Endpoint Protection

 View Only

  • 1.  SEP 12 Automatically delete tracking cookies and not report

    Posted Feb 04, 2013 08:37 AM

    We have a reoccuring number of tracking cookies being detected and reported daily by SEP 12. Our policy indicates that all infections must be followed up with a ticket being raised and the issue investigated. Given the number of tracking cookies that are detected. I would like to know if its possible to setup SEP12 to automatically delete tracking cookies and not report them as infections.

    Is that possible?



  • 2.  RE: SEP 12 Automatically delete tracking cookies and not report

    Posted Feb 04, 2013 08:40 AM
    You cannot stop it from being reported, only excluded from scanning


  • 3.  RE: SEP 12 Automatically delete tracking cookies and not report

    Posted Feb 04, 2013 09:51 AM

    Have a look at this article:

    SEP 12.1 detecting tracking cookies as "risk found"

    http://www.symantec.com/docs/TECH172644

     

    As for adding centralized exceptions :

    How to add a Centralized Exception for a detection that is not included with Known Security Risk Exceptions in the Centralized Exception Policy.

    http://www.symantec.com/docs/TECH106170

     

    And informational very goo video about tracking cookies:

    https://www-secure.symantec.com/connect/blogs/tracking-cookies



  • 4.  RE: SEP 12 Automatically delete tracking cookies and not report

    Posted Feb 04, 2013 02:58 PM
    If it is setup as an exception, would it just ignore tracking cookies all together? I still want them deleted just not reported as an infection.


  • 5.  RE: SEP 12 Automatically delete tracking cookies and not report

    Posted Feb 04, 2013 03:03 PM

    Yes, excluding would ignore them altogether.

    There is no way to turn off the alert for just cookies. It is seen as a risk just as for other malware that is found.