Install the Traps Agent for Linux
Traps for Linux is designed to protect Linux servers and operates transparently in the background as a system process. Traps also extends exploit and malware protection to processes that run in Linux containers. When you install Traps on a Linux server, Traps automatically protects any new and existing containerized processes regardless of the container solution (for example, docker). Each Linux server receives a single license which includes protection for container processes.
After you install Traps for Linux, it is typically not necessary to interact with the Traps agent; however, to perform common actions, such as initiating a manual check in with Traps management service, you can use the command-line utility (also available for Mac and Windows) named Cytool. Cytool is available in the /opt/traps/bin/cytool directory and must be run as root or with root permissions.
Before installing Traps on a Linux server, verify that the system meets the requirements described in Traps for Linux Requirements.
If you intend to use SELinux, make sure to enable it before you proceed with the Traps installation. This ensures that Traps disables any injection-based modules which cause compatibility issues. If you later enable SELinux, you must reinstall Traps to avoid any compatibility issues.
You can then install Traps using software distribution tools that support Linux such as Satellite or Chef, or you can manually install Traps using the following workflow:
- Download the Traps installation script from the
Traps management service.Traps management service saves the installation script using the name you provided to identify the package.
- Copy the installation package to the Linux server on
which you want to install the Traps software.For example, to copy the file securely from a local machine to the Linux server:
user@local ~ $ scp linux.sh firstname.lastname@example.org:/tmp linux.sh 100% 21MB 1.2MB/s 00:18
- Log on to the Linux server.For example:
user@local ~ $ ssh email@example.com Welcome to Ubuntu 16.04.3 LTS (GNU/Linux 4.4.0-1041-aws x86_64) * Documentation: https://help.ubuntu.com * Management: https://landscape.canonical.com * Support: https://ubuntu.com/advantage Get cloud support with Ubuntu Advantage Cloud Guest: http://www.ubuntu.com/business/services/cloud 0 packages can be updated. 0 updates are security updates. Last login: Tue Dec 26 22:14:15 2017 from 192.168.1.100
- Install the Traps software.
- Run the install script as root or with root
root@ubuntu:/$ cd /tmp root@ubuntu:/tmp$ ls linux.sh root@ubuntu:/tmp$ ./linux.sh Verifying archive integrity... All good. Uncompressing Traps 634e4d93bb3fb87a Installer for Cloud 100% [*] Extracting Traps Installer Verifying archive integrity... All good. Uncompressing Traps traps_linux-0.7.0-dbg installer 100%  Checking prerequisites Verifying Debian (dpkg) packages: * openssl ... OK * ca-certificates ... OK Done  Installing Traps at /opt/traps Done  Creating logger directory Done  Installing AppArmor policies Done  Defining Traps local services (systemd) Created symlink from /etc/systemd/system/multi-user.target.wants/traps_trapsd.service to /etc/systemd/system/traps_trapsd.service. Created symlink from /etc/systemd/system/multi-user.target.wants/traps_pmd.service to /etc/systemd/system/traps_pmd.service. Created symlink from /etc/systemd/system/multi-user.target.wants/traps_authorized.service to /etc/systemd/system/traps_authorized.service. Done [*] Starting Traps security services (systemd) DoneAdditional options are available to help you customize your installation if needed. Use the --help option to print the help for the installer.Use the --no-km option if you do not want to install the Traps kernel module. If you install Traps without the Traps kernel module or your Linux server runs an unsupported kernel version, Traps will operate in asynchronous mode where the agent will obtain a verdict for the executed ELF file in parallel to its execution and terminate it if a malware verdict is obtained.The script installs the files for the Traps app for Linux in the /opt/traps folder with the Cytool utility available at /opt/traps/bin/cytool.After the Traps agent successfully connects to the server for the first time and retrieves a valid license, the agent begins protecting the Linux server.
- Run the install script as root or with root permissions.
the Traps Agent for Linux.For a list of available options, enter the cytool command without any arguments or with -h or --help.
Uninstall the Traps Agent for Linux
Uninstall the Traps Agent for Linux From Traps management service you can uninstall the Traps agent on a Linux server (see Uninstall the Traps Agent ...
Traps Agent 6.0 for Linux
Traps Agent 6.0 for Linux The Traps™ agent protects Linux servers by preventing known and unknown malware from running on those endpoints and by halting ...
Features Introduced in Traps Agent
Describes the new features introduced in Traps agent 6.0 releases. ...
Traps Agent 6.0 for Windows
To uninstall, use, and upgrade the Traps agent 6.0 on Windows endpoints, see the references in this topic. ...
Use the Traps Agent for Linux
Use the Traps Agent for Linux After you install Traps for Linux, Traps operates transparently in the background as a system process. Typically, it is ...
Traps Agent 6.0 for Mac
Traps Agent 6.0 for Mac The Traps agent protects Mac endpoints by preventing known and unknown malware from running and halting attempts to leverage software ...
Install the Traps Agent for Windows
Use the following workflows to install the Traps agent 6.0 on Windows endpoints. This topic provides options to use the MSI, Msiexec, and how to ...
Troubleshooting Resources for the Traps Agent for Linux
Troubleshooting Resources for the Traps Agent for Linux Resource Description Traps logs Indicates information, warnings, and errors related to the Traps service. Traps logs are ...
Install the Traps Agent for Mac
Install the Traps Agent for Mac Before installing Traps on a Mac endpoint, verify that the system meets the requirements described in Traps for Mac ...