Hey folks, very much not a security expert but how does one decide on requiring AntiVirus on virtual servers? We are a payroll company that will accept files from trusted partners and are currently running on Windows but are about to shift/upgrade (however you like to think 🙂 ) to Linux. I’m not totally sure of the previous reasoning about installing AV’s on all the instances other than thinking it’s a de facto Windows thought. Reasons I’m leaning towards saying no are: • We don’t run anything on the machine that isn’t ours or from untrusted sources • We are accepting text files (xml) files only • We will be using aws linux provided ami’s and despite malware existing I don’t see us being susceptible • Our current AV provider causes high CPU usage and can trigger alarms which means verifying false positive alarm • I feel more secure with Live Patching • SEL but I’m again no expert in this configuration Things that would make me say yes are simply Security Certificate standards like SOC, SOC2, etc.
