HIPS: Automatic mode with rules

Discussion in 'ESET NOD32 Antivirus' started by Sacles, Sep 14, 2011.

Thread Status:
Not open for further replies.
  1. Sacles

    Sacles Registered Member

    Joined:
    Dec 8, 2004
    Posts:
    372
    Location:
    Belgique
    Hello,

    How does work the HIPS with this method (Automatic mode with rules)?

    Is the PC protected? How?

    In advance, thank you for your clarifications.
     
  2. toxinon12345

    toxinon12345 Registered Member

    Joined:
    Sep 8, 2010
    Posts:
    1,200
    Location:
    Managua, Nicaragua
    Basically it is not focused on threat detection, but on prevention of unauthorized changes to your system.
    Depending on what changes you want to unauthorize, you must create the specific rules or filtering mode.
     
    Last edited: Sep 14, 2011
  3. Sacles

    Sacles Registered Member

    Joined:
    Dec 8, 2004
    Posts:
    372
    Location:
    Belgique
    Could give me examples to illustrate your two sentences?

    Thanks.
     
  4. siljaline

    siljaline Former Poster

    Joined:
    Jun 29, 2003
    Posts:
    6,619
    How do I enable HIPS
    Disabling HIPS, disables self-defense
     
    Last edited: Sep 14, 2011
  5. Sacles

    Sacles Registered Member

    Joined:
    Dec 8, 2004
    Posts:
    372
    Location:
    Belgique
    I have no problem to activate the HIPS.

    What I want to understand is:

    - What protection does it provide?
    - How does it with "Automatic mode with rules"?
    - Is it normal that in this mode the rules list is empty?
    - What is the mode that offers the best protection?
    ...

    What is the meaning of the sentence found in the help. :"Operations are enabled, except pre-defined rules that protect your system."
     
    Last edited: Sep 14, 2011
  6. anders

    anders Eset Staff Account

    Joined:
    Oct 25, 2002
    Posts:
    410
    The manual configuration of the HIPS module is designed for technically advanced users only.

    The default mode (HIPS activated, no visible default rules) is the suggested settings for now, and that's the way most people will/should run it.

    Using the HIPS module, the user can block access to low-level things in the computer (e.g. say that program X should never interfere with program Y, or folder Z). Many of the settings require deep technical knowledge.

    The text basically just says that as default, everything is allowed, except pre-defined rules that you can't alter (e.g. Self protection).
     
  7. toxinon12345

    toxinon12345 Registered Member

    Joined:
    Sep 8, 2010
    Posts:
    1,200
    Location:
    Managua, Nicaragua
    Is there any way to expand a variable/registry key to obtain the path to e.g. startup folder?
     
Thread Status:
Not open for further replies.