Hot Take RoboMan's Kaspersky 2023 Light & Solid Settings

[Smoke]

That setting is Settings -> Security Settings -> Exclusions and actions on object detection, not in File Anti-Virus:

Exclusions and actions on object detection

support.kaspersky.com

When You set Interactive Mode in K. some protection modules get also in Interactive Mode, but still You may set them to auto remove, for example, I'm in Interactive Mode but My File-AV module is set as:

View attachment 276358

The same can be set for on demands Scanning tasks, System Watcher, Safe Browsing...

I'm not sure how I managed to miss that before, chalk that one up to being VERY tired. Either way, this solves my issue. Thank you for your help.

 

[superleeds27]

Encrypted connection scan: do not scan

Any reason why you've changed this?

Anyone?

 

[Gandalf_The_Grey]

Anyone?

Probably because of this:

Common pitfalls of breaking up HTTPS connections

HTTPS proxies (antivirus, company network proxies) breaking up end-to-end-encrypted connections typically introduce a number of privacy and/or security issues. This article explains some common ones.

palant.info

 

[superleeds27]

Probably because of this:

Common pitfalls of breaking up HTTPS connections

HTTPS proxies (antivirus, company network proxies) breaking up end-to-end-encrypted connections typically introduce a number of privacy and/or security issues. This article explains some common ones.

palant.info

Hmm. Sounds like it should be disabled then?

Why's it enabled by default?

 

[Gandalf_The_Grey]

Hmm. Sounds like it should be disabled then?

Why's it enabled by default?

It is enabled by default because it gives you the best protection from your av (Kaspersky).
A good discussion about this topic is found here:

Advice Request - HTTPS scan: should you enable it?

HTTPS scanning has been a hot topic in the industry for a long time now, and reciently a lot in this forum. The objective of this thread is to post enough information to help users decide wether they should enable or disable this function within their antivirus. WHAT IS HTTPS HTTPS stand for...

malwaretips.com

 

[superleeds27]

What's your thoughts @harlan4096, you're the Kaspersky man around here haha

 

[harlan4096]

Personally, I have it enabled, although FireFox warns about sites without https in strict mode, K. also sends You a warning about suspicious and/or issues with sites certificates...

 

[nishaddesilva]

Does Kaspersky still install their own certificates?

 

[harlan4096]

Yes, only 1

 

[nishaddesilva]

Yes, only 1

Really hate that feature. You check the certificate on a website and it says Kaspersyk Root Certificate (or something). Any way to disallow that installation?

 

[harlan4096]

Then disable completely HTTPS Scanning feature, run certmsg.msc, in Search Certificate, type Kaspersky, and delete manually the certificate.

 

[RoboMan]

Encrypted connection scan: do not scan

Any reason why you've changed this?

That's your choice. Scanning HTTPS is usually a big debate towards privacy and security. I see they've already referred you to the thread discussing it. At the end of the day, it's not a big deal either it's enabled or disabled.

 

[Snowwolfboi]

The Kaspersky filter need some tweaks because i found that Kaspersky config you have created is too aggressive sometimes. When i used unity it blocked a exe that was harmless and was used to make my unity codes working correctly

 

[SumTingWong]

@RoboMan

Thanks for this settings.

How much system impact and protection different when set scan mode to on access and modification vs execution?

 

[RoboMan]

@RoboMan

Thanks for this settings.

How much system impact and protection different when set scan mode to on access and modification vs execution?

I found significant difference in impact when set to "on execution". It's slightly less secure of course, but Application Control should cover that if tweaked correctly.