I'm setting up a new SEP 12.1 management server and looking at an old SEP 11 server as a model for this one. The person who set up the old SEP 11 server has lengthy exceptions policies with items like pagefile.sys and other miscellaneous Windows files in addition to the \spool folder and %{WINDOWS]%\system32\dhcp. He also has the Symantec files like rtvscan.exe listed. Additionally, Exchange info store items like X:\Exchange\mdbdata and other Exchange folders. He attempted to except MS SQL folders with wildcards too.
All of this makes me wonder - isn't SEP supposed to be intelligent enough NOT to scan certain Windows processes and its own executable files? If so, is there a list of what is excluded from scanning so that I don't have to add such items to an exception policy?
Many thanks,
Mark