ONTAP Discussions

Using Fpolicy as a layer against Ransomware

Greg_Wilson
1,775 Views

So im looking at setting up fpolicy to add in another layer to hopefully prevent Ransomware.

 

Netapp has a good blog article about it.

 

https://blog.netapp.com/fighting-ransomware-tools

 

My question is looking around there seems to be about 4000 rough known

extensions now.

 

looking a the command to add in extensions 

 

vserver fpolicy policy scope create -vserver svm1 -policy-name blacklist_-file-extensions-to-include WNCRY,locky

 

is there a way we could tell FPolicy to use a file as the list ??

1 REPLY 1

hmoubara
1,716 Views

Hello,

 

Unfortunately, The fpolicy feature blocks files based only on extension. You can check the TR below for any additional information needed:

 

https://www.netapp.com/us/media/tr-4429.pdf

Public