Question & Answer
Question
What does the "Aggressive" setting in ReaQta's Anti-Malware module do, and why is it not suggested one not have it enabled all the time?
In the IBM Documentation Enabling the Anti-Malware module, there are 4 levels of Anti-Malware protection:
In the IBM Documentation Enabling the Anti-Malware module, there are 4 levels of Anti-Malware protection:
- Detection
- Protection
- Advanced
- Aggressive
What does Aggressive do, and why is it not suggested it not be enabled all the time?
Answer
- The Anti-Malware module does not support on-demand scan, but continuously monitors the file system for changes. This scanning is default behavior.
- In Aggressive mode, every mounted drive gets monitored and scans are run for every application and file, including system folders. If malware is found, it is quarantined and kept locally in a protected directory.
- Aggressive mode is suggested during a breach or attack, to keep monitoring all drives. Once the breach is declared over, it is suggested one set the Anti-Malware level back to its non-aggressive stance. It is said this behavior can be seen similar to deep vs regular scanning in various Anti-Virus solutions to verify against the presence of malware artifacts.
- Aggressive mode is not ideal for day-to-day use, as it might have a performance impact in the long term where it is used.
[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSVOEH","label":"IBM Security ReaQta"},"ARM Category":[{"code":"a8m3p000000hBSSAA2","label":"Configuration-\u003EDetection"}],"ARM Case Number":"TS011199012","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]
Product Synonym
ReaQta
Was this topic helpful?
Document Information
Modified date:
16 May 2023
UID
ibm16839533