Configuring exclusions for Kaspersky Endpoint Security for Linux scanning tasks
July 3, 2024
ID 272487
Configuring exclusions through Kaspersky Security Center
Configure scan exclusions for the following tasks:
- Malware Scan.
- Critical Areas Scan.
- Scan tasks created by the user.
To configure exclusions for scan tasks using Kaspersky Security Center:
- Open the task for editing.
- Go to the Exclusions tab and under Exclusion scopes, click Specify
This opens a window with a list of exclusion scopes.
- In the list of exclusion scopes, click Add and specify the following settings of the new exclusion scope:
- Name:
ksmg-var
- File system:
Local
- Path:
/var/opt/kaspersky/ksmg
To finish adding the new exclusion scope, click OK.
- Name:
- In the list of exclusion scopes, click Add and specify the settings of the new exclusion scope:
- Name:
ksmg-tmp
- File system:
Local
- Path:
/tmp/ksmgtmp
To finish adding the new exclusion scope, click OK.
- Name:
- In the list of exclusion scopes, click Add and specify the settings of the new exclusion scope:
- Name:
ksmg-filter
- File system:
Local
- Path:
/tmp/ksmg_filter
To finish adding the new exclusion scope, click OK.
- Name:
- Save the list of exclusions.
- Save changes in the scan task.
Exclusions for scan tasks are configured.
Configuring exclusions using the command line
Configure scan exclusions for the following tasks:
- Scan_My_Computer.
- Critical_Areas_Scan.
- Scan tasks created by the user.
To configure exclusions for scan tasks using the command line:
- Save the scan task settings to a configuration file using the following command:
kesl-control --get-settings <task name> --file <full path to the file>
- Open the created configuration file for editing.
- Add the following lines to the created file:
[ExcludedFromScanScope.item_<item number>]
Path=/var/opt/kaspersky/ksmg
[ExcludedFromScanScope.item_<item number>]
Path=/tmp/ksmgtmp
[ExcludedFromScanScope.item_<item number>]
Path=/tmp/ksmg_filter
where
<item number>
is the ordinal number of the ExcludedFromScanScope section. Numbering starts at zero. - Save your changes in the configuration file.
- Import settings from the configuration file to the File Threat Protection task:
kesl-control --set-settings <task name> --file <full path to the file>
Exclusions for scan tasks are configured.