avielc 56 Posted August 31, 2022 Share Posted August 31, 2022 so you're saying that maybe me installing these libssl packages did something? wget hxxp://ports.ubuntu.com/pool/main/o/openssl/libssl1.1_1.1.1f-1ubuntu2.15_amd64.deb wget hxxp://archive.ubuntu.com/ubuntu/pool/main/o/openssl/libssl1.1_1.1.1f-1ubuntu2.15_amd64.deb dpkg -i libssl1.1_1.1.1f-1ubuntu2.15_amd64.deb openssl_1.1.1f-1ubuntu2.15_amd64.deb apt-mark hold openssl This is what I did to get the old libs and install them. if it helps you you can add it to a bash script so it'll be automated too. Let me know how it goes! (if it doesn't work, maybe you will need to copy the missing file from another computer (libssl.so.1.1) Link to comment Share on other sites More sharing options...
denixx 7 Posted September 1, 2022 Share Posted September 1, 2022 Guys, I feel you are messing with libssl, but it is not good to mess with it and give others ghostly hopes to work around the installation. @Marcos is not so happy to announce a specific release day because Ubuntu moved to libssl 3 and dropped old libssl 1.x.x entirely. There is a need for an ESET devs team to produce a compatible variant for a new OS version because libssl 3 has some breaking changes (a major version digit is changing precisely in such cases). My experience using Ubuntu(s)/Arch says you must not manually mess with libssl in production systems. Except if you want to break the security layer of your OS to the state when you couldn't use apt/pacman to download packages thru https, inability to run crypto operations like signature verification, etc. Old EEA is linked to old libssl 1.1.x, you could check it running $ /opt/eset/eea/sbin/lic /opt/eset/eea/sbin/lic: error while loading shared libraries: libssl.so.1.1: cannot open shared object file: No such file or directory As a developer myself, I feel all the pain and questions like "Why the hell they broke it here?!" of ESET devs. Antiviruses for Linux are an enterprise thingy. Enterprises are usually not happy to throw more bucks for a blind move to a new release of Linux just because it was released. ESET in this case is just "doing their best for a hard decision made in Canonical". Businesses are asking for support, so 22.04.1 is a good version to have "stabilized LTS"&&"businesses are thinking to start using it". Max Lavache and eab 2 Link to comment Share on other sites More sharing options...
eab 25 Posted September 2, 2022 Share Posted September 2, 2022 @denixxI agree 100% with you. I also cannot find any other enterprise AV which is Ubuntu 22.04 ready, so it seems like ESET are still the most robust solution when it comes to this. The only question scratching around in my brain is: Did Canonical make the decision to drop libssl 1.x last-minute before the release of 22.04, or were there months or more before they made that call? Do you know? Link to comment Share on other sites More sharing options...
denixx 7 Posted September 2, 2022 Share Posted September 2, 2022 @eab Sorry, I have no answer for your question, as it might be hard to ask Google to search for something like "who and where decided to drop libssl 1.1 and what guided them," even if you are a google-fu champion. There are Release notes for 22.04 here: https://discourse.ubuntu.com/t/jammy-jellyfish-release-notes/24668 I understood that ESET usually starts work under some issues after the OS release. I faced it while I was in a Fast Ring of Windows Insider program (for no reason, just pure curiosity) and tortured Marcos with mem dumps while Microsoft mangled with network stack, maybe. ESET's SSP firewall module produced BSODs (actually, they were green ). Technology is cursed. IS specialists reveal issues (bounty hunting), and technology giants prove some things like "SHA1 is really broken" (https://shattered.io/) maybe also for no reason, just pure curiosity. Someone had to make the hard decision somewhere, and it's good Canonical made this decision in 2022 (or maybe 2021). 22.04 is an LTS release, and 20.04 LTS will have updates until early 2025: https://ubuntu.com/about/release-cycle. This is a long enough period for everyone to update their software. I am patiently using 21.10 with dropped support (in VM) because it is still better to have EEA over slightly old OS than to have fresh, shining LTS without EEA. Sept-Oct is acceptable for me as my VM is not facing the internet directly, and I use it for a few tasks. I also faced the issue with my home router OpenVPN configuration, thankfully to 22.04 (in a new VM). This way, I understood the migration to 22.04 would not be simple as it was for previous LTSes. I think I even will reinstall 22.04 from scratch into fresh VM when ESET releases EEA with support for 22.04, as I might break things in the previous copy in my trials. 22.04 with dropped libssl 1.x will be a hard nut for many software companies. But in final, it will be beneficial. Link to comment Share on other sites More sharing options...
denixx 7 Posted September 2, 2022 Share Posted September 2, 2022 @eab Check this thread https://lists.ubuntu.com/archives/ubuntu-devel/2021-October/041639.html eab 1 Link to comment Share on other sites More sharing options...
