Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

CB Response: AV Exclusion Directories for Cluster Servers

CB Response: AV Exclusion Directories for Cluster Servers

Environment

  • CB Response Server: All versions

Question

What path should be excluded from Anti-virus (AV) applications running on CB Response Servers?

Answer

Exclude the data directories on CB Response servers (master and minions). To confirm the directory run this command in terminal
grep DatastoreRootDir /etc/cb/cb.conf
 Default directory:
/var/cb/data

Additional Notes

  • Make sure to use the directory set in cb.conf. At cbinit the data directory might have been changed
  • Exclusions are necessary to avoid degradation in performance
  • Exclusions also avoid corruption of the Postgres and Solr databases
  • If performance degradation is seen in the environment, disabling the AV application should be the first attempt in troubleshooting

Related Content


Labels (1)
Tags (2)
Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎12-07-2018
Views:
982
Contributors