I am Chetan Savade from Symantec Technical Support team.
Following are the two fixes in SEP 12.1 RU1 MP1 version.
Tamper Protection exceptions are not honored (http://www.symantec.com/docs/TECH171057
Fix ID: 2580578
Symptom: Tamper Protection exceptions are not honored. An excluded process will trigger tamper protection.
Solution: The SEP client was sending a delta of the exclusion list to the BASH component. The client was modified to send the complete list to resolve this issue.
Folder/file exclusions in SEPM will not accept the ampersand (&) character
Fix ID: 2564781
Symptom: The ampersand (&) character is a valid file/folder-name character on both Windows and Macintosh. Folder/file exclusions in SEPM do not accept the ampersand (&) character.
Solution: SEPM was modified to allow the ampersand (&) character in file/folder exclusions.
Reference: http://www.symantec.com/business/suppor ... TECH187656
SEP 12.1.671.4971 is old version & was released in 2011.
By looking at above two fix id's I would also suggest to upgrade to the latest SEP version i.e. SEP 12.1 RU2 (12.1.2015.2015)
Tamper protection related articles:
Creating a Tamper Protection exception: http://www.symantec.com/docs/HOWTO55213
How to Create Exceptions or Exclusions for Tamper Protection Alerts that have already been loggedhttp://www.symantec.com/docs/TECH92553
Thanks and Regards,
Technical Support Engineer,
End Point Security
Enterprise Technical Support