x

can virus affect sql server installed files or data files or causes problem,can virus affect sql server installed files or data files

hi to all, i am new to DBA. my question is can virus affect the sql server installed files or data files or cause changes in the databases. i need your suggestions if it is yes... and also suggest me what should i do if these things happen. please explain how can i manage anti-virus for sql server. and please share if you face any issues related to virus issues or anti-virus management...

Thanks in advance... ,
more ▼

asked Aug 20 '12 at 05:57 AM in Default

kumardba gravatar image

kumardba
10 1 1 1

(comments are locked)
10|1200 characters needed characters left

4 answers: sort voted first
I have not seen a virus that directly affects SQL Server executables or the storage files, no. Most of the viruses and hacking in and around SQL Server are geared towards getting access to your data to either destroy it outright or steal it. You need to worry about viruses, but primarily only for the operating system. The main concern for SQL Server is security. The biggest security hole that you see around are SQL Insertion attacks. People can take advantage of poorly constructed code to hack into the system. If you want an example, look up the phrase "little Bobby Tables".
more ▼

answered Aug 20 '12 at 10:25 AM

Grant Fritchey gravatar image

Grant Fritchey ♦♦
90.7k 19 21 74

Aah the classic bobby tables!
Aug 20 '12 at 10:41 AM sp_lock
(comments are locked)
10|1200 characters needed characters left

Im not sure of a current SQL server virus. In the pass there as been the slammer virus but that was nearly 10 years ago. Thats not to say the next one isn't around the corner.

From a installation of a AV then I would suggest installing the AV but with the following exclusions.

  • \SQLServr.exe
  • .BAK
  • .MDF
  • .LDG
  • .NDF
  • .LOG
  • .TRN
  • .TRC
  • Fulltext directory (if used)

See here for further docs, as it includes other processes that you may wish to exclude.

Some also don't like to install an AV on the SQL server, but this can be risky (IMO), especially if you don't control the infrastructure.

more ▼

answered Aug 20 '12 at 06:28 AM

sp_lock gravatar image

sp_lock
9k 24 27 30

(comments are locked)
10|1200 characters needed characters left
It is difficult for a virus to effect data files as they are exclusively locked by the SQL Server process during operations.
more ▼

answered Aug 20 '12 at 05:13 PM

Blackhawk-17 gravatar image

Blackhawk-17
11.8k 28 30 35

(comments are locked)
10|1200 characters needed characters left
Thank you so much for your suggestions. it clear my doubts and it drives me to know about sql injection attacks. Thanks for the support.
more ▼

answered Sep 02 '12 at 10:47 AM

kumardba gravatar image

kumardba
10 1 1 1

(comments are locked)
10|1200 characters needed characters left
Your answer
toggle preview:

Up to 2 attachments (including images) can be used with a maximum of 524.3 kB each and 1.0 MB total.

New code box

There's a new way to format code on the site - the red speech bubble logo will automatically format T-SQL for you. The original code box is still there for XML, etc. More details here.

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

SQL Server Central

Need long-form SQL discussion? SQLserverCentral.com is the place.

Topics:

x1816

asked: Aug 20 '12 at 05:57 AM

Seen: 1019 times

Last Updated: Sep 02 '12 at 10:47 AM