Hey there, I would like to scan a USB stick and then a USB HDD which I am very confident both contain some form of malware. I would like some advice on the recommended steps to disinfect both these devices without risking infecting my machine. After consulting the documentation my current plan is:
Create a custom RDS task, with a custom config file.
Add the following to the config file:
"BlockDuringScan" : "Yes",
"ScanRemovableDrives" : "DetailedScan"
Start the task.
Insert the USB storage device.
Only access the files on the USB storage device after checking that the task has completed.
Repeat.
Is this sufficent, or do I need to use other kesl features to further lock down the device when it is inserted? I did notice in the documentation on the BlockDuringScan setting that "while scanning boot sectors, files are not blocked". I am not familiar with the capabilities of modern malware; if I do not open the USB storage until after the scan has completed, does this pose no threat to my machines security?
Also, love kesl so far, so good to see a great commercial program that supports linux :-)