Oui, j'ai besoin d'une solution
As a result of a network-wide Nessus scan, got the following from a SEP client's Security log with an associated popup for each...
[SID: 23471] OS Attack: MS SMB2 Validate Provider Callback CVE-2009-3103 attack blocked. Traffic has been blocked for this application: SYSTEM
[SID: 20068] OS Attack: SMB Request Buffer Overflow attack blocked. Traffic has been blocked for this application: SYSTEM
[SID: 23179] OS Attack: MSRPC Server Service RPC CVE-2008-4250 attack blocked. Traffic has been blocked for this application: SYSTEM
For a SEP 12 client, I'm not quite clear on the effect of adding excluded hosts into the IPS policy of my SEPM. Will this allow Nessus to scan the clients AND eliminate the popups for our users at the same time?
