Jump to content

Installation of Eset Endpoint Antivirus on Ubuntu 22.04


Recommended Posts

so you're saying that maybe me installing these libssl packages did something? 
 

wget hxxp://ports.ubuntu.com/pool/main/o/openssl/libssl1.1_1.1.1f-1ubuntu2.15_amd64.deb
wget hxxp://archive.ubuntu.com/ubuntu/pool/main/o/openssl/libssl1.1_1.1.1f-1ubuntu2.15_amd64.deb
dpkg -i libssl1.1_1.1.1f-1ubuntu2.15_amd64.deb openssl_1.1.1f-1ubuntu2.15_amd64.deb
apt-mark hold openssl

This is what I did to get the old libs and install them. 
if it helps you you can add it to a bash script so it'll be automated too. 
Let me know how it goes!


(if it doesn't work, maybe you will need to copy the missing file from another computer

(libssl.so.1.1)

Link to comment
Share on other sites

Guys, I feel you are messing with libssl, but it is not good to mess with it and give others ghostly hopes to work around the installation.

@Marcos is not so happy to announce a specific release day because Ubuntu moved to libssl 3 and dropped old libssl 1.x.x entirely.

There is a need for an ESET devs team to produce a compatible variant for a new OS version because libssl 3 has some breaking changes (a major version digit is changing precisely in such cases).

My experience using Ubuntu(s)/Arch says you must not manually mess with libssl in production systems. Except if you want to break the security layer of your OS to the state when you couldn't use apt/pacman to download packages thru https, inability to run crypto operations like signature verification, etc.

Old EEA is linked to old libssl 1.1.x, you could check it running
$ /opt/eset/eea/sbin/lic
/opt/eset/eea/sbin/lic: error while loading shared libraries: libssl.so.1.1: cannot open shared object file: No such file or directory

As a developer myself, I feel all the pain and questions like "Why the hell they broke it here?!" of ESET devs. :)

Antiviruses for Linux are an enterprise thingy. Enterprises are usually not happy to throw more bucks for a blind move to a new release of Linux just because it was released. ESET in this case is just "doing their best for a hard decision made in Canonical". Businesses are asking for support, so 22.04.1 is a good version to have "stabilized LTS"&&"businesses are thinking to start using it".

Link to comment
Share on other sites

@denixxI agree 100% with you.

I also cannot find any other enterprise AV which is Ubuntu 22.04 ready, so it seems like ESET are still the most robust solution when it comes to this.

The only question scratching around in my brain is: Did Canonical make the decision to drop libssl 1.x last-minute before the release of 22.04, or were there months or more before they made that call? Do you know?

Link to comment
Share on other sites

@eab Sorry, I have no answer for your question, as it might be hard to ask Google to search for something like "who and where decided to drop libssl 1.1 and what guided them," even if you are a google-fu champion.

There are Release notes for 22.04 here: https://discourse.ubuntu.com/t/jammy-jellyfish-release-notes/24668

I understood that ESET usually starts work under some issues after the OS release. I faced it while I was in a Fast Ring of Windows Insider program (for no reason, just pure curiosity) and tortured Marcos with mem dumps while Microsoft mangled with network stack, maybe. ESET's SSP firewall module produced BSODs (actually, they were green ).

Technology is cursed. IS specialists reveal issues (bounty hunting), and technology giants prove some things like "SHA1 is really broken" (https://shattered.io/) maybe also for no reason, just pure curiosity.

Someone had to make the hard decision somewhere, and it's good Canonical made this decision in 2022 (or maybe 2021).
22.04 is an LTS release, and 20.04 LTS will have updates until early 2025: https://ubuntu.com/about/release-cycle. This is a long enough period for everyone to update their software.

I am patiently using 21.10 with dropped support (in VM) because it is still better to have EEA over slightly old OS than to have fresh, shining LTS without EEA. Sept-Oct is acceptable for me as my VM is not facing the internet directly, and I use it for a few tasks. I also faced the issue with my home router OpenVPN configuration, thankfully to 22.04 (in a new VM). This way, I understood the migration to 22.04 would not be simple as it was for previous LTSes. I think I even will reinstall 22.04 from scratch into fresh VM when ESET releases EEA with support for 22.04, as I might break things in the previous copy in my trials.

22.04 with dropped libssl 1.x will be a hard nut for many software companies. But in final, it will be beneficial.

Link to comment
Share on other sites

Hello!

The IT department where I work, has relied on ESET solutions to protect more than 200 systems on our network, including servers and workstations, very happy with their performance to date.

That said, the license we purchased includes the ability to install this software on our compatible Linux systems and it seems to me a nonsense to have to downgrade a security critical component such as OpenSSL, to continue using other security software such as Endpoint Antivirus.

In our specific case, we have been able to solve the incompatibility problem (temporary I hope) with Ubuntu 22.04.01 in the following way:

# download binary openssl packages from Impish builds
wget hxxp://security.ubuntu.com/ubuntu/pool/main/o/openssl/openssl_1.1.1f-1ubuntu2.16_amd64.deb
wget hxxp://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl-dev_1.1.1f-1ubuntu2.16_amd64.deb

# install downloaded binary packages
sudo dpkg -i libssl-dev_1.1.1f-1ubuntu2.16_amd64.deb
sudo dpkg -i openssl_1.1.1f-1ubuntu2.16_amd64.deb

Once this is done, the EEA service can be restarted succesfully and the GUI in GNOME Desktop can be launched again. It also re-synchronizes with our local ERA installation.

eset-eea-ubuntu-22-04-openssl-1-1-1f.jpg

I hope these indications will be useful for the rest of the forum users who encounter this problem, and will be a wake-up call for ESET to hurry to release the promised update for September-October, in order to upgrade OpenSSL to v3.0 again.

Sorry for my English.
Best regards.

Link to comment
Share on other sites

Hi Marcos!

Is there any pre-versions for ubuntu 22.04 yet? i just encountered the problem, ofc in the Protect repository 9.0.5 the latest. 

i Understand the supported version come sept-oct. I'm just curious if there's anything new.

Link to comment
Share on other sites

  • 2 weeks later...
On 7/12/2022 at 3:15 PM, Marcos said:

A new service release with support for Ubuntu 22.04 LTS is planned in 2-3 months from now.

So basically Marcos you gave a timeline but it's not definitive. 
I can understand that, these things takes time and a lot of testings to avoid needing a hotfixes to be pushed due to a complete break. 

Marcos would you mind updating this thread once the service is out? (I don't mind you dropping a link to the release notes without adding another word, this would really be helpful to know what's has changed)

Also if there is any place with a more technical details on such major changes (e.g. libssl issues) where there could be an explanation on what is working and what isn't (to avoid installing something broken per our usecase. that would be really REALLY helpful and a great addition to service to ESET customers. 

Thanks mate!
Appreciate your answers and help in the forum.

Link to comment
Share on other sites

On 9/26/2022 at 2:03 PM, Marcos said:

We didn't promise to release it in September. It will take a few weeks, we don't give any precise ETA since there are many variables that affect the release date.

Sure, but then again, I'm not aware of 'We' (ESET?) having technically 'promised' anything. In fact, I'm not aware of any official communication on the topic whatsoever.

Now this could be because ...

  1. I'm ignorant, and there exists such official communication, but I'm just not aware of it's existence. The question then could be asked why you never mentioned said information here in this thread ... 
  2. Or it could be because the proportion of ESET Ubuntu users is so small that it's not worth ESET's time to formulate such a communication.
  3. Or it could be that ESET got caught with their proverbial pants down on this one, and any communication would likely just provoke more questions. The question to be posed here is why they were they caught so off-guard when since at least October 2021 it seemed more than likely that Ubuntu 22.04 would ship with openssl3 ... !?

An additional question would be why ESET didn't ship an intermediate release with libssl1 bundled in the software, so that it's Ubuntu customers wouldn't be left in the lurch while they take 6 months to release something more final. I assume it's because of option #2.

