Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-09-09 Thread Kurt Acker 
If agencies are allowed to talk to one another, finding out why Linux on z 
works for folks like this org might be helpful?
http://www.disa.mil/Computing/Mainframe-Hosting/IBM-LINUX

Best Regards,

Kurt Acker 
IBM Smarter Planet, Smarter Data Centers 
Virtualization and Enterprise System Management Technologies


--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-09-09 Thread CHAPLIN, JAMES (CTR) 
I so much agree with you on this! Real logic does not apply, it's called 
government.

James Chaplin, ITIL® v3 Foundation
Systems Programmer, MVS, zVM & zLinux 

-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of Philipp 
Kern
Sent: Wednesday, September 09, 2015 3:56 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

On 2015-09-08 19:03, CHAPLIN, JAMES (CTR) wrote:
> Here the sad ending to this problem, our management has decided that 
> since Symantec or anyone else actively supports an AV Agent for Linux 
> on the z Platform (s390x), they are moving all Linux based application 
> off the mainframe to distributive servers by the end of October... Any 
> good job openings out there ;-(, I am hitting the pavement, future 
> here not good.

The irony is that - given your email domain - you are working for the 
government and any threat to the service is very likely not to be discovered by 
AV anyway. Moving back to x86 will increase the attack surface because standard 
exploit code is working on the target platform and doesn't need to be 
rewritten/retargeted for the System z CPU architecture. Plus it's incredibly 
unlikely that they would have a signature for exploits on System z. (Apart from 
the fact that they likely have very few signatures for Linux anyway.)

Yes, they say it's behavioral. I have yet to see a solution there that works.

Kind regards
Philipp Kern

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-09-09 Thread Philipp Kern 

On 2015-09-08 19:03, CHAPLIN, JAMES (CTR) wrote:

Here the sad ending to this problem, our management has decided that
since Symantec or anyone else actively supports an AV Agent for Linux
on the z Platform (s390x), they are moving all Linux based application
off the mainframe to distributive servers by the end of October... Any
good job openings out there ;-(, I am hitting the pavement, future
here not good.


The irony is that - given your email domain - you are working for the
government and any threat to the service is very likely not to be
discovered by AV anyway. Moving back to x86 will increase the attack
surface because standard exploit code is working on the target platform
and doesn't need to be rewritten/retargeted for the System z CPU
architecture. Plus it's incredibly unlikely that they would have a
signature for exploits on System z. (Apart from the fact that they
likely have very few signatures for Linux anyway.)

Yes, they say it's behavioral. I have yet to see a solution there that
works.

Kind regards
Philipp Kern

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-09-08 Thread Veencamp, Jonathon D. 
It is still installable via SUSE repository and it does still get virus update 
definitions nightly.

It's not scanning for linux viruses though, it's scanning for Windows virus's 
on Linux.  So most appropriate if you are running a fileshare or something.  Or 
have managers that need to see the virus scanning checkbox checked before they 
consider a server secure.

Jon


-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of Marcy 
Cortes
Sent: Tuesday, September 08, 2015 2:46 PM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

Is ClamAV still a viable z solution?

-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, September 08, 2015 10:04 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Here the sad ending to this problem, our management has decided that since 
Symantec or anyone else actively supports an AV Agent for Linux on the z 
Platform (s390x), they are moving all Linux based application off the mainframe 
to distributive servers by the end of October... Any good job openings out 
there ;-(, I am hitting the pavement, future here not good.

James Chaplin, ITIL® v3 Foundation
Systems Programmer, MVS, zVM & zLinux


-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of Marcy 
Cortes
Sent: Tuesday, August 18, 2015 11:24 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

We've been given an exception because it doesn't exist for z.
Not a bad thing imnsho :)



-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, August 18, 2015 5:35 AM
To: LINUX-390@VM.MARIST.EDU
Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Fellow Penguin Mainframers,
Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or SUSE) 
on the s390x architecture? We have been given a "Security Requirement" that 
this vendor specific software has to be in place, and we cannot even verify 
that they support the s390x architecture. Please share any experience you may 
have with this if your shop has gone down this path and implemented SEP.

James Chaplin, ITIL(r) v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
https://urldefense.proofpoint.com/v2/url?u=http-3A__www.marist.edu_htbin_wlvindex-3FLINUX-2D390&d=AwIFAw&c=ShSbeBtp5dC0Du3gqnCYzA&r=uOTkaIQi_O7ZLsv0fAQCzXs1yzTLhBFWipx66bBsdJc&m=h-ckC8VDmtIVM4o3arUxTXJ5Cp-_NPkXYRaz5qB4e4E&s=mTKi33l5zJxhQEmQSP-z3s9EG5ITmmDwlcoD2P9CI9A&e=
--
For more information on Linux on System z, visit 
https://urldefense.proofpoint.com/v2/url?u=http-3A__wiki.linuxvm.org_&d=AwIFAw&c=ShSbeBtp5dC0Du3gqnCYzA&r=uOTkaIQi_O7ZLsv0fAQCzXs1yzTLhBFWipx66bBsdJc&m=h-ckC8VDmtIVM4o3arUxTXJ5Cp-_NPkXYRaz5qB4e4E&s=5IXQ_rQTQTpKmhVlBcInTrikxpsAMUCOvT0vmWVn6-I&e=

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
https://urldefense.proofpoint.com/v2/url?u=http-3A__www.marist.edu_htbin_wlvindex-3FLINUX-2D390&d=AwIFAw&c=ShSbeBtp5dC0Du3gqnCYzA&r=uOTkaIQi_O7ZLsv0fAQCzXs1yzTLhBFWipx66bBsdJc&m=h-ckC8VDmtIVM4o3arUxTXJ5Cp-_NPkXYRaz5qB4e4E&s=mTKi33l5zJxhQEmQSP-z3s9EG5ITmmDwlcoD2P9CI9A&e=
--
For more information on Linux on System z, visit 
https://urldefense.proofpoint.com/v2/url?u=http-3A__wiki.linuxvm.org_&d=AwIFAw&c=ShSbeBtp5dC0Du3gqnCYzA&r=uOTkaIQi_O7ZLsv0fAQCzXs1yzTLhBFWipx66bBsdJc&m=h-ckC8VDmtIVM4o3arUxTXJ5Cp-_NPkXYRaz5qB4e4E&s=5IXQ_rQTQTpKmhVlBcInTrikxpsAMUCOvT0vmWVn6-I&e=

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
https://urldefense.proofpoint.com/v2/url?u=http-3A__www.marist.edu_htbin_wlvindex-3FLINUX-2D390&d=AwIFAw&c=ShSbeBtp5dC0Du3gqnCYzA&r=uOTkaIQi_O7ZLsv0fAQCzXs1yzTLhBFWipx66bBsdJc&m=h-ckC8VDmtIVM4o3arUxTXJ5Cp-_NPkXYRaz5qB4e4E&s=mTKi33l5zJxhQEmQSP-z3s9EG5ITmmDwlcoD2P9CI9A&e=
--
For more information on Linux on System

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-09-08 Thread Marcy Cortes 
Is ClamAV still a viable z solution?

-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, September 08, 2015 10:04 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Here the sad ending to this problem, our management has decided that since 
Symantec or anyone else actively supports an AV Agent for Linux on the z 
Platform (s390x), they are moving all Linux based application off the mainframe 
to distributive servers by the end of October... Any good job openings out 
there ;-(, I am hitting the pavement, future here not good.

James Chaplin, ITIL® v3 Foundation
Systems Programmer, MVS, zVM & zLinux
 

-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of Marcy 
Cortes
Sent: Tuesday, August 18, 2015 11:24 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

We've been given an exception because it doesn't exist for z.
Not a bad thing imnsho :)



-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, August 18, 2015 5:35 AM
To: LINUX-390@VM.MARIST.EDU
Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Fellow Penguin Mainframers,
Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or SUSE) 
on the s390x architecture? We have been given a "Security Requirement" that 
this vendor specific software has to be in place, and we cannot even verify 
that they support the s390x architecture. Please share any experience you may 
have with this if your shop has gone down this path and implemented SEP.

James Chaplin, ITIL(r) v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-09-08 Thread Richards, Robert B. 
Jobs at IBM:

https://jobs3.netmedia1.com/cp/



-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, September 08, 2015 1:04 PM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

Here the sad ending to this problem, our management has decided that since 
Symantec or anyone else actively supports an AV Agent for Linux on the z 
Platform (s390x), they are moving all Linux based application off the mainframe 
to distributive servers by the end of October... Any good job openings out 
there ;-(, I am hitting the pavement, future here not good.

