pg_snakeoil: The PostgreSQL Antivirus

From: Christoph Berg <christoph(dot)berg(at)credativ(dot)de>
To: PostgreSQL Announce <pgsql-announce(at)postgresql(dot)org>
Subject: pg_snakeoil: The PostgreSQL Antivirus
Date: 2019-01-28 13:43:04
Views: Raw Message | Whole Thread | Download mbox | Resend email
Lists: pgsql-announce

Running typical on-access antivirus software on a PostgreSQL server has severe
drawbacks such as severely affecting performance or making the filesystem
unreliable. The failure modes are extremely problematic when a
non-PostgreSQL-aware scanner blocks access to a file due to viruses, or even
false-positives and bugs in the scanner software.

We typically recommend not to run such software on PostgreSQL servers, as
PostgreSQL knows how to discern between code and data and will not execute any
viruses stored in a database. However, running anti-virus software is sometimes
required by local policy.

pg_snakeoil provides ClamAV scanning of all data in PostgreSQL in a way that
does not interfere with the proper functioning of PostgreSQL and does not cause
collateral damage or unnecessary downtimes.

postgres=# SELECT so_is_infected('X5O<...Eicar string...>');
(1 row)

postgres=# SELECT so_virus_name('X5O<...Eicar string...>');
(1 row)


PS: Examples redacted because this mail shouldn't get filtered out :)
Senior Berater, Tel.: +49 2166 9901 187
credativ GmbH, HRB Mönchengladbach 12080, USt-ID-Nummer: DE204566209
Trompeterallee 108, 41189 Mönchengladbach
Geschäftsführung: Dr. Michael Meskes, Jörg Folz, Sascha Heuer
Unser Umgang mit personenbezogenen Daten unterliegt
folgenden Bestimmungen:

Browse pgsql-announce by date

  From Date Subject
Next Message Umair Shahid 2019-01-29 12:11:17 PGConf APAC 2019 Schedule Announced
Previous Message David Fetter 2019-01-28 00:48:39 == PostgreSQL Weekly News - January 27, 2019 ==