My customer using github and google drive as share file location. Otherwise all sites are blocked.
Endpoint still need access to the internet for browsing. So im thinking of using DLP to disallow User from upload file to others website but not github and google drive.
How can i do it since there is no exception in manage DLP rules
Simplify it
Block users from transfering data
But they allowed to upload it to github and drive.google.com
Hello Hoang,
Thank you for reaching out to the Sophos Community.
I want to try testing out some configuration changes on my VMs to see if it's possible to accomplish this using the features within Sophos AV. At this time, it's not possible to create DLP rules based on specific websites. It's all or nothing, block uploads to all web browsers or allow all uploads.
I will update you in the coming days here.
Hello Hoang,
It looks like the "Sophos Endpoint" alone won't be able to accomplish this for you. The Sophos XG, however, does have functionality that will make this possible. The following article goes more in-depth as to how you can configure this on an XG.
- https://support.sophos.com/support/s/article/KB-000035660?language=en_US
If you would like to see changes made to Sophos' Endpoint AV so that it's able to perform similar operations, I'd recommend submitting a feature request. I can see that there's a similar request already present.
- https://ideas.sophos.com/forums/285723-endpoint-protection/suggestions/41874037-url-logging-in-dlp
