Preventing AutoProtect from scanning files on read
Last Updated September 25, 2013
You need to prevent the Auto-Protect component of Symantec Antivirus for Linux (SAVFL) from scanning files as they are read.
Symantec recommends leaving the Auto-Protect scan settings for SAVFL at the defaults to provide the highest level of security. The following procedure will lower the security level of your computer as the Auto-Protect component will no longer scan files as they are read, but will still allow files to be scanned when executed, or created/modified. This can prevent some applications which frequently access many large and/or compressed files from failing.
Change directories to the SAVFL installation directory (default /opt/Symantec/symantec_antivirus).
Enter the following command: ./symcfg add -k "\Symantec Endpoint Protection\AV\Storages\FileSystem\RealTimeScan" -v Reads -d 0 -t REG_DWORD
Confirming the settings
Run the following command: cat /proc/symap | grep flags
confirm the output of the command contains a lower-case "rd" flag instead of an upper-case "RD" flag. For example:
flags=0xdd (WR:rd:EX HC FL:ne:RM:FX:dy t0 nr)