Sophos Anti-Virus Filter

• Overview
• Prerequisites
• Configuration

Overview

The Sophos Anti-Virus filter uses the SAVI (the Sophos Anti-Virus Interface) to screen messages for viruses. The behavior of the Sophos library can be configured through a series of configuration options. You can configure these options with the Sophos Anti-Virus filter.

Important Note:
Because the Enterprise Gateway does not ship with any Sophos binaries, the Enterprise Gateway must be installed on the same machine as the Sophos AV distribution. Please ensure that the Sophos AV lib directory is on your LD_LIBRARY_PATH before starting the Enterprise Gateway on Linux or Solaris platforms. Similarly, this directory must be on the system PATH on Windows machines. (However, the Sophos install automatically puts this directory on the system path.)

Prerequisites

Sophos integration requires Sophos SAV Interface version 4.8.

Enterprise Gateway
When adding third-party binaries to the Enterprise Gateway, you must perform the following steps:

1. Add the binary files as follows:
   • Add .jar files to the InstallDir/ext/lib directory.
   • Add .dll files to the InstallDir\win32\lib directory.
   • Add .so files to the InstallDir/platform/lib directory.
2. Restart the Enterprise Gateway.

Policy Studio
When adding third-party binaries to the Policy Studio, you must perform the following steps:

1. Add .jar files to the InstallDir/plugins/thirdparty.runtime.dependencies_6.0.3 directory.
2. Restart the Policy Studio.

Configuration

All SAVI configuration options take the form of a name-value pair. Each name is unique and its corresponding value controls a certain piece of behavior in the Sophos anti-virus library (for example, decompress zip files to examine their content).

The Sophos Anti-Virus filter ships with 2 sets of default configuration settings; 1 suitable for Unix-based platforms, and the other suitable for Windows platforms. Use the Copy Settings From dropdown to select the appropriate configuration settings for your target platform.

It is possible to create a new set of configuration options by clicking on the Add button and adding the name-value pairs to the table provided. For convenience, it is possible to base a new configuration set on a previously existing one, including the default Windows and Unix sets. In this way, it is possible to create a new configuration set that inherits from the default set, and then adds more configuration options.

To add a new configuration name-value pair, click the Add button beneath the table.

The following fields must then be configured:

Name:
Enter a name for the SAVI configuration option here. This name must be available in the version of the SAVI library that is used by the Enterprise Gateway. Please refer to your SAVI documentation for a complete reference on available options.

Value:
Enter an appropriate value for the SAVI configuration option entered above. Please refer to your SAVI documentation for more information on acceptable values for this configuration option.

Type:
Select the appropriate type of this configuration option from the dropdown. Consult your SAVI documentation for more information on the type of the value for this configuration option.