Click here to get back home

Antispyware Software - Necessary on Servers?
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
Antispyware Software - Necessary on Servers? Joe 05-23-2006
Posted by Joe on May 23, 2006, 10:19 pm
Please log in for more thread options
 Is anti spyware software needed on my servers? Most spyware is installed
along with the so called free software or from browsing the internet... Is
it not best practice to avoid browsing the internet from your servers? Also
shouldn't you be testing software in a test environment before installing in
production environment. If these two things are done is anti spyware
software really a threat on my server?

Posted by Steven L Umbach on May 24, 2006, 11:56 pm
Please log in for more thread options
 If you don't browse on servers as you suggest then spyware software should
not be needed. To minimize chances of getting spyware in case some Bozo does
browse the internet on a server you could configure IE to have the internet
Web Content Zone to use high security and only have sites like Microsoft.com
in the trusted Web Content Zone. --- Steve


> Is anti spyware software needed on my servers? Most spyware is installed
> along with the so called free software or from browsing the internet...
> Is
> it not best practice to avoid browsing the internet from your servers?
> Also
> shouldn't you be testing software in a test environment before installing
> in
> production environment. If these two things are done is anti spyware
> software really a threat on my server?



Posted by Roger Abell [MVP] on May 26, 2006, 10:54 am
Please log in for more thread options
You need to consider both what the server is used for, and how the
antimalware under consideration would be configured (on access,
on write, periodic full scan, etc.)
Consider: a DC that has not fileshare storage and that is managed with
best practices could only become sick due to an admin's actions or
an unhealthy admin workstation, or an unpatched flaw.
At the other extreme, a fileserver on which there are user shared areas
could serve to pass infectous files from one user machine to another if
they both access the shared store.
Finally, you should consider the overheads your intended config of the
antimalware vs the actual risks, and remember that some antimalware
does not play well with some OS files (like ntds.dit, FRS ans Sysvol,
SQL's db files, etc.)


> Is anti spyware software needed on my servers? Most spyware is installed
> along with the so called free software or from browsing the internet...
> Is
> it not best practice to avoid browsing the internet from your servers?
> Also
> shouldn't you be testing software in a test environment before installing
> in
> production environment. If these two things are done is anti spyware
> software really a threat on my server?



Similar ThreadsPosted
AntiSpyWare Beta January 1, 2006, 2:10 pm
Ways of deploying antispyware? June 23, 2005, 9:58 am
Firewall Software and ASP .NET February 14, 2006, 3:10 pm
cannot install software January 10, 2007, 6:44 pm
restricting software installation July 27, 2005, 10:41 am
Windows software inventory? Is there a way? February 28, 2006, 3:47 pm
Quick Software Audit March 1, 2006, 6:02 am
antivirus software questions September 19, 2006, 2:25 pm
Software Restriction Policies October 17, 2006, 7:23 am
OWA and antivirus software for Exchange October 24, 2006, 9:00 pm

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap