allow muting or exclusion of a host from password file alerts
A
Andy Suarez
If a client/customer wishes to keep a file on their machine that has the name "passwords" on it that's up to them. We should be able to mark somewhere that we've followed up about that file and would like to mute or white-list or exclude future alerts about it. I can't imagine having hundreds or thousands of machines what kind of noise this would be creating weekly.
J
Jason Barrett
Agreed. I have a "password" file on a client's network drive. I know what it is and they know what it is, but multiple endpoints trip the trigger. I need to be able to exclude certain drives, folders and files from the scan from time to time.
Patrick Sofo [Security Product Manager]
D
Deon Marshall
Surprisingly, not a lot of noise.
However, exclusions are already possible at a host or organisation level.
The documentation is on their KB page: https://support.huntress.io/hc/en-us/articles/21966460493331-Potentially-Unsecured-Credentials
A
Andy Suarez
Deon Marshall: was told that this is not possible by huntress support, thanks for pointing that out. for others you can get to this by clicking hamburger menu in top right, then settings, then scroll down to "exclusions" section and add a new exclusion there.