Video Screencast Help
updated discussion 23 Oct 2017
Hi All, I just want to ask the difference between number of concurrent users ( under Statistics > Summary > Device) and the number of users count (under Statistics > Authentication > Display by user). Why is concurrent users greater than the one in authentication users? Thanks!
new discussion 23 Oct 2017
Hi All, Is it possible to generate a log or a report to see the usage of http and https in proxysg? Or this option can be seen in the reporter? If so, how? Thank you and Best Regards,
updated discussion 23 Oct 2017
Hello -  Need some help determining how the system would handle the following: Have some SMTP policies that have response rules configured to force encrypt based on detected content, but also have some recipient email domains configured as exceptions in the Groups tab since we have forced TLS setup with them. (btw, the exception condition is configured to detect ...
updated discussion 23 Oct 2017
cluster5.eu.messagelabs.com at 85.158.138.179 is refusing to talk to one of my SMTP servers at 23.239.151.125. When my server connects, cluster5 immediately responds with: 501 Connection rejected by policy [7.7] 18806, please visit www.messagelabs.com/support for more details about this error message. This is instead of the initial greeting, before even HELO/EHLO has been issued. No spam is ...
new idea 23 Oct 2017
SEP Manager would stop delivering definitions when it's unmanageable in order to prevent delivering corrupted or incorrect definitions to the clients. In one of my cases, one of the unmanageable SEPM servers went on delivering incorrect definitions although Liveupdate Content policy changed to not to deliver that policy from a manageable SEPM server.
updated discussion 23 Oct 2017
Hi All, I just want to ask the difference between number of concurrent users ( under Statistics > Summary > Device) and the number of users count (under Statistics > Authentication > Display by user). Why is concurrent users greater than the one in authentication users? Thanks!
new discussion 23 Oct 2017
Hi All, Is it possible to generate a log or a report to see the usage of http and https in proxysg? Or this option can be seen in the reporter? If so, how? Thank you and Best Regards,
updated discussion 23 Oct 2017
Hello -  Need some help determining how the system would handle the following: Have some SMTP policies that have response rules configured to force encrypt based on detected content, but also have some recipient email domains configured as exceptions in the Groups tab since we have forced TLS setup with them. (btw, the exception condition is configured to detect ...
updated discussion 23 Oct 2017
cluster5.eu.messagelabs.com at 85.158.138.179 is refusing to talk to one of my SMTP servers at 23.239.151.125. When my server connects, cluster5 immediately responds with: 501 Connection rejected by policy [7.7] 18806, please visit www.messagelabs.com/support for more details about this error message. This is instead of the initial greeting, before even HELO/EHLO has been issued. No spam is ...
new discussion 23 Oct 2017
Hi, I'm new with DCSSA. I would like to create a sandbox for an application running in a RedHat server. I have a couple of questions: Can I use the Edit Profile List, add an application and create a sandox? I'm not sure if this functionality is only for windows system or I can use it in Linux systems too. Second, I'm able to receive profile event... When I press create sandbox in the "Edit ...
updated article 20 Oct 2017
The security documentation provided by WordPress and found online for plugin security is sparse, outdated or unclear. This cheat sheet is intended for Penetration Testers who audit WordPress plugins or developers who wish to audit their own WordPress plugins. This cheat sheet can be effectively used to test various WordPress plugins. Cross-Site Scripting (XSS) Check if the following global PHP ...
updated article 17 Oct 2017
Introduction This is the sixth in my Security Series of Connect articles.  For more information on how to keep your enterprise environment secure using often-overlooked capabilities of Symantec Endpoint Protection (and the OS upon which it functions), see Mick's Greatest Hits: Index of Helpful Connect Security Articles. This new "Symantec Insider Tip" article aims to provide advice and ...
updated article 11 Oct 2017
GDPR: How prepared are you for May 2018? And what’s likely to happen if your business is not compliant By Robert Arandjelovic, EMEA Director of Security Strategy, Symantec Symantec recently hosted a live panel to help organisations get ready for the imminent GDPR. With contributions lawyer firm White & Case, Mandiant, Commvault and Symantec one issue rang out particularly strongly to me: is ...
updated article 11 Oct 2017
First confirmed in Japan in December of 2016, the DreamBot Trojan infected computers and tricked victims into giving up their credentials and one-time passcode, which a criminal group used to siphon off funds. By the time Japan’s Metropolitan Police Department announced, on October 5, 2017, that it had exposed the criminals, the group had pilfered a staggering 240 million yen (approximately ...
updated article 10 Oct 2017
SysAdmin Day is an annual event celebrated on the last Friday in July and exists to show appreciation for the work of Sys Admins and other IT workers. Your network is secure, your computer is up and running, and your printer is jam-free. Why? Because you’ve got an awesome sysadmin (or maybe a whole IT department) keeping your business up and running. So say IT loud; say IT proud … But it's not ...
updated blog entry 20 Oct 2017
Hackers continue to show endless ingenuity in penetrating corporate networks. In fact, some recent malware attacks made headlines by crippling corporations, robbing shareholders, and damaging the credit of thousands of consumers. These attacks make it clear that cybercriminals continue to evolve, creating threats that can bypass the security defenses of many organizations. Some advanced ...
updated blog entry 20 Oct 2017
Website identity is important for user safety. While encryption is important, knowing who you are encrypting to is paramount when conducting online transactions. While many users can identify the green bar/lettering associated with an Extended Validation (EV) certificate, recent user interface (UI) changes by browsers make it more difficult to differentiate these certificates from low value, ...
updated blog entry 20 Oct 2017
このブログではウェブサイトやその上で動作しているウェブアプリケーションの脆弱性について紹介すると共に注意喚起をする目的でまとめられています。 今回は、最近著名CMSの脆弱性として情報漏えいを起こした原因としてニュースをにぎわしており、Webアプリケーションの脆弱性の中でも最も危険度の高いOSコマンドインジェクションについて解説をしています。 ※なお、内容に関しましてはHASHコンサルティング株式会社の徳丸 浩様に監修いただいています。 +++++++++++++++++++++++++++++++++++++++++++++++ OSコマンドインジェクション脆弱性(CWE-78) ■概要 Webアプリケーションの中には、機能の実現のために外部コマンドを呼び出すものがあります。また、多くのアプリケーションでは、メール送信の機能をsendmailコマンドの呼び出しで実現し、外部か ...
updated blog entry 20 Oct 2017
In connection with the statement posted to Symantec’s Blog on March 24, 2017, Symantec has been reaching out to its customers.  The text of our most recent customer communication is below:  ******************************************  It's important that we keep the lines of communication open with you as we continue to deliberate possible changes to how we support your website ...
updated blog entry 20 Oct 2017
The CA/Browser Forum is an unincorporated association of separate organizations that creates the guidelines that apply to all SSL certificate and browser providers. Since the effected date of 1 July 2012 Symantec has been notifying customers in regards to certificates with a SAN or Common Name (CN) field that contains a Reserved IP Address or Internal Server Name since they are being ...
updated blog entry 20 Oct 2017
Symantec Identity: Access Manager (SAM) now supports VIP Push and will soon support VIP Login. VIP Push When we introduced VIP Access Push we told you how much more convenient it is – you automatically receive a Push verification to your registered mobile device upon sign-in, replacing the need for you to manually enter a security code – it’s just a push of a button.  We’ve now taken it ...
updated blog entry 20 Oct 2017
Since its founding, Symantec has been dedicated to security.  That is our raison d’etre. As such, we continually collaborate across the industry to update standards, making them more secure and harder to hack or fake. That is why the CA/Browser Forum determined that Certification Authorities must not issue public SHA-1 TLS certificates after December 31, 2015. While this directive is an ...
updated blog entry 20 Oct 2017
Your database has been breached, malware has infected your systems and sensitive records are available for anyone to download on the internet. Your first action is to launch an investigation to find out more about the breach. The report shows that the vulnerability has been exploited for months and all forensic logs have been deleted.       SQL injection isn’t new ...
updated blog entry 20 Oct 2017
We take our role as a key player in the trust ecosystem of the Internet very seriously. We believe that secure and compliant issuance of SSL/TLS certificates is fundamental to the security of the Internet and that we have a responsibility to collaborate with our customers and the broader community to continuously improve industry standards, and specifically our practices, for certificate ...
updated download 28 Sep 2017
This Page has information on AWS Cloud formation Template (CFT) based test drive that can be used by CWP users to validate CWP features. This template automates the creation of instances, subnets, VPC's etc. Multi-tier Organisation Setup ABC Trade Corporation is a leading multi-national company. It has typical N-tier architecture, separating front-end and back-end of the organisation. Each ...
updated download 30 Aug 2017
Symantec DCS Policy Utility v1.0.0.11 For Windows OS (Note .NET Framework 4.5 is required) Designed to help you tune your policy by processing the log files from an Agent. There's a getting started tab that explains the best steps to get the logs and events you need to troubleshoot your policy. The program does not make any changes to the machine or policy. It parses the sisidsevents and ...
updated download 16 Aug 2017
Attached html code of custom block page and below is screenshot of block page, Follow KB article to apply on ProxySG. https://support.symantec.com/en_US/article.DOC9820...
updated download 08 Jul 2017
This application control rule prevents process from using *vssadmin.exe to delete shadow copies blocks vssadmin.exe with the folowing argument: .*delete[^\]*shadows[^\]*\/all[^\]*\/quiet.*
updated download 08 Jul 2017
This rule prevents from different malicious activity: * OFFICE, ADOBE, CSCRIPT, WSCRIPT and BROWSERS products from launching CMD or POWERSHELL * scripts from accessing DOCUMENTS (ransomeware protection)
updated download 03 Jul 2017
This application control rule is protecting you from: Adobe products running powershell Office products running cmd or powershell CMD from running powershell or VB scripts VB script from using documents on pc cscript or wscript from running powershell or cmd
new event 23 Oct 2017
WEBINAR: Your Proxy Just Got Smarter with Web Isolation TIME: 10:00am PT / 1:00pm ET SPEAKER: Timothy Chiu, Senior Director of Product Marketing, Symantec Did you know millions of hosts (Domains, Subdomains, or IP Addresses) pop up every day and many of these have lifespans of less than 24 hours.   Many organizations choose to set Secure Web Gateway policies to block users ...
new event 23 Oct 2017
WEBINAR: Data Loss Prevention (DLP) v15 - The Information Centric Security Generation DATE: November 2, 2017 TIME: 8:00 AM PT / 11:00 AM ET SPEAKER: Salah Nassar, Director Product Marketing, Symantec Symantec launched a major release for DLP, version 15, that focuses on expanding core DLP technology and Information Centric Security. In today’s cloud generation, data is shared through ...
updated event 18 Oct 2017
Please join us for a special combined New York DLP & Security User Group meeting on November 2! We are happy to announce this meeting will serve as the official launch of Symantec DLP 15 and Control Compliance Suite 12.0! Come ready to learn about these exciting new releases and rub elbows with experts in your field! Lunch will be served, so come hungry as well. We hope to see you ...
updated event 17 Oct 2017
Please join us for the next Cleveland User Group meeting on October 18th, 2017 from 9:00-1:00 (341 White Pond Rd, Akron). We will be in the Hub area on the second floor (room 215). Come ready to rub elbows with experts in your field! Breakfast and lunch will be served, so come hungry as well. We hope to see you there! Agenda: Symantec Strategy – How application isolation changes ...
