Would be interesting to hear what they were talking about.
Obviously you have the AV, SONAR, Firewall, Application and Device Control, HIPS, browser IPS and Downlod Insight. Yes, you can do whitelisting in SEP. Only executables on your hash list would be allowed to run.
My guess would be Download Insight as it was just implemented in 12.1
How the Insight Lookup process works
Article:TECH169282 |
| |
Created: 2011-09-09 |
| |
Updated: 2012-06-28 |
| |
Article URL http://www.symantec.com/docs/TECH169282
|
Expected behavior of Download Insight
Article:TECH171776 |
| |
Created: 2011-10-13 |
| |
Updated: 2012-05-10 |
| |
Article URL http://www.symantec.com/docs/TECH171776 |