Configuring exclusions for Kaspersky Endpoint Security for Linux scanning tasks

Configuring exclusions through Kaspersky Security Center

Configure scan exclusions for the following task types:

To configure exclusions for scan tasks using Kaspersky Security Center:

  1. Open the task for editing.

    In the Application settings section, select the Scan settings tab, and under Exclusion scopes, click the Configure exclusions link.

    This opens a window with a list of exclusion scopes.

  2. In the list of exclusion scopes, click Add and specify the following settings of the new exclusion scope:
    • Name: ksmg-var
    • File system: Local
    • Path: /var/opt/kaspersky/ksmg

    To finish adding the new exclusion scope, click OK.

  3. In the list of exclusion scopes, click Add and specify the settings of the new exclusion scope:
    • Name: ksmg-tmp
    • File system: Local
    • Path: /tmp/ksmgtmp

    To finish adding the new exclusion scope, click OK.

  4. In the list of exclusion scopes, click Add and specify the settings of the new exclusion scope:
    • Name: ksmg-filter
    • File system: Local
    • Path: /tmp/ksmg_filter

    To finish adding the new exclusion scope, click OK.

  5. Save the list of exclusions.
  6. Save changes in the scan task.

Exclusions for scan tasks are configured.

Configuring exclusions using the command line

Configure scan exclusions for the following tasks:

To configure exclusions for scan tasks using the command line:

  1. Save the scan task settings to a configuration file using the following command:

    kesl-control --get-settings <task name> --file <full path to the file>

  2. Open the created configuration file for editing.
  3. Add the following lines to the created file:

    [ExcludedFromScanScope.item_<item number>]

    Path=/var/opt/kaspersky/ksmg

    [ExcludedFromScanScope.item_<item number>]

    Path=/tmp/ksmgtmp

    [ExcludedFromScanScope.item_<item number>]

    Path=/tmp/ksmg_filter

    where <item number> is the ordinal number of the ExcludedFromScanScope section. Numbering starts at zero.

  4. Save your changes in the configuration file.
  5. Import settings from the configuration file to the File Threat Protection task:

    kesl-control --set-settings <task name> --file <full path to the file>

Exclusions for scan tasks are configured.

Page top