Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 4 subscribers
  • Views 4707 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos default exclusions, List?

Sven Anders

Hello!

 

Is there a list of the default Sophos Endpoint AV exclusions (especially for Windows)?

 

I'm currently installing Sophos Endpoint on serveral clients (via Sophos Central) and I'm checking, which additional exclusions I will need.

I'm aware of the "Recommended vendor exclusions for use with Sophos products (Windows)"  (https://community.sophos.com/kb/en-us/35970), but certainly Sophos does already have some of these already set. Especially the basic windows exclusions.

 

Where can I find such a list?

 

Regards

 Sven



This thread was automatically locked due to age.
Parents
  • 0

    Hi  

    This article provides information on scanning exclusions for specific file types/folders or processes. If the exclusions need to be added Globally then that can be found under Global Settings in Central. You can apply exclusions either by creating a new policy or applying under the existing one for affected servers/ machines. Other than vendor exclusions list, we do not have any specific list for default exclusions. 

    Shweta

    Community Support Engineer | Sophos Technical Support
    Are you a Sophos Partner? | Product Documentation@SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
    The New Home of Sophos Support Videos! - Visit Sophos Techvids
  • 0 in reply to Shweta

    I was not asking how to define exclusions!

     

    You said "Other than vendor exclusions list, we do not have any specific list for default exclusions."

    But what does this mean?

    I want to see a list, which shows all the default exclusions of Sophos AV.

    Does Sophos use all the entries in the vendor exclusion list per default? I do not understand this.

     

    As an example Microsoft recommends to exclude the following files:

       NTUser.pol,  Registry.pol,  Registry.tmp

    which belong to the Group-Policy mechanism of Windows.

    Most likely Sophos AV does already exclude these files per default. Otherwise Sophos AV could break the whole Windows System and/or Windows Security mechanisms.

     

    Where can I find such a list?

     

    Regards

     Sven

Reply
  • 0 in reply to Shweta

    I was not asking how to define exclusions!

     

    You said "Other than vendor exclusions list, we do not have any specific list for default exclusions."

    But what does this mean?

    I want to see a list, which shows all the default exclusions of Sophos AV.

    Does Sophos use all the entries in the vendor exclusion list per default? I do not understand this.

     

    As an example Microsoft recommends to exclude the following files:

       NTUser.pol,  Registry.pol,  Registry.tmp

    which belong to the Group-Policy mechanism of Windows.

    Most likely Sophos AV does already exclude these files per default. Otherwise Sophos AV could break the whole Windows System and/or Windows Security mechanisms.

     

    Where can I find such a list?

     

    Regards

     Sven

Children
Unfiltered HTML