Even the policy is set to block Executable files, but you can still run it from a removable device.
As per design, SEE-DC Policy supports Read\Write control for different file types. That means copying specific file types is not allowed to\from computer to specific Storage device. SEE DC doesn't block “executable” functionality of any file but while executing if that executable file is making Read or Write call to itself then it gets blocked by SEE DC as per policy.
In this case, when we run the executable file, internally no call gets executed which tries to read the file itself and hence that request never comes to SEE DC’s file system filter driver resulting the file executes successfully.
Imported Document ID: TECH217550
Subscribing will provide email updates when this Article is updated. Login is required.
Thanks for your feedback. Let us know if you have additional comments below. (requires login)
Subscribed to the Article.
Unable to subscribe
Thanks for your additional feedback !!!
Enterprise Support Virtual Agent
Rate Me :
Tell us more:
Welcome! My name is Sami, the Enterprise Support Virtual Agent answering technical support questions.