Skip to main content

ON PREMISES SOLUTIONS

  • ON PREMISES SOLUTIONS
  • FAQ
  • BEST for Linux transition to version 7 FAQ

BEST for Linux transition to version 7 FAQ

In the context of today's constantly changing security needs, Bitdefender strives to provide top of the line, innovative solutions for diverse environments and markets.

To that end, we are pleased to announce that a new kernel-independent version of BEST for Linux will be available starting the 31st of July. This release brings a variety of new features, benefits and improvements including advanced prevention and detection technologies specifically designed to work against Linux oriented attacks. Additionally, due to no longer being reliant on kernel, we have eliminated all Linux version compatibility issues.

After release, all new deployments on Linux will install version 7. For a limited period, you will still be able to keep or install the legacy version of BEST, particularly to protect distributions that are not supported by the new technology or to use features that are not yet available in the new package. Any upgrades from version 6 to 7 must be performed manually. Additionally, we will provide an installation package if you want to switch back to version 6.

Important

For more information on the BEST for Linux timeline, refer to this article.

For more information, read the FAQ below.

What does this new version of BEST for Linux offer?

Bitdefender Endpoint Security Tools (BEST) for Linux v7 combines server workload EDR with Linux exploit detection, and detailed threat hunting from historical security alerts and events.  

This modern security stack for Linux servers and containers stands out from existing solutions through its security efficacy, incident fidelity and enhanced event correlation. 

The new security stack removes kernel dependencies, allowing the upgrade of Linux kernels without fear of business interruption. Update safety has been improved by protecting server workloads and containerized applications/services during updates.

What is new in BEST for Linux v7?

The new version brings new features, benefits and improvements:

Features

  • Security incident reporting now includes platform or orchestrator context.

  • Threat hunting, digital forensics, incident response.

  • A new anti-exploit module.

  • Packaged either as a regular Linux (deb, RPM) package or as a container.

Benefits and improvements

  • Greatly expanded platform compatibility to all Enterprise Linux distributions and cloud native Linux distributions.

  • Kprobes now used to transmit notifications instead of Kernel providing increased security and stability.

When will this new version become available?

BEST for Linux v7 will become available on the 31st of July.

Can I still use BEST for Linux v6 on my endpoints?

Yes.

What will happen once BEST for Linux v7 becomes available?

Any new BEST for Linux install will deliver the new version 7 by default. All instances already installed will keep their current version 6.

How is the new BEST for Linux v7 packaged?

Two packages are now available:

  • The agent package – this will deploy a BEST for Linux agent directly on an endpoint or host.

  • The Security Container package – this will create a new container and will deploy a Security Container instance on it. This will provide protection to both the host and its managed containers.

When should I be using the Security Container package?

The Security Container package is designed specifically to provide security to orchestrated environments.

Can I run both agent and Security Container packages at the same time?

Only one package should be deployed on a host at any given time.

How can I upgrade my BEST agent from version 6 to version 7?

In the first week of April, In the first week of April, Bitdefender will start automatic migration of BEST for Linux from v6 to v7. To get more information refer to BEST for Linux automatic migration FAQ.

What are the current limitations of BEST for Linux v7?

As of version 7.0.3.1897 feature parity between versions 6 and 7 has been achieved.

I need to be able to use some of the functionality not included in the new version. What can I do?

You can keep using version 6 until the functionality has been added to the new version 7.

What Linux distributions are supported by the new BEST for Linux v7 version?

  • Ubuntu 16.04 LTS or higher

  • Red Hat Enterprise Linux 7 or higher

  • Oracle Linux 7 or higher

  • CentOS 7 or higher

  • SUSE Linux Enterprise Server 12 SP4 or higher

  • openSUSE Leap 15.2

  • Debian 9 or higher

  • Amazon Linux 2

For Containers

  • Google COS

What should I do if my Linux distribution is not supported by the new BEST for Linux version?

If your current Linux distribution version is supported by version 6 continue using it until the compatibility has been added to the new version.

If neither version supports your current Linux distribution version open a feature request by contacting support.

What container infrastructures are supported?

The following infrastructure is supported:

  • Amazon ECS, except serverless deployments

  • Amazon EKS

  • Google GKE

  • Docker

  • Podman

  • Kubernetes

  • Azure AKS

How can I revert my BEST agent from version 7 to version 6?

Uninstall the current version of BEST for Linux from the endpoint and manually install BEST for Linux version 6.

Where can I download the BEST agent version 6 install package from?

For more information on installing BEST for Linux v6 refer to Installing BEST for Linux v6

Can I use both BEST for Linux versions in my company?

Yes. You can have both versions on your network at the same time.

How do I check which version of BEST for Linux is currently installed on a specific endpoint?

There are multiple methods of displaying the currently installed version:

  • Go to the Network screen and select the Protection tab.

  • Run an Update Status report from the Reports screen.

  • Check if the package bitdefender-security-tools is installed on the target endpoint.

In this section: