Video Screencast Help
Security Community Blog
Showing posts tagged with Endpoint Protection (AntiVirus)
Showing posts in English
Hear4U | 07 Jul 2009 | 0 comments

We are launching a new contest called "Connect and Protect" - tell us how you protect your data and you could receive a Flip camera, and an opportunity to win 2,000 Connect Rewards Points (redeemable for a Nintendo Wii, various iPods, etc.,)

If you are interested in entering this contest, just follow the link below and read the details of the contest. 

In a nutshell,
1.  Submit a blog of 1200 words answering a few questions (listed on the Landing page).
2.  If your blog is chosen, we'll send you a Kit, which includes the Flip Cam!
3.  Create and submit a video blog answering the same questions as your original blog.
4.  Wait and see if you win the grand prize!

This is a great way to earn some additional points, receive a flip camera, and share your story!

RolandAY | 30 Jun 2009 | 1 comment

 Keeping system folder to a minimum comes very handy in term of backup still to small might result in System running out of disk space which causes SEP and the whole system performance to lag
How to proceed?

1. On safe mode cut past the Symantec Endpoint folder content on a different location
2. create a clean partition
3. Windows + R type diskmgmt.msc
4. Right click on the new partition and select New Partition
5. Follow the instructions until you reach Assign Drive Letter or Path section
6. Select Mount in the following empty NTFS folder radio button and select Browse…
7. Highlight the C: drive and click on Symantec empty Folder
8. Complete the wizard
9. Copy back the Symantec Endpoint folder content
10. Reboot the system

Just remember to keep this action documented in the server history

in case you realise SEP content folder keeps growing follow...

mon_raralio | 25 Jun 2009 | 4 comments

Misleading applications are applications that pretend to do one thing while doing another. A good example are rogue security softwares that decieves or misleads the user into thinking that there are security issues with the computer he or she is currently using and requires the installation of software to remove the “threat”.

They usually use the web browser pop-up and make the user think that this is their Explorer and then shows that it is being scanned. Previous versions just show a small pop-up (similar to when you do something with files, except this one pretends to scan)

I've come upon this at home while surfing the internet. The current websites open are Facebook, Youtube, and Google (3 of the most visited sites in the world). Everybody I know visit this page every now and then and I'm pretty sure there are no malwares in their sites. So there I was, looking into my profile and noticed that one of my friends became a fan of someone. So I moved over...

Spencer Parkinson | 23 Jun 2009 | 1 comment

In response to the increase in online cyber threats targeting the endpoint, combined with IT staffing pressures, Symantec is now offering Symantec Managed Endpoint Protection Services - a new set of offerings which provides management and monitoring of endpoint protection technologies to defend users against malware and other sophisticated attacks, such as rootkits, zero-day attacks, and spyware. The new managed services leverage the customers’ existing endpoint protection technologies, Symantec security experts, and the Symantec Global Intelligence Network to secure customer, employee, and corporate data, while providing expert management to help IT departments with the configuration, availability and effectiveness of their endpoint protection technologies.

Symantec’s March 2009...

Kedar Mohile | 20 Jun 2009 | 3 comments

Disk full message erroneously appears when downloading LiveUpdate updates

If your network environment already supports the proxy servers that are compliant with the HTTP 1.1 protocol or later, you can disregard this entry.

After you have tried to download LiveUpdate for the first time, the following message might appear:

"LU1863: Insufficient free disk space
There is not enough free disk space for LiveUpdate to operate properly. Please free up disk space on your computer and run LiveUpdate again."

You might have insufficient disk space. However, it is much more probable that this message appears in error because the proxy server is unable to send the correct Contents-Length header field.

This error message might appear on Symantec Endpoint Protection Manager, a Symantec Endpoint Protection client, or a Symantec Network Access Control client.

You should verify that the disk...

Kedar Mohile | 16 Jun 2009 | 1 comment

Takes a long time for Firewall Policy Overview page to appear when running with more than 500 groups in SEP Manager...

For more than 500 groups, it takes 1.5 minutes to display the Firewall Policy Overview page

If you click the Add a Firewall Policy command, it can take up to 1.5 minutes for the Firewall Policy Overview page to appear. This occurs if the management server contains 500 or more groups. The problem occurs because it takes time for the Overview page displays all the groups and locations that the existing firewall policies are assigned to.

This happens due to the "locationCounting" settings enabled which is used to count and display the same for the user every time the page is attempted to open. When you have a higher number lets say more then 500 it takes ~1.5 mins to count and display the same.

To work around this issue, perform the following steps:

Close all instances of the Symantec Endpoint Protection Manager Console....

khaley | 09 Jun 2009 | 0 comments

 If you get the right kind of satellite dish you can grab signals that float through the air and see live network broadcast feeds. Cell phones send data through the air and with the right equipment you can snag it as well. Our voices travel through the air on their own and you can buy a device in the back of an airline magazine to capture the sound and ease drop on conversations. Now a group has released an open source kit to allow someone to capture the keystrokes from a wireless keyboard. See here:

It’s promoted as a tool to verify security and to demonstrate sniffing attacks. Fun at parties too, I have no doubt. But what is getting people upset is that it could be used by bad guys to capture what you type into your computer.

It should be pointed out that there are quite a...

Hear4U | 09 Jun 2009 | 2 comments

This entry is all about YOU.

As you may know by know, we have two Connect users who were recently awarded 25,000 Connect points for their content.  Content is King on a community - it stirs discussion, resolves issues, brings to light enhancements to products, and allows the sharing of knowledge and product expertise.

In the coming weeks we'll be announcing another contest with some cool give-aways, including flip cameras/phones.  Part of this contest will be driven by videos you create, along with helping us "get the word out" about Connect through your other social media channels - twitter, Facebook, etc.,  

I look forward to another successful contest, where once again, Content will be King.

If you are interested in participating, shoot me a PM!

We are Hear4U!


MattBarber | 08 Jun 2009 | 0 comments

If you ever have a question of whether or not your data is actually getting into the SEPM, a good first place to check would be in the following location:  Depending on your install directory (mine is D:\) navigate to \Program Files\Symantec\Symantec Endpoint Protection Manager\data\inbox\agentinfo.  This is where information enters the SEPM from the clients.  You should be able to watch data come in and out of this folder.  There should only be a handful of files (at most) in this location.  This is a very helpful troubleshooting step when there is concern about getting data from the clients into the SEPM.  Believe it or not, a repair on the SEPM can get data flowing again if you are having this issue.  Remember never install a Maintenance pack without installing the cooresponding Maintenance Release first, even if Symantec Support tells you to.  ie, install MR .4000 before installing MP .4014.  Seems very basic,...

Kedar Mohile | 05 Jun 2009 | 5 comments

After you configure database maintenance options, the new options are applied at midnight, and not immediately.

To configure the database options:

  1. In the console, click Admin > Servers, and then select a site.
  2. Under Tasks, click Edit Site Properties, and then click the Database tab.

To configure the management server to apply the database maintenance options immediately, you can configure the file.

To configure the file:

  1. Open the file, located in the C:\Program Files\Symantec\Symantec Endpoint Protection Manager\tomcat\etc directory by default.
  2. Change the following parameters:
  • Change scm.object.idletime=3600000 (in milliseconds) to a smaller number. The default setting is 1 month.
  • Change scm.timer.objectsweep=900 (in seconds) to a smaller number.The default setting...