Can anyone give me a summary of what file execution blocking in KAM does. I see it is disabled by default, it it something I shouldn't enable for all installations?
Thanks in advance.
I would imagine this would be something that blocks the running of executable files that are not on some sort of "allowed to run" list. This way if a machine gets hit with say an infected page that injects malicious code in the OS through the web browser, then it won't let the code execute itself. This is speculation on my part after reading this; however I believe I'm on the right path.
I think it's a black list and some heuristic detection, rather than a white list. But yes, it is supposed to stop malicious executable processes running on the machine. I'm just puzzled as i thought that was the whole point of the main application.