What is new in Kaspersky Endpoint Security 8 for Linux


Kaspersky Endpoint Security 8 for Linux


What is new in Kaspersky Endpoint Security 8 for Linux

Back to "Version Info"
2018 Jun 09 ID: 5739

Applies to Kaspersky Endpoint Security 8 for Linux

The following changes and improvements are introduced in Kaspersky Endpoint Security 8 for Linux (version


New ways to manage application operation:

  • New GUI with KDE and GNOME integration. It allows monitoring application status, run scan and update tasks;
  • Support for remote administration using Kaspersky Administration Kit;
  • Support for remote product installation via Kaspersky Administration Kit (The Kaspersky Administration Agent must be installed);
  • Centralized management of the application life cycle and performance of on-demand scan, real-time protection, and Anti-Virus database update tasks;
  • Centralized storage of application configuration settings Kaspersky Endpoint Security. Application operation settings are no longer stored in text configuration files. Text files are used only to provide the capability for the Administrator to edit the settings using a text editor. To take effect, settings from the text file then have to be imported into the central settings repository.


Enhanced Anti-Virus Protection:

  • New Kaspersky Endpoint Security Engine;
  • Heuristic engine (emulator) included;
  • Support for archive contents curing.


Enhanced Anti-Virus Protection configuration:

  • Several scan areas could be specified in a single protection task;
  • Scan settings could be specified for each area individually;
  • Scan areas could be specified by:
    • Full file system path name;
    • Device name;
    • Network access type (Shared, Mounted);
    • Network access protocol (SMB/CIFS, NFS);
    • Remote resource name (SAMBA share name, NFS shared folder).
  • The scan area definition supports ECMA-262 Regular Expressions;
  • Several exclusion rules could be specified for a single scan area;
  • Actions to be taken with objects could be specified based on the type of threat detected;
  • The task start/stop scheduling capabilities are enhanced.


Enhanced Real-Time Protection configuration:

  • A list of users/groups could be specified for a scan area that makes the Real-Time Protection check only the specified user File access attempts;
  • File operation interceptors could be specified; the available interceptors are: kernel-mode interceptor, SAMBA interceptor or both;
  • The SAMBA shared resources availability in case of the Anti-Virus is inaccessible could be configured.


New Quarantine and Backup storage administrative capabilities allow you to:

  • Move objects to quarantine manually;
  • Search for quarantined objects (by object attribute);
  • Delete found objects;
  • Restore found objects;
  • Rescan objects;
  • Save part of the quarantine or backup storage in an archive (to reduce the amount of used disk space);
  • Import objects from the archive into the quarantine or backup storage;
  • Inform the user that the storage size limit is exceeded;
  • ACL information is stored in quarantine/backup storage.


The following application monitoring features have been expanded:


  • Tools for obtaining the following data:
    • General Anti-Virus information;
    • Anti-Virus database versions;
    • License status;
    • Application components status;
    • Anti-Virus task execution results;
    • The state of the quarantine and backup storage;
    • The Anti-Virus Protection tasks statistics;
    • The Anti-virus Update task statistic;
    • Quarantine/Backup current state and statistics;
    • The Virus Activity statistics.
  • Tools for retrospective analysis of application operation, allowing to:
    • Collect, process, and store the statistics on application operation;
    • Display the application operation statistics collected over a user-specified period of time;
    • Audit the following aspects of application operation: creating/starting/stopping Anti-Virus tasks, modifying Kaspersky Anti-Virus settings, Administrator actions on objects in the quarantine and backup storage, etc.
  • Tools for creating reports on application operation, based on collected statistics, and tools for exporting reports (HTML and CSV formats are supported).
  • Monitoring application operation and virus activity. The data is stored in the centralized repository of application events. The application provides its own tools for searching, displaying, and analyzing data on its operation. The application administration tools allow the Administrator to execute some event storage administration activities, such as event storage cleaning and event storage data rotation.
Was this information helpful?
Yes No
Thank you


How can we improve this article?

We will not be able to contact you if you leave your email address or phone number. If you need technical support, please Contact Support.

Submit Submit

Thank you for your feedback!

Your suggestions will help improve this article.