Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1v15H2-004OG4-2m for pgsql-admin@arkaria.postgresql.org; Tue, 23 Sep 2025 15:49:48 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.94.2) (envelope-from ) id 1v15Gz-006f3s-8f for pgsql-admin@arkaria.postgresql.org; Tue, 23 Sep 2025 15:49:45 +0000 Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29]) by malur.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1v15Gy-006f39-SJ for pgsql-admin@lists.postgresql.org; Tue, 23 Sep 2025 15:49:44 +0000 Received: from mail-wr1-x42c.google.com ([2a00:1450:4864:20::42c]) by magus.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.96) (envelope-from ) id 1v15Gu-002OyF-2s for pgsql-admin@lists.postgresql.org; Tue, 23 Sep 2025 15:49:44 +0000 Received: by mail-wr1-x42c.google.com with SMTP id ffacd0b85a97d-3ece0e4c5faso6593684f8f.1 for ; Tue, 23 Sep 2025 08:49:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cybertec.at; s=google; t=1758642581; x=1759247381; darn=lists.postgresql.org; h=mime-version:user-agent:content-transfer-encoding:references :in-reply-to:date:cc:to:from:subject:message-id:from:to:cc:subject :date:message-id:reply-to; bh=g1geEqR7xaBTTaDV92nFMqUMZ5nIFrFaKm1Z4oqFXp8=; b=kJFDkBa9p+QLpy22phhAvvShVDh7IZm2BpBkZkllCZkO708pIlshEFUFJ7xTB9jq8e b+7/hSMgowDHOowmaGXK6RWCtR6tNeoyEIQ/b0Mwp0MmpNGe0NeSkUZJj5+VD8TpA/LE UGdLlZfMFAj5pHXu/ZtNlQJ7IPCeik8Nc61+tlcGnH/lYDX/QFMt5/ZY5trOQuIJhrNs twQvdmuIr8I+saKt8ngKXVvVqYhN/xY5x90dRthREii/87dDZNIhC0vNiKJyxxMTi7df IGKzFPgqt0CyRqgOJOMYreGXd+Djwj1XOTtwE7q7bvJ6BwCYSCmKakWohzvBxS1x53JE mEyw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1758642581; x=1759247381; h=mime-version:user-agent:content-transfer-encoding:references :in-reply-to:date:cc:to:from:subject:message-id:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=g1geEqR7xaBTTaDV92nFMqUMZ5nIFrFaKm1Z4oqFXp8=; b=lUCbJ7sQlb0M+gSgzR3P3BO8EqiJYO/2G9nRg5W13GGDtsL519FYKwoq9LkXvFWacJ jANr2YijwWVMWDUa7itfalVi7Q+p7HNejEFvkS6F5LF87g0V+bivmtYna5jhFTjjtocM Wc5raghhfUFFKSngvjWnSDwmvNHJDpeuFs+bOxG4bXBjjLvlkapGI9SkVKjK2mCJkftC pKZeqGOkFWqP1xFwplqd6Fh1yGliamYWAIRGEYsHrHO+3inv6oWOR2E9kSpQQswOkX1T UKMFY0JQdU1AYX8yavM2EDzW4sq3n2nt5kyY4sauzbC2WK4iIls0pctMVPMK1USiWplI jjvQ== X-Forwarded-Encrypted: i=1; AJvYcCUk3yZE+h5iXsfIFQ3JIRRpMmvADiKYPNAJdA3WQq0lF93d9g6fX90Z/zLcLLK635gcfrHJd+D9zilQyQ==@lists.postgresql.org X-Gm-Message-State: AOJu0Yzz2NgBACEwWL5Y7k5hG3mmk423qTS0KF86umsWKAroTsxJH7eL Q96T1AVLZlgck+P9L7UcN0OIL93MD7nGm4deKKasDwqvRQS5D/5WxBCUKd4LXhkyKfU= X-Gm-Gg: ASbGnctSH7XmSm47tZckwen3WZ5vyh/4NTWkgCgDYSBW3rAsJrfrm8vsYIGflaKVDSZ DLFD1eiPDz8s6zjj9qHETqsNB6uSXJtDn9RVem0zQsDX0921wg2fBpYBfeAlLPbU3y0gC0pnndW jiJUCFM77cgT+/UWVq9tFTDUc+Y7BHuuk2rw75VIv7QpidRza8AMHimaRbr3AFNhuM9LjI3REiH 12312orZwAixnG+k3NeA/dNMgdUmL7s7cBtq43XBl2k4I3X3usayOrfCR/2xZ72vioFcoM5Li7v uM4x2cmb9b7TWX9aPrQbuq3MgKTryTSe14v4Su6L1IVJGJzE04QL6RDrlVBJ7zNQbwBc/j1QFYq QXpBv9RnBxwsDzxBws0LxoKb0e+E5uEBxQQK/L4GUd6fgun2EHvSVDw== X-Google-Smtp-Source: AGHT+IEv+1lyF1Dz59tPS8MukjdzQDbZkYV4lmJJyM9NjEqVP+H7wjVeKCmk2vcqa0ZTi/BguKr9vQ== X-Received: by 2002:a05:6000:1ac8:b0:3e0:e23f:c6d9 with SMTP id ffacd0b85a97d-405c6c1bdb8mr2520459f8f.17.1758642581284; Tue, 23 Sep 2025 08:49:41 -0700 (PDT) Received: from laurenz.albe-K4N0CV00F97414D ([2001:871:255:4fc6:3de:a533:6c37:95fe]) by smtp.gmail.com with ESMTPSA id 5b1f17b1804b1-464f5a281f1sm247891365e9.17.2025.09.23.08.49.40 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 23 Sep 2025 08:49:40 -0700 (PDT) Message-ID: <0475bf8be3d8a6b7a04b72b7b041695b4d16c4dd.camel@cybertec.at> Subject: Re: Anti virus scanning for Postgres database servers From: Laurenz Albe To: Bruce Momjian Cc: soumen rana , pgsql-admin@lists.postgresql.org Date: Tue, 23 Sep 2025 17:49:39 +0200 In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable User-Agent: Evolution 3.56.2 (3.56.2-2.fc42) MIME-Version: 1.0 List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Archived-At: Precedence: bulk On Tue, 2025-09-23 at 08:03 -0400, Bruce Momjian wrote: > On Tue, Sep 23, 2025 at 08:22:51AM +0200, Laurenz Albe wrote: > > On Mon, 2025-09-22 at 13:03 -0700, soumen rana wrote: > > > This will mean that the Postgres Installation directories and files w= ill be > > > scanned by Microsoft Defender and quarantine any threats. > > >=20 > > > We have requested to exclude the data directories from the Antivirus = scanning. > > > Is anyone aware of any performance,=C2=A0 operational, or data-loss r= elated > > > challenges with Anti Virus scanning of Postgres binaries? > >=20 > > I think that should be safe, at least until Microsoft starts to perceiv= e > > PostgreSQL as a threat... >=20 > Uh, if the anti-virus software does not modify any files, you are likely > to get false positives when the antivirus software thinks Postgres data > is a virus. If the anti-virus software modifies the data directory in > any way, you are likely to get database corruption or a non-operational > database. Absolutely. I was commenting the suggestion to exempt the data directory from the virus scan and only scan the PostgreSQL binaries. Yours, Laurenz Albe