Petromiralles IT Dep 1 Posted September 8, 2022 Share Posted September 8, 2022 Hello! The IT department where I work, has relied on ESET solutions to protect more than 200 systems on our network, including servers and workstations, very happy with their performance to date. That said, the license we purchased includes the ability to install this software on our compatible Linux systems and it seems to me a nonsense to have to downgrade a security critical component such as OpenSSL, to continue using other security software such as Endpoint Antivirus. In our specific case, we have been able to solve the incompatibility problem (temporary I hope) with Ubuntu 22.04.01 in the following way: # download binary openssl packages from Impish builds wget hxxp://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_1.1.1f-1ubuntu2.16_amd64.deb wget hxxp://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_1.1.1f-1ubuntu2.16_amd64.deb # install downloaded binary packages sudo dpkg -i libssl-dev_1.1.1f-1ubuntu2.16_amd64.deb sudo dpkg -i openssl_1.1.1f-1ubuntu2.16_amd64.deb Once this is done, the EEA service can be restarted succesfully and the GUI in GNOME Desktop can be launched again. It also re-synchronizes with our local ERA installation. I hope these indications will be useful for the rest of the forum users who encounter this problem, and will be a wake-up call for ESET to hurry to release the promised update for September-October, in order to upgrade OpenSSL to v3.0 again. Sorry for my English. Best regards. eab 1 Link to comment Share on other sites More sharing options...
hnksnr 3 Posted September 15, 2022 Share Posted September 15, 2022 Hi Marcos! Is there any pre-versions for ubuntu 22.04 yet? i just encountered the problem, ofc in the Protect repository 9.0.5 the latest. i Understand the supported version come sept-oct. I'm just curious if there's anything new. azeu666 1 Link to comment Share on other sites More sharing options...
vblipt 1 Posted September 26, 2022 Share Posted September 26, 2022 It's nearly end of september, and we still got no updates. Can you at least estimate time we have to wait until you fix the problem? azeu666 1 Link to comment Share on other sites More sharing options...
Administrators Marcos 5,267 Posted September 26, 2022 Administrators Share Posted September 26, 2022 We didn't promise to release it in September. It will take a few weeks, we don't give any precise ETA since there are many variables that affect the release date. denixx, Nightowl and hnksnr 3 Link to comment Share on other sites More sharing options...
avielc 56 Posted September 29, 2022 Share Posted September 29, 2022 On 7/12/2022 at 3:15 PM, Marcos said: A new service release with support for Ubuntu 22.04 LTS is planned in 2-3 months from now. So basically Marcos you gave a timeline but it's not definitive. I can understand that, these things takes time and a lot of testings to avoid needing a hotfixes to be pushed due to a complete break. Marcos would you mind updating this thread once the service is out? (I don't mind you dropping a link to the release notes without adding another word, this would really be helpful to know what's has changed) Also if there is any place with a more technical details on such major changes (e.g. libssl issues) where there could be an explanation on what is working and what isn't (to avoid installing something broken per our usecase. that would be really REALLY helpful and a great addition to service to ESET customers. Thanks mate! Appreciate your answers and help in the forum. hnksnr and eab 2 Link to comment Share on other sites More sharing options...
eab 25 Posted October 4, 2022 Share Posted October 4, 2022 On 9/26/2022 at 2:03 PM, Marcos said: We didn't promise to release it in September. It will take a few weeks, we don't give any precise ETA since there are many variables that affect the release date. Sure, but then again, I'm not aware of 'We' (ESET?) having technically 'promised' anything. In fact, I'm not aware of any official communication on the topic whatsoever. Now this could be because ... I'm ignorant, and there exists such official communication, but I'm just not aware of it's existence. The question then could be asked why you never mentioned said information here in this thread ... Or it could be because the proportion of ESET Ubuntu users is so small that it's not worth ESET's time to formulate such a communication. Or it could be that ESET got caught with their proverbial pants down on this one, and any communication would likely just provoke more questions. The question to be posed here is why they were they caught so off-guard when since at least October 2021 it seemed more than likely that Ubuntu 22.04 would ship with openssl3 ... !? An additional question would be why ESET didn't ship an intermediate release with libssl1 bundled in the software, so that it's Ubuntu customers wouldn't be left in the lurch while they take 6 months to release something more final. I assume it's because of option #2. In any case, there seems to be an informational blackout surrounding this incident - something I, and others, will not quickly forget. ESET could have handled this much better, especially with regards to ESET's business customers who are each paying for dozens, if not hundreds, of licences per year! avielc 1 Link to comment Share on other sites More sharing options...
