Dr.Web for Internet Gateways Unix
Anti-virus scan of the HTTP and FTP traffic on a corporate Internet gateway — proxy-server
Services for users
Key features
- Anti-virus scan of HTTP and FTP traffic
- Centralized administration over the Dr.Web Enterprise Security Suite Control Center’s Web administrator
- Filtering by host name, MIME type, or file size
- Web resources access control
- Preview technology for optimized traffic scanning
- Support of IPv4 and IPv6
- Application of various actions to different types of scanned files
- Isolation of infected files in the quarantine
- Easy-to-read reports
- Centralized administration of protection servers and collection of reports from the servers
- Simultaneous processing of several requests per individual connection
- Protection from unauthorized access
- Monitoring of the system’s operation and automatic restoration after a failure
- User notifications about the presence of viruses and other malicious code in web pages
Unique engine features
- Scans archived files at any nesting level
- Reliable detection of packed objects (even if the compression format is unknown to Dr.Web), their detailed analysis aimed at exposing hidden threats
- Leader in detecting and neutralizing complex rootkits.
- Intelligent scan technologies allow viruses to be blocked making it less likely for malware to exploit the vulnerability of a third-party application or the operating system
Detection of unknown threats
- FLY-CODE is a unique universal decompression technology enabling Dr.Web to unpack data that has been compressed with unknown packers
- The cutting-edge, non-signature scan technology Origins Tracing™ ensures the high probability that viruses unknown to Dr.Web will be detected
- The heuristic analyzer, whose analyses are based on criteria that is typical of various groups of malicious programs, detects most known threats
Updating
Always up-to-date
- Updating over the Internet, whether automatically or according to a schedule, doesn’t require user interference. Updating can also be launched manually.
- Updating is very quick even if a slow Internet connection is used.
- Updating servers are always available.
- Updates can be retrieved from an HTTP server.
- In most cases, there is no need to reboot the system to complete updating; Dr.Web starts using the updated modules and latest virus definitions right away
- Updates are small (50-200KB).
- To save traffic the anti-virus can be set to update virus databases only However, enabling this option is not recommended. To counter the latest threats, Dr.Web undergoes constant refinement. New features are incorporated in updated modules of an anti-virus package and are downloaded from Doctor Web's server automatically during regular updating sessions.
- You can also reduce traffic by downloading updates as archived files A special data-compression algorithm used by Doctor Web allows reducing size of downloaded updates. Patch files are used to deliver minor additions and fixes for virus database or program modules. The special compression algorithm applied to such patches dramatically reduces the amount of transferred data.
Virus monitoring service
- The Doctor Web virus monitoring service collects samples of malicious programs all over the Internet to create antidotes and release updates as soon as analyses are completed — as often as several times per hour.
- As soon as an update is released, users can retrieve it from several servers located at various points of the globe.
- To avoid false positives an update is tested over a huge number of uninfected files before it is released.
- The intelligent system automatically adds entries for similar viruses into the database, ensuring the prompt neutralization of emerging threats.
Advantages
- A wide range of options for establishing comprehensive protection from threats lurking in inbound Web traffic
- Delivery of virus-free content into the protected network
- Efficient filtering of traffic by the ICAP server doesn’t delay content delivery
- Protection from penetration of the defence by any type of malware
- High scalability
- Ability to process huge amounts of data in real-time
- Substantial reduction of Internet costs
- Perfect compatibility – integration with any application supporting ICAP, with all known firewalls
- Support of virtually all Unix-based operating systems currently in use
- Low system requirements allow the product to run smoothly on any server hardware
- Flexibility and easy administration; the product lets you implement protection configurations that are in compliance with your company’s security policies
How it works
Supported OS
Supported OS
- Linux with kernel 2.4.x and higher
- FreeBSD 6.х and later (Intel x86)
- Solaris 10 (Intel x86)
Any proxy server with the full support of ICAP such as:
- Squid 3.0 or later
- SafeSquid 3.0 or later
Licensing
Types of licenses
- Per number of protected users.
- Per server license – unlimited scanning of server traffic for as many as 3,000 protected users.
License options
- Anti-virus
- Anti-virus + Control Center
Dr.Web for Internet Gateways Unix is also available in Dr.Web bundles for small and medium companies.
![[Blog Dr.Web]](social/drweb.png)
![[You Tube]](social/youtube.png)
![[Twitter]](social/twitter.png)
![[Facebook]](social/facebook.png)
![[Vkontakte]](social/vkontakte.png)
