Does anyone have any thoughts about running avast! as a much smaller “footprint” than is offered by the default installation? I’m considering runing the "the “File System Shield” and the “Mail Shield” ONLY.
We already have Spam Filtering and Internet Filtering at the Network level for example.
As much as it pains me to say so, the sheer number of shields within v7 is proving to be a nightmare to manage (and troubleshoot in particular). Most recently, AutoCAD would not start due to a “false positive” and we have also experienced difficulties with the “sandbox” facility when publishing drawings to a document management system.
Specifically, other than the “File System Shield” and the “Mail Shield”, is their much added value provided within (say) the “Behaviour Shield” or the “Network Shield”?
File system shield id the one that will catch most threats. However the Web Shield is equally as important for scanning the HTTP traffic. Unless you have some kind of Web Filter that also scans for malware (I.E Barracuda Web Filter or similar product) it would be best to leave it on.
The AutoSandbox is usually something we disable, just far too many false positives with it to be used in a business environment (as you see with your AutoCAD).
Some of the shields cooperate with each other invisibly.
For example, the Behavior Shield provides information for the FileSystem Shield that makes various heuristics possible. Or, the Web Shield knows where the particular file has been downloaded from - an information that again can be used later to trigger detections (e.g. because that particular domain gets blocked in subsequent definition updates).
So my suggestion would be not to remove the shields unless they really give you some performance issues.
That’s great information, much to consider. Thank you both.
Presently, I have all of the shields turned on for most users (with the exception of Sandbox.
So far, I have set up a seperate group for the machines within the CAD Office and experimented turning off some of the shields (with the exception of the File System and Web).
Any thoughts on the “Script Shield”? We have some routines that publish drawings into a web based document management system.