| Home | Register | Members | Search | Windows Vista Tips | File Database | Links |
 |
| Thread Tools | Display Modes |
|
Guest
Posts: n/a
|
I write security policies for a box using an IPS (Intrusion Prevention System). This IPS prevents svchost.exe to modify files under system32 folder. But the problem is that MS keeps changing the Win update program files from time to time and that raises alarms in my IPS. I do not want to allow svchost.exe to write any random file under system32. So this is what I came up with, I allow svchost.exe to modify wuauclt.exe and cdm.dll but seems like there is a complete slew of files that MS keeps updating  If anyone can give me the complete list of files that Windows AutoUpdate requires then I could allow svchost to just modify those files. |
|
|
|
|||
|
|
| |
|
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| svchost 100% CPU and Possible windows update problems | Russell Jesson | Windows Vista Performance | 9 | 06-29-2011 04:09 AM |
| svchost.exe(LocalServiceNetworkRestricted) accessing media files | Eric Tiberius Duckman | Windows Vista General Discussion | 5 | 08-10-2008 10:25 AM |
| svchost - continually reading files | richgk | Windows Vista General Discussion | 3 | 07-11-2008 04:29 PM |
| Re: BITS/svchost fails, Windows Update not working | Robert Aldwinckle | Windows Vista Performance | 7 | 07-23-2007 07:16 AM |
| Windows Update causes svchost.exe 100% CPU | tjwib | Windows Update | 5 | 01-13-2005 08:32 PM |
Linear Mode
