This might have been discussed before, but I have checked and couldnt find anything helpful. I am trying to find some pointers....

Issue.

I want to block all ealier versions of Putty + other Apps e.g Adobe Reader 9x etc

What is the best option?  App and device policy or firewall...and how?

What I have have done.

In the App and Device control policy, I have create a  rule to match the file fingerprint of the Putty versions I want blocked.

Results

I am still able to launch or install all  those blocked  Putty versions.

Where am I going wrong?

Yea you can use ADC to stop these apps from running, see here https://www-secure.symantec.com/connect/forums/how-block-applications-sep-using-md5 You can block traffic using the MD5 off the app but it will still install...ADC will take care of this problem altogether

Blocking files using Application Device Control within the SEPM

Check these articles

How to block the access of Application using Symantec Endpoint Protection's Application and Device Control (ADC) policies

How to use Symantec Endpoint Protection to block or log legitimate but unauthorized software usage

How to configure Application Control in Symantec Endpoint Protection 11.0 : Configuring Application Control Policies

I'd suggest posting a screenie of your A&DC policy so we can have a look-see at how it's configured.

Hi jsn,

This illustrated guide from Connect might help:

Block Software By Fingerprint
https://www-secure.symantec.com/connect/articles/block-software-fingerprint

Many thanks!

Mick