On-Access Scanner Not Working

[Guest]

[ecudes]

I've installed Comodo Antivirus for Linux, and when I open the main window I have an error saying 'Filesystem filter driver is not loaded'.  When I click 'Run diagnostics', it says problems were found with the installation.  I choose 'yes' to fix them, and a message appears saying 'The kernel module redirfs.ko appropriate for your current kernel version does not exist, please run /opt/COMODO/post_setup.sh to install it.  Then run "/etc/init.d/cmdavd restart" command to restart your cmdavd service.

A second message, almost identical to the first is displayed after, but instead of 'redirfs.ko', it's 'avil.ko'

When I run the post_setup command, I get this output:


Then linux kernel source or linux kernel headers for your current kernel version 3.1.0-7.fc16.i686 can not be found.
Please install the kernel source or kernel headers for 3.1.0-7.fc16.i686, then run this script again.
make -C /lib/modules/`uname -r`/build M=/tmp/driver/redirfs modules
make: *** /lib/modules/3.1.0-7.fc16.i686/build: No such file or directory.  Stop.
make: *** [all] Error 2
make -C /lib/modules/`uname -r`/build M=/tmp/driver/redirfs modules_install
make: *** /lib/modules/3.1.0-7.fc16.i686/build: No such file or directory.  Stop.
make: *** [install] Error 2
FATAL: Module redirfs not found.

RedirFS kernel modules installation failed.

The cmdagent failed to stop!                               [FAILED]
The cmdagent started successfully!                         [  OK  ]
The cmgdaemon stopped successfully!                        [  OK  ]
The cmgdaemon started successfully!                        [  OK  ]

COMODO Antivirus is successfully configured, you can start it from Menu or Desktop.
 
I then run '/etc/init.d/cmdavd restart' which runs ok.

I've tried restarting my computer, which still does not resolve the matter. 

I'm running Fedora 16, which I believe is supported.

Note: On the main Comodo Antivirus window, On Access is showing as 'green', which implies it's active I guess, however when I download and run the EICAR test file, nothing is detected on-access (it is detected on an on-demand scan though).

How can I resolve this so on-access scanning works?

thanks,

Richard

[EricJH]

CAV does not have a web filter. So when you are donwloading a virus it will not see it. Only once the virus hits the hd or memory it will detect it. That is still early enough in the Comodo philosophy.

[ecudes]

CAV does not have a web filter. So when you are donwloading a virus it will not see it. Only once the virus hits the hd or memory it will detect it. That is still early enough in the Comodo philosophy.

I'm aware CAV does not have a web filter thats not the issue.  The problem is with the on-access scanner.  When the file is executed, it opens no problem, with no virus detected warning at all, and no mention of the incident showing on the main screen either.

[EricJH]

Sorry for missing you had tried to execute to eicar test file. Fedora 16 is supported as the release topic states

I am not much of a Linux user so I fired up Ubuntu 12.04 in VM Ware. I downloaded the eicar.com and when I tried to run it the AV alerted me about it.

I sent a pm to Comodo AV Linux people to come and take a look.

[Yanghua Fang]

I've installed Comodo Antivirus for Linux, and when I open the main window I have an error saying 'Filesystem filter driver is not loaded'.  When I click 'Run diagnostics', it says problems were found with the installation.  I choose 'yes' to fix them, and a message appears saying 'The kernel module redirfs.ko appropriate for your current kernel version does not exist, please run /opt/COMODO/post_setup.sh to install it.  Then run "/etc/init.d/cmdavd restart" command to restart your cmdavd service.

A second message, almost identical to the first is displayed after, but instead of 'redirfs.ko', it's 'avil.ko'

When I run the post_setup command, I get this output:


Then linux kernel source or linux kernel headers for your current kernel version 3.1.0-7.fc16.i686 can not be found.
Please install the kernel source or kernel headers for 3.1.0-7.fc16.i686, then run this script again.
make -C /lib/modules/`uname -r`/build M=/tmp/driver/redirfs modules
make: *** /lib/modules/3.1.0-7.fc16.i686/build: No such file or directory.  Stop.
make: *** [all] Error 2
make -C /lib/modules/`uname -r`/build M=/tmp/driver/redirfs modules_install
make: *** /lib/modules/3.1.0-7.fc16.i686/build: No such file or directory.  Stop.
make: *** [install] Error 2
FATAL: Module redirfs not found.

