The Linux CommServe contains a built-in Security-Enhanced Linux (SELinux), which is a Linux kernel security module that provides a mechanism for supporting access control security policies. Our SELinux module contains pre-configured security policies to protect the DR backup folder on the CommServe from any ransomware.
To enable ransomware protection, execute the cvsecurity.py tool on the CommServe immediately after the installation. For more information, see Configuring Ransomware Protection for DR Backup Folders on Linux.
Note
When the disk library or the DR export location is set as a NFS or CIFS share, you must trigger the cvsecurity.py tool and then mount these locations with the context type as 'cvstorage_t' to enable protection from ransomware attacks. For more information, see Red Hat documentation, Mounting an NFS Volume.