Solved

AV for MSSQL

Posted on 2014-11-26
2
73 Views
Last Modified: 2014-12-03
I have seen a few articles about aligning the configuration of your servers anti virus with microsofts recommendations, namely MS recommend excluding certain paths and file types from you scanning process. Out of interest, what is the risk if you don't exempt such directories, what could go wrong? what file types and paths do you exclude?
0
Comment
Question by:pma111
2 Comments
 
LVL 48

Accepted Solution

by:
Vitor Montalvão earned 250 total points
ID: 40466695
Follow the Microsoft recommendations in 100%. The risk is the AV performing a full scan in a file that your application needs and would create locks. I saw that happening few times and trust me, isn't good to see hundreds of blocking processes and unhappy clients. It can also throw the CPU usage to 100% and that's no good either.
0
 
LVL 10

Assisted Solution

by:PadawanDBA
PadawanDBA earned 250 total points
ID: 40466784
So most of the proverbs around anti-virus on SQL servers revolve around performance.  One of the jobs of a DBA (especially ops DBAs) is to ensure that data access is provided with the lowest possible latency to satisfy business needs.  The impact of anti-virus on SQL Server is mostly performance.  To optimize performance you go without it - there really shouldn't be much in the way of an attack surface area on your SQL Servers, it should be abstracted from direct access via an application layer that controls public data access and you shouldn't be installing much/anything else beyond SQL Server on it.  That said, security-minded folks will skewer you alive for such statements and in some companies it may not be possible to go without anti-virus.  That said, you have to make the best of whatever world you live in.  That means optimizing anti-virus applications to have as minimal a footprint on the core performance-driving aspects of SQL Server.  I would propose that the driver is mainly performance.  As to what file types/paths do you exclude, this is a pretty exhaustive list: http://blogs.technet.com/technet_blog_images/b/sql_server_sizing_ha_and_performance_hints/archive/2014/01/16/sql-server-and-anti-virus-best-practices-recommendations-for-exlusion-lists-for-anti-virus-scanner.aspx
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you hear the word proxy, you may become apprehensive. This article will help you to understand Proxy and when it is useful. Let's talk Proxy for SQL Server. (Not in terms of Internet access.) Typically, you'll run into this type of problem w…
Introduction SQL Server Integration Services can read XML files, that’s known by every BI developer.  (If you didn’t, don’t worry, I’m aiming this article at newcomers as well.) But how far can you go?  When does the XML Source component become …
Familiarize people with the process of utilizing SQL Server functions from within Microsoft Access. Microsoft Access is a very powerful client/server development tool. One of the SQL Server objects that you can interact with from within Microsoft Ac…
Viewers will learn how to use the UPDATE and DELETE statements to change or remove existing data from their tables. Make a table: Update a specific column given a specific row using the UPDATE statement: Remove a set of values using the DELETE s…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question