Antivirus for CIFS shares

[Vijai]

Hello,
My nas has 5 volumes of which 2 are public,open and available to anyone for read/write on the network. Today, one of my volumes had a lots of .lnk malware spread across the entire directories and I my AV started flooding my screen with popups and at the end, I lost few files at the end. I know freenas itself doesnt allow virus to spread but I think it has affected files while the drive was attached to one of the client. I want to know is there anyway I could set up a jail which will scan every file upon change on all the volumes? Can somebody suggest me any tutorial for doing the same?
Regards,
Vijai.

 

[Ericloewe]

You're better off securing the computers on your network. If you don't want to do that/can't, don't have wide-open shares.

 

[anodos]

You're better off securing the computers on your network. If you don't want to do that/can't, don't have wide-open shares.

I agree. A/V + broken security still equals broken security.

You are better off implementing the following things in your network (if you haven't yet):
1) deploy standardized workstation OS images
2) software restriction policy or applocker on windows clients
3) centrally manage patches through WSUS
4) implement snapshot policy on all shares so that you can pull out previous versions in case file gets corrupted
5) require authentication to all shares
6) fine-tune group policy so that all unecessary functionality on workstatiosn is disabled
7) not have end-users be local admins

If you have done the above and still think you need to perform a/v scanning on shares, you have a few options:
8) configure A/V on one of your other servers to scan your FreeNAS appliance
9) Install clamav in a jail, mount your CIFS shares in the jail and configure clamav to scan them.