Jump to content

Pierrot

Members
  • Posts

    6
  • Joined

  • Last visited

About Pierrot

  • Rank
    Newbie
    Newbie

Profile Information

  • Location
    Switzerland
  1. Hi, In tasks that are set to execute in a defined time interval, i.e. with the "Repeatedly" option, the "As soon as possible" option works perfectly for me. Kind regards.
  2. Description: Rule to decide if a particular removable media will be scanned or not Detail: If I’m right, nowadays, the only thing we can do is to set a general rule that applies to every removable media that is inserted, in order to decide if it will be scanned or not (in the advanced configuration>malware analysis>removable media). I would find useful, if we could choose for a particular removable media (that particular USB key, that particular external hard drive, that particular DVD, etc.) if it will be scanned when inserted or not. This rule would override the general rule mentionned above. So, one could choose, for instance, as a general rule, to scan every removable device he is inserting, but add an exception (as a particular rule) to avoid the scanning of some particular devices which he knows are safe. I think this option could be set in the rules editor of the device control as an option between “Never scan / Always make a smart scan / Always make a deep scan”. Hopefully you like the idea. Kind regard.
  3. Thanks again for your explanations itman; it makes perfectly sense. In between, as I haven't got the required knowledge, I'm using HIPS in smart mode. So far, everything is fine. I didn't got any notification.
  4. Fine, but you mean choosing the smart mode after the learning mode has completed or is it useless to run the learning mode before activating the smart mode ?
  5. Hi, I’m new to Eset and I’ve got a few question regarding the configuration of HIPS. I searched in the help, in this forum and on the web, but I couldn't find the answer. I’m actually running HIPS in learning mode and the first thing I’m wondering about is how I shall choose to allow or not the behaviors listed is the rules created by Eset. Would if be safe to allow any behavior listed, as long that it comes from a program that I know or from a program that is part from Windows ? I’m also wondering what kind of filtering mode I should use afterwards, i.e. when the learning will be completed. If I understood well, the safest mode, would be the policy-based mode because It would block everything else than described by the rules. Correct ? But what if something is blocked ? Is there any risk of damage in my computer ? Will I get a notification ? Will I have a chance to create a new rule to allow the behavior or not ? If I choose the smart or the interactive mode, will these modes refer to the custom rules created by the learning mode or not ? When I get a notifcation, will I have a chance to create a new rule to allow the behavior or not ? Thanks in advance for your answer and kind regards.
×
×
  • Create New...