In any case, there seems to be an informational blackout surrounding this incident - something I, and others, will not quickly forget. ESET could have handled this much better, especially with regards to ESET's business customers who are each paying for dozens, if not hundreds, of licences per year!

Link to comment
Share on other sites

  • Most Valued Members
53 minutes ago, eab said:

Sure, but then again, I'm not aware of 'We' (ESET?) having technically 'promised' anything. In fact, I'm not aware of any official communication on the topic whatsoever.

Now this could be because ...

  1. I'm ignorant, and there exists such official communication, but I'm just not aware of it's existence. The question then could be asked why you never mentioned said information here in this thread ... 
  2. Or it could be because the proportion of ESET Ubuntu users is so small that it's not worth ESET's time to formulate such a communication.
  3. Or it could be that ESET got caught with their proverbial pants down on this one, and any communication would likely just provoke more questions. The question to be posed here is why they were they caught so off-guard when since at least October 2021 it seemed more than likely that Ubuntu 22.04 would ship with openssl3 ... !?

An additional question would be why ESET didn't ship an intermediate release with libssl1 bundled in the software, so that it's Ubuntu customers wouldn't be left in the lurch while they take 6 months to release something more final. I assume it's because of option #2.

In any case, there seems to be an informational blackout surrounding this incident - something I, and others, will not quickly forget. ESET could have handled this much better, especially with regards to ESET's business customers who are each paying for dozens, if not hundreds, of licences per year!

Not only ESET into this position , if you even search for a security product for 22.04 , you won't find at the moment

It seems that when Ubuntu stopped using older version of openssl , they did impact everyone with this.

It should be around this month the release would be dropped as several times being said here on the forum

And it could have been like you said , a version with old openssl and a version with updated openssl , but end of the day this is a security product and it shouldn't have things like this and should be built securely and good , even if there was a new technology/whatever introduced , it might take time for companies to build on it

image.pngFor example that shows the market share in 2019 between the operating systems , it shows that Linux is not used that much , but it's changing with the time , since Steam is using Linux for their Steam Deck , all big corporations/enterprises use Linux for their servers , from Google and so on ... they are all on Linux and not on Windows Server , I wonder even if Microsoft uses Windows Server :D

But be patient , I am also waiting for the new version so I can upgrade my linux installations.

Link to comment
Share on other sites

@Nightowl I hear you, and I agree with your points being:

  1. There doesn't seem to be any AV security product out there which officially supports Ubuntu 22.04/openssl3 (I searched 👀)
  2. ESET prefers to release security products which are as secure and well-developed as possible
  3. Linux OS on the PC is 2%- 3% of the market share
  4. ESET will be releasing a compatible version this month

However, all of that being the case, it would have been a welcome, if not also expected, act of professionalism for ESET to communicate these sorts of things to it's paying customers, instead of leaving them high and dry to the point that said customers have to go looking through forum threads to get some indication of what's going on. ESET can send out promotional E-mails to all it's customers, so they obviously have the technical and staffing resources to make this kind of communication happen.

I only mention this because it's something I think ESET can (easily) improve - and I want them to improve because I like their products.

Link to comment
Share on other sites

Hi,

I got ESET eea.service running on ubuntu 22.04 using libraries provided by ubuntu (found in the core snap package), here is a quick'n dirty procedure:

```
cp /snap/core20/current/usr/lib/x86_64-linux-gnu/libcrypto* /opt/eset/eea/lib/
cp /snap/core20/current/usr/lib/x86_64-linux-gnu/libssl* /opt/eset/eea/lib/
cd /opt/eset/eea/lib/
chmod +x libcrypto.so.1.1 libssl.so.1.1
ln -s libcrypto.so.1.1 libcrypto.so
ln -s libssl.so.1.1 libssl.so
systemctl restart eea.service

```
(the core snap package should already be installed if you are running a desktop version of ubuntu)
(you might need to remove and reinstall eset after doing this for the install process to finish properly if it is a first install)

