I have previously posted a question on excluding Ubuntu 14.04 under HIPS which I got help for.
In a nutshell, create a WSL File Group, add the relevant path and that all worked.
Now I have installed Ubuntu 18.04 and items like apt update either fails to work or is very very slow.
Debugging the issue I found that now auto containment sandboxes the various executable, so I created an ignore rule for the WSL file group (which I still log)
Now it works a little better, but is still extremely slow, checking the logs I see containment logs being generate and the files are now set to ignore however most of the files comes up as unknown.
If I then disable auto containment then it runs very fast, if I enable it again then it slow down dramatically.
So now my question is how do I get the files excluded from auto containment to stop (what I suspect is my issue) from being checked for their reputation?
Updated If I disable “Enable Cloud Lookup” whilst Containment is still enabled then apt update flies, so I need to find a way or getting WSL not checked against the cloud. (I have set dpkg to trusted, but it keeps on thinking that it’s untrusted)
CIS 11.0.0.6728
Windows 1803 (build 17134.472)
Ubuntu Linux 18.04 (from the MS Store)