about the blocked files in the computer security policy

I add one folder to the blocked list.

then, I move a file to the folder successfully.

defense+ does not block this actions

Is that a bug?


Could any malware create files in the folder which is in the blocked list?

[attachment deleted by admin]

CIS allows the user to do many things that applications can not. I’d hazard a guess that if an application tried to do the same thing, it would fail.

To test it you need to make a batch file that does the copy action. It should not be able to write to the blocked folder.