Endpoint Protection

The following are built in access protection rules found in mcafee viruscan enterprise, note that these are Not the Mcafee Firewall product, they are all part of the Antivirus product. I am looking for these in symantec antivirus sep 12.1 but not seeing where they are, especially the one with preventing spam (block outgoing port 25). I do not plan on installing any other component besides virus and spyware protection

“Prevent Registry Editor and Task Manager from being disabled”
“Prevent execution of scripts from the Temp folder”
“Prevent programs registering as a service”
“Prevent programs registering to autorun”
“Prevent FTP communication”
“Prevent common programs from running files from the Temp folder”
“Prevent user rights policies from being altered”
“Prevent remote creation/modification of executable and configuration files”
“Prevent mass mailing worms from sending mail”  **
“Prevent IRC communication”
“Prevent use of tftp.exe”
“Prevent svchost executing non-Windows executables”
“Protect phonebook files from password and email address stealers”
“Protect cached files from password and email address stealers”
“Prevent modification of McAfee files and settings”

Without knowing what each of these settings actually do or how they do it... most of them seem like things you would configure in Application and Device Control. In fact, looking at the default Application Control Rule Sets in a SEPM, there are control rules such as "Block access to autorun" and "Prevent modification of system files".

The last one on your list sounds like SEP's Tamper Protection... and blocking outbound traffic on port 25 would be a firewall rule.

I would strongly recommend reconsidering using Virus and Spyware Protection only. You'd be missing out on a lot. Here's a basic overview:

About the types of threat protection that Symantec Endpoint Protection provides
http://www.symantec.com/docs/HOWTO55272

sandra