Adding exceptions to your McAfee security settings enables you access files and websites that are blocked by the application. You can add several types of exceptions, depending on the type of restriction you encounter. For example, if you're using a McAfee security application such as Antivirus Plus. McAfee® Endpoint Security for Mac is a comprehensive security solution that protects your Mac and minimizes the risk of exposure to threats. You can use the software on standalone and managed Mac systems.

Agree with - when we had SEP on Macs in our environment we excluded the MUD folder (at Symantec's request). I'd clarify with your AV vendor and your Security team about exclusions. I know in SEP's case an exclusion was universal: it applied to both autoprotect and full system scans.

We toyed with excluding a set directory for developers so their builds/compiles/dbs wouldn't make things go nuts, while still getting a scan in once a week. But since we couldn't *just* exclude for autoprotect, we couldn't exclude it, period. We have since moved to just using Gatekeeper with App Store and identified developer only settings. I've been looking at this and realised all the info out there is pre-SIP. I've amalgamated the findings of a few people, plus my own digging into this list of folders to exclude from AV generally.

This is written for McAfee but you get the idea. /.* cache.db /.*.vmwarevm/.* /private/var/db/.* /private/var/vm/.* /private/var/folders/.* /private/var/root/Library/Caches/com.apple.SoftwareUpdate/.* /Applications/.*/Contents/(version Info).plist /Library/Application Support/JAMF/.* /Library/Updates/.* /Library/Caches/.* /Users/.*/Library/Caches/.* /Users/.*/Library/Developer/.* /System/.* /bin/.* /sbin/.* /etc/.* /tmp/.* /vm/.* /usr/bin/.* /usr/lib/.* /usr/libexec/.* /usr/sbin/.* /usr/share/.* /usr/standalone/.* edit: quoted text really didn't like all the wildcards!