Most Valued Members Nightowl 206 Posted October 4, 2022 Most Valued Members Share Posted October 4, 2022 53 minutes ago, eab said: Sure, but then again, I'm not aware of 'We' (ESET?) having technically 'promised' anything. In fact, I'm not aware of any official communication on the topic whatsoever. Now this could be because ... I'm ignorant, and there exists such official communication, but I'm just not aware of it's existence. The question then could be asked why you never mentioned said information here in this thread ... Or it could be because the proportion of ESET Ubuntu users is so small that it's not worth ESET's time to formulate such a communication. Or it could be that ESET got caught with their proverbial pants down on this one, and any communication would likely just provoke more questions. The question to be posed here is why they were they caught so off-guard when since at least October 2021 it seemed more than likely that Ubuntu 22.04 would ship with openssl3 ... !? An additional question would be why ESET didn't ship an intermediate release with libssl1 bundled in the software, so that it's Ubuntu customers wouldn't be left in the lurch while they take 6 months to release something more final. I assume it's because of option #2. In any case, there seems to be an informational blackout surrounding this incident - something I, and others, will not quickly forget. ESET could have handled this much better, especially with regards to ESET's business customers who are each paying for dozens, if not hundreds, of licences per year! Not only ESET into this position , if you even search for a security product for 22.04 , you won't find at the moment It seems that when Ubuntu stopped using older version of openssl , they did impact everyone with this. It should be around this month the release would be dropped as several times being said here on the forum And it could have been like you said , a version with old openssl and a version with updated openssl , but end of the day this is a security product and it shouldn't have things like this and should be built securely and good , even if there was a new technology/whatever introduced , it might take time for companies to build on it For example that shows the market share in 2019 between the operating systems , it shows that Linux is not used that much , but it's changing with the time , since Steam is using Linux for their Steam Deck , all big corporations/enterprises use Linux for their servers , from Google and so on ... they are all on Linux and not on Windows Server , I wonder even if Microsoft uses Windows Server But be patient , I am also waiting for the new version so I can upgrade my linux installations. denixx and avielc 2 Link to comment Share on other sites More sharing options...
eab 25 Posted October 6, 2022 Share Posted October 6, 2022 @Nightowl I hear you, and I agree with your points being: There doesn't seem to be any AV security product out there which officially supports Ubuntu 22.04/openssl3 (I searched 👀) ESET prefers to release security products which are as secure and well-developed as possible Linux OS on the PC is 2%- 3% of the market share ESET will be releasing a compatible version this month However, all of that being the case, it would have been a welcome, if not also expected, act of professionalism for ESET to communicate these sorts of things to it's paying customers, instead of leaving them high and dry to the point that said customers have to go looking through forum threads to get some indication of what's going on. ESET can send out promotional E-mails to all it's customers, so they obviously have the technical and staffing resources to make this kind of communication happen. I only mention this because it's something I think ESET can (easily) improve - and I want them to improve because I like their products. azeu666 and avielc 2 Link to comment Share on other sites More sharing options...
lefju 0 Posted October 7, 2022 Share Posted October 7, 2022 Hi, I got ESET eea.service running on ubuntu 22.04 using libraries provided by ubuntu (found in the core snap package), here is a quick'n dirty procedure: ``` cp /snap/core20/current/usr/lib/x86_64-linux-gnu/libcrypto* /opt/eset/eea/lib/ cp /snap/core20/current/usr/lib/x86_64-linux-gnu/libssl* /opt/eset/eea/lib/ cd /opt/eset/eea/lib/ chmod +x libcrypto.so.1.1 libssl.so.1.1 ln -s libcrypto.so.1.1 libcrypto.so ln -s libssl.so.1.1 libssl.so systemctl restart eea.service ``` (the core snap package should already be installed if you are running a desktop version of ubuntu) (you might need to remove and reinstall eset after doing this for the install process to finish properly if it is a first install) Another useful config, if like me you consider that eset is monopolizing too much compute resources while running: edit `/etc/systemd/system/eea.service.d/50_limits.conf` and add the following lines: ``` [Service] Nice=19 IOSchedulingClass=best-effort IOSchedulingPriority=7 CPUQuota=200% MemoryMax=1G MemorySwapMax=0 IOWeight=20 CPUWeight=20 ``` and then execute ``` systemctl daemon-reload systemctl restart eea.service ``` Cheers, Link to comment Share on other sites More sharing options...
priorityaccess 0 Posted October 7, 2022 Share Posted October 7, 2022 I know of an antivirus solution for Linux that officially supports Ubuntu 22.04, but it is not marketed as an "endpoint" solution and so I don't think it provides a user interface and visual user notifications. It does have on-access scanning though: https://community.withsecure.com/discussion/comment/129377/#Comment_129377 https://help.f-secure.com/product.html#business/releasenotes-business/latest/en/fsls64-latest-en Link to comment Share on other sites More sharing options...
