+ Post New Thread
Results 1 to 12 of 12
Windows Thread, Switching off AV?? in Technical; One of my colleagues (a network manager) has been told by his boss (HT) to switch off the AntiVirus on ...
  1. #1
    superfletch's Avatar
    Join Date
    Nov 2007
    Location
    South
    Posts
    445
    Thank Post
    153
    Thanked 77 Times in 61 Posts
    Rep Power
    32

    Switching off AV??

    One of my colleagues (a network manager) has been told by his boss (HT) to switch off the AntiVirus on the schools MIS Server for at least an hour every day while some piece of software sends automated text messages to parents.

    Basically the software won't work without him doing this, the software company have recommended this is how he gets around it without suggesting anything else and they rather than him are getting the HT's support!!

    Now apart from the obvious risk of exposing the machine to a virus, malware, The BBC or anyone elses botnets, can people list the best reasons they can think of not to switch off the antivirus daily.

    This is a mission critical server housing sensitive data on a network full of secondary kids with an interface in some way to the telephone grid.

    I'm going to tell him to look at some other products but some ammo to throw at the HT might help.

  2. #2


    Join Date
    Mar 2008
    Location
    Surrey
    Posts
    2,317
    Thank Post
    131
    Thanked 355 Times in 293 Posts
    Blog Entries
    4
    Rep Power
    142
    Why won't the software work without him doing this? Couldn't an exception be set up for that particular software? Still a lowering of security standard, but less so than switching the whole thing off.

  3. Thanks to jamesb from:

    superfletch (20th January 2011)

  4. #3

    bossman's Avatar
    Join Date
    Nov 2005
    Location
    England
    Posts
    4,035
    Thank Post
    1,262
    Thanked 1,107 Times in 785 Posts
    Rep Power
    338
    What AV is he using?

    I would advise him to contact County LA and ask for their advice on the matter but inform the HT first.

  5. Thanks to bossman from:

    superfletch (20th January 2011)

  6. #4


    Join Date
    Dec 2005
    Location
    In the server room, with the lead pipe.
    Posts
    4,715
    Thank Post
    288
    Thanked 789 Times in 616 Posts
    Rep Power
    226
    Broken software is not a sufficiently good justification for disabling AV. Setting granular exceptions is a possibility.

    I assume the AV is picking up the SMS software as a spam mailer or similar infection and blocking or rate-limiting it?

    The software vendor (not the school) needs to contact the AV provider and ask them fix the issue, it's their responsibility to negotiate with the AV provider to get whitelisted - this can take a while unless you have a lot of clout.

    I'd lart the software company, pointing out the schools obligations regarding the data held on said server or find another provider. Which company is providing the software?

  7. Thanks to pete from:

    superfletch (20th March 2009)

  8. #5


    Join Date
    Jul 2007
    Location
    Rural heck
    Posts
    2,662
    Thank Post
    120
    Thanked 433 Times in 352 Posts
    Rep Power
    127
    Is it too late to unleash a little bovine excrement and tell them the server needs a reboot to fully disable the AV and another to fully enable it?

  9. #6
    superfletch's Avatar
    Join Date
    Nov 2007
    Location
    South
    Posts
    445
    Thank Post
    153
    Thanked 77 Times in 61 Posts
    Rep Power
    32
    "I would advise him to contact County LA and ask for their advice on the matter but inform the HT first. "

    County LA - Thats us




    "Broken software is not a sufficiently good justification for disabling AV. Setting granular exceptions is a possibility.
    I assume the AV is picking up the SMS software as a spam mailer or similar infection and blocking or rate-limiting it?"

    Couldn't agree more - I'll find out what AV he's using - some of the interfaces aren't very good for setting exceptions.
    Last edited by superfletch; 20th March 2009 at 11:28 AM.

  10. #7

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,345
    Thank Post
    242
    Thanked 1,602 Times in 1,278 Posts
    Rep Power
    346
    Providing you add the application as an exception (within your AV software) then it shouldn't make any difference.

