Specifying global exclusion scope

You can specify a global exclusion scope for the File Threat Protection task. Files in the global exclusion scope are excluded from the real-time protection scopes.

To create a global exclusion scope,

  1. Save the File Threat Protection task settings to a file using the following command:

    kesl-control --get-settings 1 --file <full path to the configuration file>

  2. Add [ExcludedFromScanScope.item_#] sections to the created file. Each [ExcludedFromScanScope.item_#] section includes the following settings:
    • AreaMask—specifies file name masks for files to be excluded from the protection scope.
    • AreaDesc—specifies the exclusion scope description, which contains additional information about the exclusion scope.
    • Path—specifies the path to the files or directories to be excluded from the protection scope.

      Example:

      [ExcludedFromScanScope.item_0000]

      AreaDesc=

      UseScanArea=Yes

      Path=/tmp/notchecked

      AreaMask.item_0000=*

  3. Import settings from the configuration file to the File Threat Protection task using the following command:

    kesl-control --set-settings 1 --file <full path to the configuration file>

You can also manage exclusion scopes from command line.

Page top