McAfee MSA09EMB1RAA Product Guide - Page 30

Blocking exploits on authorized sites

An authorized site can contain exploits, which attack a managed system by taking advantage

of a vulnerability in an application or system. To protect users, use this task to block access to

sites where SiteAdvisor detects exploits.

NOTE:

Use the Enforcement Messaging policy options to customize the message that is displayed

to users for blocked sites (see

Customize messages for users

).

Task

For option definitions, click

?

in the interface.

1

Do one of the following:

•

ePolicy Orchestrator 4.0 — Go to

Systems | Policy Catalog

.

•

ePolicy Orchestrator 4.5 — Click

Menu | Policy | Policy Catalog

.

2

From the

Product

list, select

SiteAdvisor Enterprise Plus 3.0.0

; from the

Category

list, select

Authorize List

.

3

For the policy you want to edit, click

Edit

.

4

Click the

Advanced Options

tab.

5

For

Exploits

, select

Block sites with exploits

.

6

Click

Save

.

Blocking or warning file downloads on authorized sites

An authorized site with an overall rating of green can contain individual download files rated

yellow or red. To protect users, specify an action that is specific to the rating for an individual

file. Use this task to block users from downloading files that contain threats or to warn users

about potential threats from downloads.

NOTE:

Use the Enforcement Messaging policy options to customize the message that is displayed

to users for blocked and warned downloads (see

Customize messages for users

).

Task

For option definitions, click

?

in the interface.

1

Do one of the following:

•

ePolicy Orchestrator 4.0 — Go to

Systems | Policy Catalog

.

•

ePolicy Orchestrator 4.5 — Click

Menu | Policy | Policy Catalog

.

2

From the

Product

list, select

SiteAdvisor Enterprise Plus 3.0.0

; from the

Category

list, select

Authorize List

.

3

For the policy you want to edit, click

Edit

.

4

On the

Advanced Options

tab, select

Track events and request information from

the SiteAdvisor server

.

5

For

File downloads

, select an action for yellow, red, and unrated files.

6

Click

Save

.

Configuring Policies

Use Authorize and Prohibit lists for sites

McAfee SiteAdvisor Enterprise Plus 3.0 Product Guide

30

Section	Page
Contents	3
Introducing SiteAdvisor Enterprise Plus	5
Benefits of using SiteAdvisor Enterprise Plus	5
How safety ratings are compiled	6
Safety icons and balloons protect during searches	6
Using site safety balloons	7
SiteAdvisor menu protects while browsing	7
Using the SiteAdvisor menu	8
Safety reports provide details	9
Viewing safety reports	10
Administrators customize policy settings	11
Setting up a Browsing Security Strategy	13
Guidelines for creating a strategy	13
Select the right policy options and features	14
Information that SiteAdvisor Enterprise Plus sends	15
Configuring Policies	16
How policies work	16
Types of policy categories	17
Default policy settings	17
Creating and editing policies	19
Apply general options	19
Configuring proxy settings	20
Enabling observe mode	21
Setting the control panel option	21
Block and warn sites by ratings and threat factors	22
Configuring access based on ratings	22
Blocking or warning site access based on ratings	23
Blocking or warning site access based on threat factors	23
Blocking or warning file downloads based on ratings	23
Blocking phishing pages	24
Use Authorize and Prohibit lists for sites	24
How site patterns work	25
How multiple-instance policies work	26
Working with Authorize lists	27
Adding a site to an Authorize list	27
Adding multiple sites to an Authorize list	27
Deleting sites from an Authorize list	28
Editing information in an Authorize list	28
Searching an Authorize list	29
Testing an Authorize list	29
Blocking exploits on authorized sites	30
Blocking or warning file downloads on authorized sites	30
Blocking phishing pages on authorized sites	31
Turning off tracking for visits to authorized sites	31
Setting list precedence	32
Working with Prohibit lists	32
Adding a site to a Prohibit list	32
Adding multiple sites to a Prohibit list	33
Deleting sites from a Prohibit list	33
Editing information in a Prohibit list	34
Searching a Prohibit list	34
Testing a Prohibit list	34
Customize messages for users	35
Creating customized messaging	35
Creating a message for rated sites	35
Creating a message for phishing pages	36
Creating a message for downloads	37
Creating a message for sites on Authorize or Prohibit lists	37
Adding a logo in a message	38
Disable and reenable the software	38
Disabling and re-enabling from the ePO server	38
Disabling and reenabling from the browser	39
Track events for reports	39
Tracking visits to domains and downloads	40
Tracking domain page views and downloads	41
Tracking green site content categories	41
Using Dashboards, Monitors, and Reports	43
Use queries to create reports	43
Creating reports	44
Running a purge task	45
Use dashboards and monitors	45
Creating monitors	46
Reference	47
Frequently Asked Questions	47
Where to find more information	50
Web Filtering for Endpoint and Web Reporter Appendix	51
How web content filtering works	51
Policy additions with web content filtering	51
Report and dashboard additions with web content filtering	52
How Web Reporter works	52
Sending Web Reporter logs	53
Applying the Content Actions policy	53
Working with the Web Reporter	54

McAfee MSA09EMB1RAA Product Guide - Page 30

Blocking exploits on authorized sites, Blocking or warning file downloads on authorized sites

Page 30 highlights