Directories to Exclude from AV Scanning
- It is very important that you configure your AV NLM to exclude certain directories when scanning.
- All AV NLM programs, with the exception of Sophos, need to be configured to exclude some specific directories (and their subdirectories) and files. This prevents the AV NLM from interfering with GWAVA and GroupWise. The only directory that must be scanned is the VWORK directory.
- Specific instructions for excluding these directories are provide below.
|
Directory
|
Reason for Excluding
|
| Any Post Office directories and their subdirectories; Any Document Management storage areas |
There is no valid reason for scanning these; they are stored in encrypted format. In addition, Novell recommends these always directories are always excluded from scanning. |
|
<DOMAIN>\GWAVA\SMTPQ
<DOMAIN>\GWAVA\ZWORK
<DOMAIN>\GWAVA\WORK
|
This is where GWAVA stores notification messages as they queue up. Since the administrator's email may include an infected attachment, scanning this directory could impede GWAVA functions. |
<DOMAIN>\GWAVA\ARCHIVE
(and subdirectories) |
This is where GWAVA archives messages. Since messages may include an infected attachment, scanning this directory could impede GWAVA functions. |
<DOMAIN>\WPCSOUT,
<DOMAIN>\WPCSIN,
<DOMAIN>\MSLOCAL |
There is no valid reason for scanning these; they are stored in encrypted format. In addition, Novell recommends these always directories are always excluded from scanning.
GWAVA also uses the MSLOCAL\GWVSCAN directory, and interference from the AV NLM here will cause serious problems. |
| <DOMAIN>\WPDOMAIN.DB |
This is the master domain database and should never be scanned. It can cause serious problems to do so. |
| <DOMAIN>\WPGATE |
The gateways are normally installed under this directory. GWIA does briefly create the files in a format that can be scanned, however, interfering with its proper function with an AV NLM has been documented to cause serious issues. |
