I'm trying to set this up in our environment, but do not see any option in the UI. We just wanted to create a sub-policy or modify the existing Master policy, to enable portal shield not to scan ASPX pages. Is this possible in this version? If so please let me know how this can be done.
Any help would be highly appreciated...
Well as you know it does use VirusScan to do all of the scanning. You could create a seperate policy for your SP servers to receive that would exclude *.aspx files from your scans. Use the unwanted program policy and under scan items you can create exclusions with (don't quote me on this) wildcards like the *.aspx to have those types excluded. It's worth a try after seeing 240 reads and no comments on your post!
Then why did I have to isntall virusscan 8.7 to all my production sharepoint servers so that my uploads and downloads could be scanned?
that would indicate portalshield isn't hooked into sharepoint properly so it isn't scanning the files on upload or download. you might see some scan failures in the app log with a 2045 event id or there may be some windows sharepoint events pointing to sts2vsapix64.dll.
virusscan is technically not required to be on the server but it should be installed to protect the file stucture. You should also make sure that virusscan has exclusions for the sharepoint server install folders/subfolders so it isn't scanning those files as well. it has no way to protect files that are in sharepoint or getting loaded to share point. it can only scan the files before you select them to upload and after you have downloaded them from sharepoint.
Not to veer the conversation here, but I was unaware PS had it's own scanning engine, dats, and full seperate controls for file scanning/access protection.
yes, it is designed to only operate within sharepoint. we hook into sharepoint via microsoft's virus scan api which they designed specifically for sharepoint.
see the following for an overview of that api.
there is a way to do it but it isn't an easy fix.
what you would have to do is go into the portalshield gui under policy manager\on-access\master policy
select the anti-virus scanner
under the options section select edit
under "specify which files to scan" select defined file types
add in (one by one) the files that you want portalshield to scan.
save and apply.
this will keep portalshield from scanning aspx files.
i might have another method but i need to do some testing to make sure it works before i put anything down
I found a way of doing this in MSMS2.5. with MSMS, we can specify file types to be excluded from the on-demand scan. It has lot of other cool features too