Hi,
I am looking ton install AV on a Windows box which runs both PHP and .Net sites.
Does anyone have any recommendations/thoughts/things I should consider?
Thanks
Scott
I might be partial, but I have used this company for 4 years and never had a problem. Years ago it was slow as a snail, but has a very small foot-print nowadays. The product is Norton’s Internet Security . If you we’re to purchase this software go with the "Internet Security year goes here). You do not need Norton AV 360. Defiantly over-kill for a server.
I’m starting a Windows Server box, and I’m buying an extra license to Norton Internet Security.
Also, when you buy Norton’s AV you will usually get 3 licenses, with one purchase, to use on 3 computers, which is a great selling point.
Good Luck in your choice.
First, you really shouldn’t need a/v on servers – the sorts of things you get viruses from should not happen on server. Bring your netbook for long lonely nights in the server room.
That said, most a/v vendors have a server product. Most are functionally equivalent. I’d just run with whoever you are already in bed with.
wwb_99, since a Server is a front-facing computer how can it avoid a computer virus? Why should it be treated different then a laptop/desktop? I recommended an AV because I thought a Server Box could get a virus, just like any computer, server or not.
My servers live behind firewalls, not sure about yours. Only stuff the world can hit is typically ports 80, 443 and perhaps a few others as dictated by application. Whereas the typical infection vectors these days are a) drive-by downloads from web pages and b) social engineering attacks. (A) should not be a problem on servers as you should not be surfing the web on them and (B) should not be a problem on servers as you shouldn’t be in a position to be socially engineered there nor should the person running said server be an easy victim for that sort of thing.
Moreover, ONLY you will be uploading to your server (unless you allow uploads - :eek2: ). As Wyatt explained, there is NO reason for your server to need A/V (unless you’re also hosting e-mail and reading it there - ergo his netbook comment).
Is your server “managed?” Who is looking after it 24/7/365? 
Regards,
DK
Even if you do allow file uploads to the server, you still don’t necessarily have to worry about viruses on the server – typically those are used to infect other visitors, not the server itself. Or corrupt the application, which tends be beyond the scope of most anti-virus.
Email is in the same pool here – a virus infected email transferring through the server really does not effect the server, its just an intermediary host. No need to worry about it unless you have some downstream responsibilities.
Sorry guys, going to have to disagree with you here, there’s every need for AV on publicly accessible servers - for your visitors protection as well as the servers protection.
We’ve seen no end of customer developed web apps (and open source ones as well) that have allowed miscreants to upload scripts to servers unchecked instead of images - only thing then is that unless the customer has also configured their images directory to not execute scripts, those scripts can be executed and you start to see all kinds of not very pretty things happening. The most common ones provide the uploader of said script with a command line to the server - not something you want them having.
How many open source or off the shelf apps have you seen that tell you to disable script execution for upload directories etc.? I don’t recall seeing a single one 
Thanks,
I have to disagree also. If government servers are getting breached, I’m sure as hell little guy’s like me will get hacked. As they say, better safe then sorry. Norton license for me.