James Chaplin, ITIL® v3 Foundation
Systems Programmer, MVS, zVM & zLinux
 

-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of Marcy 
Cortes
Sent: Tuesday, August 18, 2015 11:24 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

We've been given an exception because it doesn't exist for z.
Not a bad thing imnsho :)



-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, August 18, 2015 5:35 AM
To: LINUX-390@VM.MARIST.EDU
Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Fellow Penguin Mainframers,
Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or SUSE) 
on the s390x architecture? We have been given a "Security Requirement" that 
this vendor specific software has to be in place, and we cannot even verify 
that they support the s390x architecture. Please share any experience you may 
have with this if your shop has gone down this path and implemented SEP.

James Chaplin, ITIL(r) v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-09-08 Thread Scott Rohling 
That is sad ...   I wonder who decided it was a requirement.   Keep a foot
in the door - they might realize there was another reason for moving things
to z in the first place and might not be able to shoehorn some of them out?
  Maybe it's time for an environmental impact survey or something...  and
make the issue power consumption and not what antivirus is run...all
these suits need is a rabbit to chase  ;-)

Scott Rohling

On Tue, Sep 8, 2015 at 10:03 AM, CHAPLIN, JAMES (CTR) <
james.chap...@cbp.dhs.gov> wrote:

> Here the sad ending to this problem, our management has decided that since
> Symantec or anyone else actively supports an AV Agent for Linux on the z
> Platform (s390x), they are moving all Linux based application off the
> mainframe to distributive servers by the end of October... Any good job
> openings out there ;-(, I am hitting the pavement, future here not good.
>
> James Chaplin, ITIL® v3 Foundation
> Systems Programmer, MVS, zVM & zLinux
>
>
> -Original Message-
> From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of
> Marcy Cortes
> Sent: Tuesday, August 18, 2015 11:24 AM
> To: LINUX-390@VM.MARIST.EDU
> Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?
>
> We've been given an exception because it doesn't exist for z.
> Not a bad thing imnsho :)
>
>
>
> -Original Message-
> From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of
> CHAPLIN, JAMES (CTR)
> Sent: Tuesday, August 18, 2015 5:35 AM
> To: LINUX-390@VM.MARIST.EDU
> Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation
> on zLinux?
>
> Fellow Penguin Mainframers,
> Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or
> SUSE) on the s390x architecture? We have been given a "Security
> Requirement" that this vendor specific software has to be in place, and we
> cannot even verify that they support the s390x architecture. Please share
> any experience you may have with this if your shop has gone down this path
> and implemented SEP.
>
> James Chaplin, ITIL(r) v3 Foundation
> Systems Programmer, MVS, zVM & zLinux
> CA Technologies
>
> --
> For LINUX-390 subscribe / signoff / archive access instructions, send
> email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> --
> For more information on Linux on System z, visit http://wiki.linuxvm.org/
>
> --
> For LINUX-390 subscribe / signoff / archive access instructions, send
> email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> --
> For more information on Linux on System z, visit http://wiki.linuxvm.org/
>
> --
> For LINUX-390 subscribe / signoff / archive access instructions,
> send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or
> visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> --
> For more information on Linux on System z, visit
> http://wiki.linuxvm.org/
>

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-09-08 Thread CHAPLIN, JAMES (CTR) 
Here the sad ending to this problem, our management has decided that since 
Symantec or anyone else actively supports an AV Agent for Linux on the z 
Platform (s390x), they are moving all Linux based application off the mainframe 
to distributive servers by the end of October... Any good job openings out 
there ;-(, I am hitting the pavement, future here not good.

James Chaplin, ITIL® v3 Foundation
Systems Programmer, MVS, zVM & zLinux
 

-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of Marcy 
Cortes
Sent: Tuesday, August 18, 2015 11:24 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

We've been given an exception because it doesn't exist for z.
Not a bad thing imnsho :)



-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, August 18, 2015 5:35 AM
To: LINUX-390@VM.MARIST.EDU
Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Fellow Penguin Mainframers,
Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or SUSE) 
on the s390x architecture? We have been given a "Security Requirement" that 
this vendor specific software has to be in place, and we cannot even verify 
that they support the s390x architecture. Please share any experience you may 
have with this if your shop has gone down this path and implemented SEP.

James Chaplin, ITIL(r) v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-08-25 Thread Scott Rohling 
Agreed -- our approach is to keep critical and security related patches
installed in a timely manner ...  that's more important in a server
environment then doing AV scans (imho).   Also maintaining security
controls so Linux system files and code are protected -- and patches are
coming from trusted sources.Here's an avscan script for that checkbox :
echo 'AV scan complete';exit

Scott Rohling

On Tue, Aug 25, 2015 at 10:07 AM, Marcy Cortes <
marcy.d.cor...@wellsfargo.com> wrote:

> It seems many organizations have a box to check - running AV software,
> check.
>
> Windows end user systems absolutely need it.
> Windows servers, probably do.
> Linux end user, probably.
> Linux servers?  Well, where are the potential bad files coming from?   Are
> there end users FTP'ing to that server all the time?  Then yeah, those
> might need it.
> Is it accepting files over HTTP?  Is it a file server (NFS? or Samba?)?
>  Those probably need it.
> But for your other types of servers??
> You would need to evaluate the risk, document it, and have management sign
> off.
> Which is what we have done.
>
>
>
>
> -Original Message-
> From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of
> CHAPLIN, JAMES (CTR)
> Sent: Monday, August 24, 2015 7:25 AM
> To: LINUX-390@VM.MARIST.EDU
> Subject: Re: [LINUX-390] Symantec Endpoint Protection (SEP) for
> installation on zLinux?
>
> Thanks Marcy,
> Sad to say this was the only response, not because of the list, but
> interest in hardening and anti-virus software tools available for the s390x
> architecture of Linux. Has anyone used or can name an alternate anti-virus
> tool (other than Symantec's end point) for Linux on the z Architecture
> (s390z)?
>
> We found one toll using Google F-PROT, but it is no longer available
> (from their website):
> "Due to lack of customer demand, we have discontinued this product. If you
> are interested in F-PROT for S/390, please contact our sales department (
> sa...@f-prot.com)."
>
> Fedora 22 for s390x has a tool ClamAV for use with Exim (mail server), but
> nothing for RHEL, any suggestions?
>
> James Chaplin, ITIL® v3 Foundation
> Systems Programmer, MVS, zVM & zLinux
> CA Technologies
>
> -Original Message-----
> From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of
> Marcy Cortes
> Sent: Tuesday, August 18, 2015 11:24 AM
> To: LINUX-390@VM.MARIST.EDU
> Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?
>
> We've been given an exception because it doesn't exist for z.
> Not a bad thing imnsho :)
>
>
>
> -Original Message-
> From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of
> CHAPLIN, JAMES (CTR)
> Sent: Tuesday, August 18, 2015 5:35 AM
> To: LINUX-390@VM.MARIST.EDU
> Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation
> on zLinux?
>
> Fellow Penguin Mainframers,
> Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or
> SUSE) on the s390x architecture? We have been given a "Security
> Requirement" that this vendor specific software has to be in place, and we
> cannot even verify that they support the s390x architecture. Please share
> any experience you may have with this if your shop has gone down this path
> and implemented SEP.
>
> James Chaplin, ITIL(r) v3 Foundation
> Systems Programmer, MVS, zVM & zLinux
> CA Technologies
>
> --
> For LINUX-390 subscribe / signoff / archive access instructions, send
> email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> --
> For more information on Linux on System z, visit http://wiki.linuxvm.org/
>
> --
> For LINUX-390 subscribe / signoff / archive access instructions, send
> email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> --
> For more information on Linux on System z, visit http://wiki.linuxvm.org/
>
> --
> For LINUX-390 subscribe / signoff / archive access instructions, send
> email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
>

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-08-25 Thread Marcy Cortes 
It seems many organizations have a box to check - running AV software, check.

Windows end user systems absolutely need it.
Windows servers, probably do.
Linux end user, probably.
Linux servers?  Well, where are the potential bad files coming from?   Are 
there end users FTP'ing to that server all the time?  Then yeah, those might 
need it.
Is it accepting files over HTTP?  Is it a file server (NFS? or Samba?)?   Those 
probably need it.
But for your other types of servers??   
You would need to evaluate the risk, document it, and have management sign off.
Which is what we have done.




-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Monday, August 24, 2015 7:25 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Thanks Marcy,
Sad to say this was the only response, not because of the list, but interest in 
hardening and anti-virus software tools available for the s390x architecture of 
Linux. Has anyone used or can name an alternate anti-virus tool (other than 
Symantec's end point) for Linux on the z Architecture (s390z)?

We found one toll using Google F-PROT, but it is no longer available (from 
their website):
"Due to lack of customer demand, we have discontinued this product. If you are 
interested in F-PROT for S/390, please contact our sales department 
(sa...@f-prot.com)."

