Specify the maximum depth to scan archive filesID: oval:org.secpod.oval:def:35399 | Date: (C)2016-06-10 (M)2023-12-13 |
Class: COMPLIANCE | Family: windows |
This policy setting allows you to configure the maximum directory depth level into which archive files such as .ZIP or .CAB are unpacked during scanning. The default directory depth level is 0.
If you enable this setting, archive files will be scanned to the directory depth level specified.
If you disable or do not configure this setting, archive files will be scanned to the default directory depth level.
Counter Measure:
Configure this setting depending on your organization's requirements.
Potential Impact:
Scanning can impact performance.
Fix:
(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Windows Defender\Scan\Specify the maximum depth to scan archive files
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender\Scan!ArchiveMaxDepth
Platform: |
Microsoft Windows 10 |