NOD32 linux mirror update 1.1

Ashus

This is a workaround for linux version of NOD32 mirror update server. You still need to purchase a valid key and password to make updates work though. This version is based on work of someone else. I reworked it and included auto-cleanup feature, so all NUP files under mirror directory are checked and if they are not present in update.ver anymore, they get deleted.

This version of update tool doesn't require ESET Gateway Security and supports mirroring protocol version 2 and 3. Their update URL must be different - filename of both versions is update.ver, the content is different.

Installation:

Download and install linux executable unrar-free (Debian package name is unrar-free; it should be compatible with other distributions as well though).
Download the script below, modify the settings and test the script.
Configure the webserver to access the mirror update directory at certain path.
Add the script execution hourly to crontab (ex. 15 * * * * root /root/scripts/nodupdate.sh &> /dev/null).
Configure NOD32 update server on client computers to use local mirror.

PHP version is more advanced and faster.

Attachment:

nodupdate.rar [1.52 KiB]
Downloaded 804 times

Attachment:

unrar-free.rar [31.96 KiB]
Downloaded 455 times

kLe

I know this post is quite old but.. It had been useful to me.

I tried your script but it didn't work anymore (with a samba share), so I did some little modifications.

Code:

#!/bin/bash

##############################################
# CONFIGURATION
##############################################
# system paths
WGET="/usr/bin/wget"
UNRAR="/usr/bin/unrar"
PS="/bin/ps"
MV="/bin/mv"
RM="/bin/rm"
MD5="/usr/bin/md5sum"

# temporary path, must exist and be writeable
TMP="/tmp"

# clean-up old unused files :  0 - disable, 1 - enable-saves disk space
clean_unused="0"

# ESET updates server
SERVERURL="u33.eset.com"

# Local shared folder
BASE="/var/shares/antivirus/nod32"

# Username and password sent to you by e-mail from ESET
USER="EAV-01234567"
PASS="gej24i34j2"

# What languages should be IGNORED (not downloaded)
EXCLUDE_LANGUAGES=( fr ch nl ge jp pl pt sk sp hr hu )

##############################################
# DO NOT EDIT BELOW THIS LINE
##############################################

# Functions, pre-checks

SERVERv3="http://$SERVERURL/eset_upd/"

function err_disp {
 if [ $? = 0 ];then
:
 else
  echo $1
  exit 0
 fi
 }

function FilterLanguages {
   list=$(cat "$TMP/update.ver"|grep ".nup")
    for s in ${EXCLUDE_LANGUAGES[@]}; do
      list=$(echo "$list"|grep -v "$s.nup")
      done
   list=${list//"file="/""}
   echo "$list"
   }

if [ -f $TMP/nod32list ];then
   $RM -f $TMP/nod32list
   err_disp 'Failed while deleting old file'
fi

if [ -f $TMP/v3.ver ];then
   $RM -f $TMP/v3.ver
   err_disp 'Failed while deleting old file'
fi

 ${PS} aux|grep wget|grep "$SERVERURL" >/dev/null 2>&1
 if [ $? = 0 ];then
    kill `ps aux|grep wget|grep "$SERVERURL"|awk '{print $2}'`
    err_disp 'Failed while killing process'
 fi

 if [ ! -d ${BASE} ];then
    mkdir -p ${BASE}
    err_disp 'Failed while creating nod32 base home directiory'
 fi

# Downloading the informational update files
$WGET -t 9 -T 9 -nH -q -nd -O $TMP/v3.ver $SERVERv3/update.ver
err_disp 'Failed while downloading update.ver v3'

$UNRAR x -inul $TMP/v3.ver $TMP
echo "`FilterLanguages`" >> $TMP/nod32list

$RM $TMP/update.ver

# Downloading the data files, adding/updating differences
$WGET --http-user=$USER --http-passwd=$PASS -N -t 9 -T 9 -m -nH -P $BASE --input-file=$TMP/nod32list -B "http://$SERVERURL" --quiet

if [ $? = 0 ]; then
   $UNRAR p -inul $TMP/v3.ver | sed 's/\/download/download/' > $BASE/update.ver
   fi


