Configuring Scan Settings
Procedure
- Configure scan settings for large compressed
files: CPM checks the file size and security risk count
limit to determine whether to scan individual files contained in a
compressed file.
Do not scan files in the compressed file if the size exceeds X MB: Some compressed files can expand to 100 or even 10,000 times their compressed size (innocently, or maliciously, in what is known as the "zip of death".) Scanning these files can be dangerous and inefficient.
Display a client notification when CPM does not scan a large file: This option displays a client-side popup notification when CPM does not scan a file found within a compressed file based on the Do not scan files (in a compressed file) if the size exceeds X MB setting. The notification provides a link to a log file which indicates the date, source compression file, and name of the file that CPM did not scan.
Stop scanning after CPM detects X viruses/malware in the compressed file: This option provides a reduced scan time, which can be intensive for compressed files. If a file is found to contain a lot of threats, it can be summarily deleted.
- Scan OLE objects. Maximum layers <drop-down list>: Object Linking and Embedding (OLE) allows users to create objects with one application and then link or embed them in a second application, creating "layers." For example, a Microsoft™ Word document that contains an Excel spreadsheet, which, in turn, contains another embedded object.
- Exclude Microsoft Exchange server folders from scanning: Select this option to prevent CPM from scanning Microsoft Exchange 2000/2003 server folders on the client. For example, if you already use Trend Micro™ ScanMail for Exchange to protect email. For Microsoft Exchange 2007 folders, you need to manually add the folders to the scan exclusion list. For scan exclusion details, see: