Can we block from downloading files from particular site
We can block access to sites, I have not tested blocking downloads but i think it doesn't work
Blocking sites works great.
Prachand MCSE-2012 Symantec Technical Specialist (SCTS)
blocking download from a specific site , I think it is not possible to achiev through SEP.
Help Link: http://www.symantec.com/business/support/overview.jsp?pid=54619
Check this Article:
How to block users to perform download of files with specific extentions using Application and Device Control.
However I agree, it is not possible to achieve "blocking downloads of files from particular site" through SEP.
However, what you could either do is -
1) As suggested above, block the website OR
2) Apply an Application and Device Control Policy for Hardening Symantec Endpoint Protection (SEP)
Exclusions are already in place for Windows Updates.
Extra care should be used when rolling out this rule. It has been included in this set due to its power to block threats, but it has consequences that should be considered.
a. This rule can interfere with new ActiveX controls, which effectively code Internet Explorer downloads and runs.
b. Users will no longer be able to run downloaded executables directly from the browser. Instead they will be required to use Save As to disk before running.
Internet Explorer drive by downloads is a very common threat vector. This rule prevents many such attacks by blocking access to locations typically written to by threats. Users also will be unable to download executables to WINDIR or anywhere in Program Files, but can continue to download to the Desktop, My Documents, or Downloads directories.
Check - How the Application and Device Control Hardening policy works
Hope that helps!!
Symantec Enterprise Technical Support Engineer, SEP
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3
Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.
Hi SKP ,
All above are correct it is possible to have website blocked but not downloading for files for users however this can go as suggestion you may like to post you idea at
Swapnil ( EX- SEP Employee :-)
Download doesn’t only mean downloading files from a site, When we open a webpage even then we download data, images and graphics get downloaded to the TEMP directory. Let’s talk about a hypothetical situation, we are able to block download from a site, in that case you would not be able to see the page properly.
So thinking of blocking download from a website is not a good idea.