# Cleaning old NUP datafiles
if [ "$clean_unused" = "1" ]; then

   if [ ! -f $TMP/nod32list ]; then
      exit 0
      fi

   ARY=(`cat "$TMP/nod32list" | tr '\r' ' ' | tr '\n' ' '`)

   if [ "${#ARY[@]}" -lt "10" ]; then
      exit 0
      fi

   EFS=( )

   filelist=`ls -1R "$BASE"`
   de=${#BASE}
      for s in $filelist; do
      if [ "${s:(-1)}" = ":" ]; then
           cdir=${s:($de)}
          cdir=${cdir:0:(${#cdir}-1)}
         else
         ext=${s:(-4)}
         if [ "$ext" = ".nup" ]; then
             EFS=( "${EFS[@]}" "$cdir/$s" )
             fi
         fi
      done

   # echo "Existing files: ${#EFS[@]}\nUplink files: ${#ARY[@]}\nCleaning..."

   if [ "${#EFS[@]}" -lt "10" ]; then
      exit 0
      fi

   function FindInArray {
      FOUND=0
      for s in ${ARY[@]}; do
         if [ "$s" = "$1" ]; then
            FOUND=1
            break
            fi
         done
      echo "$FOUND"
      }

   for s in ${EFS[@]}; do
      FOUND=`FindInArray $s`
      if [ "$FOUND" = "0" ]; then
         rm "$BASE$s"
         fi
      done

   fi
   
$RM -f $TMP/nod32list

...maybe it could be useful to someone else!

Cheers!

Eset-submitter

Acctually, it's at least one year ago I sent this script to eset :O
I got a really updated version running on my production server :-D

RevDarkman

Awesome - works a treat!

Guest

THANKS!!! It Works!

Ofidz

Is there could translate into PHP script?

Please...

Ashus

ofidz:
It has been developed half a year ago, but I found bugs, so I had to fix them and continue with testing extensively... and in the meantime i completely forgot to publish it :-D

http://ashus.ashus.net/viewtopic.php?f=3&t=153

Merlot

Hi all,
We have developed a bash script, which is works great with NOD v3.0 and 4.0 too (these are compatibile, instead under 3.0) on Debain Linux.
I didn't found any solution before which support the newest nod clients, but this works and quite simple. Here it is:

Code:

#!/bin/sh
LOCAL=/NOD_mirror
URL=http://um10.eset.com/eset_upd
USER=
PASSWD=
WGET="wget --user=$USER --password=$PASSWD -t 15 -T 15 -N -nH -nd -q"
UPDATEFILE="update.ver"
cd $LOCAL
CMD="$WGET $URL/$UPDATEFILE"
eval "$CMD" || exit 1;
if [ -n "`file $UPDATEFILE|grep -i rar`" ]; then
(
  cd /tmp
  rm -f /tmp/$UPDATEFILE
  unrar-free -x $LOCAL/$UPDATEFILE ./
)
 UPDATEFILE=/tmp/$UPDATEFILE
 URL=`echo $URL|sed -e s:/eset_upd::`
fi
TMPFILE=/tmp/nod32tmpfile
grep file=/ $UPDATEFILE|tr -d \\r > $TMPFILE
FILELIST=`cut -c 6- $TMPFILE`
rm -f $TMPFILE
echo "Downloading updates..."
for FILE in $FILELIST; do
  CMD="$WGET \"$URL$FILE\""
  eval "$CMD"
done
cp $UPDATEFILE $LOCAL/update.ver
perl -i -pe 's/\/download\/\S+\/(\S+\.nup)/\1/g' $LOCAL/update.ver
echo "Done."

That's all. I tested on NOD v4.0, works great, clients download updates successfully (probably 3.0 is working well, too).
You can publish the mirror with smb UNC path, or via http. I used lighttpd webserver with plain text authenticate for that. Unfortunately htdigest authentication cannot be used, the clients don't support this authentication method.
Just I thought, lot of the IT admins can use this script :-)

Have a nice day!

Azadi

Merlot, your script works like a charm, merci

Let's see if we can modify Ashus' php-implementation so that it works with the new clients again...

Azadi

Guest

Merlot, tell me please, is this normal, that script creates a few big files rather than a lot of smaller ones >?

I'm interested in linux bash/php script that CAN download files from eset servers... but usually (at all times) like exp. windows client mirrot create a lot of small from 10k to 1.5 MB files. ~ 30 files at all. But your script create several BIG ones...

Ashus (.ashus.net)

NOD32 linux mirror update 1.1

Who is online