![]() ![]() In addition, make sure that from the Control Panel: This setting should be in place regardless of external drives as this is an Absolute Requirement for stopping many forms of malware, for internal drives too. This will ensure that any file on the USB drive is scanned prior to execution (autorun or otherwise). Make the equivalent settings change from ePO if available. On-Access Scan Properties>All Processes>Scan Items>Scan Files ![]() If you find it necessary, those workstations can have the heuristics scan set to High, though expect false positives at this level. ![]() Scanning the entire external drive before allowing access is simply a plecebo scan, used to placate the uninformed or the paranoid. The On-Access Scanner can handle this nicely without the performance penalty of scanning the entire drive. As long as this is done, scanning the entire external drive is simply redundant without value. Performance issues with the USB interface, coupled with the recent incredible sizes of new USB attached drives can make scanning the entire drive so painfully slow that your users would find the system unusable.Ī better strategy is to scan all files upon Read and Write to the drive. It is very effective at killing performance and making USB drives impractical. ![]() Scanning entire USB (flash) drives 'automatically' is not very effective at stopping malware. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |