Re: When closing CFP, user should be warned that actions will be silently blocked

Can confirm HIPS behaviour has changed in v5. In v3/v4 in order to block all activities not specified under Network policy or Computer Policy we needed to use “block unknown requests if application is closed” option. Seems like now its not necessary. Then… what is a purpose of “block unknown requests if application is closed” option in v5?

Moving to help so someone can explain

Many thanks

Mouse

According to egemen the only reason one should enable “block unknown requests if application is closed” is when one suspects one is infected.

During beta testing of v5 it turned out that enabling it caused a lot of problems during boot time.

With the client shut down I think Default Deny still does its job.