General settings of Kaspersky Endpoint Security
January 20, 2022
ID 193711
This section describes general settings of Kaspersky Endpoint Security.
General settings of the configuration file have the following values:
SambaConfigPath
Directory that stores the Samba configuration file. The Samba configuration file is needed to ensure that the AllShared
or Shared:SMB
values are applied for the Path
option.
The standard directory of the SAMBA configuration file on the computer is specified by default.
Application restart is required after changing this setting.
Default value: /etc/samba/smb.conf
NfsExportPath
Directory that stores the NFS configuration file. The NFS configuration file is needed to ensure that the AllShared
or Shared:NFS
values are applied for the Path
option.
The standard directory of the NFS configuration file on the computer is specified by default.
Application restart is required after changing this setting.
Default value: /etc/exports
TraceFolder
Directory that stores the application trace files. Trace files contain information about the operating system, and may also contain personal data.
If you specify a different directory, make sure that the account under which Kaspersky Endpoint Security is running has read/write permissions for this directory.
Application restart is required after changing this setting.
Default value: /var/log/kaspersky/kesl
Root privileges are required to access the default trace files directory.
TraceLevel
Trace log level of detail.
Available values:
Detailed
—Most detailed trace log
NotDetailed
—The trace log contains error notifications
None
—Does not create a trace log
Default value: None
TraceMaxFileCount
Specifies the maximum number of the application trace files.
Trace files for the current tracing process and from completed tracing processes are counted separately. For example, if the TraceMaxFileCount
is set to two, then maximum four trace files can be stored: two files for the current tracing process and two files for previous processes.
Application restart is required after changing this setting.
Available values: 1 – 99
Default value: 2
TraceMaxFileSize
Specifies the maximum size of an application trace file (in megabytes).
Application restart is required after changing this setting.
Available values: 1 – 1000
Default value: 250
BlockFilesGreaterMaxFileNamePath
Blocks access to files for which the full path length exceeds the defined parameter value specified in bytes.
If the complete path to the file being scanned exceeds the value of this setting, virus scan tasks skip this file during scanning.
This setting is not available on operating systems that use fanotify technology.
Available values: 4096 – 33554432
Default value: 16384
UseKSN
Enables or disables participation in Kaspersky Security Network.
Available values:
No
—Disable participation in Kaspersky Security Network
Basic
—Enable participation in Kaspersky Security Network without sending statistics
Extended
—Enable participation in Kaspersky Security Network with sending statistics
SaveStatisticsToFile
—Save detection statistics to a JSON file. Files containing statistics for each date other than the current date are packed into a separate TAR archive. In this case, the application does not send requests and statistics to Kaspersky Security Network.
Default value: Extended
KSNStatisticsFileSizeLimit
Specifies the maximum size of a file containing statistics (in megabytes).
Available values: 1 – 9999
Default value: 1024
KSNStatisticsFileFolder
Directory that stores the files containing statistics.
If you specify a different directory, make sure that the account under which Kaspersky Endpoint Security is running has read/write permissions for this directory.
Default value: /var/opt/kaspersky/kesl/common/offline-ksn-stats
Root privileges are required to access the default directory that stores the files containing statistics.
UseProxy
Enables or disables use of a proxy for Kaspersky Security Network, activation of the application, and updates.
Available values:
Yes
—Enable use of a proxy
No
—Disable use of a proxy
Default value: No
ProxyServer
Proxy server settings in the format [user[:password]@]host[:port]
.
MaxEventsNumber
Maximum number of events that will be stored by Kaspersky Endpoint Security. When the specified number of events is exceeded, Kaspersky Endpoint Security deletes the oldest events.
Default value: 500000
LimitNumberOfScanFileTasks
Maximum number of Scan_File
tasks that a non-privileged user can simultaneously start on a computer. This parameter does not limit the number of tasks that a user with root privileges can start. If the value 0
is defined, a non-privileged user cannot start Scan_File
tasks.
Available values: 0 – 4294967295
Default value: 0
If the USE_GUI
setting was set to yes
during the application installation, the default value for the LimitNumberOfScanFileTasks
is 5
.
UseSysLog
Enables or disables the logging of information about events to syslog.
Available values:
Yes
—Enable the logging of information about events to syslog
No
—Disable the logging of information about events to syslog
Default value: No
UIReportsForRootOnly
Enables or disables viewing reports for users from graphical user interface.
Available values:
Yes
—Allow only root user to view reports in GUI
No
—Allow unprivileged users to view reports in GUI. Also, unprivileged users will be able to create and start up to 5 custom scan tasks
Default value: No
EventsStoragePath
Database file in which Kaspersky Endpoint Security saves information about events.
Default value: /var/opt/kaspersky/kesl/private/storage/events.db
Root privileges are required to access the database of events.
ExcludedMountPoint.item_#
Specifies the mount points to be excluded from scan by tasks that use file operation interceptor (File Threat Protection and Anti-Cryptor). You can specify several mount points to be excluded from a scan.
Available values:
AllRemoteMounted
—Exclude all remote directories mounted on the computer using the SMB and NFS protocols
Mounted:NFS
—Exclude all remote directories mounted on the computer using the NFS protocol
Mounted:SMB
—Exclude all remote directories mounted on the computer using the SMB protocol
/mnt
—Exclude objects in the /mnt
directory (including subdirectories), which is used as the temporary mount point for removable drives
<path that contains masks /mnt/user* or /mnt/**/user_share>
—Exclude objects in directories, whose names contain the specified mask
Mount points must be specified in the same way as they are displayed in the mount
command output.
The ExcludedMountPoint.item_#
setting is not specified by default.