Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 14 subscribers
  • Views 778 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Enabling Intercept X

mspsysadmin

We are predominantly a Windows environment, around 120 servers. I have enabled this on a few servers so far including our main file server. No issues have appeared so far. 

I have everything enabled apart from

CPU Branch tracing and Deep Learning. Can anyone offer any insight into enabling these ? 

Anything to look out for when enabling this feature to more servers? 

Any thoughts would be appreciated. 



This thread was automatically locked due to age.
Parents
  • 0

    Deep learning is the new highest grade scanning protection we offer and tends to not impact performance.

    CPU Branch tracing is a bit more situational. basically it tries to figure out all the elements of the branching and seeing if something is trying to maliciously manipulate them. depending on what is running on a system there is different benefits/drawbacks to this protection. for low application load servers (like a file server) there is little impact - not only will there be less scenarios where that kind of protection will trigger but there will also be less impact on performance. On the other hand, high load servers are exposed more often to these sorts of things but also could have too high an impact on performance.

    without knowing your environment there isn't much more I can say.

    RichardP

    Program Manager, Support Readiness | CISSP | Sophos Technical Support
    Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

Reply
  • 0

    Deep learning is the new highest grade scanning protection we offer and tends to not impact performance.

    CPU Branch tracing is a bit more situational. basically it tries to figure out all the elements of the branching and seeing if something is trying to maliciously manipulate them. depending on what is running on a system there is different benefits/drawbacks to this protection. for low application load servers (like a file server) there is little impact - not only will there be less scenarios where that kind of protection will trigger but there will also be less impact on performance. On the other hand, high load servers are exposed more often to these sorts of things but also could have too high an impact on performance.

    without knowing your environment there isn't much more I can say.

    RichardP

    Program Manager, Support Readiness | CISSP | Sophos Technical Support
    Support Videos | Product Documentation | @SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.

Children
No Data
Unfiltered HTML