Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1v15jx-004T7x-0G for pgsql-admin@arkaria.postgresql.org; Tue, 23 Sep 2025 16:19:41 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.94.2) (envelope-from ) id 1v15jv-006pfY-KX for pgsql-admin@arkaria.postgresql.org; Tue, 23 Sep 2025 16:19:39 +0000 Received: from makus.postgresql.org ([2001:4800:3e1:1::229]) by malur.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1v15jv-006pfQ-9F for pgsql-admin@lists.postgresql.org; Tue, 23 Sep 2025 16:19:39 +0000 Received: from momjian.us ([72.94.173.45]) by makus.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from ) id 1v15jq-001y3v-0l for pgsql-admin@lists.postgresql.org; Tue, 23 Sep 2025 16:19:38 +0000 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=momjian.us; s=2025010100; h=In-Reply-To:Content-Transfer-Encoding:Content-Type: MIME-Version:References:Message-ID:Subject:Cc:To:From:Date:Sender:Reply-To: Content-ID:Content-Description; bh=L2yqa/cquYj70tONxocsICFwzZdH00WsW9I8mzU81Ww=; b=Xi5S6mWdoLnzxh88+XYv4X3reQ uU/sH47T+XKL+edXPJuByhjI7hkhfAXu9/Vq5k5LgzS1KmFQtBlpm4vNZDe/pB/5NvXYr+MK7A8Wy kka+blShqHmKySzrjXbe6XT4qeub2LVsiU8baO3OzEcNS/rB6NsAXnRKAI1NVvFoms9M5/vjHbUme l89YDm1CRitBCG7gln1CSxYdCt/7uyFchmfdbWyZ74ZpANxdpr4oeRp4YqJL4OyiHlI2NdB0mtNXS YtLpTbT7V+xph5uV4SG8Hj57spZ+lHPOBbS5EbqOlhfxD2gQMwpuXzLWjdvmGRt4JQKC/R828itel ZqKhOSjQ==; Received: from bruce by momjian.us with local (Exim 4.98.2) (envelope-from ) id 1v15jp-00000001c2k-1pGN; Tue, 23 Sep 2025 12:19:33 -0400 Date: Tue, 23 Sep 2025 12:19:33 -0400 From: Bruce Momjian To: Laurenz Albe Cc: soumen rana , pgsql-admin@lists.postgresql.org Subject: Re: Anti virus scanning for Postgres database servers Message-ID: References: <0475bf8be3d8a6b7a04b72b7b041695b4d16c4dd.camel@cybertec.at> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <0475bf8be3d8a6b7a04b72b7b041695b4d16c4dd.camel@cybertec.at> List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Archived-At: Precedence: bulk On Tue, Sep 23, 2025 at 05:49:39PM +0200, Laurenz Albe wrote: > On Tue, 2025-09-23 at 08:03 -0400, Bruce Momjian wrote: > > On Tue, Sep 23, 2025 at 08:22:51AM +0200, Laurenz Albe wrote: > > > On Mon, 2025-09-22 at 13:03 -0700, soumen rana wrote: > > > > This will mean that the Postgres Installation directories and files will be > > > > scanned by Microsoft Defender and quarantine any threats. > > > > > > > > We have requested to exclude the data directories from the Antivirus scanning. > > > > Is anyone aware of any performance,  operational, or data-loss related > > > > challenges with Anti Virus scanning of Postgres binaries? > > > > > > I think that should be safe, at least until Microsoft starts to perceive > > > PostgreSQL as a threat... > > > > Uh, if the anti-virus software does not modify any files, you are likely > > to get false positives when the antivirus software thinks Postgres data > > is a virus. If the anti-virus software modifies the data directory in > > any way, you are likely to get database corruption or a non-operational > > database. > > Absolutely. I was commenting the suggestion to exempt the data directory > from the virus scan and only scan the PostgreSQL binaries. Ah, yes, the Postges binaries should be safe to scan, and probably useful to scan. -- Bruce Momjian https://momjian.us EDB https://enterprisedb.com Do not let urgent matters crowd out time for investment in the future.