    It is poor advice from any software company to tell the school to 'switch it off for an hour'. It's a bit of a joke to be honest. The company in question should be contacting the AV companies (as required) and informing them if there's a conflict. If I was given that advice, I would look at other alternatives.

  11. Thanks to Michael from:

    superfletch (20th January 2011)

  12. #8
    mb2k01's Avatar
    Join Date
    Jan 2007
    Posts
    1,151
    Thank Post
    191
    Thanked 235 Times in 199 Posts
    Rep Power
    94
    Hey Superfletch!
    I bet it's a primary isn't it!
    Do you know what the SMS software is as well as the AV?
    If it's a school with more than one server I'd question the logic at having this software on the SIMS server in any case?

    It probably comes down to the age old problem (down here especially)... the HT wants something done, doesn't understand the technical issues (and/or doesn't care about them) and expects the order to be done as that's what he's been told works!

  13. Thanks to mb2k01 from:

    superfletch (20th January 2011)

  14. #9


    Join Date
    Feb 2007
    Location
    Northamptonshire
    Posts
    4,706
    Thank Post
    354
    Thanked 807 Times in 722 Posts
    Rep Power
    348
    He said it was a secondary in his original post.

    I'd agree though, shutting off AV is not appropriate at all for this.

  15. Thanks to kmount from:

    superfletch (20th January 2011)

  16. #10

    Join Date
    Nov 2006
    Location
    Kendal
    Posts
    1,556
    Thank Post
    112
    Thanked 178 Times in 145 Posts
    Rep Power
    72
    I suspect your RBC would be none too impressed either as AV is stipulated as a must have in the T&C for most of them (it certainly is in CLEO land). Also in terms of data protection I would suggest turning off AV does not qualify as ensuring data is secure (one of the basic principles).

  17. Thanks to jcollings from:

    superfletch (20th January 2011)

  18. #11

    Join Date
    Jan 2006
    Location
    Surburbia
    Posts
    2,178
    Thank Post
    74
    Thanked 307 Times in 243 Posts
    Rep Power
    116
    in terms of data protection I would suggest turning off AV does not qualify as ensuring data is secure
    If you *need* AV on an MIS server then I reckon you're already not doing enough to ensure that data is secure i.e. why would malicious processes get to run on that box in the first place?

    AV is only as good as the latest signatures and I've seen plenty of malware breeze past those in my time. Have AV by all means, but secure configuration and practices are much better.

    [OTOH file servers do need AV]

  19. Thanks to PiqueABoo from:

    superfletch (20th January 2011)

  20. #12

    Join Date
    Nov 2006
    Location
    Kendal
    Posts
    1,556
    Thank Post
    112
    Thanked 178 Times in 145 Posts
    Rep Power
    72
    Quote Originally Posted by PiqueABoo View Post
    If you *need* AV on an MIS server then I reckon you're already not doing enough to ensure that data is secure i.e. why would malicious processes get to run on that box in the first place?

    AV is only as good as the latest signatures and I've seen plenty of malware breeze past those in my time. Have AV by all means, but secure configuration and practices are much better.

    [OTOH file servers do need AV]
    I think it is one of many measures you would take to keep it secure. Personally I think you should have AV on all your systems. Secure configuration and practices don't mean you shouldn't have AV installed - it's just another line of defence.



SHARE:
+ Post New Thread

Similar Threads

  1. Offline Files Not Switching Over
    By jonesm in forum Windows
    Replies: 7
    Last Post: 26th April 2010, 03:11 PM
  2. Switching between Mac And PC with only one monitor
    By Kyle in forum How do you do....it?
    Replies: 9
    Last Post: 18th June 2008, 08:42 AM
  3. Switching from Linux to Windows.
    By Geoff in forum *nix
    Replies: 5
    Last Post: 23rd January 2006, 01:14 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •