Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 2634 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Policies to mitigate Windows 10 spyware behaviour

ClerpremSpa

How to contrast WIndows 10 OS generated traffic resulting in undesired data collection? Windows 10 generated  network traffic should be classified and filtered out . I'm unsure that configuring, even properly, all the privacy settings, would really prevent MS from collecting data that I consider private.



This thread was automatically locked due to age.
  • 0

    HI ClerpremSpa, 

    Well If you wish XG to block the services to Microsoft then you may apply a Web filter on a Test machine and Check the URL in Log Viewer . Once you capture the URL you would need to add then in a category that is defined blocked in the Web Filter Policy. ALso you may block Application relevant to Windows  and BITS application . 

  • 0

    Your best bet would be to use group policies or alike to block stuff that you don't want leaving the windows hosts. XG can't do OS finger printing and has no way of filtering out windows 10 traffic. Setting up a few firewall rules may help but may make your windows installations skip important updates etc. Also keep in mind that blocking certain microsoft domains can have unintended consequences https://community.sophos.com/products/xg-firewall/f/network-and-routing/77683/windows-10-updates-killing-the-network 

    On a side note, I agree that windows 10 sends a lot of data to microsoft but calling it spyware is not true. I understand that some features that people regularly use on their smartphones like GPS, Siri, okay google are not always desirable on a home computer but calling cortana spyware on home computer while using similar functions on smartphones without giving it a second thought is hypocritical. In any case, this is beyond the scope of your question.