There are two kinds of violations in ServerProtect for Storage with ICAP Scanner:
- Virus/Spyware Violation
- Compress Violation
Know the types of Compress Violations available and how to disable Compress Violations.
If the scanned file did not pass the Compress Scan Policy, ICAP Scanner will treat the file as Compress Violation. There are four kinds of Compress Violations:
- ZIP_EXCEED_LAYER - The layer number of the compressed file exceeds the specified value.
- ZIP_EXCEED_SIZE - The size of the decompressed file exceeds the specified value.
- ZIP_EXCEED_RATIO - The compressed ratio of the decompressed file exceeds the specified value.
- ZIP_EXCEED_COUNT - The number of the decompressed files exceeds the specified value.
For example, when you set Scan Level to “2” in Storage Scanner configuration dialog, ICAP scanner will treat the file as a compress violation "ZIP_EXCEED_LAYER” if it scans a compressed file with three layers.
If you prefer not to trigger the Compress Violations above, you may do the following:
- If you have ServerProtect for Storage 6.0 Repack 2 in your environment, proceed to step 3.
- If you have ServerProtect for Storage 6.0 or ServerProtect for Storage 6.0 Repack 1 in your environment, please apply Hot Fix Build 1095 or later version first before proceeding to step 3. You can request these hot fixes from Trend Micro Technical Support.
- Open a Registry Editor on the Normal Server.
- Locate the key, HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\ServerProtect\CurrentVersion\Engine\IcapSetting
- Add a DWORD type on the key RespZipErr and set the value to “200”.
- Restart the Normal Server service.