new event 12 Oct 2017
WEBINAR: Learn How Proxy Plays A Critical Role in Protecting Your Enterprise TIME: 10:00am PT / 1:00pm ET SPEAKER: Timothy Chiu, Sr. Director of Product Marketing, Symantec Solving the most sophisticated security challenges requires an advanced approach that is built upon a proxy-based architecture. This approach allows you to leverage best of breed security technologies to provide a safe and ...
new event 09 Oct 2017
WEBINAR: Addressing The Security Challenges of the Cloud Generation TIME: 9:00am PT / 12:00pm ET SPEAKER: Gerry Grealish, Head of Product Marketing, Network and Cloud Security Products Welcome to the Cloud Generation, where employees demand flexibility and access wherever they are, but can expose your most sensitive data to risk. Distributed environments—like mobile and distributed ...
new event 09 Oct 2017
WEBINAR: Protecting Critical Infrastructure from Cyber Threats TIME: 10:00am PT / 1:00pm ET SPEAKER: Kunal Agarwal, GM Internet of Things, Symantec The systems that connect our lives like financial institutions, and transportation - are all dependent upon the internet. Building resilience in critical infrastructure is crucial to our national security.  Join us as we ...
new video 24 Jul 2017
A how-to video that guides you through the steps necessary to establish content classification in Box for CloudSOC content.
new video 07 Jul 2017
We had SEPM 12.1 MP 7 running on SQL 2008, in order to upgrade to SEPM 14, we had to upgrade to SQL 2016 first then repoint the application to the new database then SEPM to 14.  For this, we created a lab and demonstrated this step by step via the video.  Sharing as it may help others. [connect_embed_youtube:cTRpU0NzkZ8]
new idea 23 Oct 2017
SEP Manager would stop delivering definitions when it's unmanageable in order to prevent delivering corrupted or incorrect definitions to the clients. In one of my cases, one of the unmanageable SEPM servers went on delivering incorrect definitions although Liveupdate Content policy changed to not to deliver that policy from a manageable SEPM server.
new idea 19 Oct 2017
I put in a ticket with Symantec Support and they suggested I post here.  Currently, Risk Outbreak Notifications can only be configured to notify for all risks or a specific risks.  We can either use * for all risks or type the risk name.  Rather than specify the risk name, we would like to get a notification for any unspecified virus that reoccurs.    When using the * ...
new idea 17 Oct 2017
The console time out is anoying when using for monitoring dashboard on video wall. This get time out every 60 minutes. Since reporting console doesn't have management capablity, why we are not thinking to customize the timeout period. Better if this can be added with individual user account, where administrator reseve right to provide reporting console timeout duration based on ...
new idea 17 Oct 2017
You have to implement import/export hardware devices in SEP Manager [Policies > Policy Components > Hardware Devices].  
new idea 12 Oct 2017
Problem: When we proceed to mass client updates deployement we choose, in the Clients - Install Packages view, to add a new package the problem is that the default Security features and the Default installation settings are not the ones that we chose in our environement and we always have to choos ours from the drop down list. That led, recently, to an unwanted Servers reboot because of the ...
new idea 11 Oct 2017
When creating a HI Policy to check and download latest definitions, have the policy check to see if the definitions are available at the site. This requires the site to have either a script to download the files or the intelligent update available to download.
new idea 11 Oct 2017
Hello All, Is it possible to improve the schedule report tab by providing an option to Schedule .CSV file format. Thanks & Regard syed valiulla
Member Name
Reward Points
All Time
Member Name
Reward Points
Last 30 Days
Member Name
ArticlesSolved
Mithun Sanghavi
1,268
61
SMLatCST
438
1
jjesse
109
24
ℬrίαη
2,915
25

A Message From Your Community Manager: RGMDonaldson

Welcome to the Security Community on Symantec Connect.

The Security Community covers many different security products from Symantec and provides valuable technical information for each.

Please feel free to contact me via private message with any questions you may have.

I look forward to hearing from you and answering any questions about the Community.

Login to contact the Community Manager.