Changes

MSSecurityEssentials

164 bytes added, 14:13, 20 January 2010
m
Restricted users can't Allow suspicious files
== Gotchas ==
* Soon after installation it can recognise potentially useful software as a threat. For example if you have UltraVNC installed it will flag up UltraVNC.exe and RealVNC.exe. There's a risk that a user, when prompted to quarantine such files, will choose to do so remove or quarantine such files and remove the administrator's ability to connect. Administrative users can allow, quarantine or remove suspicious files where as Restricted users can only remove or quarantine suspicious files. It would be useful to script the white-listing of specific files that should not be considered a threat, upon installation. White-listing can be performed maually using: Show details → Recommendation → Select an action → Allow → Apply actions (note that Close means 'don't take any action at this point') → Close - this is saved system-wide.
== References ==
577
edits