Home » McAfee Manuals » Computer Software » McAfee MTP08EMB3RUA » Manual Viewer

McAfee MTP08EMB3RUA Product Guide - Page 77

Excluding files and folders from virus scans, Virus & Spyware Protection

UPC - 731944568133

View all McAfee MTP08EMB3RUA manuals

Add to My Manuals
Save this manual to your list of manuals

Page 77 highlights

Using Virus and Spyware Protection Configuring scanning policy options 4 Task For option definitions, click ? in the interface. 1 On the Policies page, click Add Policy (or click Edit to modify an existing policy). 2 Click Virus & Spyware Protection, then click the Advanced Settings tab. 3 Under Virus Protection Settings, select each scan you want to enable. Select this option... Enable outbreak response Enable buffer overflow protection To do this... Check for an outbreak detection definition (DAT) file every hour. Detect code starting to run from data in reserved memory and prevent that code from running. Virus and spyware protection protects against buffer overflow in more than 30 most commonly used Windows-based programs. McAfee updates this list as it adds buffer overflow protection for additional programs. Buffer overflow protection does not stop data from being written. Do not rely on the exploited application remaining stable after being compromised, even if buffer overflow protection stops the corrupted code from running. Enable script scanning Detect harmful code embedded in web pages that would cause unauthorized programs to run on client computers. Script scanning is always enabled for on-access and on-demand scans. Scan email (before delivering to the Outlook Inbox) Look for threats in email before it is placed into the user's Inbox. (Email is always scanned when it is accessed.) Scan all file types during on-access scans Inspect all types of files, instead of only default types, when they are downloaded, opened, or run. (Default file types are defined in the DAT files.) Scan within archives during on-access Look for threats in compressed archive files when the files are scans (e.g., .zip, .rar, .tat, .tgz ) accessed. Scan within archives during on-demand Look for threats in compressed archive files during manual or scans (e.g., .zip, .rar, .tat, .tgz ) scheduled scans. Enable Artemis hueristic network check Send unrecognized threats to McAfee Labs for investigation. for suspicious files (This occurs in the background with no user notification.) Scan mapped network drives during on-access scans Look for threats in files located on mapped network drives when the files are accessed. Enable on-access scanning (if disabled) If on-access scanning has been disabled on a client computer, the next time client computers check for re-enable it the next time that computer checks for updates. an update Maximum percentage of CPU time Use up to the selected percentage of CPU resources when allocated for on-demand and scheduled performing on-demand scans. When set to High, we recommend scans scheduling scans to occur during off-peak hours. 4 Click Save. (For a new policy, click Next, select additional options for the policy, then click Save.) Excluding files and folders from virus scans Use this SecurityCenter task to define and manage items that are not scanned for viruses. You can add files, folders, or file extensions to the list of exclusions or remove them from the list. McAfee Total Protection Service 5.1.5 Product Guide 77

