Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 1 subscriber
  • Views 10505 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Web Content Scanner Query

isoffice

Hi folks,

We are using Enterprise Console (Version 4.5.1.0) to distribute Sophos Endpoint Security and Control (Version 9.5) and we wish to disable the Sophos Web Content Scanner Add-On as a result of some issues encountered by our users.

I have seen some previous posts in relation to this but none of them seem to be applicable (e.g. filename savconf.xml is mentioned quite a bit....but where is it??).

Any help would be much appreciated.

John P

:10229


This thread was automatically locked due to age.
  • 0

    HI,

    Are you referring to the BHO (IE add-on) or the LSP (labeled as "Web protection")?

    If it's the BHO:

    http://www.sophos.com/support/knowledgebase/article/31205.html

    The other option I guess would be to disable that particular BHO in AD as a group policy setting.

    If it's the LSP, turning off the feature in the policy for the group of machines in SEC should disable it on the next restart of the machine.  The service will be there but the LSP hook will not.  The LSP hook is typically the component of it to cause problems.

    Regards,
    Jak

    :10237
  • 0

    Hi Jak,

    Thank you for your reply.

    I'm hoping to disable the scanner in the BHO. I will attempt the process mentioned in the article you mentioned and will post my progress.

    Thanks again.

    John P

    :10317

    2 x SG450 (Version 9.714-4)

    HA = Active-Passive

  • 0

    Hi,

    One way to control this you might like to try would be:  For a given OU (I hope you have AD :) ) create a new group policy setting.  Then under the "Computer Configuration" settings:

    Administrative Templates -> Windows Components -> Internet Explorer -> Security Features -> Add-on Management


    In the "Add-on LIst" settings you can enable this and enter the GUID of the Sophos BHO:

    {39EA7695-B3F2-4C44-A4BC-297ADA8FD235}

    and set the Value to 0.

    A 0 will disable the BHO for all users on the computers, 1 would enable it for all users, 2 I think would enable the state to be controlled locally in IE.  So 0 should be what you're after.


    I hope this is something to try.  This should be easy to manage if you have AD :)

    Jak

    :10329
  • 0

    Hi Jak,

    Many thanks for your help on this. We have amended our group policy and rolled it out to a test group with no problems encountered. The web scanner add-on is now disabled.

    It appears to be a more user-friendly method of carrying out this task compared to that mentioned in the Sophos article you mentioned.

    Problem solved, thanks again.

    John P

    :10395

    2 x SG450 (Version 9.714-4)

    HA = Active-Passive

Unfiltered HTML