Endpoint Protection

 View Only
  • 1.  File – Security Risk Exceptions

    Posted Aug 02, 2010 03:07 PM
    Is it possible to exempt a file effectively without specifying the full file path?  I want to apply a centralized policy excluding vendor recommended files across several servers.  I have a large list of files and do not want to verify the locations listed on all systems, and have multiple path instances for the same file, if not necessary.

    Thank you,


  • 2.  RE: File – Security Risk Exceptions

    Posted Aug 02, 2010 03:21 PM
    Hi

    You can just mention the name of the program which you want to exclude.

    In the Path just select "Program files"


  • 3.  RE: File – Security Risk Exceptions

    Posted Aug 02, 2010 03:33 PM
    OK, but then will the exception only occur if the file is in C:\Program Files?  What if the file is in a different location or drive?


  • 4.  RE: File – Security Risk Exceptions
    Best Answer

    Posted Aug 02, 2010 03:38 PM
     Endpoint does not allow the use of wildcards.If you have have multiple path instances for the same file, then you need to create multiple exceptions.

    We already have an enhancment request for the same.

    https://www-secure.symantec.com/connect/idea/enhanced-exception-rules


  • 5.  RE: File – Security Risk Exceptions

    Posted Aug 02, 2010 03:50 PM

    >>Endpoint does not allow the use of wildcards.If you have have multiple path instances for the same file, then you need to create multiple exceptions.

    We already have an enhancment request for the same.

    https://www-secure.symantec.com/connect/idea/enhan...
    <<

    I would actually veto against it. That would mean a malware program can get dropped onto the excluded path and wreak havoc on the system epicentered from there.