Section	Page
Contents	3
Preface	9
About this guide	9
Audience	9
Conventions	9
Finding product documentation	10
1 Introducing Total Protection Service	11
How Total Protection Service works	12
Types of protection	13
Additional features with specific versions	13
Core product strengths	14
New features for this release	15
The role of the client software	17
Updates to the client software	17
Overview of update methods	17
Simple updates through direct connections	18
Updates using Rumor technology	19
Updates through relay servers	19
Management with the SecurityCenter	19
Create user groups	21
Customize policies	22
Check reports	24
2 Using the Client Software	25
How to access the client software	25
About the icon	26
About the console	27
Types of client software updates	28
Terminal server support	29
Specifying when computers check for updates	29
Updating client computers manually	30
Disabling updates for non-logged on users	30
Performing setup and maintenance tasks	31
Testing virus protection	31
Changing the language for the software	31
Logging on as a site administrator	31
Configuring notifications	32
Configuring what users see	32
Uninstalling the client software	33
Frequently asked questions	34
Error messages	34
3 Using the SecurityCenter	37
The SecurityCenter	37
Logging on to the SecurityCenter	38
Accessing data on SecurityCenter pages	39
Protection status at a glance	40
Viewing protection at a glance	42
Working with widgets	42
Management of client computers	43
Working with computers	45
Working with an individual computer	46
Management of computer groups	47
Working with groups	48
Management of group administrators	48
Working with group administrators	50
Management of security policies	51
McAfee Default policy	52
Working with policies	55
Generation of security reports	56
Scheduling reports	58
Adding your logo to reports	58
Computer Profiles report	59
Duplicate Computers report	60
Managing your account	61
Configuring your account profile	61
Signing up for email notifications	61
Viewing and updating subscription information	62
Buying and renewing subscriptions and licenses	62
Locating or creating keys for your account	63
Merging accounts	64
Downloading tools and utilities	64
Getting assistance	65
Frequently asked questions about the SecurityCenter	66
Questions about reporting	66
Questions about adding, renewing, and moving licenses	67
4 Using Virus and Spyware Protection	69
How detections are handled	70
Spyware protection mode and detections	70
Use learn mode to discover programs	71
Types of scans	71
On-access (automatic) scans	72
On-demand scans	72
Email scans	73
Spyware scans	73
Scanning on client computers	74
Scanning on demand from the console	74
Scanning on demand from Windows Explorer	75
Scanning email on client computers	75
Viewing the progress of scheduled scans	75
Enabling and disabling on-access scanning	76
Configuring scanning policy options	76
Scheduling a scan	76
Enabling optional types of virus scans	76
Excluding files and folders from virus scans	77
Selecting spyware scanning options	78
Approving and unapproving programs in a policy	78
Managing detections	79
Viewing scan results on client computers	79
Managing potentially unwanted programs on client computers	80
Viewing quarantined files on client computers	81
Viewing user-approved programs and applications	81
Viewing threats detected on the account	82
Viewing unrecognized programs detected on the account	83
Reports for virus and spyware protection	83
Detections report	83
Unrecognized Programs report	84
Detection History report	85
Best practices (virus and spyware protection)	85
Frequently asked questions	87
Error messages	87
5 Using Firewall Protection	89
Connection type and detections of incoming communications	90
Custom connections	91
Firewall protection mode and detections of unknown applications	92
Use learn mode to discover Internet applications	93
The role of IP addresses	93
The role of system service ports	94
Standard assignments for system service ports	94
Firewall configuration	95
Interaction between user and administrator policy settings	97
Configuring policy options	97
Selecting general firewall settings	97
Configuring options for Internet applications	98
Tracking blocked communications	98
Configuring custom connections	99
Configuring system services and port assignments	99
Configuring IP addresses	100
Installing and enabling firewall protection at the policy level	101
Installing firewall protection during policy updates	101
Enabling and disabling firewall protection	102
Managing detections	102
Viewing unrecognized programs detected on the account	102
Viewing user-approved programs and applications	103
Viewing blocked communications	103
Reports for firewall protection	104
Unrecognized Programs report	104
Inbound Events Blocked by Firewall report	105
Best practices (firewall protection)	105
Frequently asked questions	106
Questions about policies	107
Questions about general firewall protection	107
6 Using Browser Protection and Web Filtering	109
Browser protection features	109
How safety ratings are compiled	110
Safety icons and balloons protect during searches	111
Using site safety balloons	111
Testing communication problems	111
SiteAdvisor menu protects while browsing	112
Using the SiteAdvisor menu	113
Safety reports provide details	113
Viewing safety reports	115
Information that browser protection sends to McAfee	115
Installing browser protection during policy updates	116
Web filtering features	116
Enabling and disabling browser protection via policy	117
Enabling and disabling browser protection at the client computer	117
Block and warn sites by safety ratings	118
Blocking or warning site access based on safety ratings	119
Blocking or warning file downloads based on safety ratings	119
Blocking phishing pages	120
Block and warn sites by content	120
Blocking or warning site access based on content	121
Authorize and prohibit sites by URL or domain	121
How site patterns work	122
Adding authorized and prohibited sites	123
Customizing messages for users	123
Viewing browsing activity	124
Web Filtering report	125
Best practices (browser protection)	126
Frequently asked questions	127
7 Using SaaS Email Protection	129
Core SaaS email protection features	129
Additional SaaS email protection services	130
The SaaS email protection widget and portal	131
Account activation and setup	132
Activating and setting up your account	133
Accessing the SaaS email protection portal	133
Configuring policy settings for SaaS email protection	134
Checking quarantined messages	134
Reports and statistics for email protection	135
Viewing email activity for the week	135
Viewing reports	135
Getting more information	135
8 Using Email Server Protection	137
Email server protection features	137
The installation and setup process	139
Installing email server protection	139
The email server protection widget and management console	140
Management of email server protection	141
Checking notifications and action items	141
Viewing detection and status information	142
Accessing the management console on the server	143
Where to find more information	144
9 Using Vulnerability Scanning	145
Vulnerability scanning features	145
The vulnerability scanning widget and portal	146
Accessing the vulnerability scanning portal	147
Overview of scanning process	148
Types of devices to scan	148
Types of scans	149
Managing scan devices	150
Discovering IP addresses in a domain	150
Discovering IP addresses in a network	150
Adding devices to scan	151
Configuring devices to accept scans	152
Creating device groups	153
Changing device groups	153
Deleting devices	154
Performing scans	154
Starting a scan	154
Scheduling scans for devices	155
How detections are reported	156
Viewing scan results	156
Viewing results for audit scans	157
Viewing results for DNS discovery on domains	157
Viewing results for network discovery scans	158
Frequently asked questions	158
Error messages	160
Index	161
A	161
B	161
C	162
D	164
E	165
F	166
G	166
H	167
I	167
K	167
L	167
M	167
N	168
O	168
P	168
Q	169
R	170
S	170
T	172
U	172
V	173

Match case Limit results 1 per page

Task

For option definitions, click

in the interface.

On the Policies page, click

Add Policy

(or click

Edit

to modify an existing policy).

Click

Virus & Spyware Protection

, then click the

Advanced Settings

tab.

Under Virus Protection Settings, select each scan you want to enable.

Select this option...

To do this...

Enable outbreak response

Check for an outbreak detection definition (DAT) file every hour.

Enable buffer overflow protection

Detect code starting to run from data in reserved memory and

prevent that code from running. Virus and spyware protection

protects against buffer overflow in more than 30 most commonly

used Windows-based programs. McAfee updates this list as it

adds buffer overflow protection for additional programs.

Buffer overflow protection does not stop data from being

written. Do not rely on the exploited application remaining

stable after being compromised, even if buffer overflow

protection stops the corrupted code from running.

Enable script scanning

Detect harmful code embedded in web pages that would cause

unauthorized programs to run on client computers.

Script scanning is always enabled for on-access and

on-demand scans.

Scan email (before delivering to the

Outlook Inbox)

Look for threats in email before it is placed into the user’s Inbox.

(Email is always scanned when it is accessed.)

Scan all file types during on-access scans

Inspect all types of files, instead of only default types, when

they are downloaded, opened, or run. (Default file types are

defined in the DAT files.)

Scan within archives during on-access

scans (e.g., .zip, .rar, .tat, .tgz )

Look for threats in compressed archive files when the files are

accessed.

Scan within archives during on-demand

scans (e.g., .zip, .rar, .tat, .tgz )

Look for threats in compressed archive files during manual or

scheduled scans.

Enable Artemis hueristic network check

for suspicious files

Send unrecognized threats to McAfee Labs for investigation.

(This occurs in the background with no user notification.)

Scan mapped network drives during

on-access scans

Look for threats in files located on mapped network drives when

the files are accessed.

Enable on-access scanning (if disabled)

the next time client computers check for

an update

If on-access scanning has been disabled on a client computer,

re-enable it the next time that computer checks for updates.

Maximum percentage of CPU time

allocated for on-demand and scheduled

scans

Use up to the selected percentage of CPU resources when

performing on-demand scans. When set to High, we recommend

scheduling scans to occur during off-peak hours.

Click

Save

(For a new policy, click

, select additional options for the policy, then click

Save

Excluding files and folders from virus scans

Use this SecurityCenter task to define and manage items that are not scanned for viruses. You can

add files, folders, or file extensions to the list of exclusions or remove them from the list.

Using Virus and Spyware Protection

Configuring scanning policy options

McAfee Total Protection Service 5.1.5 Product Guide