Setting up our test environment for 9.6sp1. Current production is 9.5sp3.
Everything is looking good and like the new features. However, I've noticed that even after reducing the number of vulnerabilities to be scanned, my vulscans are taking up to 30 minutes or more on my test machines. with 9.5 we could run a vulscan in under 15. In watching the progress it seems the longest process is "Scanning file hashes".
Is this new to 9.6? I don't remember seeing this before and it appears the entire user directory is being scanned file by file?
Can I turn this off? Is this a learned function to build a list of trusted files?