Fedora 22 for s390x has a tool ClamAV for use with Exim (mail server), but 
nothing for RHEL, any suggestions?

James Chaplin, ITIL® v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies 

-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of Marcy 
Cortes
Sent: Tuesday, August 18, 2015 11:24 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

We've been given an exception because it doesn't exist for z.
Not a bad thing imnsho :)



-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, August 18, 2015 5:35 AM
To: LINUX-390@VM.MARIST.EDU
Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Fellow Penguin Mainframers,
Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or SUSE) 
on the s390x architecture? We have been given a "Security Requirement" that 
this vendor specific software has to be in place, and we cannot even verify 
that they support the s390x architecture. Please share any experience you may 
have with this if your shop has gone down this path and implemented SEP.

James Chaplin, ITIL(r) v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-08-24 Thread Mark Post 
>>> On 8/24/2015 at 10:25 AM, "CHAPLIN, JAMES (CTR)" 
wrote: 
> Thanks Marcy,
> Sad to say this was the only response, not because of the list, but interest 
> in hardening and anti-virus software tools available for the s390x 
> architecture of Linux. Has anyone used or can name an alternate anti-virus 
> tool (other than Symantec's end point) for Linux on the z Architecture 
> (s390z)?
> 
> We found one toll using Google F-PROT, but it is no longer available 
> (from their website):
> "Due to lack of customer demand, we have discontinued this product. If you 
> are interested in F-PROT for S/390, please contact our sales department 
> (sa...@f-prot.com)."
> 
> Fedora 22 for s390x has a tool ClamAV for use with Exim (mail server), but 
> nothing for RHEL, any suggestions?

There used to be a product called "AntiVir Business Solutions Version 6 
(AntiVir MailGate and WebGate)" (2 products) from a company named Avira GmbH. 
http://www.avira.com/

Network Associates/McAffe also used to have one.  I don't know if either of 
those are still offered any more.

If you don't see an anti-virus scanner for Red Hat, you should contact them 
directly to ask.  It's kind of hard to imagine they haven't had that 
requirement before.


Mark Post

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-08-24 Thread Kurt Acker 
With regards to the anti-virus stmt... AppScan might provide the 
protection your looking for. 
Looks like you can download a trial version of it now too:
http://www-03.ibm.com/software/products/en/appscan 

Thanks and Best Regards,

Kurt Acker 
IBM Smarter Planet, Smarter Data Centers 
Virtualization and Enterprise System Management Technologies



From:   "CHAPLIN, JAMES (CTR)" 
To: LINUX-390@VM.MARIST.EDU
Date:   08/24/2015 03:18 PM
Subject:    Re: Symantec Endpoint Protection (SEP) for installation on 
zLinux?
Sent by:Linux on 390 Port 



Thanks Marcy,
Sad to say this was the only response, not because of the list, but 
interest in hardening and anti-virus software tools available for the 
s390x architecture of Linux. Has anyone used or can name an alternate 
anti-virus tool (other than Symantec's end point) for Linux on the z 
Architecture (s390z)?

We found one toll using Google F-PROT, but it is no longer available 
(from their website):
"Due to lack of customer demand, we have discontinued this product. If you 
are interested in F-PROT for S/390, please contact our sales department 
(sa...@f-prot.com)."

Fedora 22 for s390x has a tool ClamAV for use with Exim (mail server), but 
nothing for RHEL, any suggestions?

James Chaplin, ITIL® v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies 

-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of 
Marcy Cortes
Sent: Tuesday, August 18, 2015 11:24 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on 
zLinux?

We've been given an exception because it doesn't exist for z.
Not a bad thing imnsho :)



-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of 
CHAPLIN, JAMES (CTR)
Sent: Tuesday, August 18, 2015 5:35 AM
To: LINUX-390@VM.MARIST.EDU
Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation 
on zLinux?

Fellow Penguin Mainframers,
Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or 
SUSE) on the s390x architecture? We have been given a "Security 
Requirement" that this vendor specific software has to be in place, and we 
cannot even verify that they support the s390x architecture. Please share 
any experience you may have with this if your shop has gone down this path 
and implemented SEP.

James Chaplin, ITIL(r) v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies

--
For LINUX-390 subscribe / signoff / archive access instructions, send 
email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit






--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-08-24 Thread CHAPLIN, JAMES (CTR) 
Thanks Marcy,
Sad to say this was the only response, not because of the list, but interest in 
hardening and anti-virus software tools available for the s390x architecture of 
Linux. Has anyone used or can name an alternate anti-virus tool (other than 
Symantec's end point) for Linux on the z Architecture (s390z)?

We found one toll using Google F-PROT, but it is no longer available (from 
their website):
"Due to lack of customer demand, we have discontinued this product. If you are 
interested in F-PROT for S/390, please contact our sales department 
(sa...@f-prot.com)."

Fedora 22 for s390x has a tool ClamAV for use with Exim (mail server), but 
nothing for RHEL, any suggestions?

James Chaplin, ITIL® v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies 

-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of Marcy 
Cortes
Sent: Tuesday, August 18, 2015 11:24 AM
To: LINUX-390@VM.MARIST.EDU
Subject: Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

We've been given an exception because it doesn't exist for z.
Not a bad thing imnsho :)



-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, August 18, 2015 5:35 AM
To: LINUX-390@VM.MARIST.EDU
Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Fellow Penguin Mainframers,
Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or SUSE) 
on the s390x architecture? We have been given a "Security Requirement" that 
this vendor specific software has to be in place, and we cannot even verify 
that they support the s390x architecture. Please share any experience you may 
have with this if your shop has gone down this path and implemented SEP.

James Chaplin, ITIL(r) v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-08-18 Thread Marcy Cortes 
We've been given an exception because it doesn't exist for z.
Not a bad thing imnsho :)



-Original Message-
From: Linux on 390 Port [mailto:LINUX-390@VM.MARIST.EDU] On Behalf Of CHAPLIN, 
JAMES (CTR)
Sent: Tuesday, August 18, 2015 5:35 AM
To: LINUX-390@VM.MARIST.EDU
Subject: [LINUX-390] Symantec Endpoint Protection (SEP) for installation on 
zLinux?

Fellow Penguin Mainframers,
Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or SUSE) 
on the s390x architecture? We have been given a "Security Requirement" that 
this vendor specific software has to be in place, and we cannot even verify 
that they support the s390x architecture. Please share any experience you may 
have with this if your shop has gone down this path and implemented SEP.

James Chaplin, ITIL(r) v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies

--
For LINUX-390 subscribe / signoff / archive access instructions, send email to 
lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit http://wiki.linuxvm.org/

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Re: Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-08-18 Thread Dave Rivers 
This link professes to describe all the system requirements for all
of the versions of Symantec Endpoint Protection:

  https://support.symantec.com/en_US/article.TECH163829.html#SystemRequirements 


In my casual glance I didn’t see anything about Linux at all… much less 
mainframe Linux,
only Windows and Mac OSX.

- Dave R. -

--
riv...@dignus.comWork: (919) 676-0847
Get your mainframe programming tools at http://www.dignus.com




> On Aug 18, 2015, at 8:34 AM, CHAPLIN, JAMES (CTR)  
> wrote:
> 
> Fellow Penguin Mainframers,
> Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or 
> SUSE) on the s390x architecture? We have been given a "Security Requirement" 
> that this vendor specific software has to be in place, and we cannot even 
> verify that they support the s390x architecture. Please share any experience 
> you may have with this if your shop has gone down this path and implemented 
> SEP.
> 
> James Chaplin, ITIL(r) v3 Foundation
> Systems Programmer, MVS, zVM & zLinux
> CA Technologies
> 
> --
> For LINUX-390 subscribe / signoff / archive access instructions,
> send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
> http://www.marist.edu/htbin/wlvindex?LINUX-390
> --
> For more information on Linux on System z, visit
> http://wiki.linuxvm.org/
> 


--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/

Symantec Endpoint Protection (SEP) for installation on zLinux?

2015-08-18 Thread CHAPLIN, JAMES (CTR) 
Fellow Penguin Mainframers,
Has anyone installed Symantec Endpoint Protection (SEP) on Linux (RHEL or SUSE) 
on the s390x architecture? We have been given a "Security Requirement" that 
this vendor specific software has to be in place, and we cannot even verify 
that they support the s390x architecture. Please share any experience you may 
have with this if your shop has gone down this path and implemented SEP.

James Chaplin, ITIL(r) v3 Foundation
Systems Programmer, MVS, zVM & zLinux
CA Technologies

--
For LINUX-390 subscribe / signoff / archive access instructions,
send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit
http://www.marist.edu/htbin/wlvindex?LINUX-390
--
For more information on Linux on System z, visit
http://wiki.linuxvm.org/