Endpoint Protection

  • Private Community
 View Only

  • 1.  Tracking cookies action

    Posted Jul 21, 2009 12:15 PM
    I just started deploying SEP 11 and received alerts that four PCs had tracking cookies and one user with the box that pops up. I have found many articles on how to get rid of the box but nothing about how to configure the actions when a tracking cookie is found. The SEP log shows the action taken was leave alone and that is the primary and secondary action. But in the policies, I don't have anything set to log only for both actions. For security risks, I have actions set to quarantine and then log.

    If you make a centralized exception to get rid of the box, then will you not be able to delete the tracking cookies? In other words, do you live with the box and delete or get rid of the box and log only?

    imagebrowser image


  • 2.  RE: Tracking cookies action

    Posted Jul 21, 2009 06:22 PM
    In centralized exceptions, set tracking cookie to ignore. I think Tracking cookies are basically harmless and can be safely ignored.
    see "idea" here: https://www-secure.symantec.com/connect/idea/notifying-uses-tracking-cookies-should-be-disabled-default


  • 3.  RE: Tracking cookies action

    Posted Jul 21, 2009 09:51 PM
    Little more info on cookies for anyone who is interested. Also my give some incite on whether or not you want to block them : )

    In general there are two different types of cookies, 1st party and 3rd party. First party cookies are cookies sent to you by a website that are visiting, and then are only used by that website. Third party cookies (or tracking cookies) are persistent on your machine and are cookies that are sent to you by a domain outside the one that you are currently visiting. For instance if you are visiting one site that has advertisements or banners on it. A cookie that the website sends is first party, but the one sent by the advertisement would be third party since the ad is technically outside the domain of the site you are on. Usually third party cookies are used by multiple websites to track things like browsing behavior. Third party cookies are considered by some to be an invasion of privacy and most modern browsers give you the option to disable them. However (in my opinion) they are harmless. Mostly they are used by companies wishing to do marketing research. So it depends on your definitions of "harmless" but in my opinion they can be ignored.

    Hope this helps
    Grant-