Endpoint Protection

Hi everyone

I have been searching for this for quite a while now, but did not fine anything which is clear to me so far.
Therefore, I decided to ask oyu guys inhere:

As the SEP client uses various sets of signatures and definitions, they all are grouped in packs:

• Virus and Spyware definitions
• SONAR heuristic signatures
• TruScan proactive threat scan commercial application list
• Intrusion Prevention signatures
• Submission Control signatures
• Reputarion Settings

As this indicates somehow a split-up of functionalities and targeted components, it is not entirely clear anyway.

For example, where is the "Download Protection Content" hiding?

I hope you get what I am asking here and what is not clear to me.

Are you talking about what each content moniker means?

Symantec Endpoint Protection 12.1: Content moniker mapping for updating legacy clients with third-party distribution tools

I am afraid, no.

This document does not really help to answer the question.

Perhaps I have to put it differently:

In SEPM\Policies\LiveUpdate Policies

In the definition of the LiveUpdate Content policies, in the Security Definitions part there is the listing of content types.

On the other hand, in a report of "Out-of-Date" endpoints, there are various other content status information listed.
As for example "IPS Signatures", "SONAR Content", "Download Protection Content" or "Antivirus Content".

The question is how are the content types, shown in the LU content policy linked to the content shown in a (for example) Out-of-Date endpoint report.