Microsoft Developer: You Still Should Have Anti-Virus With Windows Subsystem For Linux

Written by Michael Larabel in Microsoft on 14 February 2019 at 12:27 AM EST. 21 Comments
MICROSOFT
While disabling Windows Defender or other anti-virus programs may partially help offset the performance losses imposed by running Windows Subsystem for Linux, a.k.a. "Bash for Windows" or Ubuntu and other distributions running natively atop Windows 10 and now Windows Server 2019, it's not the root cause of the I/O performance bottleneck and is not a recommended course of action.

The main performance shortcoming of Windows Subsystem for Linux (WSL) has been in the area of I/O. In CPU/system benchmarks we routinely see Windows 10 WSL with Ubuntu and other distributions performing very well, but when it comes to disk reads/writes, it's drastically slower than bare metal Linux installs and in some cases much slower still than dedicated virtual machines. Disabling Windows Defender or other anti-virus/anti-malware utilities only partially offsets this I/O overhead.

Rich Turner of Microsoft has issued a fresh warning over not disabling Windows Defender even for WSL performance purposes. This warning comes after Windows Defender was able to spot a malicious Node.js dependency in some code running under WSL.

As for the WSL I/O performance coming in short, Rich Turner also commented, "We're working across several teams right now to figure out an effective solution to this perf issue and despite the perf impact. In the meantime, we recomemnd patience. We do NOT recommend disabling Defender (or your chosen 3rd party anti-malware suite), nor do we recommend you exclude WSL folders nor your source folders."

We've been hearing for months now that they are working to address the WSL I/O problems... Hopefully a Windows update in 2019 will finally address this issue.
21 Comments
Related News
Microsoft's Azure Linux 3.0 Adds 64K Kernel Option, NFTables & Intel E800 Networking
Microsoft Continues "Demikernel" Development LibOS For Kernel-Bypass I/O
Microsoft Announces Open-Source Hyperlight For Embedded VMM Within Linux/Windows Apps
Microsoft Azure Linux 3.0 Update Pushes Additions For Intel, AMD & Arm
Linux Use On Microsoft Azure Crosses 60%, AlmaLinux Now An Endorsed Distro
Microsoft Open-Sources Rust-Written OpenHCL For Running Confidential Intel/AMD VMs
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
COSMIC Alpha 4 Released For System76's Rust-Based Desktop
Rustls Multi-Threaded Performance Is Battering OpenSSL
Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal
Fedora 42 Aims To Enhance The Windows Subsystem For Linux Experience
KDE Starts December By Landing A Number Of New Features