Is it possible to check integrity of all files in folder wiht one control ?
For me, it's just possible to verify the file content check but not for a list of file in folder.
For example, the content of /etc/
Unfortunately, there is not a way to perform file integrity checks for more than one file at a time per control in QualysGuard PC using the UDC for File Integrity. For similar reasons to the response to your other query, the Qualys scans err on the side of caution and we tend to not make checks that could have a detrimental impact to the system.
So, for our file integrity checks, we allow one file to be specified per UDC (User Defined Control).
We have discussed whether to build out more support here but to handle large volume, it may require some type of persistent agent rather than our current agentless scan. While a more invasive approach of using a persistent agent would allow for greater volume and deeper check coverage, the costs of maintenance increase dramatically.
Today, you can establish a hash value for files up to 250k, one file per UDC. We actually make a copy of the file and do the hashing on the scanning appliance to minimize impact to the scanned system.
SIDE-NOTE: If you are using the Dissolvable Agent for Windows systems, you can then snap files up to 10 MB but the hashing activity takes place on the target system.
To expand this functionality using our current architecture to cover the full file contents for folders of unknown size could have a detrimental impact and result in much longer scans. Most of the feedback from our customers has been in favor of shorter scan times. In fact, we have a "scan by policy" feature being released just this week.
I will forward your request to product management but wanted to provide some reasoning on why we do not allow for snapshots of entire folder contents.
Let me know if this answers your question adequately.
Thank you for all your answers.
Retrieving data ...