NetApp Community Update
This site will enter Read Only mode on July 23 as we prepare to move to a new platform. You will still be able to view content, but posting and replying will be temporarily disabled.
We're excited to launch our new Community experience on July 30 and more information will follow soon.
Stay connected during the transition - Join our Discord community today.

ONTAP Discussions

Using Fpolicy as a layer against Ransomware

Greg_Wilson
2,726 Views

So im looking at setting up fpolicy to add in another layer to hopefully prevent Ransomware.

 

Netapp has a good blog article about it.

 

https://blog.netapp.com/fighting-ransomware-tools

 

My question is looking around there seems to be about 4000 rough known

extensions now.

 

looking a the command to add in extensions 

 

vserver fpolicy policy scope create -vserver svm1 -policy-name blacklist_-file-extensions-to-include WNCRY,locky

 

is there a way we could tell FPolicy to use a file as the list ??

1 REPLY 1

hmoubara
2,667 Views

Hello,

 

Unfortunately, The fpolicy feature blocks files based only on extension. You can check the TR below for any additional information needed:

 

https://www.netapp.com/us/media/tr-4429.pdf

Public