Could you expound upon this a little please? Some of use have limited understandings of firewalls to start with and to me purging trusted files means removing the entire list of trusted files so you have to start over…
Now, the purge function of CIS compared to the file path. if file does not exist, purge delete file list path. if exit same file name of other file that not delete the file path list. this accumulate same path to the truested file list.
ex) aimp play is updated. first this is not trusted file and running at sandbox. i add aimp player file onthe trusted file. aimp file path of same path (old and new) accumulate on the trusted file list of CIS.
if using the hash compare, the purge function remove other file (compare hash) of the same path although there same name file exist.
Purge delete : file not exist
Purge not delete : file exist, although that is other file. ← this problem. >:(
Purge delete : 1. file not exist 2. Even if the file of same name exists, the file was different (compare hash).