Max Lavache 0 Posted October 13, 2022 Share Posted October 13, 2022 On 10/4/2022 at 10:59 AM, Nightowl said: Not only ESET into this position , if you even search for a security product for 22.04 , you won't find at the moment It seems that when Ubuntu stopped using older version of openssl , they did impact everyone with this. It should be around this month the release would be dropped as several times being said here on the forum And it could have been like you said , a version with old openssl and a version with updated openssl , but end of the day this is a security product and it shouldn't have things like this and should be built securely and good , even if there was a new technology/whatever introduced , it might take time for companies to build on it For example that shows the market share in 2019 between the operating systems , it shows that Linux is not used that much , but it's changing with the time , since Steam is using Linux for their Steam Deck , all big corporations/enterprises use Linux for their servers , from Google and so on ... they are all on Linux and not on Windows Server , I wonder even if Microsoft uses Windows Server But be patient , I am also waiting for the new version so I can upgrade my linux installations. Almost all companies use Windows Server, and much more than Linux servers. Windows Server is the core of almost all companies system and network infrastructures with Active Directory LDAP, DHCP, DNS, file storage and so on. Linux just runs web servers, and not all of them. Many still rely on aspx, .net and are obviously running IIS on Windows Server. Link to comment Share on other sites More sharing options...
lleysan 1 Posted October 13, 2022 Share Posted October 13, 2022 5 hours ago, Max Lavache said: Almost all companies use Windows Server, and much more than Linux servers. Windows Server is the core of almost all companies system and network infrastructures with Active Directory LDAP, DHCP, DNS, file storage and so on. Linux just runs web servers, and not all of them. Many still rely on aspx, .net and are obviously running IIS on Windows Server. If you are talking about those companies that do not know who the DevOps is, then yes, you are right. And so current trends show just a fairly confident transition to Linux solutions both in the server part and in terms of user OS. As you can see, this chart is for 2019, and we will soon move on to 2023, this information is, to put it mildly, irrelevant. I won’t say that Windows fades into the background, but if there is a choice, users use more for MAC, and system administrators and other people who are closely familiar with technology and support their ecosystems calmly use various Linux solutions. Since the trend to save money is more relevant than ever these days. Link to comment Share on other sites More sharing options...
eab 25 Posted October 20, 2022 Share Posted October 20, 2022 Why do I have the feeling like the devs are going to wait until October 31st 11:59:59 to release the Ubuntu 22.04 version .... 😒 azeu666 1 Link to comment Share on other sites More sharing options...
denixx 7 Posted October 22, 2022 Share Posted October 22, 2022 So, a time has come to ask for support for 22.10 X-D eab and azeu666 2 Link to comment Share on other sites More sharing options...
eab 25 Posted October 28, 2022 Share Posted October 28, 2022 On 8/17/2022 at 11:48 AM, Marcos said: The release is expected in Sept-October. @Marcosis this still the case? 🤔 We have been contacted by our license reseller, as our renewal is due soon, and have replied that we are not renewing until/unless Ubuntu 22.04 is officially supported. In less than 2 business days, 6 months will have passed since Ubuntu 22.04 was released. ⏳ Link to comment Share on other sites More sharing options...
Administrators Marcos 5,267 Posted October 28, 2022 Administrators Share Posted October 28, 2022 A new version of Endpoint with support for Ubuntu 22.04 is scheduled for the next week. hnksnr and denixx 2 Link to comment Share on other sites More sharing options...
avielc 56 Posted October 28, 2022 Share Posted October 28, 2022 14 minutes ago, Marcos said: A new version of Endpoint with support for Ubuntu 22.04 is scheduled for the next week. Is there some place where this information is made public? Thanks for Sharing Marcos, but you do understand that by revealing it after someone mentions their dissatisfaction from the product to the point of not renewing their license, presents itself as an enforced answer, which just makes ESET looks bad. Why WHY Can't this be told publicly, shared more transparently?? This isn't criticism. This is merely a poiint for improvement, where delivering more frequent news to those working with ESET products can benefit and schedule their timeline accordingly. eab 1 Link to comment Share on other sites More sharing options...
Administrators Marcos 5,267 Posted October 28, 2022 Administrators Share Posted October 28, 2022 The release of new versions is announced here: https://www.eset.com/int/about/newsroom/ as well as via other channels, such as this forum, ESET FB page, etc. Link to comment Share on other sites More sharing options...
avielc 56 Posted October 28, 2022 Share Posted October 28, 2022 Can you direct me to the actual new version announcement you just mentioned about Linux new version? eab 1 Link to comment Share on other sites More sharing options...
ESET Moderators TomasP 318 Posted October 28, 2022 ESET Moderators Share Posted October 28, 2022 44 minutes ago, avielc said: Can you direct me to the actual new version announcement you just mentioned about Linux new version? The current version's announcement was posted here when it was released: https://forum.eset.com/topic/31738-eset-endpoint-antivirus-for-linux-version-9050-has-been-released/ Link to comment Share on other sites More sharing options...
Recommended Posts