Default Anti-Virus Policy (ALL.AVP)

Introduction

This document outlines which services are included in Pipe Ten’s server anti-virus service and what anti-virus services can be purchased in addition. This document is NOT relevant to email anti-virus.

Service Configuration

By Type

Service/Server TypeCustomer
OS Access
Customer
AV Access
Customer
AV Report Access
AV
Customisation
AV
Configuration
AV
Management
AV
Report Monitoring
Shared
Web
NoNoNoNoPipe TenPipe TenPipe Ten
Shared
Database
NoNoNoNoPipe TenPipe TenPipe Ten
Fully
Managed
NoNoYesYesPipe TenPipe TenPipe Ten
Private or
Unmanaged
YesYesYesYesCustomer*Customer*Customer*

Customer* = Unless explicitly requested to be performed by Pipe Ten.

 

Default Scanning & Protection

Where applicable real-time protection will be enabled, to intercept all threats as they are written to disk and prior to execution. On rare occasions it may be necessary to run without real-time protection for a short period of time between updates and reboot.

Additionally minimum of weekly file-system scanning will be enabled, to identify all threats which may have persisted on disk, either through previous circumvention of real-time protection (appropriate signatures not existing at time of test) or extreme obfuscation/server-side compilation.

Default Monitoring & Response

Where applicable Pipe Ten will take a pro-active approach, monitoring and immediately responds to all anti-virus threat notifications.

In the first instance, Pipe Ten will seek to protect the data integrity and/or stability of the server, this may include the immediate blocking of access to accounts, websites, specific code or services as is deemed necessary. Pipe Ten will then spend a reasonable amount of time (subject to account type and perceived severity) attempting to identify the vector/source of the notification, its validity, its severity and if appropriate notify the account holder of its findings and any impact to service availability.

Last modified 4th December 2017 by Carl Heaton