Esets Plug-In Filter For Safesquid Proxy Cache; Operation Principle; Installation And Configuration - ESET GATEWAY SECURITY Installation Manual

5.4. ESETS plug-in filter for SafeSquid Proxy Cache

In the previous sections we have described integration of ESET Gateway Security with the
Internet Gateway HTTP and FTP services using esets_http and esets_ftp. Although the methods
described are applicable for most common user agents including very well known content
filtering internet proxy - SafeSquid (http://www.safesquid.com) the ESET Gateway Security offers
for this special case also an alternative way to protect the Gateway services using esets_ssfi.so
module developed for this purpose.

5.4.1. Operation principle

The esets_ssfi.so module is a plug-in with the purpose to access all objects processed by
SafeSquid proxy cache using special interface developed by SafeSquid people for this purpose.
Once the plug-in accesses the object it is scanned for infiltrations using ESETS daemon. If the
object is infected the SafeSquid blocks an appropriate resource and sends predefined template
page instead. Note that esets_ssfi.so is supported by SafeSquid Advanced version 4.0.4.2 and
higher.

5.4.2. Installation and configuration

To integrate the module you have to provide links from the SafeSquid modules directory to
the appropriate installation locations of ESET Gateway Security package. In the following we
assume that the SafeSquid is installed on Linux OS in '/opt/safesquid' directory.
If version of SafeSquid installed is 4.2 or higher, enter the following commands:
ln -s @LIBDIR@/ssfi/esets_ssfi.so /opt/safesquid/modules/esets_ssfi.so
ln -s @LIBDIR@/ssfi/esets_ssfi.xml /opt/safesquid/modules/esets_ssfi.xml
If version of Safesquid installed is lower than 4.2, enter the following commands:
ln -s @LIBDIR@/ssfi/esets_ssfi.so /opt/safesquid/modules/esets_ssfi.gcc295.so
ln -s @LIBDIR@/ssfi/esets_ssfi.xml /opt/safesquid/modules/esets_ssfi.xml
To complete SafeSquid plug-in installation, log in to the SafeSquid Web Administration
Interface, select the 'Config' menu from the main interface page and browse down the sections
in 'Select a Section to Configure' until 'ESET Gateway Security' section found. Next, create the
'antivirus' profile for the 'ESET Gateway Security' section by pressing 'Add' at the bottom of the
'ESET Gateway Security' section and define the following parameters in the list that appears
Comment: ESET Gateway Security
Profiles: antivirus
Once SafeSquid plug-in installed it is ready to work, however, some more fine tunings in
the SafeSquid configuration are needed. In the next we at least configure SafeSquid to use
ESETS predefined blocking templates in case the transferred source object is infected (resp. not
scanned).
Log in to the SafeSquid Web Administration Interface, select the 'Config' menu from the
main interface page and browse down the sections in 'Select a Section to Configure' until 'ESET
Gateway Security' section found. Next, edit the newly created 'antivirus' profile by pressing 'Edit'
at the bottom of the 'ESET Gateway Security' section and define the following parameters in the
list that appears
20 ESET Gateway Security