ESET Online Help

Search English
Select the topic

HIPS rule management

This is a list of user-defined and automatically-added rules in the HIPS system. More details about rule creation and HIPS operations can be found in the HIPS rules settings chapter. See also General principle of HIPS.

Columns

Rule – User-defined or automatically chosen rule name.

Enabled – Deactivate this option if you want to keep the rule in the list but do not want to use it.

Action – The rule specifies an action – Allow, Block or Ask – that should be performed when the conditions are met.

Sources – The rule will be used only if the event is triggered by an application(s).

Targets – The rule will be used only if the operation is related to a specific file, application or registry entry.

Logging severity – If you activate this option, information about this rule will be written to the HIPS log.

Notify – A small pop-up notification appears in the lower-right corner if an event is triggered.

Control elements

Add – Creates a new rule.

Edit – Enables you to edit selected entries.

Delete – Removes selected entries.

Priority for HIPS rules

There are no options to adjust the priority level of HIPS rules using the top/bottom buttons (as for Firewall rules where rules are executed from top to bottom).

  • All rules that you create have the same priority
  • The more specific the rule, the higher the priority (for example, the rule for a specific application has higher priority than the rule for all applications)
  • Internally, HIPS contains higher-priority rules that are not accessible to you (for example, you cannot override Self-defense defined rules)
  • A rule you create that might freeze your operating system will not be applied (will have the lowest priority)