Hi,
I have a few suggestions for improvement:
- It would be good if the detailed log files were integrated directly into the mail reports OR viewable in the Backup Console . Due to the security guidelines, I can't easily access the management machine to get the logs manually from C:.
- It would be good if "Malware Detection" and "Malware Events" were available consolidated in the Backup Console and not distributed across Inventory and History. Now you have to jump back and forth over several trees.
- The "Potential malware activity detected" event is completely useless because you can't tell what to look for on the machine. Or I haven't found the necessary log yet?
- Whitelisting needs to be more granular. If I exclude, for example, *.1251.EXT because I only want to whitelist these files, they will still be recognized because the *.EXT extension is checked by default, which is what would be wanted. This means that the *.EXT check beats all other variants of it in the whitelist.
- I would like to see an executive report about the malware detections and actions carried out such as whitelisting, "Mark as Clean" etc. Audit and reporting obligations are becoming increasingly important for us service providers towards our customers and also authorities.
Basically, I think these new features are a sensible approach. However, at the moment they tend to lead to extra work and uncertainty due to many false positives.
You should also consider making this feature available in the lowest Veeam edition and not just in Enterprise Plus.
I have a few suggestions for improvement:
- It would be good if the detailed log files were integrated directly into the mail reports OR viewable in the Backup Console . Due to the security guidelines, I can't easily access the management machine to get the logs manually from C:.
- It would be good if "Malware Detection" and "Malware Events" were available consolidated in the Backup Console and not distributed across Inventory and History. Now you have to jump back and forth over several trees.
- The "Potential malware activity detected" event is completely useless because you can't tell what to look for on the machine. Or I haven't found the necessary log yet?
- Whitelisting needs to be more granular. If I exclude, for example, *.1251.EXT because I only want to whitelist these files, they will still be recognized because the *.EXT extension is checked by default, which is what would be wanted. This means that the *.EXT check beats all other variants of it in the whitelist.
- I would like to see an executive report about the malware detections and actions carried out such as whitelisting, "Mark as Clean" etc. Audit and reporting obligations are becoming increasingly important for us service providers towards our customers and also authorities.
Basically, I think these new features are a sensible approach. However, at the moment they tend to lead to extra work and uncertainty due to many false positives.
You should also consider making this feature available in the lowest Veeam edition and not just in Enterprise Plus.
Statistics: Posted by A.J. — Mar 04, 2024 4:17 pm
![Madonna – Who’s That Girl (1987/2020) [FLAC 24bit/192kHz]](http://imghd.xyz/images/2023/06/08/0093624951148_6004dceff9e1db710a9.jpg)