RedirFS kernel modules installation failed.

The cmdagent failed to stop!                               [FAILED]
The cmdagent started successfully!                         [  OK  ]
The cmgdaemon stopped successfully!                        [  OK  ]
The cmgdaemon started successfully!                        [  OK  ]

COMODO Antivirus is successfully configured, you can start it from Menu or Desktop.
 
I then run '/etc/init.d/cmdavd restart' which runs ok.

I've tried restarting my computer, which still does not resolve the matter. 

I'm running Fedora 16, which I believe is supported.

Note: On the main Comodo Antivirus window, On Access is showing as 'green', which implies it's active I guess, however when I download and run the EICAR test file, nothing is detected on-access (it is detected on an on-demand scan though).

How can I resolve this so on-access scanning works?

thanks,

Richard

Hi Richard,

In fact post_setup.sh compile driver source and then install compiled drivers. That is to say proper Linux kernel headers must exists in your current Linux.
To install kernel headers, please try the following steps:
1. uname -r // get current kernel version
2. use yum or apt-cache to search kernel-header, linux-kernel or kernel-devel
3. install what you have searched according current kernel version.
4. run post_setup.sh again.

Thanks,
Yanghua

[ecudes]

Hi Richard,

In fact post_setup.sh compile driver source and then install compiled drivers. That is to say proper Linux kernel headers must exists in your current Linux.
To install kernel headers, please try the following steps:
1. uname -r // get current kernel version
2. use yum or apt-cache to search kernel-header, linux-kernel or kernel-devel
3. install what you have searched according current kernel version.
4. run post_setup.sh again.

Thanks,
Yanghua

Hi Yanghua, thanks for your reply.
I've tried the above, and I'm still getting the error when I run post_setup.sh.

I've had a look into the 'Redirfs' program, and on their website it says 'Redirfs is not working with 2.6.38 and newer kernels'.  The kernel that comes with Fedora 16 is 3.1.0.7.fc16.i686

Could this be the problem? or has Comodo AV for Linux been tested on Fedora 16 and shown to be fully compatible?

thanks,

Richard

[kidx86]

Ok i am not best with gramar but here is how i did mine on Linux mint maya-mate.

#1.In Software Package manager Download Sqite Command line interface for sqlite.
#2. In Software package manager Download python-sqlite
Python interface to sqlite 2
#3.Run post_setup.sh in your file system /opt/Comodo/post_setup.sh   

I hope this helps you guys alot most people getting a sqlite error.

[nockdown]

I've got the same problem: "'Filesystem filter driver is not loaded".

ubuntu server 12.10 x64
comodo 1.1.268025-1 x64


Is solution still unavailable?

[KINTA-JAPAN]

Dear everyone.

>I've got the same problem: "'Filesystem filter driver is not loaded".
>ubuntu server 12.10 x64
>comodo 1.1.268025-1 x64

Please try this. But, it can't be guaranteed.
I tested kernel 3.5.0, 3.6.11, 3.7.10 and 3.8.8 on Ubuntu 12.10(x64).
Please tell me result.

(1)
execute CAVL installer.

(2)
download driver.tar from http://www.bondoffamily-net.com/~kinta-chan/techknow/Linux/RedirFS/src/driver.tar

(3)
replace /opt/COMODO/driver.tar

(4)
execute post_setup.sh

...

[KINTA-JAPAN]

Additional...

diff between original version and this patch is http://www.bondoffamily-net.com/~kinta-chan/techknow/Linux/RedirFS/src/driver.diff

Original version is http://www.redirfs.org/tiki-index.php?page=redirfs_download

[KINTA-JAPAN]

Additional-2...

When "Check for Updates" is executed, update driver.tar again before reboot.


Additional-3...

Today, I tried on Ubuntu 13.04(Kernel 3.8.0). Result is OK.

[nockdown]

KINTA-JAPAN, thank you very much!
This fix has given good result for me too.

ubuntu server 12.10
comodo 1.0.239818-1
kernel 3.5.0-27

Looking forward to next cav release with this fix!

[yoast]

Kinta Japan, thanks it worked for me.

[Tags:]