Linux SoftwareSystemMonitoringSophie 3.04rc2

Sophie 3.04rc2


Sophie is a daemon which uses 'libsavi' library from Sophos anti-virus vendor. On startup, Sophie initializes SAVI (Sophos Anti-Vi
Developer:   Vanja Hrustic
      more software by author →
Price:  0.00
License:   GPL (GNU General Public License)
File size:   124K
Language:   
OS:   
Rating:   0 /5 (0 votes)
Your vote:  
enlarge screenshot


Sophie is a daemon which uses 'libsavi' library from Sophos anti-virus vendor.

On startup, Sophie initializes SAVI (Sophos Anti-Virus Interface), loads virus patterns into memory, opens local UNIX domain socket, and waits for someone to connect and instructs it which path to scan. Since it is loaded in RAM, scanning is very fast. Of course, speed of scanning also depends on SAVI settings and size of the file.

Sophie was initially created for use with Virge, a mail virus/attachment scanning tool. Because of that, not all SAVI features are implemented in Sophie. My intention was not to create a tool that does the same job as sweep (Sophos tools), but to make fast and efficient tool that can detect virus - but not remove it or make XLS report on it (heh - this was a stupid joke, I presume ;).

At this point, some of the features (that have been requested) are implemented. Some are not, and might never be. So, please, when asking me to add things in Sophie, keep in mind that Sophie was created for Virge, not to be used as a virus scanning tool for a workstation.

This is how Sophie works:

Initializes SAVI inteface, and loads virus patterns
Creates a local UNIX socket (/var/run/sophie, by default)
Waits for someone to connect to the socket, and send path(s) on the local filesystem which need to be scanned
Sophie then forks a process, scans the path(s), and if virus is found, it stops scanning and returns result (1:virusname)
If no viruses were found, it just returns 0
Sophie then goes back to sleep...

Since virus patterns are always in memory, scanning is fast (fast in 'startup', not fast in 'execution' :) and takes much less resources. For one 'run', it probably doesn't make a difference if you will use Sophie of Sweep. However, if you have a program (local mail delivery agent, for example) that needs to scan every few seconds/minutes - things are way different.

The 'difference' I am talking about is not in scanning itself - when scanning is in progress, Sophie is little involved in it. Scanning speed depends on the SAVI setup, and on the size of the file being scanned (and if it is an archive, there might be hundreds, even thousands of files inside). However, the initialization of the engine is what count in this case.

What's New in This Release:
  • etc/sophie.savi is now set with SAVI default. Names/values are set as to default SAVI settings from SetConfigDefaults(pSAVI) call.
  • 28 new SAVI options added to etc/sophie.savi file. Options were taken with SAVI 3.77.
  • Check for nanosleep before including rt library
  • "Grp" options fix in sophie_init.c. Thanks to Markus Stumpf for spotting it.
    tags virus patterns  are implemented  scanning tool  created for  tool that  sophie then  sophie savi  etc sophie  sophie was  with savi  savi settings  loads virus  initializes savi  

    Download Sophie 3.04rc2


     http://www.vanja.com/tools/sophie/sophie-3.04rc2.tar.bz2
     http://www.vanja.com/tools/sophie/sophie-3.04rc2.tar.gz


    Authors software

    Similar software

    Sophie 3.04rc2 (by Vanja Hrustic)
    Sophie is a daemon which uses 'libsavi' library from Sophos anti-virus vendor.

    On startup, Sophie initializes SAVI (Sophos Anti-Vi

    mod_savi 0.5 (by Paul B. Henson)
    mod_savi is a Sophos Virus-Scanning integration module.

    This allows files delivered by the web server to be scanned for viruses in

    OpenAntiVirus samba-vscan 0.3.6b (by Christian Bricart)
    samba-vscan provides on-access scanning of Samba shares with ClamAV (clamd and libclamav), F-Secure AV, FRISK F-Prot Daemon, Kaspersk

    Virge 3.04rc3 (by Vanja Hrustic)
    Virge is mail 'scanner' written in C, which replaces/substitutes procmail for a while, checks the incoming mail, and then sends the m

    POP3 Virus Scanner Proxy 0.4 (by Folke Ashberg)
    POP3 Virus Scanner Proxy is a full-transparent proxy daemon which scans all mails for viruses using third party scanners (built-in su

    P3Scan 2.9.04d (by Jack S. Lai)
    P3Scan is a full transparent proxy server for email clients

    PHP ClamAV Lib 0.12a (by Geffrey Velasquez)
    PHP ClamaAV Lib is a PHP extension that allows you to incorporate virus scanning features in your PHP scripts.

    It uses the Clam An

    SaVi 1.3.2a (by Lloyd Wood)
    SaVi allows you to simulate satellite orbits and coverage, in two and three dimensions

    AVG Anti-Virus Definitions 7.1.30 (by Grisoft)
    AVG Anti-Virus Definitions are virus definitions for AVG Anti-Virus software.

    About AVG Anti-Virus:

    AVG Professional Single Edi

    Inflex 1.1.0.1RC3 (by Paul L Daniels)

    Other software in this category

    GKrellM 2.2.10 (by Bill Wilson)
    GKrellM application is a GTK-based stacked monitor program that charts SMP CPUs, disks,

    lm_sensors 2.10.1 (by Mark S.)

    Loggerithim 7.0.1 (by gphat)
    Loggerithim is an extensible monitoring and remote management package

    SmokePing 2.0.9 (by Tobias Oetiker)
    SmokePing is a delux latency measurement tool

    Pipe Viewer 0.9.6 (by Andrew Wood)

    •     search


    Featured Software

    jEdit 4.3 pre8
    jEdit is an Open Source text editor written in Java

    Opera 9.02
    Surf the Internet in a safer, faster, and easier way with Opera browser

    GNU Aspell 0.60.4
    GNU Aspell is a Free and Open Source spell checker designed to eventually replace Ispell


    Subscribe in Rojo
    Google Reader
    Add to My Yahoo!

    Add to My AOL
    Subscribe with Bloglines
    Subscribe in NewsGator Online
    Add 'nixbit linux software' to Newsburst from CNET News.com
    del.icio.us nixbit linux software


    Top tags