Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

App Control: Anti-Virus Exclusions for Agent (Linux)

App Control: Anti-Virus Exclusions for Agent (Linux)

Environment

  • App Control Agent (formerly CB Protection): All Supported Versions
  • Linux OS: All Supported Versions

Question

What are the recommended agent anti-virus exclusions for Linux?

Answer

Path/LocationInformation
/opt/bit9/bin/Agent Application and Uninstall script
/srv/bit9/data/Agent Database and Diagnostic Logs
/lib/modules/kernelversion/kernel/lib/b9k_*.koAgent Kernel Driver
/lib/modules/kernelversion/kernel/lib/cbproxy_cbp_*.koAgent Proxy Module
/etc/rc*/*b9daemon and /etc/init.d/b9daemonAgent Startup Script
/etc/X11/xinit/xinitrc.d/90b9notifier.shAgent Block Notifier

Additional Notes

  • Some vendors require trailing asterisks (*) when entering exclusions. Sub-folders should be included in the exclusions. Please refer to the vendors documentation.
  • The agent is considered a "Real Time" scanner. It also has a self-protection mechanism to mitigate tampering with the agents services or files. It is important to set these exclusions up as interference from other security products can cause inter-operability and performance issues.

Related Content


Labels (1)
Tags (2)
Was this article helpful? Yes No
100% helpful (1/1)
Article Information
Author:
Creation Date:
‎09-04-2020
Views:
2412
Contributors