mookaloid
|
| posted on 17/8/10 at 09:37 AM |
|
|
IT Professionals question
Hello to all the IT professionals out there
I have divided opinions on whether to run antivirus software on my server SBS 2003 running exchange, file sharing and a couple of databases.
The fors say that it should be protected, the againsts say it just slows the server down and as it doesn't get used as a workstation for surfing
the internet there is very little risk of getting a virus.
What do you all think?
Cheers
Mark
"That thing you're thinking - it wont be that."
|
|
|
|
|
Pdlewis
|
| posted on 17/8/10 at 09:42 AM |
|
|
I would have it installed on the box but very carfully manage what it can scan The database files are a big no no as would the exchange files because
they constantly change the AV doesnt know what to do with them and ends up crippleing the server
Build Photo Album
Updated 05/02/2009
|
|
|
dan__wright
|
| posted on 17/8/10 at 09:52 AM |
|
|
as above, install it but set exclusions on the exchange / database files and certain other key files ( i think theres even a m$ doc on files to
exclude)
[Edited on 17/8/10 by dan__wright]
FREE THE ROADSTER ONE…!!
|
|
|
ko_racer
|
| posted on 17/8/10 at 09:56 AM |
|
|
It's a difficult one, but what I do is isntall the av on the server but only run daily scans over night. Disable the realtime scanner. I only
do this on servers which have large amount of I/O. Servers like Mail/Files/Databases.
The other option is to just exclude certain folders from the realtime scans.
|
|
|
phoenix70
|
| posted on 17/8/10 at 10:19 AM |
|
|
My opinion is that I wouldn't run AV on the server at all, BUT ensure that all connecting PC are running AV. The only caveat would be the
Exchange system, you really should have a spam/av scanner monitoring that.
As previously said if you do run AV on the server, limit it to a daily scan and don't scan the database files.
|
|
|
mookaloid
|
| posted on 17/8/10 at 10:40 AM |
|
|
All the workstations are protected so it seems to me that if there is a virus lurking then it should be caught at the point where it is accessed by
the workstation.
Because we get our email from a pop3 server from head office (we are a franchise) it is already spam filtered and virus checked so I don't
really feel the need for exchange scanning.
So is there any real point in running it?
"That thing you're thinking - it wont be that."
|
|
|
r1_pete
|
| posted on 17/8/10 at 10:48 AM |
|
|
It depends on many things, is this server visible on the internet? if so how is is externally protected by firewalls, proxies etc?
but,
if the workstation which connect to it have un fettered internet access, then it is possible malware could get through to it via the workstations.
You would be as well having av installed, even if its only for use in times of a suspected attack.
|
|
|
gottabedone
|
| posted on 17/8/10 at 11:16 AM |
|
|
You've obviously considered your route to the server from the internet but what about USB/CD/floppy. AV/malware/spam is a given on your
machines facing the net but AV scanning your removable media would be a good thing.
steve
|
|
|
mookaloid
|
| posted on 17/8/10 at 12:36 PM |
|
|
Well it isn't available from the internet except by VPN from my home.
I take the point about removable media. although it sits 3 feet from my desk at work and no-body but me touches it.
whilst I am not there all the time, from the amount of IT support I have to give my staff I don't think they are capable of hacking in to it as
an administrator......... if they wanted to do damage a claw hammer would be a better bet for them 
all good comments though chaps thank you 
"That thing you're thinking - it wont be that."
|
|
|
RichardK
|
| posted on 17/8/10 at 03:39 PM |
|
|
I believe the risk is that a client gets a dose of malware (not virus) which then utilises your exchange server or services running on that server.
AV on a server if set up correctly and the server is spec'd properly shouldn't have any noticeable effect on performance. Ram isn't
too expensive anyway.
Another problem you may find is what av does with the stuff it finds on your system if its been unprotected for so long.
You could just try running the eset online scanner which is free regularly to try and keep stuff at bay??
Dont bother with the hun.net and convert to youporn.com instead
Cheers
Rich
Gallery updated 11/01/2011
|
|
|
mookaloid
|
| posted on 17/8/10 at 04:36 PM |
|
|
quote:
Originally posted by RichardK
Dont bother with the hun.net and convert to youporn.com instead
Cheers
Rich
I've never heard of these web sites that you mention. Perhaps as an expert on them you could tell us what they do?
"That thing you're thinking - it wont be that."
|
|
|
RichardK
|
| posted on 17/8/10 at 05:21 PM |
|
|
Of course, we use them to test the effectiveness of various web proxy filtering softwares, such as gfi webmonitor on our proxy server 
Gallery updated 11/01/2011
|
|
|
