-Secure Linux Security 64 Update 12.0.35 Release Notes

Change Log

• CSLP-3327: Uninstalling Linux Security 64 now properly stops and removes all the associated services.
• CSLP-3289: Alerts are now visible in system log.

Known Issues

• CSLP-3319: Manual scanning cannot be invoked from Policy Manager Console.
• CSLP-3320: Scheduled scanning reports do not contain checksums of the detected files.
• CSLP-3321: Scheduled scanning reports do not contain engine names and versions.
• CSLP-3322: Command-line and scheduled scanning also applies malware actions to files that are part of integrity checker baseline.
• CSLP-3323: Manual channel updates cannot be triggered from Policy Manager Console.

Change Log

• CSLP-3462: Fixed a crash in f-secure-linuxsecurity-scand.service that occurs during the scheduled scanning when scanned files have invalid UTF-8 codepoints in their file names.
• CSLP-3468: The amount of skipped files (scan errors) has been limited to 1000 in the scheduled scan report to avoid sending too long scan reports to Policy Manager.
• CSLP-3465: Removed the EULA acceptance prompt during the installation.
• CSLP-3485: Allow a regular user to run fsanalyze.

New Linux Security 64 Update has been released. This update includes the following changes:

Change Log

• CSLP-3417: Decreased the number of services executed as root.