Another useful config, if like me you consider that eset is monopolizing too much compute resources while running:
edit `/etc/systemd/system/eea.service.d/50_limits.conf` and add the following lines:

```
[Service]
Nice=19
IOSchedulingClass=best-effort
IOSchedulingPriority=7
CPUQuota=200%
MemoryMax=1G
MemorySwapMax=0
IOWeight=20
CPUWeight=20
```
and then execute
```
systemctl daemon-reload 
systemctl restart eea.service 
```

Cheers,

Link to comment
Share on other sites

I know of an antivirus solution for Linux that officially supports Ubuntu 22.04, but it is not marketed as an "endpoint" solution and so I don't think it provides a user interface and visual user notifications. It does have on-access scanning though:

Link to comment
Share on other sites

On 10/4/2022 at 10:59 AM, Nightowl said:

Not only ESET into this position , if you even search for a security product for 22.04 , you won't find at the moment

It seems that when Ubuntu stopped using older version of openssl , they did impact everyone with this.

It should be around this month the release would be dropped as several times being said here on the forum

And it could have been like you said , a version with old openssl and a version with updated openssl , but end of the day this is a security product and it shouldn't have things like this and should be built securely and good , even if there was a new technology/whatever introduced , it might take time for companies to build on it

image.pngFor example that shows the market share in 2019 between the operating systems , it shows that Linux is not used that much , but it's changing with the time , since Steam is using Linux for their Steam Deck , all big corporations/enterprises use Linux for their servers , from Google and so on ... they are all on Linux and not on Windows Server , I wonder even if Microsoft uses Windows Server :D

But be patient , I am also waiting for the new version so I can upgrade my linux installations.

Almost all companies use Windows Server, and much more than Linux servers. Windows Server is the core of almost all companies system and network infrastructures with Active Directory LDAP, DHCP, DNS, file storage and so on. Linux just runs web servers, and not all of them. Many still rely on aspx, .net and are obviously running IIS on Windows Server.

Link to comment
Share on other sites

5 hours ago, Max Lavache said:

Almost all companies use Windows Server, and much more than Linux servers. Windows Server is the core of almost all companies system and network infrastructures with Active Directory LDAP, DHCP, DNS, file storage and so on. Linux just runs web servers, and not all of them. Many still rely on aspx, .net and are obviously running IIS on Windows Server.

If you are talking about those companies that do not know who the DevOps is, then yes, you are right. And so current trends show just a fairly confident transition to Linux solutions both in the server part and in terms of user OS. As you can see, this chart is for 2019, and we will soon move on to 2023, this information is, to put it mildly, irrelevant.

I won’t say that Windows fades into the background, but if there is a choice, users use more for MAC, and system administrators and other people who are closely familiar with technology and support their ecosystems calmly use various Linux solutions. Since the trend to save money is more relevant than ever these days.

Link to comment
Share on other sites

On 8/17/2022 at 11:48 AM, Marcos said:

The release is expected in Sept-October.

@Marcosis this still the case? 🤔

We have been contacted by our license reseller, as our renewal is due soon, and have replied that we are not renewing until/unless Ubuntu 22.04 is officially supported. In less than 2 business days, 6 months will have passed since Ubuntu 22.04 was released. 

Link to comment
Share on other sites

14 minutes ago, Marcos said:

A new version of Endpoint with support for Ubuntu 22.04 is scheduled for the next week.

Is there some place where this information is made public? 
Thanks for Sharing Marcos, but you do understand that by revealing it after someone mentions their dissatisfaction from the product to the point of not renewing their license, presents itself as an enforced answer, which just makes ESET looks bad. 
Why WHY Can't this be told publicly, shared more transparently??

This isn't criticism. This is merely a poiint for improvement, where delivering more frequent news to those working with ESET products can benefit and schedule their timeline accordingly. 

Link to comment
Share on other sites

  • ESET Moderators
44 minutes ago, avielc said:

Can you direct me to the actual new version announcement you just mentioned about Linux new version?

The current version's announcement was posted here when it was released:

https://forum.eset.com/topic/31738-eset-endpoint-antivirus-for-linux-version-9050-has-been-released/

 

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...