I don't think my server is unprotected. Yup, I don't run an AV product on
it. But I do have it sitting behind a very good firewall. And behind a very
good NAT router in front of that. And it requires Two Factor Authentication
(AuthAnvil) to connect to the SBS server in any way whatsoever. And I run
exchange scanning on the edge machine. And all my clients use a very good AV
product on every workstation, including the terminal server. Oh, and I
never. Repeat never, use IE or other browser product, nor any application,
from the SBS server.
Is it technically possible that a virus could get on my file store? Yes. If
it bypassed every AV product I'm running on the workstation. But if it could
do that, it could just as easily do it running on the server.
--
Charlie.
http://msmvps.com/blogs/russel
"Leythos" <> wrote in message
news: om...
> In article <esB$>,
> says...
>> I've reached the point of thinking that I don't want any
>> AV on the server at all. Full stop.
>>
>
> I can't believe ANYONE would utter those words - NO AV ON A SERVER!
>
> You don't need the full SMTP scanning AV product, but you do need a
> File/Memory based scanner and if you've done your homework and bought a
> real server with a proper amount of CPU/RAM you won't see any
> performance impact from it.
>
> I don't install SMTP scanners on email servers, I let the firewall block
> any content that could compromise the user through HTTP/SMTP/FTP.
>
> I do not consider a NAT Router anything close to a firewall.
>
> I rather leave networking, get a job as a shoe-sales person, than
> install an unprotected server.
>
> --
> You can't trust your best friends, your five senses, only the little
> voice inside you that most civilians don't even hear -- Listen to that.
> Trust yourself.
> (remove 999 for proper email address)
Similar Threads
Linear Mode
