+ Post New Thread
Results 1 to 7 of 7
MIS Systems Thread, Sims & AntiVirus in Technical; Hi Guys, I am in the process of rolling out symantec endpoint protection to all of our servers and client ...
  1. #1
    storkyIV's Avatar
    Join Date
    Oct 2008
    Location
    Bristol
    Posts
    41
    Thank Post
    4
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Sims & AntiVirus

    Hi Guys,

    I am in the process of rolling out symantec endpoint protection to all of our servers and client machines.
    I haven't released this to our sims server as yet, because I seem to remember something about SQL and antivirus, but I cannot for the life of me remeber what this was.

    Has anyone had any problems installing and running any antivirus on sims servers?

    Any feedback would be useful.

    Regards

  2. #2

    teejay's Avatar
    Join Date
    Apr 2008
    Posts
    3,051
    Thank Post
    275
    Thanked 722 Times in 550 Posts
    Rep Power
    326
    Exclude the SQL folder, Document server folder and SIMS folder from the realtime scan. Schedule a scan overnight to do these.
    Few tips with Endpoint:
    Make sure you have the current MR5 release. MR4 works fine as well, but anything before that is a pain.
    On servers only install Antivirus and Anti Spyware, don't install network threat protection or any of the other stuff. In fact, especially to start with do this on your workstations as well, as if you get the other stuff misconfigured (which it is by default!) you will end up with a complete nightmare.

  3. Thanks to teejay from:

    timzim (2nd October 2009)

  4. #3


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,534
    Thank Post
    271
    Thanked 752 Times in 590 Posts
    Rep Power
    218
    Our (mcafee) exclusions for SQL servers are:

    .mdf, .ldf and the .ndf extension
    .bak and .trn

    DRIVE:\Program Files\Microsoft SQL Server\**\OLAP\Data\ (MSSQL folder name can be MSSQL.1 or MSSQL.2 etc etc. Using a '**' allows any number to be allowed in mcafee)
    DRIVE:\Program Files\Microsoft SQL Server\**\OLAP\Backup\
    DRIVE:\Program Files\Microsoft SQL Server\**\OLAP\Log\

    IIRC these were pulled from a technet article that I can't find now

  5. 2 Thanks to pete:

    timzim (2nd October 2009), zag (2nd October 2009)

  6. #4

    Edu-IT's Avatar
    Join Date
    Nov 2007
    Posts
    6,875
    Thank Post
    393
    Thanked 581 Times in 532 Posts
    Rep Power
    173
    I take it these exceptions should be added to the likes of Sophos too? I've disabled on access scanning on all servers.

  7. #5
    storkyIV's Avatar
    Join Date
    Oct 2008
    Location
    Bristol
    Posts
    41
    Thank Post
    4
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Disabled on access scanning on all servers? Is that wise on something like the file server?
    End point at the moment is real time protecting all servers (apart from sims) with no degredation of service. I'm quite impressed with symantec for once!

  8. #6


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,534
    Thank Post
    271
    Thanked 752 Times in 590 Posts
    Rep Power
    218
    Quote Originally Posted by storkyIV View Post
    Disabled on access scanning on all servers? Is that wise on something like the file server?
    End point at the moment is real time protecting all servers (apart from sims) with no degredation of service. I'm quite impressed with symantec for once!
    The answer is "It's a hotly contested topic". Not quite emacs vs vim, but....

    If you're seeing no performance degredation or strangeness as a result, keep going with what you do. The main concern with servers is ensuring the AV doesn't do something stupid (such as, say quarantining the exchange db) because it thinks it may have detected something. Some AV is better at this than others.

    Our fileservers scan shares on write and there's also a scheduled nightly scan.

  9. #7

    Edu-IT's Avatar
    Join Date
    Nov 2007
    Posts
    6,875
    Thank Post
    393
    Thanked 581 Times in 532 Posts
    Rep Power
    173
    Disabled on access scanning on all servers? Is that wise on something like the file server?
    Yes. A bad call on my part. Changed! Thanks.

SHARE:
+ Post New Thread

Similar Threads

  1. [SIMS] SIMS & MSI
    By PhilNeal in forum MIS Systems
    Replies: 162
    Last Post: 5th October 2011, 10:32 AM
  2. SIMS.net & TS
    By Hightower in forum Windows
    Replies: 33
    Last Post: 3rd June 2009, 07:39 PM
  3. SIMS & Netware
    By RoyG in forum Netware
    Replies: 7
    Last Post: 11th July 2008, 11:13 AM
  4. SIMS & Netware
    By RoyG in forum MIS Systems
    Replies: 1
    Last Post: 30th January 2008, 02:43 PM
  5. Antivirus & Antispyware auditing
    By nick in forum Wireless Networks
    Replies: 0
    Last Post: 15th March 2006, 01:43 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •