Configuration tab
This tab makes it possible to enable host reputation management and define the respective weight of the various criteria involved in the calculation of a reputation.
General
|
This button makes it possible to enable or disable host reputation management. |
Alarms
| Major [0-20] | Adjust the slider in order to define the weight of major alarms raised by a host in the calculation of its reputation. |
| Minor [0-20] | Adjust the slider in order to define the weight of minor alarms raised by a host in the calculation of its reputation. |
Antivirus
| Infected [0-100] | Adjust the slider in order to define the weight of infected files detected for a host in the calculation of this host's reputation. |
| Unknown [0-20] | Adjust the slider in order to define the weight of files that could not be scanned (encrypted files, password-protected files, etc). |
| Scan failed [0-20] | Adjust the slider in order to define the weight of files for which the antivirus scan failed during the calculation of a host's reputation (corrupted file, corrupted antivirus base, etc.). |
Sandboxing
| Malicious [0-100] | Adjust the slider in order to define the weight of malicious files detected for a host in the calculation of this host's reputation. |
| Suspicious [0-100] | Adjust the slider in order to define the weight of suspicious files detected for a host in the calculation of this host's reputation. |
| Scan failed [0-20] | Adjust the slider in order to define the weight of files for which sandboxing failed during the calculation of a host's reputation (e.g.: corrupted files). |
Statistics
| Reset scores for all hosts in the database | Clicking on this button will erase the reputation scores of all hosts contained in the reputation database. The scores of all these hosts will then be reset to zero, and will change according to the settings selected in the Alarms, Antivirus and Sandboxing categories. If "block" filter rules are applied based on reputation scores, hosts will only be blocked after their scores have increased. |