digmor crusher

Application Rules

Recommended Posts

When I open  Protection-Application Rules it shows nothing, the box is empty, I have the small box unchecked for " Hide Fully Trusted Applications". I seem to remember when using EIS that there were numerous applications showing. After using EAM for over a week now shouldn't there be some applications listed here?  Thanks.

Share this post


Link to post
Share on other sites

They decided to hide all those entries from user during beta testing period.

Press "Add new rule" button , select file and choose "All allowed" under Custom monitoring drop down menu.

It should be in the list.

Share this post


Link to post
Share on other sites

Sorry, but that advice can be interpreted as if a user would have to take action themselves to make EAM work as intended.

That is not right.

The Application Rules tab in EAM9 works the same way it did in earlier versions of EAM.

It is empty because the Behavior Blocker in EAM does an outstanding job of handling 99,99% of all decisions without user interaction.

That is why Application Rules tab in EAM are usually empty - because EAM will only list the few executables that it can't make a decision on by itself.

So if you have never been prompted by the Behavior Blocker about a file, then Application Rules tab will be empty.

This is the way EAM is designed to work - fully automatic.

So no, you should not make your own rules in order to have it working and yes, it is normal to have an empty list.

Martin.

Share this post


Link to post
Share on other sites

It was not advice....I just wanted to show digmor how to quickly check that the feature works properly.

The rule can be removed later if not needed.

Share this post


Link to post
Share on other sites

Martin already explained it perfectly. Essentially we only create rules if we actually need them. EIS will have a lot more rules than EAM simply because every application accessing the internet will need a rule. Without the firewall though the only component requiring rules is the behavior blocker, which is pretty good at not needing rules. So while you have dozens upon dozens of rules when using EIS, you will rarely see any rules when using EAM.

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Recently Browsing   0 members

    No registered users viewing this page.