| From: | Laurenz Albe <laurenz(dot)albe(at)cybertec(dot)at> |
|---|---|
| To: | Bruce Momjian <bruce(at)momjian(dot)us> |
| Cc: | soumen rana <soumenrana(dot)06(at)gmail(dot)com>, pgsql-admin(at)lists(dot)postgresql(dot)org |
| Subject: | Re: Anti virus scanning for Postgres database servers |
| Date: | 2025-09-23 15:49:39 |
| Message-ID: | 0475bf8be3d8a6b7a04b72b7b041695b4d16c4dd.camel@cybertec.at |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
On Tue, 2025-09-23 at 08:03 -0400, Bruce Momjian wrote:
> On Tue, Sep 23, 2025 at 08:22:51AM +0200, Laurenz Albe wrote:
> > On Mon, 2025-09-22 at 13:03 -0700, soumen rana wrote:
> > > This will mean that the Postgres Installation directories and files will be
> > > scanned by Microsoft Defender and quarantine any threats.
> > >
> > > We have requested to exclude the data directories from the Antivirus scanning.
> > > Is anyone aware of any performance, operational, or data-loss related
> > > challenges with Anti Virus scanning of Postgres binaries?
> >
> > I think that should be safe, at least until Microsoft starts to perceive
> > PostgreSQL as a threat...
>
> Uh, if the anti-virus software does not modify any files, you are likely
> to get false positives when the antivirus software thinks Postgres data
> is a virus. If the anti-virus software modifies the data directory in
> any way, you are likely to get database corruption or a non-operational
> database.
Absolutely. I was commenting the suggestion to exempt the data directory
from the virus scan and only scan the PostgreSQL binaries.
Yours,
Laurenz Albe
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Bruce Momjian | 2025-09-23 16:19:33 | Re: Anti virus scanning for Postgres database servers |
| Previous Message | Tim Gerber | 2025-09-23 14:44:42 | Re: pgbackrest wiht arcchive mode off /no PITR configuration |