Hi, these two articles seem to have conflicting information and I wondered if one perhaps requires a clarification?
The first details VSS and how to remediate if malware is detected: https://support.sophos.com/support/s/article/KB-000037996?language=en_US
There is a line in it under the What is a Volume Shadow Copy? section that states: You cannot exclude the shadow copy location from the real-time scan setting because it is not an actual file location.
Then there is another KB that shows you how to exclude: https://support.sophos.com/support/s/article/KB-000036762?language=en_US
This is confusing unless there's something I'm missing? Both show Central Server is covered, both are from Dec 2023, and both discuss it for real-time scanning. One explicitly says you cant exclude it from Global Exclusions and the other doesn't so maybe that's the difference? If so, the first one should potentially be updated to mention that specifically.